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", @typed={0x9, 0x25, 0x0, 0x0, @str='syz1\x00'}, @typed={0x8, 0x50, 0x0, 0x0, @u32=0x3}]}, @typed={0xc, 0x89, 0x0, 0x0, @u64=0x401}, @nested={0xa3, 0x61, 0x0, 0x1, [@typed={0x4, 0x46}, @typed={0x8, 0x1f, 0x0, 0x0, @pid=r5}, @typed={0x8, 0x81, 0x0, 0x0, @fd=r0}, @generic="b58c5bd88940c9cf4c2a332410df77d0f004cabd1fb95e78397565f70c43364ce9041d4bfd5b73b3edc79d7e17c4f83908546dc72826e4ca6755f7bab14b073e74a4f91d766f8e33914ac1aa0cd52fcd9af682212d8a8b098066f32dba6fec964df9f297f13537cb4f97ff7db2dd514d4bbe2bcbc62ca370ec7c52f222d28862c488f2", @typed={0x8, 0x1f, 0x0, 0x0, @pid=r1}]}, @nested={0x1294, 0x5c, 0x0, 0x1, [@typed={0x8, 0x86, 0x0, 0x0, @fd=r2}, @typed={0xc, 0x5, 0x0, 0x0, @u64=0x5}, @generic="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", @generic="2bea441305dd1419286c806aeb8db219cd5e50a2592ea65b44c817db33ee74d1797fb8d7968e65d459ae67142d677bc4191fdcab23bf6a5baf401a7be5f47d499defa5655ff9706226ef92b64c7a109f86dcb3dc5bf2c09bceccda4ed0f7d3eba9fe390f3e02148c8f3ac4b91e1d97f395e316e475e385d8cb9496304ffa93b681b32d0db1d64ad964ce551cdd7fe44019113a7997247827ba1fb4a780514b0dc430384dd577376bef3dc49df2ad23c340f82b178619e99ce57141ec15157017b393a16e180a67a81d67755e1c97b15a992abf50cfb06efc2b5cda", @typed={0xb9, 0x89, 0x0, 0x0, @binary="bdb0d1e721cf134144eae54380a66ff9d987520ebe6388ca7c5388f318da76b0bc1ef6f3dbfcea3d1d549edfbd33a8164502f5573fa5b647950988f7ff3b2a991d8aa03c338c9bdd8edfadc0b7b84cb45a9f785dd5d581cf8f274be0c75d012010bd573042160e3c17dbdf65aa3c797cd052c47fc80145818ed0cc20a304cd637f19c3d5c3173007b406b54477e93971bf3864b05c179e4fdcf2c81e41e098267e36a043e29d4a739b2ad7566878dd6c3524eced26"}, @generic="6dd2c4410e7ce83500d67c839cbd28499033721880749278044a4142e33880ca9f947dfc45f0bde7fce4a475756ae2016dc286f8b96ecd412c8ca6afe334c1a12e2a6a9e3cf39521316c672e9634c13d1b50f73c028043083096a6d2ca55effb406bcf82158ed06bf78b780c9332324c1d957d67c58f5abf48722b6a68065d4f2319b52ee9c4e8ceee7e1a1845553f38d8fc2255cf95ab654392118d8324fc1c3a8a8503a3e8ae0722098a610c02725b55035202aedf0f4ccb0e1e41f8802ae0bc7ac465e5fc3a3d5132e2cfa4d1302afbc7ff49967b5a4cb2499490b0c08b9c44aa4c42e7"]}]}, 0x2790}, {&(0x7f0000006480)={0x104, 0x29, 0x10, 0x70bd28, 0x25dfdbfd, "", [@generic="00e4be11d82e6e930de9cbb82dd4c12581d6cc664ba5c00253442db1959b3dd626fa1cf5ad246d4891db200de2909b2528a27894d7b89ceac60f8baac111cdc0c11dad58c6a75124bef19a16737d7a2c5fcf8196b552bce67ac61d35b5535ae7cbf56d75142908b4f3567ae68067a22c9f34a14b57853d9bcf3bed7757f9ccc49528562cff9216e08bc39b3c9c1089e83604c12ec8c2a6d8128067928612a552d26d0a409ce1f97edd2a3abcc6869155dd608a6574307a02becdd60228c7f85b5e4d1f099ef022dbaae8f2927cf7e82965ad5a", @nested={0xc, 0x34, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @pid=r6}]}, @typed={0x14, 0x84, 0x0, 0x0, @ipv6=@private2}]}, 0x104}], 0x5}, 0x4000000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x11)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x102001, 0x0)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup(r7, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r9 = openat$cgroup_int(r8, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r9, r9, 0x0, 0x2)
[ 3440.516389][ T9715] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3440.526618][ T9715] CPU: 1 PID: 9715 Comm: syz-executor.2 Not tainted 5.16.0-syzkaller #0
[ 3440.534976][ T9715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3440.545024][ T9715] Call Trace:
[ 3440.548296][ T9715]
[ 3440.551217][ T9715] dump_stack_lvl+0xd6/0x122
[ 3440.555851][ T9715] dump_stack+0x11/0x1b
[ 3440.560003][ T9715] dump_header+0x98/0x410
09:20:34 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async, rerun: 64)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (rerun: 64)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r1, 0x0) (async)
r2 = openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0) (async, rerun: 64)
r3 = syz_open_dev$rtc(&(0x7f0000000100), 0xab, 0x400000) (rerun: 64)
sendfile(r3, r0, 0x0, 0x2)
09:20:34 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000040)='cgroup.threads\x00', 0x2, 0x0)
r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r5 = fsmount(r3, 0x0, 0x0)
sendfile(r4, r5, 0x0, 0x8)
[ 3440.564330][ T9715] oom_kill_process+0x18e/0x3f0
[ 3440.569243][ T9715] out_of_memory+0x5ed/0x890
[ 3440.573947][ T9715] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3440.579822][ T9715] memory_max_write+0x32c/0x3d0
[ 3440.584673][ T9715] ? memory_max_show+0x70/0x70
[ 3440.589446][ T9715] cgroup_file_write+0x161/0x300
[ 3440.594378][ T9715] ? __check_object_size+0x22a/0x2d0
[ 3440.599690][ T9715] ? cgroup_seqfile_stop+0x70/0x70
[ 3440.604802][ T9715] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3440.610089][ T9715] do_iter_readv_writev+0x2de/0x380
[ 3440.615286][ T9715] do_iter_write+0x192/0x5c0
[ 3440.619875][ T9715] ? splice_from_pipe_next+0x34f/0x3b0
[ 3440.625315][ T9715] ? kmalloc_array+0x2d/0x40
[ 3440.629943][ T9715] vfs_iter_write+0x4c/0x70
[ 3440.634462][ T9715] iter_file_splice_write+0x43a/0x790
[ 3440.639894][ T9715] ? splice_from_pipe+0xd0/0xd0
[ 3440.644739][ T9715] direct_splice_actor+0x80/0xa0
[ 3440.649658][ T9715] splice_direct_to_actor+0x345/0x650
[ 3440.655020][ T9715] ? do_splice_direct+0x190/0x190
[ 3440.660026][ T9715] do_splice_direct+0x106/0x190
09:20:34 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0) (async)
openat$cgroup_procs(r3, &(0x7f0000000040)='cgroup.threads\x00', 0x2, 0x0) (async)
r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
r5 = fsmount(r3, 0x0, 0x0)
sendfile(r4, r5, 0x0, 0x8)
[ 3440.664906][ T9715] do_sendfile+0x675/0xc40
[ 3440.669323][ T9715] __x64_sys_sendfile64+0x102/0x140
[ 3440.674518][ T9715] do_syscall_64+0x44/0xd0
[ 3440.678966][ T9715] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3440.684904][ T9715] RIP: 0033:0x7f0466d58eb9
[ 3440.689311][ T9715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3440.708913][ T9715] RSP: 002b:00007f0465ecf168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
09:20:34 executing program 3:
fstat(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
msgctl$IPC_SET(0x0, 0x1, &(0x7f00000000c0)={{0x1, 0x0, 0xee00, 0x0, r0, 0x40, 0x400}, 0x0, 0x0, 0x0, 0x1, 0x3, 0x135, 0x1000, 0x1, 0xff7f, 0xfff, 0xffffffffffffffff, 0xffffffffffffffff}) (async)
unshare(0x14040000)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000), 0x4)
[ 3440.717357][ T9715] RAX: ffffffffffffffda RBX: 00007f0466e6bf60 RCX: 00007f0466d58eb9
[ 3440.725313][ T9715] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3440.733274][ T9715] RBP: 00007f0466db308d R08: 0000000000000000 R09: 0000000000000000
[ 3440.741230][ T9715] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3440.749204][ T9715] R13: 00007ffe91a81ecf R14: 00007f0465ecf300 R15: 0000000000022000
[ 3440.757152][ T9715]
[ 3440.760325][ T9715] memory: usage 220kB, limit 0kB, failcnt 17939
[ 3440.766553][ T9715] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3440.773420][ T9715] Memory cgroup stats for /syz1:
[ 3440.776522][ T9715] anon 24576
[ 3440.776522][ T9715] file 118784
[ 3440.776522][ T9715] kernel_stack 0
[ 3440.776522][ T9715] pagetables 8192
[ 3440.776522][ T9715] percpu 0
[ 3440.776522][ T9715] sock 0
[ 3440.776522][ T9715] shmem 114688
[ 3440.776522][ T9715] file_mapped 114688
[ 3440.776522][ T9715] file_dirty 4096
[ 3440.776522][ T9715] file_writeback 0
[ 3440.776522][ T9715] swapcached 0
[ 3440.776522][ T9715] inactive_anon 57344
[ 3440.776522][ T9715] active_anon 81920
[ 3440.776522][ T9715] inactive_file 0
[ 3440.776522][ T9715] active_file 4096
[ 3440.776522][ T9715] unevictable 0
[ 3440.776522][ T9715] slab_reclaimable 41056
[ 3440.776522][ T9715] slab_unreclaimable 20168
[ 3440.776522][ T9715] slab 61224
[ 3440.776522][ T9715] workingset_refault_anon 0
[ 3440.776522][ T9715] workingset_refault_file 0
[ 3440.776522][ T9715] workingset_activate_anon 0
[ 3440.776522][ T9715] workingset_activate_file 0
09:20:34 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000040)='cgroup.threads\x00', 0x2, 0x0)
r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r5 = fsmount(r3, 0x0, 0x0)
sendfile(r4, r5, 0x0, 0x8)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0) (async)
openat$cgroup_procs(r3, &(0x7f0000000040)='cgroup.threads\x00', 0x2, 0x0) (async)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
fsmount(r3, 0x0, 0x0) (async)
sendfile(r4, r5, 0x0, 0x8) (async)
[ 3440.776522][ T9715] workingset_restore_anon 0
[ 3440.868708][ T9715] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=9670,uid=0
[ 3440.883962][ T9715] Memory cgroup out of memory: Killed process 9670 (syz-executor.1) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
[ 3440.901564][ T26] oom_reaper: reaped process 9670 (syz-executor.1), now anon-rss:0kB, file-rss:13408kB, shmem-rss:0kB
09:20:34 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0xfffffffffffffea3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext, 0x4400}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000040)=0x0)
wait4(r0, &(0x7f00000000c0), 0x1, &(0x7f0000000200))
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
09:20:34 executing program 3:
r0 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r0, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, 0x4, 0x6, 0x3, 0x0, 0x0, {0x5, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4080}, 0x4840)
unshare(0x20000400)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000140)={0x1}, 0x4)
r2 = syz_io_uring_complete(0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001a80), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_MGMT(r3, &(0x7f0000001bc0)={&(0x7f0000001a40), 0xc, &(0x7f0000001b80)={&(0x7f0000001b00)={0x3c, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_IE={0xa, 0x2a, [@peer_mgmt={0x75, 0x75, {0x0, 0x0, @void, @void, @void}}]}, @NL80211_ATTR_TDLS_INITIATOR={0x4}]}, 0x3c}}, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f0000000d00)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000cc0)={&(0x7f0000003740)=ANY=[@ANYBLOB="88110000", @ANYRES16=r4, @ANYBLOB="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"], 0x1188}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8201200}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r4, 0x8, 0x70bd25, 0x25dfdbfc, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xfff}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xffffc000}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8b}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x3c}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}]]}, 0x54}}, 0x841)
[ 3440.906129][ T9716] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3440.922704][ T9716] CPU: 1 PID: 9716 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3440.931067][ T9716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3440.941113][ T9716] Call Trace:
[ 3440.944391][ T9716]
[ 3440.947316][ T9716] dump_stack_lvl+0xd6/0x122
[ 3440.951971][ T9716] dump_stack+0x11/0x1b
[ 3440.956136][ T9716] dump_header+0x98/0x410
[ 3440.960469][ T9716] out_of_memory+0x62c/0x890
[ 3440.965055][ T9716] memory_max_write+0x32c/0x3d0
[ 3440.969928][ T9716] ? memory_max_show+0x70/0x70
[ 3440.974705][ T9716] cgroup_file_write+0x161/0x300
[ 3440.979744][ T9716] ? __check_object_size+0x22a/0x2d0
[ 3440.985017][ T9716] ? cgroup_seqfile_stop+0x70/0x70
[ 3440.990203][ T9716] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3440.995571][ T9716] do_iter_readv_writev+0x2de/0x380
[ 3441.000754][ T9716] do_iter_write+0x192/0x5c0
[ 3441.005339][ T9716] ? splice_from_pipe_next+0x34f/0x3b0
[ 3441.010810][ T9716] ? kmalloc_array+0x2d/0x40
[ 3441.015398][ T9716] vfs_iter_write+0x4c/0x70
[ 3441.019896][ T9716] iter_file_splice_write+0x43a/0x790
[ 3441.025413][ T9716] ? splice_from_pipe+0xd0/0xd0
[ 3441.030266][ T9716] direct_splice_actor+0x80/0xa0
[ 3441.035273][ T9716] splice_direct_to_actor+0x345/0x650
[ 3441.040743][ T9716] ? do_splice_direct+0x190/0x190
[ 3441.045769][ T9716] do_splice_direct+0x106/0x190
[ 3441.050615][ T9716] do_sendfile+0x675/0xc40
[ 3441.055032][ T9716] __x64_sys_sendfile64+0x102/0x140
[ 3441.060212][ T9716] do_syscall_64+0x44/0xd0
[ 3441.064676][ T9716] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3441.070552][ T9716] RIP: 0033:0x7f4d3cb0beb9
[ 3441.074957][ T9716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3441.094538][ T9716] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3441.103003][ T9716] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3441.110953][ T9716] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3441.118910][ T9716] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3441.126858][ T9716] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3441.134850][ T9716] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3441.142798][ T9716]
[ 3441.145823][ T9716] memory: usage 176kB, limit 0kB, failcnt 17956
[ 3441.152073][ T9716] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3441.158913][ T9716] Memory cgroup stats for /syz1:
[ 3441.160395][ T9716] anon 0
[ 3441.160395][ T9716] file 118784
[ 3441.160395][ T9716] kernel_stack 0
[ 3441.160395][ T9716] pagetables 0
[ 3441.160395][ T9716] percpu 0
[ 3441.160395][ T9716] sock 0
[ 3441.160395][ T9716] shmem 114688
[ 3441.160395][ T9716] file_mapped 114688
[ 3441.160395][ T9716] file_dirty 4096
[ 3441.160395][ T9716] file_writeback 0
[ 3441.160395][ T9716] swapcached 0
[ 3441.160395][ T9716] inactive_anon 32768
[ 3441.160395][ T9716] active_anon 81920
[ 3441.160395][ T9716] inactive_file 4096
[ 3441.160395][ T9716] active_file 0
[ 3441.160395][ T9716] unevictable 0
09:20:35 executing program 5:
r0 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000200)={0x2, 'bond_slave_0\x00', {0x1}, 0x9c78})
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x1008000, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r3, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000280)='highspeed\x00', 0xa)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r2, 0x0)
openat$cgroup_subtree(r2, &(0x7f0000000240), 0x2, 0x0)
r4 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:20:35 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 64)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0) (rerun: 64)
tgkill(0x0, r1, 0x2b) (async)
perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x40, 0x0, 0x6, 0xcf, 0x0, 0x3, 0x24800, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x7ff, 0x66882bc10db700, @perf_bp={&(0x7f0000000100), 0x4}, 0x8600, 0x7, 0x9, 0x6, 0x0, 0x0, 0x4, 0x0, 0x5f198c54, 0x0, 0x1000}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
pwritev2(r0, &(0x7f00000000c0), 0x0, 0x8000, 0x1, 0x4)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000000040)={0xffffffffffffffff, 0x7, 0x1000})
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f00000000c0)=0x200) (async)
r5 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
wait4(r1, &(0x7f0000000280), 0x4, 0x0)
[ 3441.160395][ T9716] slab_reclaimable 35280
[ 3441.160395][ T9716] slab_unreclaimable 19928
[ 3441.160395][ T9716] slab 55208
[ 3441.160395][ T9716] workingset_refault_anon 0
[ 3441.160395][ T9716] workingset_refault_file 0
[ 3441.160395][ T9716] workingset_activate_anon 0
[ 3441.160395][ T9716] workingset_activate_file 0
[ 3441.160395][ T9716] workingset_restore_anon 0
[ 3441.160395][ T9716] workingset_restore_file 0
[ 3441.256104][ T9716] Out of memory and no killable processes...
09:20:35 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0), 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:35 executing program 3:
r0 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r0, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async, rerun: 64)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, 0x4, 0x6, 0x3, 0x0, 0x0, {0x5, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4080}, 0x4840) (rerun: 64)
unshare(0x20000400)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000140)={0x1}, 0x4) (async)
r2 = syz_io_uring_complete(0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001a80), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_MGMT(r3, &(0x7f0000001bc0)={&(0x7f0000001a40), 0xc, &(0x7f0000001b80)={&(0x7f0000001b00)={0x3c, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_IE={0xa, 0x2a, [@peer_mgmt={0x75, 0x75, {0x0, 0x0, @void, @void, @void}}]}, @NL80211_ATTR_TDLS_INITIATOR={0x4}]}, 0x3c}}, 0x0) (async, rerun: 64)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f0000000d00)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000cc0)={&(0x7f0000003740)=ANY=[@ANYBLOB="88110000", @ANYRES16=r4, @ANYBLOB="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"], 0x1188}, 0x1, 0x0, 0x0, 0x80}, 0x4000000) (async, rerun: 64)
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8201200}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r4, 0x8, 0x70bd25, 0x25dfdbfc, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xfff}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xffffc000}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8b}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x3c}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}]]}, 0x54}}, 0x841)
[ 3441.312324][T10650] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3441.322240][T10650] CPU: 0 PID: 10650 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3441.330646][T10650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3441.340766][T10650] Call Trace:
[ 3441.344044][T10650]
[ 3441.346986][T10650] dump_stack_lvl+0xd6/0x122
[ 3441.351585][T10650] dump_stack+0x11/0x1b
[ 3441.355746][T10650] dump_header+0x98/0x410
[ 3441.360096][T10650] out_of_memory+0x62c/0x890
[ 3441.364761][T10650] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3441.370609][T10650] memory_max_write+0x32c/0x3d0
[ 3441.375454][T10650] ? memory_max_show+0x70/0x70
[ 3441.380259][T10650] cgroup_file_write+0x161/0x300
[ 3441.385194][T10650] ? __check_object_size+0x22a/0x2d0
[ 3441.390481][T10650] ? cgroup_seqfile_stop+0x70/0x70
[ 3441.395653][T10650] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3441.400920][T10650] do_iter_readv_writev+0x2de/0x380
[ 3441.406114][T10650] do_iter_write+0x192/0x5c0
[ 3441.410687][T10650] ? splice_from_pipe_next+0x34f/0x3b0
[ 3441.416161][T10650] ? kmalloc_array+0x2d/0x40
[ 3441.420765][T10650] vfs_iter_write+0x4c/0x70
[ 3441.425244][T10650] iter_file_splice_write+0x43a/0x790
[ 3441.430605][T10650] ? splice_from_pipe+0xd0/0xd0
[ 3441.435433][T10650] direct_splice_actor+0x80/0xa0
[ 3441.440352][T10650] splice_direct_to_actor+0x345/0x650
[ 3441.445781][T10650] ? do_splice_direct+0x190/0x190
[ 3441.450849][T10650] do_splice_direct+0x106/0x190
[ 3441.455679][T10650] do_sendfile+0x675/0xc40
[ 3441.460071][T10650] __x64_sys_sendfile64+0x102/0x140
[ 3441.465335][T10650] do_syscall_64+0x44/0xd0
[ 3441.469750][T10650] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3441.475640][T10650] RIP: 0033:0x7f0a46a70eb9
[ 3441.480030][T10650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3441.499629][T10650] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3441.508014][T10650] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3441.515962][T10650] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000014
[ 3441.523913][T10650] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3441.531860][T10650] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3441.539809][T10650] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3441.547775][T10650]
[ 3441.550995][T10650] memory: usage 176kB, limit 0kB, failcnt 17956
[ 3441.557227][T10650] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3441.564124][T10650] Memory cgroup stats for /syz1:
[ 3441.564315][T10650] anon 0
[ 3441.564315][T10650] file 118784
[ 3441.564315][T10650] kernel_stack 0
[ 3441.564315][T10650] pagetables 0
[ 3441.564315][T10650] percpu 0
[ 3441.564315][T10650] sock 0
[ 3441.564315][T10650] shmem 114688
[ 3441.564315][T10650] file_mapped 114688
[ 3441.564315][T10650] file_dirty 4096
[ 3441.564315][T10650] file_writeback 0
[ 3441.564315][T10650] swapcached 0
[ 3441.564315][T10650] inactive_anon 32768
[ 3441.564315][T10650] active_anon 81920
[ 3441.564315][T10650] inactive_file 0
[ 3441.564315][T10650] active_file 4096
[ 3441.564315][T10650] unevictable 0
[ 3441.564315][T10650] slab_reclaimable 35280
[ 3441.564315][T10650] slab_unreclaimable 19928
[ 3441.564315][T10650] slab 55208
[ 3441.564315][T10650] workingset_refault_anon 0
[ 3441.564315][T10650] workingset_refault_file 0
[ 3441.564315][T10650] workingset_activate_anon 0
[ 3441.564315][T10650] workingset_activate_file 0
[ 3441.564315][T10650] workingset_restore_anon 0
[ 3441.564315][T10650] workingset_restore_file 0
09:20:35 executing program 1:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0) (async, rerun: 64)
tgkill(0x0, 0x0, 0x0) (async, rerun: 64)
wait4(0x0, 0x0, 0x2, 0x0) (async)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async, rerun: 32)
r3 = socket$inet(0x2, 0x80001, 0x84) (rerun: 32)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000040)={r4, 0x0, 0x30}, &(0x7f0000000080)=0x18)
r5 = getpid() (async)
r6 = getpgrp(r1)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000100)=@proc={0x10, 0x0, 0x25dfdbfe, 0x20000000}, 0xc, &(0x7f00000004c0)=[{&(0x7f0000000840)={0x23bc, 0x20, 0x400, 0x70bd2c, 0x25dfdbff, "", [@typed={0x8, 0x19, 0x0, 0x0, @uid}, @nested={0x11d8, 0x5e, 0x0, 0x1, [@generic="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", @generic="debf0500095d64a4d343b1d721b0bbcd20239b9714aa45a2bb458ec9c90306af60d8ddea99a2273eee9cd119dbce3682b67d89d7d73ff001040af47ca25cf081a03cfaefb7eea351c2415aae74e39e4bc996be181cb636328a04b5d758fd43563bcabaec7b834aa70827aac26f06b9d65bedc2bff1f4014a9cd0afd34d6f0f35a7b1b104ef5356c165ea5b19ad0d2937e1d4cbff9abdb0cf5a802a94a8113cc292920cbdc8b3d4eb1274a8ecc54c540d019ff0312582c088ba842a47d5db94ad5c18fd760a", @generic="e63c6d8bd508f783f7c6978add083140f5861cdca4739147a2c1ca9c7042468c6f7792925f1f0d1d340f78716e92dfcd294459a88200d4627850e718275e52e274e4ef4fe86890da570446f69dd76a756eec865a3adbc1bd265b9708680f220ce989ad583ad6220f9ba57efd459976705ad0ddb223161e016ca6d435bf77b7172e6559dc9ae08e33b50d7fac48be92c12d015117c8a33d3a358cd1ea5fd2ec2273fd78e4d2a5a43e7118d741b550e9c185cc1050444132c30321f39741bb2b8075ca00f06ae7c41c46405a414613935a16cafcf198dd447853bf019b37cd60c5637db4", @typed={0x8, 0xe, 0x0, 0x0, @fd}, @typed={0x8, 0x48, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @typed={0x14, 0x58, 0x0, 0x0, @ipv6=@empty}, @typed={0x8, 0x2a, 0x0, 0x0, @uid=0xee00}]}, @generic="3c86a31c34cf035c76f04860937ac9b8a0c5f514f58f248c57af3ff5dd3b184bb1a12a005ed776d148c0231da42f0b6ffbf40804cbabd43e742ee499e79d879e39bd0185d98baebd45ebd8cc32d6ecf7f49b2add278389c9b167722aa2e2a66cf2bb0e8809ac626504ded872c783705e5dd024e594a475a76802c741e8d95505174f0270e4dd8fd85e56e6eb1f7ac4e9408cf9cad732bd2f8b6a47a34c5a6865584030122fea64559b717971d436280e0f12d71e516e00eaca18550c078cb4a761fecf3cfab2f4678d22858ddc650316418f1ab0026b0810462c5298", @generic="472b3fa7f7432397d8c9a663a0bce6b8eacfd2bcbfce543ee9639c3511b24215c876af58c7c82202204f9c50a10db165877b2cb7c89ff558bee0a0371e", @typed={0x4, 0x59}, @nested={0x1084, 0x2, 0x0, 0x1, [@generic="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", @typed={0x4, 0x30}, @generic="fa2f1f38a8989704ce571dabdec825526fa5a9ae983a190fa64a2101a4ed7e96a8e5126c315a167c91dc746041dee07f41734e3fe0f885740cccee5a6b0aa20b4fb7b16f2c10c399977feba4fb92a8b7f1f0b7271631cdfc04bcc04434d6cdd467cda7af5d880c2155474e89abdb6af37e3ebfd15c42f22c40fcd83c"]}, @generic="39356247d51ea3ab7fbe12869a45b9deddaf7cd2fbc38de08c28cba3607aca4b38fea6e5cc5cf210"]}, 0x23bc}, {&(0x7f0000000200)={0x110, 0x42, 0x200, 0x70bd27, 0x25dfdbfc, "", [@generic="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"]}, 0x110}, {&(0x7f0000002c00)={0x10a0, 0x1b, 0x4, 0x70bd29, 0x25dfdbfd, "", [@nested={0xc, 0x89, 0x0, 0x1, [@typed={0x8, 0x4, 0x0, 0x0, @uid=0xee00}]}, @typed={0x8, 0x61, 0x0, 0x0, @uid}, @generic="4cc254f2b6b8f426707dd8e8615237196e043d3210205331e94a28e25f837a3c86df4fb9034079aacef2f4656f79", @nested={0x1049, 0x78, 0x0, 0x1, [@typed={0x8, 0x16, 0x0, 0x0, @uid}, @typed={0x14, 0x75, 0x0, 0x0, @ipv6=@local}, @typed={0xc, 0x3f, 0x0, 0x0, @u64}, @typed={0x8, 0x59, 0x0, 0x0, @u32=0x6}, @typed={0x4, 0x8f}, @generic="7bdc424138b6783a79", @typed={0x8, 0x5b, 0x0, 0x0, @fd=r2}, @generic="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"]}]}, 0x10a0}, {&(0x7f0000003cc0)={0x2790, 0x22, 0x4, 0x70bd2a, 0x25dfdbfd, "", [@typed={0x14, 0x80, 0x0, 0x0, @ipv6=@empty}, @nested={0xfc, 0x80, 0x0, 0x1, [@typed={0x8, 0x55, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @generic="17e748e2cbdf4e8b2937b72fd434e6698b6c0c0188ef8449f1433f485eee59565c3387fafdb37929ef2e4981cdf1f10b0862c3b7c46f852b8fffb32e5078c6add39599b17502a4d312d2af1e78ceb85d85873d2080ad7951a4220e8562d41dcb7e42416fb2ee2ba791c31366812cbf043c23be3c2818256c16017945e84bb0204d4c6a78c537bb61091e2de042ff738f9bf5e5b4075d8a067d729b5a093c4ea1cf7ac5c12df1c4cc65f70ece49983faea439bb10482e6f3dc51e1db4b450972303372e0957422673cff0828a99c9e4ff522afcc4f088453302a71d9e7e804e59", @typed={0x8, 0x2fa2, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x5f, 0x0, 0x0, @uid}]}, @nested={0x262, 0x3b, 0x0, 0x1, [@typed={0x14, 0x80, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @typed={0x8, 0x23, 0x0, 0x0, @uid}, @typed={0x4, 0x45}, @typed={0x8, 0x76, 0x0, 0x0, @fd}, @typed={0xd3, 0x58, 0x0, 0x0, @binary="e8408b49fdc1af8a5f466543222dae484ee5e109b4c9cfe053ea7f1cea0788057e4489ba2912478553a2faa5167f70a988343d4d09c4dcbf337fa8d8def0cffb26eb4db18da4fb7ecbe700dbbc24f57aefea7ee7a106e8a584094dcf2c53b403d34fcb38599522f9cc182e67c44b92916f485bc1a1e2c248d558a85ebe6b15848d4c54d800567f4256c3bacad539706c23f73e93aaa2d4c3b7f3e1727c682414bbd6416b3ae5b513f1613bcdffbe1683a03cf866e3aa80f6bf607da16fbc245c3b16844094c4b653a7752af03434ed"}, @generic="35486de939b1e833d913006f47d8e44549b6a3bc35101093478e4395ccdc477eb49f6331bcd4e0c4029ae2e610f439d8e96cd5b4c0755801fa8725d81e6002d8", @typed={0x12, 0x63, 0x0, 0x0, @str='%4]/\x87@@-]/@\'-\x00'}, @typed={0x8, 0x24, 0x0, 0x0, @fd=r0}, @generic="b7c5a6c6c6fc06f4fb7f11d40f6497bc2a3987f4d6cdc91c8600d35f1e9884a5d87f02531b22c887280966024a8c77342a09303ea21de3585bfbf51818307e73a80f6cf45591ee5feb2923d89d9ed36581e8ab050ef85bd6dc1f756e3dc71ae67b1b09fdfc1c317a41ebae8b4bec4cade0c340e71d238600a48cefc0c1db4bc5790e118c64b52247cf260d8345aa9fc6f4f8bd81b047eb74dd6d52aeb12392183c29d564c54e6b7ae59c7a30441f9fb591bcd855a8400e56b9f60711a288c581f8b8aa0cdac30553ce98dcf79ef7c1a3d03c56b87921f55ac79a7daa42a4cbf3e9e0638195247e5588459ae400cc28a763ba5affe692a7b5a3dbb90eb431", @typed={0x8, 0x4f, 0x0, 0x0, @ipv4=@remote}]}, @generic="e498ce5b9096dc59df7b9bfcdc97691600b4f4b1061d521dbe80a6e9df8e420cda16cd0c18f7e2fb06d0e145f219889d2078bbbde39d9baf3f5cd7b13d0dab6d5d27f60dfb3d36726938f84f2b52a1a7b44c20049b31f227ee0a873abacf588a2ed7ddabe0be6506d3ea4a6cf76071daf9359c413d9c65ddc45f57c4f932486ebcb7a1bc2e3879d93ab0988aec6abe5a9c3563f866655bdcd5183a516dc8a63254348fb80f45442bdb633eeaec697b", @nested={0x1018, 0x52, 0x0, 0x1, [@generic="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", @typed={0x9, 0x25, 0x0, 0x0, @str='syz1\x00'}, @typed={0x8, 0x50, 0x0, 0x0, @u32=0x3}]}, @typed={0xc, 0x89, 0x0, 0x0, @u64=0x401}, @nested={0xa3, 0x61, 0x0, 0x1, [@typed={0x4, 0x46}, @typed={0x8, 0x1f, 0x0, 0x0, @pid=r5}, @typed={0x8, 0x81, 0x0, 0x0, @fd=r0}, @generic="b58c5bd88940c9cf4c2a332410df77d0f004cabd1fb95e78397565f70c43364ce9041d4bfd5b73b3edc79d7e17c4f83908546dc72826e4ca6755f7bab14b073e74a4f91d766f8e33914ac1aa0cd52fcd9af682212d8a8b098066f32dba6fec964df9f297f13537cb4f97ff7db2dd514d4bbe2bcbc62ca370ec7c52f222d28862c488f2", @typed={0x8, 0x1f, 0x0, 0x0, @pid=r1}]}, @nested={0x1294, 0x5c, 0x0, 0x1, [@typed={0x8, 0x86, 0x0, 0x0, @fd=r2}, @typed={0xc, 0x5, 0x0, 0x0, @u64=0x5}, @generic="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", @generic="2bea441305dd1419286c806aeb8db219cd5e50a2592ea65b44c817db33ee74d1797fb8d7968e65d459ae67142d677bc4191fdcab23bf6a5baf401a7be5f47d499defa5655ff9706226ef92b64c7a109f86dcb3dc5bf2c09bceccda4ed0f7d3eba9fe390f3e02148c8f3ac4b91e1d97f395e316e475e385d8cb9496304ffa93b681b32d0db1d64ad964ce551cdd7fe44019113a7997247827ba1fb4a780514b0dc430384dd577376bef3dc49df2ad23c340f82b178619e99ce57141ec15157017b393a16e180a67a81d67755e1c97b15a992abf50cfb06efc2b5cda", @typed={0xb9, 0x89, 0x0, 0x0, @binary="bdb0d1e721cf134144eae54380a66ff9d987520ebe6388ca7c5388f318da76b0bc1ef6f3dbfcea3d1d549edfbd33a8164502f5573fa5b647950988f7ff3b2a991d8aa03c338c9bdd8edfadc0b7b84cb45a9f785dd5d581cf8f274be0c75d012010bd573042160e3c17dbdf65aa3c797cd052c47fc80145818ed0cc20a304cd637f19c3d5c3173007b406b54477e93971bf3864b05c179e4fdcf2c81e41e098267e36a043e29d4a739b2ad7566878dd6c3524eced26"}, @generic="6dd2c4410e7ce83500d67c839cbd28499033721880749278044a4142e33880ca9f947dfc45f0bde7fce4a475756ae2016dc286f8b96ecd412c8ca6afe334c1a12e2a6a9e3cf39521316c672e9634c13d1b50f73c028043083096a6d2ca55effb406bcf82158ed06bf78b780c9332324c1d957d67c58f5abf48722b6a68065d4f2319b52ee9c4e8ceee7e1a1845553f38d8fc2255cf95ab654392118d8324fc1c3a8a8503a3e8ae0722098a610c02725b55035202aedf0f4ccb0e1e41f8802ae0bc7ac465e5fc3a3d5132e2cfa4d1302afbc7ff49967b5a4cb2499490b0c08b9c44aa4c42e7"]}]}, 0x2790}, {&(0x7f0000006480)={0x104, 0x29, 0x10, 0x70bd28, 0x25dfdbfd, "", [@generic="00e4be11d82e6e930de9cbb82dd4c12581d6cc664ba5c00253442db1959b3dd626fa1cf5ad246d4891db200de2909b2528a27894d7b89ceac60f8baac111cdc0c11dad58c6a75124bef19a16737d7a2c5fcf8196b552bce67ac61d35b5535ae7cbf56d75142908b4f3567ae68067a22c9f34a14b57853d9bcf3bed7757f9ccc49528562cff9216e08bc39b3c9c1089e83604c12ec8c2a6d8128067928612a552d26d0a409ce1f97edd2a3abcc6869155dd608a6574307a02becdd60228c7f85b5e4d1f099ef022dbaae8f2927cf7e82965ad5a", @nested={0xc, 0x34, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @pid=r6}]}, @typed={0x14, 0x84, 0x0, 0x0, @ipv6=@private2}]}, 0x104}], 0x5}, 0x4000000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x11)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x102001, 0x0) (async, rerun: 32)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (rerun: 32)
r8 = openat$cgroup(r7, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r9 = openat$cgroup_int(r8, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r9, r9, 0x0, 0x2)
09:20:35 executing program 3:
r0 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r0, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, 0x4, 0x6, 0x3, 0x0, 0x0, {0x5, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4080}, 0x4840)
unshare(0x20000400)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000140)={0x1}, 0x4)
r2 = syz_io_uring_complete(0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001a80), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_MGMT(r3, &(0x7f0000001bc0)={&(0x7f0000001a40), 0xc, &(0x7f0000001b80)={&(0x7f0000001b00)={0x3c, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_IE={0xa, 0x2a, [@peer_mgmt={0x75, 0x75, {0x0, 0x0, @void, @void, @void}}]}, @NL80211_ATTR_TDLS_INITIATOR={0x4}]}, 0x3c}}, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f0000000d00)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000cc0)={&(0x7f0000003740)=ANY=[@ANYBLOB="88110000", @ANYRES16=r4, @ANYBLOB="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"], 0x1188}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8201200}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r4, 0x8, 0x70bd25, 0x25dfdbfc, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xfff}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xffffc000}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8b}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x3c}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}]]}, 0x54}}, 0x841)
socket(0xa, 0x3, 0x87) (async)
sendmmsg$unix(r0, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, 0x4, 0x6, 0x3, 0x0, 0x0, {0x5, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4080}, 0x4840) (async)
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000140)={0x1}, 0x4) (async)
syz_io_uring_complete(0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001a80), 0xffffffffffffffff) (async)
sendmsg$NL80211_CMD_TDLS_MGMT(r3, &(0x7f0000001bc0)={&(0x7f0000001a40), 0xc, &(0x7f0000001b80)={&(0x7f0000001b00)={0x3c, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_IE={0xa, 0x2a, [@peer_mgmt={0x75, 0x75, {0x0, 0x0, @void, @void, @void}}]}, @NL80211_ATTR_TDLS_INITIATOR={0x4}]}, 0x3c}}, 0x0) (async)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f0000000d00)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000cc0)={&(0x7f0000003740)=ANY=[@ANYBLOB="88110000", @ANYRES16=r4, @ANYBLOB="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"], 0x1188}, 0x1, 0x0, 0x0, 0x80}, 0x4000000) (async)
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8201200}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r4, 0x8, 0x70bd25, 0x25dfdbfc, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xfff}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xffffc000}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8b}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x3c}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}]]}, 0x54}}, 0x841) (async)
09:20:35 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66696c653000e893af2bf6997d4b0765880000e22bbd71c2ac408cc1d3ca1ccd3c293e0b04d96e95d6e6af081810fe8ca96dafd926f16bf0e871354d038e1eaac414eba986ec45b4a485bf10fde052000000f4615d73f480749461199a81cbace57bf7dc7696c9cee9bce7346c3bfa0cf2f533bfe3df9d9a536f9206a82265017c965ab646f5c3438b415c893e90e356c02d8a3a4a40df1157cf317ec8c90a6334b26a17455d80bc215e3b907b08e92a8b52a8d3519abc2a6bba62cf97e0c83e3ec2fdd4fe5cfcdc295842509f763f1e4cf17e5e9f83e8c7b4d1e326cf5e8e5b00"/246])
setsockopt$inet_int(r3, 0x0, 0xe, &(0x7f0000000100)=0x80000000, 0x4)
sendfile(r1, r2, &(0x7f0000000040)=0x1, 0x40)
r4 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:20:35 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 32)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
tgkill(0x0, r1, 0x2b)
perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x40, 0x0, 0x6, 0xcf, 0x0, 0x3, 0x24800, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x7ff, 0x66882bc10db700, @perf_bp={&(0x7f0000000100), 0x4}, 0x8600, 0x7, 0x9, 0x6, 0x0, 0x0, 0x4, 0x0, 0x5f198c54, 0x0, 0x1000}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) (async, rerun: 64)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
pwritev2(r0, &(0x7f00000000c0), 0x0, 0x8000, 0x1, 0x4)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000000040)={0xffffffffffffffff, 0x7, 0x1000})
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f00000000c0)=0x200)
r5 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2) (async, rerun: 64)
wait4(r1, &(0x7f0000000280), 0x4, 0x0) (rerun: 64)
[ 3441.660062][T10650] Out of memory and no killable processes...
[ 3441.711727][T10776] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3441.721970][T10776] CPU: 0 PID: 10776 Comm: syz-executor.2 Not tainted 5.16.0-syzkaller #0
[ 3441.730381][T10776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3441.740430][T10776] Call Trace:
[ 3441.743701][T10776]
[ 3441.746632][T10776] dump_stack_lvl+0xd6/0x122
[ 3441.751227][T10776] dump_stack+0x11/0x1b
[ 3441.755391][T10776] dump_header+0x98/0x410
[ 3441.759791][T10776] out_of_memory+0x62c/0x890
[ 3441.764439][T10776] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3441.770309][T10776] memory_max_write+0x32c/0x3d0
[ 3441.775203][T10776] ? memory_max_show+0x70/0x70
[ 3441.780044][T10776] cgroup_file_write+0x161/0x300
[ 3441.785151][T10776] ? __check_object_size+0x22a/0x2d0
[ 3441.790516][T10776] ? cgroup_seqfile_stop+0x70/0x70
[ 3441.795705][T10776] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3441.800990][T10776] do_iter_readv_writev+0x2de/0x380
[ 3441.806194][T10776] do_iter_write+0x192/0x5c0
[ 3441.810844][T10776] ? splice_from_pipe_next+0x34f/0x3b0
[ 3441.816309][T10776] ? kmalloc_array+0x2d/0x40
[ 3441.820899][T10776] vfs_iter_write+0x4c/0x70
[ 3441.825400][T10776] iter_file_splice_write+0x43a/0x790
[ 3441.830834][T10776] ? splice_from_pipe+0xd0/0xd0
[ 3441.835684][T10776] direct_splice_actor+0x80/0xa0
[ 3441.840673][T10776] splice_direct_to_actor+0x345/0x650
[ 3441.846061][T10776] ? do_splice_direct+0x190/0x190
[ 3441.851141][T10776] do_splice_direct+0x106/0x190
[ 3441.856017][T10776] do_sendfile+0x675/0xc40
[ 3441.860506][T10776] __x64_sys_sendfile64+0x102/0x140
[ 3441.865702][T10776] do_syscall_64+0x44/0xd0
[ 3441.870183][T10776] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3441.876080][T10776] RIP: 0033:0x7f0466d58eb9
[ 3441.880571][T10776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3441.900222][T10776] RSP: 002b:00007f0465ecf168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3441.908659][T10776] RAX: ffffffffffffffda RBX: 00007f0466e6bf60 RCX: 00007f0466d58eb9
[ 3441.916625][T10776] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3441.924655][T10776] RBP: 00007f0466db308d R08: 0000000000000000 R09: 0000000000000000
[ 3441.932696][T10776] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3441.940663][T10776] R13: 00007ffe91a81ecf R14: 00007f0465ecf300 R15: 0000000000022000
[ 3441.948742][T10776]
[ 3441.951802][T10776] memory: usage 172kB, limit 0kB, failcnt 17956
[ 3441.958037][T10776] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3441.964916][T10776] Memory cgroup stats for /syz1:
[ 3441.994993][T10776] anon 0
[ 3441.994993][T10776] file 118784
[ 3441.994993][T10776] kernel_stack 0
[ 3441.994993][T10776] pagetables 0
[ 3441.994993][T10776] percpu 0
[ 3441.994993][T10776] sock 0
[ 3441.994993][T10776] shmem 114688
[ 3441.994993][T10776] file_mapped 114688
[ 3441.994993][T10776] file_dirty 4096
[ 3441.994993][T10776] file_writeback 0
[ 3441.994993][T10776] swapcached 0
[ 3441.994993][T10776] inactive_anon 32768
[ 3441.994993][T10776] active_anon 81920
09:20:35 executing program 5:
r0 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000200)={0x2, 'bond_slave_0\x00', {0x1}, 0x9c78}) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x1008000, 0x0) (rerun: 64)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 32)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async, rerun: 32)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r3, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000280)='highspeed\x00', 0xa)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r2, 0x0) (async)
openat$cgroup_subtree(r2, &(0x7f0000000240), 0x2, 0x0) (async)
r4 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:20:35 executing program 3:
unshare(0x20000400)
unshare(0x8010100)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
unshare(0x60080)
unshare(0x8020500)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
setsockopt$packet_int(r1, 0x107, 0x11, &(0x7f0000000040)=0x400, 0x4)
[ 3441.994993][T10776] inactive_file 0
[ 3441.994993][T10776] active_file 4096
[ 3441.994993][T10776] unevictable 0
[ 3441.994993][T10776] slab_reclaimable 35280
[ 3441.994993][T10776] slab_unreclaimable 19928
[ 3441.994993][T10776] slab 55208
[ 3441.994993][T10776] workingset_refault_anon 0
[ 3441.994993][T10776] workingset_refault_file 0
[ 3441.994993][T10776] workingset_activate_anon 0
[ 3441.994993][T10776] workingset_activate_file 0
[ 3441.994993][T10776] workingset_restore_anon 0
[ 3441.994993][T10776] workingset_restore_file 0
[ 3442.090816][T10776] Out of memory and no killable processes...
[ 3442.097165][T10773] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3442.107387][T10773] CPU: 1 PID: 10773 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3442.115796][T10773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3442.125913][T10773] Call Trace:
[ 3442.129182][T10773]
[ 3442.132103][T10773] dump_stack_lvl+0xd6/0x122
[ 3442.136775][T10773] dump_stack+0x11/0x1b
[ 3442.140928][T10773] dump_header+0x98/0x410
09:20:36 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0), 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
[ 3442.145282][T10773] out_of_memory+0x62c/0x890
[ 3442.149870][T10773] memory_max_write+0x32c/0x3d0
[ 3442.154825][T10773] ? memory_max_show+0x70/0x70
[ 3442.159647][T10773] cgroup_file_write+0x161/0x300
[ 3442.164589][T10773] ? __check_object_size+0x22a/0x2d0
[ 3442.169932][T10773] ? cgroup_seqfile_stop+0x70/0x70
[ 3442.175045][T10773] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3442.180326][T10773] do_iter_readv_writev+0x2de/0x380
[ 3442.185524][T10773] do_iter_write+0x192/0x5c0
[ 3442.190111][T10773] ? splice_from_pipe_next+0x34f/0x3b0
[ 3442.195639][T10773] ? kmalloc_array+0x2d/0x40
[ 3442.200235][T10773] vfs_iter_write+0x4c/0x70
[ 3442.204810][T10773] iter_file_splice_write+0x43a/0x790
[ 3442.210190][T10773] ? splice_from_pipe+0xd0/0xd0
[ 3442.215036][T10773] direct_splice_actor+0x80/0xa0
[ 3442.219986][T10773] splice_direct_to_actor+0x345/0x650
[ 3442.225362][T10773] ? do_splice_direct+0x190/0x190
[ 3442.230416][T10773] do_splice_direct+0x106/0x190
[ 3442.235342][T10773] do_sendfile+0x675/0xc40
[ 3442.239763][T10773] __x64_sys_sendfile64+0x102/0x140
[ 3442.245027][T10773] do_syscall_64+0x44/0xd0
[ 3442.249453][T10773] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3442.255427][T10773] RIP: 0033:0x7f4d3cb0beb9
[ 3442.259837][T10773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3442.279495][T10773] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3442.287981][T10773] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3442.295977][T10773] RDX: 0000000000000000 RSI: 0000000000000052 RDI: 0000000000000052
[ 3442.303987][T10773] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3442.311946][T10773] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3442.319928][T10773] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3442.327894][T10773]
[ 3442.330931][T10773] memory: usage 168kB, limit 0kB, failcnt 17956
[ 3442.337202][T10773] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
09:20:36 executing program 3:
unshare(0x20000400)
unshare(0x8010100)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
unshare(0x60080) (async)
unshare(0x8020500) (async, rerun: 64)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async, rerun: 64)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
setsockopt$packet_int(r1, 0x107, 0x11, &(0x7f0000000040)=0x400, 0x4)
[ 3442.344062][T10773] Memory cgroup stats for /syz1:
[ 3442.356666][T10773] anon 0
[ 3442.356666][T10773] file 118784
[ 3442.356666][T10773] kernel_stack 0
[ 3442.356666][T10773] pagetables 0
[ 3442.356666][T10773] percpu 0
[ 3442.356666][T10773] sock 0
[ 3442.356666][T10773] shmem 114688
[ 3442.356666][T10773] file_mapped 114688
[ 3442.356666][T10773] file_dirty 4096
[ 3442.356666][T10773] file_writeback 0
[ 3442.356666][T10773] swapcached 0
[ 3442.356666][T10773] inactive_anon 32768
[ 3442.356666][T10773] active_anon 81920
[ 3442.356666][T10773] inactive_file 0
[ 3442.356666][T10773] active_file 4096
[ 3442.356666][T10773] unevictable 0
[ 3442.356666][T10773] slab_reclaimable 32992
[ 3442.356666][T10773] slab_unreclaimable 19928
[ 3442.356666][T10773] slab 52920
[ 3442.356666][T10773] workingset_refault_anon 0
[ 3442.356666][T10773] workingset_refault_file 0
[ 3442.356666][T10773] workingset_activate_anon 0
[ 3442.356666][T10773] workingset_activate_file 0
[ 3442.356666][T10773] workingset_restore_anon 0
[ 3442.356666][T10773] workingset_restore_file 0
09:20:36 executing program 3:
unshare(0x20000400)
unshare(0x8010100)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
unshare(0x60080)
unshare(0x8020500)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
setsockopt$packet_int(r1, 0x107, 0x11, &(0x7f0000000040)=0x400, 0x4)
unshare(0x20000400) (async)
unshare(0x8010100) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
unshare(0x60080) (async)
unshare(0x8020500) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
socket(0xa, 0x3, 0x87) (async)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
setsockopt$packet_int(r1, 0x107, 0x11, &(0x7f0000000040)=0x400, 0x4) (async)
09:20:36 executing program 5:
r0 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000200)={0x2, 'bond_slave_0\x00', {0x1}, 0x9c78})
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x1008000, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r3 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r3, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000280)='highspeed\x00', 0xa)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r2, 0x0)
openat$cgroup_subtree(r2, &(0x7f0000000240), 0x2, 0x0)
r4 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
socket$qrtr(0x2a, 0x2, 0x0) (async)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000200)={0x2, 'bond_slave_0\x00', {0x1}, 0x9c78}) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x1008000, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
socket(0xa, 0x3, 0x87) (async)
sendmmsg$unix(r3, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000280)='highspeed\x00', 0xa) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r2, 0x0) (async)
openat$cgroup_subtree(r2, &(0x7f0000000240), 0x2, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r5, r5, 0x0, 0x2) (async)
[ 3442.452463][T10773] Out of memory and no killable processes...
09:20:36 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 32)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 32)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
r2 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async, rerun: 32)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66696c653000e893af2bf6997d4b0765880000e22bbd71c2ac408cc1d3ca1ccd3c293e0b04d96e95d6e6af081810fe8ca96dafd926f16bf0e871354d038e1eaac414eba986ec45b4a485bf10fde052000000f4615d73f480749461199a81cbace57bf7dc7696c9cee9bce7346c3bfa0cf2f533bfe3df9d9a536f9206a82265017c965ab646f5c3438b415c893e90e356c02d8a3a4a40df1157cf317ec8c90a6334b26a17455d80bc215e3b907b08e92a8b52a8d3519abc2a6bba62cf97e0c83e3ec2fdd4fe5cfcdc295842509f763f1e4cf17e5e9f83e8c7b4d1e326cf5e8e5b00"/246]) (rerun: 32)
setsockopt$inet_int(r3, 0x0, 0xe, &(0x7f0000000100)=0x80000000, 0x4) (async)
sendfile(r1, r2, &(0x7f0000000040)=0x1, 0x40) (async, rerun: 64)
r4 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (rerun: 64)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:20:36 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
[ 3442.493620][T11225] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3442.503591][T11225] CPU: 0 PID: 11225 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3442.512074][T11225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3442.522236][T11225] Call Trace:
[ 3442.525504][T11225]
[ 3442.528429][T11225] dump_stack_lvl+0xd6/0x122
[ 3442.533089][T11225] dump_stack+0x11/0x1b
[ 3442.537251][T11225] dump_header+0x98/0x410
[ 3442.541660][T11225] out_of_memory+0x62c/0x890
[ 3442.546241][T11225] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3442.552034][T11225] memory_max_write+0x32c/0x3d0
[ 3442.556874][T11225] ? memory_max_show+0x70/0x70
[ 3442.561620][T11225] cgroup_file_write+0x161/0x300
[ 3442.566596][T11225] ? __check_object_size+0x22a/0x2d0
[ 3442.571903][T11225] ? cgroup_seqfile_stop+0x70/0x70
[ 3442.576997][T11225] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3442.582268][T11225] do_iter_readv_writev+0x2de/0x380
[ 3442.587456][T11225] do_iter_write+0x192/0x5c0
[ 3442.592026][T11225] ? splice_from_pipe_next+0x34f/0x3b0
[ 3442.597479][T11225] ? kmalloc_array+0x2d/0x40
[ 3442.602058][T11225] vfs_iter_write+0x4c/0x70
[ 3442.606548][T11225] iter_file_splice_write+0x43a/0x790
[ 3442.611911][T11225] ? splice_from_pipe+0xd0/0xd0
[ 3442.616750][T11225] direct_splice_actor+0x80/0xa0
[ 3442.621678][T11225] splice_direct_to_actor+0x345/0x650
[ 3442.627040][T11225] ? do_splice_direct+0x190/0x190
[ 3442.632051][T11225] do_splice_direct+0x106/0x190
[ 3442.636975][T11225] do_sendfile+0x675/0xc40
[ 3442.641440][T11225] __x64_sys_sendfile64+0x102/0x140
[ 3442.646626][T11225] do_syscall_64+0x44/0xd0
[ 3442.651030][T11225] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3442.656909][T11225] RIP: 0033:0x7f0a46a70eb9
[ 3442.661305][T11225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3442.681020][T11225] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3442.689457][T11225] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3442.697413][T11225] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000014
[ 3442.705365][T11225] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3442.713319][T11225] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3442.721276][T11225] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3442.729232][T11225]
[ 3442.732282][T11225] memory: usage 168kB, limit 0kB, failcnt 17956
[ 3442.738552][T11225] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3442.745417][T11225] Memory cgroup stats for /syz1:
[ 3442.751502][T11225] anon 0
[ 3442.751502][T11225] file 118784
[ 3442.751502][T11225] kernel_stack 0
[ 3442.751502][T11225] pagetables 0
[ 3442.751502][T11225] percpu 0
[ 3442.751502][T11225] sock 0
[ 3442.751502][T11225] shmem 114688
[ 3442.751502][T11225] file_mapped 114688
[ 3442.751502][T11225] file_dirty 4096
[ 3442.751502][T11225] file_writeback 0
[ 3442.751502][T11225] swapcached 0
[ 3442.751502][T11225] inactive_anon 32768
[ 3442.751502][T11225] active_anon 81920
[ 3442.751502][T11225] inactive_file 0
[ 3442.751502][T11225] active_file 4096
[ 3442.751502][T11225] unevictable 0
[ 3442.751502][T11225] slab_reclaimable 32992
[ 3442.751502][T11225] slab_unreclaimable 19928
[ 3442.751502][T11225] slab 52920
[ 3442.751502][T11225] workingset_refault_anon 0
[ 3442.751502][T11225] workingset_refault_file 0
[ 3442.751502][T11225] workingset_activate_anon 0
[ 3442.751502][T11225] workingset_activate_file 0
[ 3442.751502][T11225] workingset_restore_anon 0
[ 3442.751502][T11225] workingset_restore_file 0
[ 3442.847345][T11225] Out of memory and no killable processes...
[ 3442.854280][T11448] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3442.864531][T11448] CPU: 1 PID: 11448 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3442.872943][T11448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3442.882988][T11448] Call Trace:
[ 3442.886244][T11448]
[ 3442.889151][T11448] dump_stack_lvl+0xd6/0x122
[ 3442.893723][T11448] dump_stack+0x11/0x1b
[ 3442.897859][T11448] dump_header+0x98/0x410
[ 3442.902162][T11448] out_of_memory+0x62c/0x890
[ 3442.906731][T11448] memory_max_write+0x32c/0x3d0
[ 3442.911560][T11448] ? memory_max_show+0x70/0x70
[ 3442.916304][T11448] cgroup_file_write+0x161/0x300
[ 3442.921220][T11448] ? __check_object_size+0x22a/0x2d0
[ 3442.926481][T11448] ? cgroup_seqfile_stop+0x70/0x70
[ 3442.931587][T11448] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3442.936859][T11448] do_iter_readv_writev+0x2de/0x380
[ 3442.942035][T11448] do_iter_write+0x192/0x5c0
[ 3442.946638][T11448] ? splice_from_pipe_next+0x34f/0x3b0
[ 3442.952127][T11448] ? kmalloc_array+0x2d/0x40
[ 3442.956732][T11448] vfs_iter_write+0x4c/0x70
[ 3442.961221][T11448] iter_file_splice_write+0x43a/0x790
[ 3442.966631][T11448] ? splice_from_pipe+0xd0/0xd0
[ 3442.971474][T11448] direct_splice_actor+0x80/0xa0
[ 3442.976393][T11448] splice_direct_to_actor+0x345/0x650
[ 3442.981815][T11448] ? do_splice_direct+0x190/0x190
[ 3442.986927][T11448] do_splice_direct+0x106/0x190
[ 3442.991773][T11448] do_sendfile+0x675/0xc40
[ 3442.996236][T11448] __x64_sys_sendfile64+0x102/0x140
[ 3443.001431][T11448] do_syscall_64+0x44/0xd0
[ 3443.005857][T11448] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3443.011807][T11448] RIP: 0033:0x7f4d3cb0beb9
[ 3443.016205][T11448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3443.035834][T11448] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3443.044225][T11448] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3443.052175][T11448] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3443.060140][T11448] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3443.068132][T11448] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3443.076084][T11448] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3443.084035][T11448]
[ 3443.087209][T11448] memory: usage 168kB, limit 0kB, failcnt 17956
[ 3443.093462][T11448] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3443.100338][T11448] Memory cgroup stats for /syz1:
[ 3443.100682][T11448] anon 0
[ 3443.100682][T11448] file 118784
[ 3443.100682][T11448] kernel_stack 0
[ 3443.100682][T11448] pagetables 0
[ 3443.100682][T11448] percpu 0
[ 3443.100682][T11448] sock 0
[ 3443.100682][T11448] shmem 114688
[ 3443.100682][T11448] file_mapped 114688
[ 3443.100682][T11448] file_dirty 4096
[ 3443.100682][T11448] file_writeback 0
[ 3443.100682][T11448] swapcached 0
[ 3443.100682][T11448] inactive_anon 32768
[ 3443.100682][T11448] active_anon 81920
[ 3443.100682][T11448] inactive_file 4096
[ 3443.100682][T11448] active_file 0
[ 3443.100682][T11448] unevictable 0
[ 3443.100682][T11448] slab_reclaimable 32992
[ 3443.100682][T11448] slab_unreclaimable 19928
[ 3443.100682][T11448] slab 52920
[ 3443.100682][T11448] workingset_refault_anon 0
[ 3443.100682][T11448] workingset_refault_file 0
[ 3443.100682][T11448] workingset_activate_anon 0
[ 3443.100682][T11448] workingset_activate_file 0
[ 3443.100682][T11448] workingset_restore_anon 0
[ 3443.100682][T11448] workingset_restore_file 0
[ 3443.197004][T11448] Out of memory and no killable processes...
[ 3443.503117][T26533] device hsr_slave_0 left promiscuous mode
[ 3443.509260][T26533] device hsr_slave_1 left promiscuous mode
[ 3443.515725][T26533] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3443.523211][T26533] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3443.533708][T26533] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3443.541121][T26533] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3443.548778][T26533] device bridge_slave_1 left promiscuous mode
[ 3443.554902][T26533] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3443.563691][T26533] device bridge_slave_0 left promiscuous mode
[ 3443.569806][T26533] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3443.581753][T26533] device veth1_macvtap left promiscuous mode
[ 3443.587735][T26533] device veth0_macvtap left promiscuous mode
[ 3443.593851][T26533] device veth1_vlan left promiscuous mode
[ 3443.599613][T26533] device veth0_vlan left promiscuous mode
[ 3443.683638][T26533] team0 (unregistering): Port device team_slave_1 removed
[ 3443.692925][T26533] team0 (unregistering): Port device team_slave_0 removed
[ 3443.703333][T26533] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3443.714580][T26533] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3443.741602][T26533] bond0 (unregistering): Released all slaves
[ 3443.808708][T11553] lo speed is unknown, defaulting to 1000
[ 3443.846829][T11553] chnl_net:caif_netlink_parms(): no params data found
[ 3443.875338][T11553] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3443.882430][T11553] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3443.891541][T11553] device bridge_slave_0 entered promiscuous mode
[ 3443.899037][T11553] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3443.906099][T11553] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3443.913554][T11553] device bridge_slave_1 entered promiscuous mode
[ 3443.928319][T11553] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3443.938484][T11553] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3443.955012][T11553] team0: Port device team_slave_0 added
[ 3443.961478][T11553] team0: Port device team_slave_1 added
[ 3443.976194][T11553] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3443.983152][T11553] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3444.009196][T11553] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3444.020505][T11553] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3444.027503][T11553] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3444.053408][T11553] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3444.077776][T11553] device hsr_slave_0 entered promiscuous mode
[ 3444.087527][T11553] device hsr_slave_1 entered promiscuous mode
[ 3444.095356][T11553] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3444.103024][T11553] Cannot create hsr debugfs directory
[ 3444.138971][T11553] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3444.146029][T11553] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3444.153320][T11553] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3444.160350][T11553] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3444.193703][T11553] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3444.205042][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3444.213594][T19401] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3444.221285][T19401] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3444.231817][T11553] 8021q: adding VLAN 0 to HW filter on device team0
[ 3444.241125][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3444.249316][T19401] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3444.256331][T19401] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3444.272243][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3444.280473][T19402] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3444.287483][T19402] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3444.301425][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3444.310289][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3444.323138][T11553] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 3444.333602][T11553] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 3444.345541][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3444.354044][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3444.362370][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3444.370539][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3444.382637][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3444.390183][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3444.399646][T11553] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3444.475128][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3444.522527][T11553] device veth0_vlan entered promiscuous mode
[ 3444.530181][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3444.538487][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3444.546065][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3444.554716][T11553] device veth1_vlan entered promiscuous mode
[ 3444.567233][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3444.575201][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3444.584029][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3444.593547][T11553] device veth0_macvtap entered promiscuous mode
[ 3444.601547][T11553] device veth1_macvtap entered promiscuous mode
[ 3444.612598][T11553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3444.623072][T11553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3444.632873][T11553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3444.643334][T11553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3444.653146][T11553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3444.663562][T11553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3444.673380][T11553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3444.683791][T11553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3444.693613][T11553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3444.704076][T11553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3444.715314][T11553] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3444.723522][T11553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3444.733963][T11553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3444.743756][T11553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3444.754175][T11553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3444.763966][T11553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3444.774366][T11553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3444.784166][T11553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3444.794573][T11553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3444.804380][T11553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
09:20:38 executing program 1:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0) (async)
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0) (async, rerun: 32)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (rerun: 32)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
r3 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000040)={r4, 0x0, 0x30}, &(0x7f0000000080)=0x18)
r5 = getpid() (async)
r6 = getpgrp(r1)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000100)=@proc={0x10, 0x0, 0x25dfdbfe, 0x20000000}, 0xc, &(0x7f00000004c0)=[{&(0x7f0000000840)={0x23bc, 0x20, 0x400, 0x70bd2c, 0x25dfdbff, "", [@typed={0x8, 0x19, 0x0, 0x0, @uid}, @nested={0x11d8, 0x5e, 0x0, 0x1, [@generic="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", @generic="debf0500095d64a4d343b1d721b0bbcd20239b9714aa45a2bb458ec9c90306af60d8ddea99a2273eee9cd119dbce3682b67d89d7d73ff001040af47ca25cf081a03cfaefb7eea351c2415aae74e39e4bc996be181cb636328a04b5d758fd43563bcabaec7b834aa70827aac26f06b9d65bedc2bff1f4014a9cd0afd34d6f0f35a7b1b104ef5356c165ea5b19ad0d2937e1d4cbff9abdb0cf5a802a94a8113cc292920cbdc8b3d4eb1274a8ecc54c540d019ff0312582c088ba842a47d5db94ad5c18fd760a", @generic="e63c6d8bd508f783f7c6978add083140f5861cdca4739147a2c1ca9c7042468c6f7792925f1f0d1d340f78716e92dfcd294459a88200d4627850e718275e52e274e4ef4fe86890da570446f69dd76a756eec865a3adbc1bd265b9708680f220ce989ad583ad6220f9ba57efd459976705ad0ddb223161e016ca6d435bf77b7172e6559dc9ae08e33b50d7fac48be92c12d015117c8a33d3a358cd1ea5fd2ec2273fd78e4d2a5a43e7118d741b550e9c185cc1050444132c30321f39741bb2b8075ca00f06ae7c41c46405a414613935a16cafcf198dd447853bf019b37cd60c5637db4", @typed={0x8, 0xe, 0x0, 0x0, @fd}, @typed={0x8, 0x48, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @typed={0x14, 0x58, 0x0, 0x0, @ipv6=@empty}, @typed={0x8, 0x2a, 0x0, 0x0, @uid=0xee00}]}, @generic="3c86a31c34cf035c76f04860937ac9b8a0c5f514f58f248c57af3ff5dd3b184bb1a12a005ed776d148c0231da42f0b6ffbf40804cbabd43e742ee499e79d879e39bd0185d98baebd45ebd8cc32d6ecf7f49b2add278389c9b167722aa2e2a66cf2bb0e8809ac626504ded872c783705e5dd024e594a475a76802c741e8d95505174f0270e4dd8fd85e56e6eb1f7ac4e9408cf9cad732bd2f8b6a47a34c5a6865584030122fea64559b717971d436280e0f12d71e516e00eaca18550c078cb4a761fecf3cfab2f4678d22858ddc650316418f1ab0026b0810462c5298", @generic="472b3fa7f7432397d8c9a663a0bce6b8eacfd2bcbfce543ee9639c3511b24215c876af58c7c82202204f9c50a10db165877b2cb7c89ff558bee0a0371e", @typed={0x4, 0x59}, @nested={0x1084, 0x2, 0x0, 0x1, [@generic="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", @typed={0x4, 0x30}, @generic="fa2f1f38a8989704ce571dabdec825526fa5a9ae983a190fa64a2101a4ed7e96a8e5126c315a167c91dc746041dee07f41734e3fe0f885740cccee5a6b0aa20b4fb7b16f2c10c399977feba4fb92a8b7f1f0b7271631cdfc04bcc04434d6cdd467cda7af5d880c2155474e89abdb6af37e3ebfd15c42f22c40fcd83c"]}, @generic="39356247d51ea3ab7fbe12869a45b9deddaf7cd2fbc38de08c28cba3607aca4b38fea6e5cc5cf210"]}, 0x23bc}, {&(0x7f0000000200)={0x110, 0x42, 0x200, 0x70bd27, 0x25dfdbfc, "", [@generic="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"]}, 0x110}, {&(0x7f0000002c00)={0x10a0, 0x1b, 0x4, 0x70bd29, 0x25dfdbfd, "", [@nested={0xc, 0x89, 0x0, 0x1, [@typed={0x8, 0x4, 0x0, 0x0, @uid=0xee00}]}, @typed={0x8, 0x61, 0x0, 0x0, @uid}, @generic="4cc254f2b6b8f426707dd8e8615237196e043d3210205331e94a28e25f837a3c86df4fb9034079aacef2f4656f79", @nested={0x1049, 0x78, 0x0, 0x1, [@typed={0x8, 0x16, 0x0, 0x0, @uid}, @typed={0x14, 0x75, 0x0, 0x0, @ipv6=@local}, @typed={0xc, 0x3f, 0x0, 0x0, @u64}, @typed={0x8, 0x59, 0x0, 0x0, @u32=0x6}, @typed={0x4, 0x8f}, @generic="7bdc424138b6783a79", @typed={0x8, 0x5b, 0x0, 0x0, @fd=r2}, @generic="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"]}]}, 0x10a0}, {&(0x7f0000003cc0)={0x2790, 0x22, 0x4, 0x70bd2a, 0x25dfdbfd, "", [@typed={0x14, 0x80, 0x0, 0x0, @ipv6=@empty}, @nested={0xfc, 0x80, 0x0, 0x1, [@typed={0x8, 0x55, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @generic="17e748e2cbdf4e8b2937b72fd434e6698b6c0c0188ef8449f1433f485eee59565c3387fafdb37929ef2e4981cdf1f10b0862c3b7c46f852b8fffb32e5078c6add39599b17502a4d312d2af1e78ceb85d85873d2080ad7951a4220e8562d41dcb7e42416fb2ee2ba791c31366812cbf043c23be3c2818256c16017945e84bb0204d4c6a78c537bb61091e2de042ff738f9bf5e5b4075d8a067d729b5a093c4ea1cf7ac5c12df1c4cc65f70ece49983faea439bb10482e6f3dc51e1db4b450972303372e0957422673cff0828a99c9e4ff522afcc4f088453302a71d9e7e804e59", @typed={0x8, 0x2fa2, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x5f, 0x0, 0x0, @uid}]}, @nested={0x262, 0x3b, 0x0, 0x1, [@typed={0x14, 0x80, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @typed={0x8, 0x23, 0x0, 0x0, @uid}, @typed={0x4, 0x45}, @typed={0x8, 0x76, 0x0, 0x0, @fd}, @typed={0xd3, 0x58, 0x0, 0x0, @binary="e8408b49fdc1af8a5f466543222dae484ee5e109b4c9cfe053ea7f1cea0788057e4489ba2912478553a2faa5167f70a988343d4d09c4dcbf337fa8d8def0cffb26eb4db18da4fb7ecbe700dbbc24f57aefea7ee7a106e8a584094dcf2c53b403d34fcb38599522f9cc182e67c44b92916f485bc1a1e2c248d558a85ebe6b15848d4c54d800567f4256c3bacad539706c23f73e93aaa2d4c3b7f3e1727c682414bbd6416b3ae5b513f1613bcdffbe1683a03cf866e3aa80f6bf607da16fbc245c3b16844094c4b653a7752af03434ed"}, @generic="35486de939b1e833d913006f47d8e44549b6a3bc35101093478e4395ccdc477eb49f6331bcd4e0c4029ae2e610f439d8e96cd5b4c0755801fa8725d81e6002d8", @typed={0x12, 0x63, 0x0, 0x0, @str='%4]/\x87@@-]/@\'-\x00'}, @typed={0x8, 0x24, 0x0, 0x0, @fd=r0}, @generic="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", @typed={0x8, 0x4f, 0x0, 0x0, @ipv4=@remote}]}, @generic="e498ce5b9096dc59df7b9bfcdc97691600b4f4b1061d521dbe80a6e9df8e420cda16cd0c18f7e2fb06d0e145f219889d2078bbbde39d9baf3f5cd7b13d0dab6d5d27f60dfb3d36726938f84f2b52a1a7b44c20049b31f227ee0a873abacf588a2ed7ddabe0be6506d3ea4a6cf76071daf9359c413d9c65ddc45f57c4f932486ebcb7a1bc2e3879d93ab0988aec6abe5a9c3563f866655bdcd5183a516dc8a63254348fb80f45442bdb633eeaec697b", @nested={0x1018, 0x52, 0x0, 0x1, [@generic="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", @typed={0x9, 0x25, 0x0, 0x0, @str='syz1\x00'}, @typed={0x8, 0x50, 0x0, 0x0, @u32=0x3}]}, @typed={0xc, 0x89, 0x0, 0x0, @u64=0x401}, @nested={0xa3, 0x61, 0x0, 0x1, [@typed={0x4, 0x46}, @typed={0x8, 0x1f, 0x0, 0x0, @pid=r5}, @typed={0x8, 0x81, 0x0, 0x0, @fd=r0}, @generic="b58c5bd88940c9cf4c2a332410df77d0f004cabd1fb95e78397565f70c43364ce9041d4bfd5b73b3edc79d7e17c4f83908546dc72826e4ca6755f7bab14b073e74a4f91d766f8e33914ac1aa0cd52fcd9af682212d8a8b098066f32dba6fec964df9f297f13537cb4f97ff7db2dd514d4bbe2bcbc62ca370ec7c52f222d28862c488f2", @typed={0x8, 0x1f, 0x0, 0x0, @pid=r1}]}, @nested={0x1294, 0x5c, 0x0, 0x1, [@typed={0x8, 0x86, 0x0, 0x0, @fd=r2}, @typed={0xc, 0x5, 0x0, 0x0, @u64=0x5}, @generic="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", @generic="2bea441305dd1419286c806aeb8db219cd5e50a2592ea65b44c817db33ee74d1797fb8d7968e65d459ae67142d677bc4191fdcab23bf6a5baf401a7be5f47d499defa5655ff9706226ef92b64c7a109f86dcb3dc5bf2c09bceccda4ed0f7d3eba9fe390f3e02148c8f3ac4b91e1d97f395e316e475e385d8cb9496304ffa93b681b32d0db1d64ad964ce551cdd7fe44019113a7997247827ba1fb4a780514b0dc430384dd577376bef3dc49df2ad23c340f82b178619e99ce57141ec15157017b393a16e180a67a81d67755e1c97b15a992abf50cfb06efc2b5cda", @typed={0xb9, 0x89, 0x0, 0x0, @binary="bdb0d1e721cf134144eae54380a66ff9d987520ebe6388ca7c5388f318da76b0bc1ef6f3dbfcea3d1d549edfbd33a8164502f5573fa5b647950988f7ff3b2a991d8aa03c338c9bdd8edfadc0b7b84cb45a9f785dd5d581cf8f274be0c75d012010bd573042160e3c17dbdf65aa3c797cd052c47fc80145818ed0cc20a304cd637f19c3d5c3173007b406b54477e93971bf3864b05c179e4fdcf2c81e41e098267e36a043e29d4a739b2ad7566878dd6c3524eced26"}, @generic="6dd2c4410e7ce83500d67c839cbd28499033721880749278044a4142e33880ca9f947dfc45f0bde7fce4a475756ae2016dc286f8b96ecd412c8ca6afe334c1a12e2a6a9e3cf39521316c672e9634c13d1b50f73c028043083096a6d2ca55effb406bcf82158ed06bf78b780c9332324c1d957d67c58f5abf48722b6a68065d4f2319b52ee9c4e8ceee7e1a1845553f38d8fc2255cf95ab654392118d8324fc1c3a8a8503a3e8ae0722098a610c02725b55035202aedf0f4ccb0e1e41f8802ae0bc7ac465e5fc3a3d5132e2cfa4d1302afbc7ff49967b5a4cb2499490b0c08b9c44aa4c42e7"]}]}, 0x2790}, {&(0x7f0000006480)={0x104, 0x29, 0x10, 0x70bd28, 0x25dfdbfd, "", [@generic="00e4be11d82e6e930de9cbb82dd4c12581d6cc664ba5c00253442db1959b3dd626fa1cf5ad246d4891db200de2909b2528a27894d7b89ceac60f8baac111cdc0c11dad58c6a75124bef19a16737d7a2c5fcf8196b552bce67ac61d35b5535ae7cbf56d75142908b4f3567ae68067a22c9f34a14b57853d9bcf3bed7757f9ccc49528562cff9216e08bc39b3c9c1089e83604c12ec8c2a6d8128067928612a552d26d0a409ce1f97edd2a3abcc6869155dd608a6574307a02becdd60228c7f85b5e4d1f099ef022dbaae8f2927cf7e82965ad5a", @nested={0xc, 0x34, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @pid=r6}]}, @typed={0x14, 0x84, 0x0, 0x0, @ipv6=@private2}]}, 0x104}], 0x5}, 0x4000000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x11) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x102001, 0x0) (async)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup(r7, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r9 = openat$cgroup_int(r8, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r9, r9, 0x0, 0x2)
09:20:38 executing program 3:
unshare(0x20000400)
unshare(0x84000200)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:20:38 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
r2 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66696c653000e893af2bf6997d4b0765880000e22bbd71c2ac408cc1d3ca1ccd3c293e0b04d96e95d6e6af081810fe8ca96dafd926f16bf0e871354d038e1eaac414eba986ec45b4a485bf10fde052000000f4615d73f480749461199a81cbace57bf7dc7696c9cee9bce7346c3bfa0cf2f533bfe3df9d9a536f9206a82265017c965ab646f5c3438b415c893e90e356c02d8a3a4a40df1157cf317ec8c90a6334b26a17455d80bc215e3b907b08e92a8b52a8d3519abc2a6bba62cf97e0c83e3ec2fdd4fe5cfcdc295842509f763f1e4cf17e5e9f83e8c7b4d1e326cf5e8e5b00"/246])
setsockopt$inet_int(r3, 0x0, 0xe, &(0x7f0000000100)=0x80000000, 0x4)
sendfile(r1, r2, &(0x7f0000000040)=0x1, 0x40) (async)
r4 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:20:38 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040)=0x1)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
write(r2, &(0x7f00000000c0)="246941f538d88dfd9b245fec543069085a5a746e8c1ec5747f4ae33053108fd5dcb225c938150dd1cdc2784e69bc5a880c8d168098b462612a71113519b1", 0x3e)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x4)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r6, 0x0)
ioctl$LOOP_CHANGE_FD(r6, 0x4c06, r1)
sendfile(r5, r5, 0x0, 0x2)
open(&(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x116)
09:20:38 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:38 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x0) (async, rerun: 64)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (rerun: 64)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
[ 3444.814837][T11553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3444.826194][T11553] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3444.835651][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3444.844545][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3444.854495][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:20:38 executing program 3:
unshare(0x20000400) (async)
unshare(0x84000200) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:20:38 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:38 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r0, 0x0) (async)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040)=0x1) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 64)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
r2 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
write(r2, &(0x7f00000000c0)="246941f538d88dfd9b245fec543069085a5a746e8c1ec5747f4ae33053108fd5dcb225c938150dd1cdc2784e69bc5a880c8d168098b462612a71113519b1", 0x3e)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 64)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (rerun: 64)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async, rerun: 32)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x4) (rerun: 32)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r6, 0x0)
ioctl$LOOP_CHANGE_FD(r6, 0x4c06, r1) (async)
sendfile(r5, r5, 0x0, 0x2) (async)
open(&(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x116)
09:20:38 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x7, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
stat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0})
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x9, 0x2, &(0x7f00000003c0)=[{&(0x7f0000000280)="619033f79e1f2d2e8009590d3778e0bd025662e51e9a1a3ea290f2ce92720a3c8566b001278ba6045cab192d28493ac8d6541dea96a3e889d376cecaa3edee522bbff823d4c1ed116da428b0c244b10ed6c021a51e345b3c2e4d5d9438c8a20c", 0x60, 0x1ff}, {&(0x7f0000000300)="5e827409a135603d14ba12440152f0e5e8ed2e5d9be7a2e31a92be369757ccc3ee18da18b07e3788d9ae83b8fd531af8674232ce319148f40865a0403a71a5a4195546436ac354cb9d3c49efcbbb00f33629dab76a250cfb00467d94b338f3aa2a7c512079df9de766767a00e89017366dd260c1ec755d2c13c697798ef96d9982c773bf7af421df70a4d65ea6951cf10e1c4b6d02cbc79386b128842027b9089fa2f38414519c8dd585b36b917c2f", 0xaf, 0x2db2}], 0x208a0, &(0x7f00000004c0)={[{@fat=@discard}, {@iocharset={'iocharset', 0x3d, 'koi8-r'}}, {@nonumtail}, {@nonumtail}], [{@fowner_gt={'fowner>', r1}}, {@subj_role={'subj_role', 0x3d, 'cgroup2\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@obj_user}, {@subj_type={'subj_type', 0x3d, 'syz1\x00'}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@obj_role={'obj_role', 0x3d, 'syz1\x00'}}]})
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000200)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r0, &(0x7f0000000040)=0xb5, 0x12)
ioctl$BTRFS_IOC_GET_FEATURES(r0, 0x80189439, &(0x7f00000000c0))
sendfile(r3, r3, 0x0, 0x2)
09:20:38 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:38 executing program 3:
unshare(0x20000400)
unshare(0x84000200)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x20000400) (async)
unshare(0x84000200) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
[ 3444.948010][T11553] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3444.957981][T11553] CPU: 0 PID: 11553 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3444.966392][T11553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3444.976443][T11553] Call Trace:
[ 3444.979728][T11553]
[ 3444.982649][T11553] dump_stack_lvl+0xd6/0x122
[ 3444.987308][T11553] dump_stack+0x11/0x1b
[ 3444.991508][T11553] dump_header+0x98/0x410
[ 3444.995898][T11553] oom_kill_process+0x18e/0x3f0
[ 3445.000754][T11553] out_of_memory+0x5ed/0x890
[ 3445.005421][T11553] ? mem_cgroup_iter+0x29b/0x370
[ 3445.010363][T11553] mem_cgroup_oom+0x484/0x520
[ 3445.015078][T11553] try_charge_memcg+0x75c/0xa50
[ 3445.019925][T11553] ? __alloc_pages+0x18e/0x330
[ 3445.024703][T11553] ? __rcu_read_unlock+0x5c/0x290
[ 3445.029793][T11553] charge_memcg+0x51/0x1e0
[ 3445.034202][T11553] __mem_cgroup_charge+0x25/0xa0
[ 3445.039212][T11553] do_anonymous_page+0x1d6/0x8d0
[ 3445.044216][T11553] handle_mm_fault+0x814/0x1590
[ 3445.049143][T11553] do_user_addr_fault+0x609/0xbe0
[ 3445.054287][T11553] exc_page_fault+0x91/0x290
[ 3445.058925][T11553] ? asm_exc_page_fault+0x8/0x30
[ 3445.063910][T11553] asm_exc_page_fault+0x1e/0x30
[ 3445.068785][T11553] RIP: 0033:0x7f1507e21f20
[ 3445.073216][T11553] Code: 1f 84 00 00 00 00 00 0f 1f 00 41 57 41 56 41 55 49 89 fd 41 54 4c 8d 25 d8 a2 0b 00 55 53 48 81 ec c8 10 00 00 48 8d 44 24 28 44 24 1c 00 00 00 00 48 89 44 24 10 80 3d 6c d4 0a 01 00 0f 84
[ 3445.092841][T11553] RSP: 002b:00007ffe73ae38f0 EFLAGS: 00010206
[ 3445.098959][T11553] RAX: 00007ffe73ae3918 RBX: 0000000000000000 RCX: 00007f1507e81f56
[ 3445.106944][T11553] RDX: 00007ffe73ae4a20 RSI: 00007ffe73ae4a20 RDI: 00007ffe73ae4ab0
[ 3445.114891][T11553] RBP: 00007ffe73ae4ab0 R08: 0000000000000001 R09: 00007ffe73ae4880
[ 3445.122838][T11553] R10: 00005555563d5793 R11: 0000000000000246 R12: 00007f1507edc1ea
[ 3445.130852][T11553] R13: 00007ffe73ae4ab0 R14: 00005555563d56f0 R15: 00007ffe73ae5bb0
[ 3445.138802][T11553]
[ 3445.142093][T11553] memory: usage 224kB, limit 0kB, failcnt 17975
[ 3445.148317][T11553] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3445.155157][T11553] Memory cgroup stats for /syz1:
[ 3445.155510][T11553] anon 32768
[ 3445.155510][T11553] file 118784
[ 3445.155510][T11553] kernel_stack 0
[ 3445.155510][T11553] pagetables 8192
[ 3445.155510][T11553] percpu 0
[ 3445.155510][T11553] sock 0
[ 3445.155510][T11553] shmem 114688
[ 3445.155510][T11553] file_mapped 114688
[ 3445.155510][T11553] file_dirty 4096
[ 3445.155510][T11553] file_writeback 0
[ 3445.155510][T11553] swapcached 0
[ 3445.155510][T11553] inactive_anon 65536
[ 3445.155510][T11553] active_anon 81920
[ 3445.155510][T11553] inactive_file 0
[ 3445.155510][T11553] active_file 4096
[ 3445.155510][T11553] unevictable 0
[ 3445.155510][T11553] slab_reclaimable 38912
[ 3445.155510][T11553] slab_unreclaimable 20432
[ 3445.155510][T11553] slab 59344
[ 3445.155510][T11553] workingset_refault_anon 0
[ 3445.155510][T11553] workingset_refault_file 0
[ 3445.155510][T11553] workingset_activate_anon 0
[ 3445.155510][T11553] workingset_activate_file 0
[ 3445.155510][T11553] workingset_restore_anon 0
[ 3445.247806][T11553] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=11553,uid=0
[ 3445.263078][T11553] Memory cgroup out of memory: Killed process 11553 (syz-executor.1) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
[ 3445.280890][ T26] oom_reaper: reaped process 11553 (syz-executor.1), now anon-rss:0kB, file-rss:13472kB, shmem-rss:0kB
[ 3445.292020][T11599] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3445.302239][T11599] CPU: 1 PID: 11599 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3445.310644][T11599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3445.320741][T11599] Call Trace:
[ 3445.323997][T11599]
[ 3445.326922][T11599] dump_stack_lvl+0xd6/0x122
[ 3445.331507][T11599] dump_stack+0x11/0x1b
[ 3445.335987][T11599] dump_header+0x98/0x410
[ 3445.340373][T11599] out_of_memory+0x62c/0x890
[ 3445.344964][T11599] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3445.350755][T11599] memory_max_write+0x32c/0x3d0
[ 3445.355584][T11599] ? memory_max_show+0x70/0x70
[ 3445.360392][T11599] cgroup_file_write+0x161/0x300
[ 3445.365310][T11599] ? __check_object_size+0x22a/0x2d0
[ 3445.370575][T11599] ? cgroup_seqfile_stop+0x70/0x70
[ 3445.375659][T11599] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3445.380933][T11599] do_iter_readv_writev+0x2de/0x380
[ 3445.386109][T11599] do_iter_write+0x192/0x5c0
[ 3445.390673][T11599] ? splice_from_pipe_next+0x34f/0x3b0
[ 3445.396146][T11599] ? kmalloc_array+0x2d/0x40
[ 3445.400789][T11599] vfs_iter_write+0x4c/0x70
[ 3445.405357][T11599] iter_file_splice_write+0x43a/0x790
[ 3445.410749][T11599] ? splice_from_pipe+0xd0/0xd0
[ 3445.415782][T11599] direct_splice_actor+0x80/0xa0
[ 3445.420733][T11599] splice_direct_to_actor+0x345/0x650
[ 3445.426115][T11599] ? do_splice_direct+0x190/0x190
[ 3445.431122][T11599] do_splice_direct+0x106/0x190
[ 3445.435981][T11599] do_sendfile+0x675/0xc40
[ 3445.440388][T11599] __x64_sys_sendfile64+0x102/0x140
[ 3445.445566][T11599] do_syscall_64+0x44/0xd0
[ 3445.450016][T11599] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3445.455888][T11599] RIP: 0033:0x7f4d3cb0beb9
[ 3445.460278][T11599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3445.479917][T11599] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3445.488379][T11599] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3445.496326][T11599] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3445.504278][T11599] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3445.512245][T11599] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3445.520191][T11599] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3445.528149][T11599]
[ 3445.531193][T11599] memory: usage 176kB, limit 0kB, failcnt 17992
[ 3445.537455][T11599] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3445.544313][T11599] Memory cgroup stats for /syz1:
[ 3445.544593][T11599] anon 0
[ 3445.544593][T11599] file 118784
[ 3445.544593][T11599] kernel_stack 0
[ 3445.544593][T11599] pagetables 8192
[ 3445.544593][T11599] percpu 0
[ 3445.544593][T11599] sock 0
[ 3445.544593][T11599] shmem 114688
[ 3445.544593][T11599] file_mapped 114688
[ 3445.544593][T11599] file_dirty 4096
[ 3445.544593][T11599] file_writeback 0
[ 3445.544593][T11599] swapcached 0
[ 3445.544593][T11599] inactive_anon 32768
[ 3445.544593][T11599] active_anon 81920
[ 3445.544593][T11599] inactive_file 0
[ 3445.544593][T11599] active_file 4096
[ 3445.544593][T11599] unevictable 0
[ 3445.544593][T11599] slab_reclaimable 35480
[ 3445.544593][T11599] slab_unreclaimable 20192
[ 3445.544593][T11599] slab 55672
[ 3445.544593][T11599] workingset_refault_anon 0
[ 3445.544593][T11599] workingset_refault_file 0
[ 3445.544593][T11599] workingset_activate_anon 0
[ 3445.544593][T11599] workingset_activate_file 0
[ 3445.544593][T11599] workingset_restore_anon 0
[ 3445.544593][T11599] workingset_restore_file 0
[ 3445.640614][T11599] Out of memory and no killable processes...
09:20:39 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)={0x442a01, 0x0, 0x1}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=@setlink={0x90, 0x13, 0x1, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x20400, 0xa00}, [@IFLA_IFNAME={0x14, 0x3, 'ipvlan0\x00'}, @IFLA_TARGET_NETNSID={0x8}, @IFLA_IFNAME={0x14, 0x3, 'wg0\x00'}, @IFLA_GROUP={0x8, 0x1b, 0x5}, @IFLA_GSO_MAX_SEGS={0x8, 0x28, 0xacdc}, @IFLA_PORT_SELF={0x18, 0x19, 0x0, 0x1, [@IFLA_PORT_PROFILE={0xc, 0x2, 'cgroup2\x00'}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x1f}]}, @IFLA_GROUP={0x8, 0x1b, 0xffff}, @IFLA_EXT_MASK={0x8, 0x1d, 0x7}, @IFLA_TXQLEN={0x8, 0xd, 0x4}]}, 0x90}, 0x1, 0x0, 0x0, 0xa1d4b9187964b21d}, 0x4)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
09:20:39 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:39 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r0, 0x0) (async)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040)=0x1) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
r2 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
write(r2, &(0x7f00000000c0)="246941f538d88dfd9b245fec543069085a5a746e8c1ec5747f4ae33053108fd5dcb225c938150dd1cdc2784e69bc5a880c8d168098b462612a71113519b1", 0x3e) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x4)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r6, 0x0) (async)
ioctl$LOOP_CHANGE_FD(r6, 0x4c06, r1)
sendfile(r5, r5, 0x0, 0x2) (async)
open(&(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x116)
09:20:39 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x7, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
stat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0})
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x9, 0x2, &(0x7f00000003c0)=[{&(0x7f0000000280)="619033f79e1f2d2e8009590d3778e0bd025662e51e9a1a3ea290f2ce92720a3c8566b001278ba6045cab192d28493ac8d6541dea96a3e889d376cecaa3edee522bbff823d4c1ed116da428b0c244b10ed6c021a51e345b3c2e4d5d9438c8a20c", 0x60, 0x1ff}, {&(0x7f0000000300)="5e827409a135603d14ba12440152f0e5e8ed2e5d9be7a2e31a92be369757ccc3ee18da18b07e3788d9ae83b8fd531af8674232ce319148f40865a0403a71a5a4195546436ac354cb9d3c49efcbbb00f33629dab76a250cfb00467d94b338f3aa2a7c512079df9de766767a00e89017366dd260c1ec755d2c13c697798ef96d9982c773bf7af421df70a4d65ea6951cf10e1c4b6d02cbc79386b128842027b9089fa2f38414519c8dd585b36b917c2f", 0xaf, 0x2db2}], 0x208a0, &(0x7f00000004c0)={[{@fat=@discard}, {@iocharset={'iocharset', 0x3d, 'koi8-r'}}, {@nonumtail}, {@nonumtail}], [{@fowner_gt={'fowner>', r1}}, {@subj_role={'subj_role', 0x3d, 'cgroup2\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@obj_user}, {@subj_type={'subj_type', 0x3d, 'syz1\x00'}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@obj_role={'obj_role', 0x3d, 'syz1\x00'}}]}) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000200)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r0, &(0x7f0000000040)=0xb5, 0x12) (async)
ioctl$BTRFS_IOC_GET_FEATURES(r0, 0x80189439, &(0x7f00000000c0)) (async)
sendfile(r3, r3, 0x0, 0x2)
09:20:39 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x3}, 0x4)
09:20:39 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
09:20:39 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:39 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f00000003c0)='./file0\x00', 0x80, 0x3, &(0x7f00000005c0)=[{&(0x7f0000000400)="42b5d4b98571d6765b6012fc10a000b592b3bd6d5da4bcb596deeae44833cea71895a8eeb8ebc8a55ebf6cfd2a0a162fba05a577bf991d10b97fe681834fdbb91b60659484a594de3eb742ba282498162077a474a80f6e0f6217b161580bbb2cfbf7662689e962f2886c54a23071ff4b90775344756480079058dfbc46bca4c753ae93dc571193792fe6c5e922e463b484d96d", 0x93, 0xffff}, {&(0x7f00000004c0)="d7c374cd287f311734423a010e84815023a1353a7a32e8404231df49daacbc", 0x1f, 0x7ff}, {&(0x7f0000000500)="86760596465844a6087ad4baa57bddbc703fc3a353342b899b982491ed64ca203e7a1d4b552df714c853f5e876057dd5ccced92eb3ab07f13bf2cdd94d19c546a8d6d87550701712adfc9790a1a7de333e3757c82af8609713b9852b16b469d1415c14d88b66a50203b8f1afce2ffc164348acd53c6d779c284ee95506a081eeb970aaa2eaf6", 0x86, 0x2000000000}], 0x1000021, &(0x7f0000000640)={[{@dioread_lock}, {@minixdf}, {@nojournal_checksum}, {@nobh}, {@dax}, {@usrquota}], [{@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]})
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mount(&(0x7f00000006c0)=ANY=[@ANYBLOB="1058de4635f69b2dd37c94d4b4085191b077d0f0db2aac66a6ec0e0794ec37e91e00000068512aa0f10f7e5a7cb937f88fbf4b355ec8b603356d4b900fb63e47c635e0abb34af09b12bf730c8d4741bd74bd7175e1ad01c86259157d69c942d09a6ec0806f44b7465f4583866a63bd4120923edbc894ba9e31ec50aebf2252d6dd5424fb8e722243a38514ddbc373af668d8be7aa3e8fa84d675fdf4642133bfa2a2112bddf4197e7521e2576443ad9ab4636d90c2d19f6dce3bf4b9f332a99be864986aa53d92"], &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='ext2\x00', 0x4, &(0x7f0000000300)='\xe9\\!\x00')
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x200, 0x101)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r3, 0x80047210, &(0x7f00000000c0))
sendfile(r2, r2, 0x0, 0x2)
pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
openat$cgroup_procs(r4, &(0x7f0000000200)='tasks\x00', 0x2, 0x0)
09:20:39 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0) (async)
wait4(0x0, 0x0, 0x2, 0x0) (async)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)={0x442a01, 0x0, 0x1}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=@setlink={0x90, 0x13, 0x1, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x20400, 0xa00}, [@IFLA_IFNAME={0x14, 0x3, 'ipvlan0\x00'}, @IFLA_TARGET_NETNSID={0x8}, @IFLA_IFNAME={0x14, 0x3, 'wg0\x00'}, @IFLA_GROUP={0x8, 0x1b, 0x5}, @IFLA_GSO_MAX_SEGS={0x8, 0x28, 0xacdc}, @IFLA_PORT_SELF={0x18, 0x19, 0x0, 0x1, [@IFLA_PORT_PROFILE={0xc, 0x2, 'cgroup2\x00'}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x1f}]}, @IFLA_GROUP={0x8, 0x1b, 0xffff}, @IFLA_EXT_MASK={0x8, 0x1d, 0x7}, @IFLA_TXQLEN={0x8, 0xd, 0x4}]}, 0x90}, 0x1, 0x0, 0x0, 0xa1d4b9187964b21d}, 0x4) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
[ 3445.754334][T12115] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3445.764628][T12115] CPU: 0 PID: 12115 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3445.773139][T12115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3445.783190][T12115] Call Trace:
[ 3445.786467][T12115]
[ 3445.789395][T12115] dump_stack_lvl+0xd6/0x122
[ 3445.793987][T12115] dump_stack+0x11/0x1b
[ 3445.798268][T12115] dump_header+0x98/0x410
[ 3445.802658][T12115] out_of_memory+0x62c/0x890
[ 3445.807250][T12115] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3445.813083][T12115] memory_max_write+0x32c/0x3d0
[ 3445.818023][T12115] ? memory_max_show+0x70/0x70
[ 3445.822852][T12115] cgroup_file_write+0x161/0x300
[ 3445.827790][T12115] ? __check_object_size+0x22a/0x2d0
[ 3445.833099][T12115] ? cgroup_seqfile_stop+0x70/0x70
[ 3445.838231][T12115] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3445.843539][T12115] do_iter_readv_writev+0x2de/0x380
[ 3445.848915][T12115] do_iter_write+0x192/0x5c0
[ 3445.853495][T12115] ? splice_from_pipe_next+0x34f/0x3b0
[ 3445.858950][T12115] ? kmalloc_array+0x2d/0x40
[ 3445.863587][T12115] vfs_iter_write+0x4c/0x70
[ 3445.868183][T12115] iter_file_splice_write+0x43a/0x790
[ 3445.873581][T12115] ? splice_from_pipe+0xd0/0xd0
[ 3445.878494][T12115] direct_splice_actor+0x80/0xa0
[ 3445.883434][T12115] splice_direct_to_actor+0x345/0x650
[ 3445.888830][T12115] ? do_splice_direct+0x190/0x190
[ 3445.893903][T12115] do_splice_direct+0x106/0x190
[ 3445.898818][T12115] do_sendfile+0x675/0xc40
09:20:39 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x7, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
stat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0})
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x9, 0x2, &(0x7f00000003c0)=[{&(0x7f0000000280)="619033f79e1f2d2e8009590d3778e0bd025662e51e9a1a3ea290f2ce92720a3c8566b001278ba6045cab192d28493ac8d6541dea96a3e889d376cecaa3edee522bbff823d4c1ed116da428b0c244b10ed6c021a51e345b3c2e4d5d9438c8a20c", 0x60, 0x1ff}, {&(0x7f0000000300)="5e827409a135603d14ba12440152f0e5e8ed2e5d9be7a2e31a92be369757ccc3ee18da18b07e3788d9ae83b8fd531af8674232ce319148f40865a0403a71a5a4195546436ac354cb9d3c49efcbbb00f33629dab76a250cfb00467d94b338f3aa2a7c512079df9de766767a00e89017366dd260c1ec755d2c13c697798ef96d9982c773bf7af421df70a4d65ea6951cf10e1c4b6d02cbc79386b128842027b9089fa2f38414519c8dd585b36b917c2f", 0xaf, 0x2db2}], 0x208a0, &(0x7f00000004c0)={[{@fat=@discard}, {@iocharset={'iocharset', 0x3d, 'koi8-r'}}, {@nonumtail}, {@nonumtail}], [{@fowner_gt={'fowner>', r1}}, {@subj_role={'subj_role', 0x3d, 'cgroup2\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@obj_user}, {@subj_type={'subj_type', 0x3d, 'syz1\x00'}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@obj_role={'obj_role', 0x3d, 'syz1\x00'}}]})
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000200)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r0, &(0x7f0000000040)=0xb5, 0x12)
ioctl$BTRFS_IOC_GET_FEATURES(r0, 0x80189439, &(0x7f00000000c0))
sendfile(r3, r3, 0x0, 0x2)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x7, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
stat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)) (async)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x9, 0x2, &(0x7f00000003c0)=[{&(0x7f0000000280)="619033f79e1f2d2e8009590d3778e0bd025662e51e9a1a3ea290f2ce92720a3c8566b001278ba6045cab192d28493ac8d6541dea96a3e889d376cecaa3edee522bbff823d4c1ed116da428b0c244b10ed6c021a51e345b3c2e4d5d9438c8a20c", 0x60, 0x1ff}, {&(0x7f0000000300)="5e827409a135603d14ba12440152f0e5e8ed2e5d9be7a2e31a92be369757ccc3ee18da18b07e3788d9ae83b8fd531af8674232ce319148f40865a0403a71a5a4195546436ac354cb9d3c49efcbbb00f33629dab76a250cfb00467d94b338f3aa2a7c512079df9de766767a00e89017366dd260c1ec755d2c13c697798ef96d9982c773bf7af421df70a4d65ea6951cf10e1c4b6d02cbc79386b128842027b9089fa2f38414519c8dd585b36b917c2f", 0xaf, 0x2db2}], 0x208a0, &(0x7f00000004c0)={[{@fat=@discard}, {@iocharset={'iocharset', 0x3d, 'koi8-r'}}, {@nonumtail}, {@nonumtail}], [{@fowner_gt={'fowner>', r1}}, {@subj_role={'subj_role', 0x3d, 'cgroup2\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@obj_user}, {@subj_type={'subj_type', 0x3d, 'syz1\x00'}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@obj_role={'obj_role', 0x3d, 'syz1\x00'}}]}) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000200)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
write$cgroup_int(r0, &(0x7f0000000040)=0xb5, 0x12) (async)
ioctl$BTRFS_IOC_GET_FEATURES(r0, 0x80189439, &(0x7f00000000c0)) (async)
sendfile(r3, r3, 0x0, 0x2) (async)
[ 3445.903271][T12115] __x64_sys_sendfile64+0x102/0x140
[ 3445.908492][T12115] do_syscall_64+0x44/0xd0
[ 3445.912906][T12115] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3445.918977][T12115] RIP: 0033:0x7f4d3cb0beb9
[ 3445.923381][T12115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3445.943051][T12115] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3445.951579][T12115] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3445.959546][T12115] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3445.967513][T12115] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3445.975485][T12115] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3445.983455][T12115] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3445.991446][T12115]
[ 3445.994783][T12115] memory: usage 172kB, limit 0kB, failcnt 17992
09:20:39 executing program 3:
unshare(0x20000400) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x3}, 0x4)
[ 3446.001129][T12115] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
09:20:39 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f00000003c0)='./file0\x00', 0x80, 0x3, &(0x7f00000005c0)=[{&(0x7f0000000400)="42b5d4b98571d6765b6012fc10a000b592b3bd6d5da4bcb596deeae44833cea71895a8eeb8ebc8a55ebf6cfd2a0a162fba05a577bf991d10b97fe681834fdbb91b60659484a594de3eb742ba282498162077a474a80f6e0f6217b161580bbb2cfbf7662689e962f2886c54a23071ff4b90775344756480079058dfbc46bca4c753ae93dc571193792fe6c5e922e463b484d96d", 0x93, 0xffff}, {&(0x7f00000004c0)="d7c374cd287f311734423a010e84815023a1353a7a32e8404231df49daacbc", 0x1f, 0x7ff}, {&(0x7f0000000500)="86760596465844a6087ad4baa57bddbc703fc3a353342b899b982491ed64ca203e7a1d4b552df714c853f5e876057dd5ccced92eb3ab07f13bf2cdd94d19c546a8d6d87550701712adfc9790a1a7de333e3757c82af8609713b9852b16b469d1415c14d88b66a50203b8f1afce2ffc164348acd53c6d779c284ee95506a081eeb970aaa2eaf6", 0x86, 0x2000000000}], 0x1000021, &(0x7f0000000640)={[{@dioread_lock}, {@minixdf}, {@nojournal_checksum}, {@nobh}, {@dax}, {@usrquota}], [{@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mount(&(0x7f00000006c0)=ANY=[@ANYBLOB="1058de4635f69b2dd37c94d4b4085191b077d0f0db2aac66a6ec0e0794ec37e91e00000068512aa0f10f7e5a7cb937f88fbf4b355ec8b603356d4b900fb63e47c635e0abb34af09b12bf730c8d4741bd74bd7175e1ad01c86259157d69c942d09a6ec0806f44b7465f4583866a63bd4120923edbc894ba9e31ec50aebf2252d6dd5424fb8e722243a38514ddbc373af668d8be7aa3e8fa84d675fdf4642133bfa2a2112bddf4197e7521e2576443ad9ab4636d90c2d19f6dce3bf4b9f332a99be864986aa53d92"], &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='ext2\x00', 0x4, &(0x7f0000000300)='\xe9\\!\x00') (async)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x200, 0x101)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r3, 0x80047210, &(0x7f00000000c0)) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
openat$cgroup_procs(r4, &(0x7f0000000200)='tasks\x00', 0x2, 0x0)
[ 3446.007967][T12115] Memory cgroup stats for /syz1:
[ 3446.029675][T12115] anon 0
[ 3446.029675][T12115] file 118784
[ 3446.029675][T12115] kernel_stack 0
[ 3446.029675][T12115] pagetables 0
[ 3446.029675][T12115] percpu 0
[ 3446.029675][T12115] sock 0
[ 3446.029675][T12115] shmem 114688
[ 3446.029675][T12115] file_mapped 114688
[ 3446.029675][T12115] file_dirty 4096
[ 3446.029675][T12115] file_writeback 0
[ 3446.029675][T12115] swapcached 0
[ 3446.029675][T12115] inactive_anon 32768
[ 3446.029675][T12115] active_anon 81920
[ 3446.029675][T12115] inactive_file 0
[ 3446.029675][T12115] active_file 4096
[ 3446.029675][T12115] unevictable 0
[ 3446.029675][T12115] slab_reclaimable 32992
[ 3446.029675][T12115] slab_unreclaimable 19928
[ 3446.029675][T12115] slab 52920
[ 3446.029675][T12115] workingset_refault_anon 0
[ 3446.029675][T12115] workingset_refault_file 0
[ 3446.029675][T12115] workingset_activate_anon 0
[ 3446.029675][T12115] workingset_activate_file 0
[ 3446.029675][T12115] workingset_restore_anon 0
[ 3446.029675][T12115] workingset_restore_file 0
09:20:39 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f00000003c0)='./file0\x00', 0x80, 0x3, &(0x7f00000005c0)=[{&(0x7f0000000400)="42b5d4b98571d6765b6012fc10a000b592b3bd6d5da4bcb596deeae44833cea71895a8eeb8ebc8a55ebf6cfd2a0a162fba05a577bf991d10b97fe681834fdbb91b60659484a594de3eb742ba282498162077a474a80f6e0f6217b161580bbb2cfbf7662689e962f2886c54a23071ff4b90775344756480079058dfbc46bca4c753ae93dc571193792fe6c5e922e463b484d96d", 0x93, 0xffff}, {&(0x7f00000004c0)="d7c374cd287f311734423a010e84815023a1353a7a32e8404231df49daacbc", 0x1f, 0x7ff}, {&(0x7f0000000500)="86760596465844a6087ad4baa57bddbc703fc3a353342b899b982491ed64ca203e7a1d4b552df714c853f5e876057dd5ccced92eb3ab07f13bf2cdd94d19c546a8d6d87550701712adfc9790a1a7de333e3757c82af8609713b9852b16b469d1415c14d88b66a50203b8f1afce2ffc164348acd53c6d779c284ee95506a081eeb970aaa2eaf6", 0x86, 0x2000000000}], 0x1000021, &(0x7f0000000640)={[{@dioread_lock}, {@minixdf}, {@nojournal_checksum}, {@nobh}, {@dax}, {@usrquota}], [{@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}) (rerun: 32)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mount(&(0x7f00000006c0)=ANY=[@ANYBLOB="1058de4635f69b2dd37c94d4b4085191b077d0f0db2aac66a6ec0e0794ec37e91e00000068512aa0f10f7e5a7cb937f88fbf4b355ec8b603356d4b900fb63e47c635e0abb34af09b12bf730c8d4741bd74bd7175e1ad01c86259157d69c942d09a6ec0806f44b7465f4583866a63bd4120923edbc894ba9e31ec50aebf2252d6dd5424fb8e722243a38514ddbc373af668d8be7aa3e8fa84d675fdf4642133bfa2a2112bddf4197e7521e2576443ad9ab4636d90c2d19f6dce3bf4b9f332a99be864986aa53d92"], &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='ext2\x00', 0x4, &(0x7f0000000300)='\xe9\\!\x00') (async, rerun: 64)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (rerun: 64)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x200, 0x101)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r3, 0x80047210, &(0x7f00000000c0)) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
openat$cgroup_procs(r4, &(0x7f0000000200)='tasks\x00', 0x2, 0x0)
09:20:40 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:40 executing program 3:
unshare(0x20000400) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x3}, 0x4)
[ 3446.125606][T12115] Out of memory and no killable processes...
09:20:40 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:20:40 executing program 2:
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000040)={0x0}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000100)={r0, 0x5ed7}, 0x8)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
09:20:40 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:40 executing program 3:
unshare(0x4020000)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x2000}, 0xffffffffffffff9c)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@dev={0xfe, 0x80, '\x00', 0x26}, 0x5, 0x0, 0x0, 0x3, 0x1, 0xb81}, 0x20)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x4, 0x3}, 0x4)
09:20:40 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
[ 3446.231688][T12958] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3446.241902][T12958] CPU: 0 PID: 12958 Comm: syz-executor.2 Not tainted 5.16.0-syzkaller #0
[ 3446.250388][T12958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3446.260588][T12958] Call Trace:
[ 3446.263935][T12958]
[ 3446.266861][T12958] dump_stack_lvl+0xd6/0x122
[ 3446.271460][T12958] dump_stack+0x11/0x1b
[ 3446.275628][T12958] dump_header+0x98/0x410
[ 3446.279964][T12958] out_of_memory+0x62c/0x890
[ 3446.284557][T12958] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3446.290442][T12958] memory_max_write+0x32c/0x3d0
[ 3446.295300][T12958] ? memory_max_show+0x70/0x70
[ 3446.300068][T12958] cgroup_file_write+0x161/0x300
[ 3446.305079][T12958] ? __check_object_size+0x22a/0x2d0
[ 3446.310367][T12958] ? cgroup_seqfile_stop+0x70/0x70
[ 3446.315556][T12958] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3446.320847][T12958] do_iter_readv_writev+0x2de/0x380
[ 3446.326099][T12958] do_iter_write+0x192/0x5c0
[ 3446.330711][T12958] ? splice_from_pipe_next+0x34f/0x3b0
[ 3446.336170][T12958] ? kmalloc_array+0x2d/0x40
[ 3446.340812][T12958] vfs_iter_write+0x4c/0x70
[ 3446.345319][T12958] iter_file_splice_write+0x43a/0x790
[ 3446.350779][T12958] ? splice_from_pipe+0xd0/0xd0
[ 3446.355630][T12958] direct_splice_actor+0x80/0xa0
[ 3446.360575][T12958] splice_direct_to_actor+0x345/0x650
[ 3446.365950][T12958] ? do_splice_direct+0x190/0x190
[ 3446.371047][T12958] do_splice_direct+0x106/0x190
[ 3446.375971][T12958] do_sendfile+0x675/0xc40
[ 3446.380512][T12958] __x64_sys_sendfile64+0x102/0x140
[ 3446.385710][T12958] do_syscall_64+0x44/0xd0
[ 3446.390176][T12958] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3446.396122][T12958] RIP: 0033:0x7f0466d58eb9
[ 3446.400549][T12958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3446.420151][T12958] RSP: 002b:00007f0465ecf168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3446.428602][T12958] RAX: ffffffffffffffda RBX: 00007f0466e6bf60 RCX: 00007f0466d58eb9
[ 3446.436576][T12958] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3446.444541][T12958] RBP: 00007f0466db308d R08: 0000000000000000 R09: 0000000000000000
[ 3446.452581][T12958] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3446.460548][T12958] R13: 00007ffe91a81ecf R14: 00007f0465ecf300 R15: 0000000000022000
[ 3446.468523][T12958]
[ 3446.471654][T12958] memory: usage 168kB, limit 0kB, failcnt 17992
[ 3446.477889][T12958] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3446.484819][T12958] Memory cgroup stats for /syz1:
[ 3446.489372][T12958] anon 0
[ 3446.489372][T12958] file 118784
[ 3446.489372][T12958] kernel_stack 0
[ 3446.489372][T12958] pagetables 0
[ 3446.489372][T12958] percpu 0
[ 3446.489372][T12958] sock 0
[ 3446.489372][T12958] shmem 114688
[ 3446.489372][T12958] file_mapped 114688
[ 3446.489372][T12958] file_dirty 4096
[ 3446.489372][T12958] file_writeback 0
[ 3446.489372][T12958] swapcached 0
[ 3446.489372][T12958] inactive_anon 32768
[ 3446.489372][T12958] active_anon 81920
[ 3446.489372][T12958] inactive_file 0
[ 3446.489372][T12958] active_file 4096
[ 3446.489372][T12958] unevictable 0
[ 3446.489372][T12958] slab_reclaimable 32992
[ 3446.489372][T12958] slab_unreclaimable 19928
[ 3446.489372][T12958] slab 52920
[ 3446.489372][T12958] workingset_refault_anon 0
[ 3446.489372][T12958] workingset_refault_file 0
[ 3446.489372][T12958] workingset_activate_anon 0
[ 3446.489372][T12958] workingset_activate_file 0
[ 3446.489372][T12958] workingset_restore_anon 0
[ 3446.489372][T12958] workingset_restore_file 0
[ 3446.585378][T12958] Out of memory and no killable processes...
[ 3446.791805][T26533] device hsr_slave_0 left promiscuous mode
[ 3446.797721][T26533] device hsr_slave_1 left promiscuous mode
[ 3446.804351][T26533] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3446.811868][T26533] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3446.819420][T26533] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3446.826812][T26533] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3446.834428][T26533] device bridge_slave_1 left promiscuous mode
[ 3446.840535][T26533] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3446.847862][T26533] device bridge_slave_0 left promiscuous mode
[ 3446.854036][T26533] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3446.864052][T26533] device veth1_macvtap left promiscuous mode
[ 3446.870060][T26533] device veth0_macvtap left promiscuous mode
[ 3446.876100][T26533] device veth1_vlan left promiscuous mode
[ 3446.881912][T26533] device veth0_vlan left promiscuous mode
[ 3446.958989][T26533] team0 (unregistering): Port device team_slave_1 removed
[ 3446.968544][T26533] team0 (unregistering): Port device team_slave_0 removed
[ 3446.978263][T26533] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3446.989380][T26533] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3447.015658][T26533] bond0 (unregistering): Released all slaves
[ 3447.835154][T13168] lo speed is unknown, defaulting to 1000
[ 3447.872556][T13168] chnl_net:caif_netlink_parms(): no params data found
[ 3447.901711][T13168] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3447.908760][T13168] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3447.916801][T13168] device bridge_slave_0 entered promiscuous mode
[ 3447.924650][T13168] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3447.931677][T13168] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3447.939569][T13168] device bridge_slave_1 entered promiscuous mode
[ 3447.955938][T13168] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3447.967113][T13168] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3447.985115][T13168] team0: Port device team_slave_0 added
[ 3447.991565][T13168] team0: Port device team_slave_1 added
[ 3448.005600][T13168] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3448.012537][T13168] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3448.038664][T13168] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3448.049689][T13168] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3448.056703][T13168] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3448.082579][T13168] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3448.104587][T13168] device hsr_slave_0 entered promiscuous mode
[ 3448.111563][T13168] device hsr_slave_1 entered promiscuous mode
[ 3448.117853][T13168] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3448.125432][T13168] Cannot create hsr debugfs directory
[ 3448.170032][T13168] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3448.180532][T13168] 8021q: adding VLAN 0 to HW filter on device team0
[ 3448.188237][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 3448.196175][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3448.205345][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3448.213855][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3448.223295][T19185] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3448.230321][T19185] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3448.239537][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 3448.247662][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3448.256135][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3448.264505][ T7812] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3448.271675][ T7812] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3448.287561][T13168] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 3448.297889][T13168] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 3448.310099][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 3448.318751][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 3448.327411][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 3448.336046][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3448.344841][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 3448.353264][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3448.361853][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3448.370760][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3448.382597][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3448.390073][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3448.399974][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3448.407335][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3448.416370][T13168] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3448.495020][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3448.534513][T13168] device veth0_vlan entered promiscuous mode
[ 3448.541470][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3448.549660][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3448.557498][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3448.567585][T13168] device veth1_vlan entered promiscuous mode
[ 3448.579651][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3448.587428][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3448.595475][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3448.605003][T13168] device veth0_macvtap entered promiscuous mode
[ 3448.613714][T13168] device veth1_macvtap entered promiscuous mode
[ 3448.623821][T13168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3448.634330][T13168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3448.644129][T13168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3448.654559][T13168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3448.664358][T13168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3448.674759][T13168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3448.684569][T13168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3448.694972][T13168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3448.704900][T13168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3448.715301][T13168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3448.726080][T13168] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3448.734510][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 3448.742990][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3448.751683][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3448.761495][T13168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3448.772025][T13168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3448.781809][T13168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3448.792205][T13168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3448.802012][T13168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3448.812453][T13168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3448.822360][T13168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3448.832780][T13168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
09:20:42 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:42 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
write$cgroup_int(r2, &(0x7f0000000040), 0x12) (async)
09:20:42 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async)
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)={0x442a01, 0x0, 0x1}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=@setlink={0x90, 0x13, 0x1, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x20400, 0xa00}, [@IFLA_IFNAME={0x14, 0x3, 'ipvlan0\x00'}, @IFLA_TARGET_NETNSID={0x8}, @IFLA_IFNAME={0x14, 0x3, 'wg0\x00'}, @IFLA_GROUP={0x8, 0x1b, 0x5}, @IFLA_GSO_MAX_SEGS={0x8, 0x28, 0xacdc}, @IFLA_PORT_SELF={0x18, 0x19, 0x0, 0x1, [@IFLA_PORT_PROFILE={0xc, 0x2, 'cgroup2\x00'}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x1f}]}, @IFLA_GROUP={0x8, 0x1b, 0xffff}, @IFLA_EXT_MASK={0x8, 0x1d, 0x7}, @IFLA_TXQLEN={0x8, 0xd, 0x4}]}, 0x90}, 0x1, 0x0, 0x0, 0xa1d4b9187964b21d}, 0x4) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
09:20:42 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 32)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (rerun: 32)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x200002, 0x0) (async)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:20:42 executing program 3:
unshare(0x4020000) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x2000}, 0xffffffffffffff9c) (async)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@dev={0xfe, 0x80, '\x00', 0x26}, 0x5, 0x0, 0x0, 0x3, 0x1, 0xb81}, 0x20) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x4, 0x3}, 0x4)
09:20:42 executing program 2:
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000040)={0x0}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000100)={r0, 0x5ed7}, 0x8) (async)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
[ 3448.842599][T13168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3448.853295][T13168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3448.864205][T13168] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3448.872607][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3448.881468][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
09:20:42 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:42 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
[ 3448.950765][T13210] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3448.960974][T13210] CPU: 0 PID: 13210 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3448.969390][T13210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3448.979441][T13210] Call Trace:
[ 3448.982714][T13210]
[ 3448.985674][T13210] dump_stack_lvl+0xd6/0x122
[ 3448.990268][T13210] dump_stack+0x11/0x1b
[ 3448.994473][T13210] dump_header+0x98/0x410
09:20:42 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
write$cgroup_int(r2, &(0x7f0000000040), 0x12)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
write$cgroup_int(r2, &(0x7f0000000040), 0x12) (async)
09:20:42 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:42 executing program 2:
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000040)={0x0}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000100)={r0, 0x5ed7}, 0x8)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000040), &(0x7f00000000c0)=0x8) (async)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000100)={r0, 0x5ed7}, 0x8) (async)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r3, r3, 0x0, 0x2) (async)
[ 3448.998874][T13210] oom_kill_process+0x18e/0x3f0
[ 3449.003724][T13210] out_of_memory+0x5ed/0x890
[ 3449.008317][T13210] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3449.014137][T13210] memory_max_write+0x32c/0x3d0
[ 3449.019055][T13210] ? memory_max_show+0x70/0x70
[ 3449.023835][T13210] cgroup_file_write+0x161/0x300
[ 3449.028891][T13210] ? __check_object_size+0x22a/0x2d0
[ 3449.034174][T13210] ? cgroup_seqfile_stop+0x70/0x70
[ 3449.039368][T13210] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3449.044651][T13210] do_iter_readv_writev+0x2de/0x380
09:20:42 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:42 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
[ 3449.050254][T13210] do_iter_write+0x192/0x5c0
[ 3449.054860][T13210] ? splice_from_pipe_next+0x34f/0x3b0
[ 3449.060323][T13210] ? kmalloc_array+0x2d/0x40
[ 3449.064915][T13210] vfs_iter_write+0x4c/0x70
[ 3449.069431][T13210] iter_file_splice_write+0x43a/0x790
[ 3449.074841][T13210] ? splice_from_pipe+0xd0/0xd0
[ 3449.079690][T13210] direct_splice_actor+0x80/0xa0
[ 3449.084630][T13210] splice_direct_to_actor+0x345/0x650
[ 3449.090004][T13210] ? do_splice_direct+0x190/0x190
[ 3449.095052][T13210] do_splice_direct+0x106/0x190
[ 3449.099902][T13210] do_sendfile+0x675/0xc40
[ 3449.104335][T13210] __x64_sys_sendfile64+0x102/0x140
[ 3449.109536][T13210] do_syscall_64+0x44/0xd0
[ 3449.113960][T13210] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3449.119853][T13210] RIP: 0033:0x7f4d3cb0beb9
[ 3449.124286][T13210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3449.143888][T13210] RSP: 002b:00007f4d3bc61168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3449.152289][T13210] RAX: ffffffffffffffda RBX: 00007f4d3cc1f030 RCX: 00007f4d3cb0beb9
[ 3449.160240][T13210] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3449.168202][T13210] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3449.176216][T13210] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3449.184236][T13210] R13: 00007ffcd48e4c5f R14: 00007f4d3bc61300 R15: 0000000000022000
[ 3449.192196][T13210]
[ 3449.195457][T13210] memory: usage 320kB, limit 0kB, failcnt 18025
[ 3449.201696][T13210] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3449.208525][T13210] Memory cgroup stats for /syz1:
[ 3449.215483][T13210] anon 40960
[ 3449.215483][T13210] file 118784
[ 3449.215483][T13210] kernel_stack 16384
[ 3449.215483][T13210] pagetables 49152
[ 3449.215483][T13210] percpu 0
[ 3449.215483][T13210] sock 0
[ 3449.215483][T13210] shmem 114688
[ 3449.215483][T13210] file_mapped 114688
[ 3449.215483][T13210] file_dirty 0
[ 3449.215483][T13210] file_writeback 0
[ 3449.215483][T13210] swapcached 0
[ 3449.215483][T13210] inactive_anon 73728
[ 3449.215483][T13210] active_anon 81920
[ 3449.215483][T13210] inactive_file 0
[ 3449.215483][T13210] active_file 4096
[ 3449.215483][T13210] unevictable 0
[ 3449.215483][T13210] slab_reclaimable 32992
[ 3449.215483][T13210] slab_unreclaimable 34440
[ 3449.215483][T13210] slab 67432
[ 3449.215483][T13210] workingset_refault_anon 0
[ 3449.215483][T13210] workingset_refault_file 0
[ 3449.215483][T13210] workingset_activate_anon 0
[ 3449.215483][T13210] workingset_activate_file 0
[ 3449.215483][T13210] workingset_restore_anon 0
[ 3449.308095][T13210] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=13168,uid=0
[ 3449.323422][T13210] Memory cgroup out of memory: Killed process 13168 (syz-executor.1) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
[ 3449.341593][ T26] oom_reaper: reaped process 13168 (syz-executor.1), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
[ 3449.343167][T13210] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3449.362943][T13210] CPU: 1 PID: 13210 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3449.371448][T13210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3449.381480][T13210] Call Trace:
[ 3449.384735][T13210]
[ 3449.387755][T13210] dump_stack_lvl+0xd6/0x122
[ 3449.392372][T13210] dump_stack+0x11/0x1b
[ 3449.396523][T13210] dump_header+0x98/0x410
[ 3449.400859][T13210] out_of_memory+0x62c/0x890
[ 3449.405432][T13210] memory_max_write+0x32c/0x3d0
[ 3449.410265][T13210] ? memory_max_show+0x70/0x70
[ 3449.415007][T13210] cgroup_file_write+0x161/0x300
[ 3449.419929][T13210] ? __check_object_size+0x22a/0x2d0
[ 3449.425205][T13210] ? cgroup_seqfile_stop+0x70/0x70
[ 3449.430289][T13210] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3449.435598][T13210] do_iter_readv_writev+0x2de/0x380
[ 3449.440828][T13210] do_iter_write+0x192/0x5c0
[ 3449.445447][T13210] ? splice_from_pipe_next+0x34f/0x3b0
[ 3449.450891][T13210] ? kmalloc_array+0x2d/0x40
[ 3449.455463][T13210] vfs_iter_write+0x4c/0x70
[ 3449.459950][T13210] iter_file_splice_write+0x43a/0x790
[ 3449.465300][T13210] ? splice_from_pipe+0xd0/0xd0
[ 3449.470146][T13210] direct_splice_actor+0x80/0xa0
[ 3449.475129][T13210] splice_direct_to_actor+0x345/0x650
[ 3449.480534][T13210] ? do_splice_direct+0x190/0x190
[ 3449.485656][T13210] do_splice_direct+0x106/0x190
[ 3449.490483][T13210] do_sendfile+0x675/0xc40
[ 3449.495864][T13210] __x64_sys_sendfile64+0x102/0x140
[ 3449.501048][T13210] do_syscall_64+0x44/0xd0
[ 3449.505510][T13210] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3449.511413][T13210] RIP: 0033:0x7f4d3cb0beb9
[ 3449.515800][T13210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3449.535383][T13210] RSP: 002b:00007f4d3bc61168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3449.543771][T13210] RAX: ffffffffffffffda RBX: 00007f4d3cc1f030 RCX: 00007f4d3cb0beb9
[ 3449.551731][T13210] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3449.559705][T13210] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3449.567649][T13210] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3449.575599][T13210] R13: 00007ffcd48e4c5f R14: 00007f4d3bc61300 R15: 0000000000022000
[ 3449.583556][T13210]
[ 3449.586683][T13210] memory: usage 176kB, limit 0kB, failcnt 18042
[ 3449.592987][T13210] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3449.599888][T13210] Memory cgroup stats for /syz1:
[ 3449.600466][T13210] anon 0
[ 3449.600466][T13210] file 118784
[ 3449.600466][T13210] kernel_stack 0
[ 3449.600466][T13210] pagetables 0
[ 3449.600466][T13210] percpu 0
[ 3449.600466][T13210] sock 0
[ 3449.600466][T13210] shmem 114688
[ 3449.600466][T13210] file_mapped 114688
[ 3449.600466][T13210] file_dirty 0
[ 3449.600466][T13210] file_writeback 0
[ 3449.600466][T13210] swapcached 0
[ 3449.600466][T13210] inactive_anon 32768
[ 3449.600466][T13210] active_anon 81920
[ 3449.600466][T13210] inactive_file 0
[ 3449.600466][T13210] active_file 4096
[ 3449.600466][T13210] unevictable 0
[ 3449.600466][T13210] slab_reclaimable 32992
[ 3449.600466][T13210] slab_unreclaimable 24336
[ 3449.600466][T13210] slab 57328
[ 3449.600466][T13210] workingset_refault_anon 0
[ 3449.600466][T13210] workingset_refault_file 0
[ 3449.600466][T13210] workingset_activate_anon 0
[ 3449.600466][T13210] workingset_activate_file 0
[ 3449.600466][T13210] workingset_restore_anon 0
[ 3449.600466][T13210] workingset_restore_file 0
[ 3449.695966][T13210] Out of memory and no killable processes...
09:20:43 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000040), 0x4)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup(r4, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r6 = openat$cgroup_int(r5, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r6, r6, 0x0, 0x2)
09:20:43 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 64)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:20:43 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:43 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000040)='syz1\x00', 0x200002, 0x0)
r3 = openat$incfs(r0, &(0x7f00000000c0)='.log\x00', 0x102000, 0x9)
openat$cgroup_procs(r3, &(0x7f0000000200)='cgroup.threads\x00', 0x2, 0x0)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
09:20:43 executing program 3:
unshare(0x4020000) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x2000}, 0xffffffffffffff9c) (async)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@dev={0xfe, 0x80, '\x00', 0x26}, 0x5, 0x0, 0x0, 0x3, 0x1, 0xb81}, 0x20) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x4, 0x3}, 0x4)
09:20:43 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
ioctl$FIGETBSZ(r3, 0x2, &(0x7f0000000100))
write$cgroup_int(r3, &(0x7f0000000040)=0x4, 0x12)
sendfile(r2, r2, 0x0, 0x2)
09:20:43 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00') (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0) (async)
ioctl$FIGETBSZ(r3, 0x2, &(0x7f0000000100)) (async)
write$cgroup_int(r3, &(0x7f0000000040)=0x4, 0x12)
sendfile(r2, r2, 0x0, 0x2)
09:20:43 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
[ 3449.798256][T13742] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3449.808588][T13742] CPU: 0 PID: 13742 Comm: syz-executor.2 Not tainted 5.16.0-syzkaller #0
[ 3449.817003][T13742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3449.827055][T13742] Call Trace:
[ 3449.830397][T13742]
[ 3449.833325][T13742] dump_stack_lvl+0xd6/0x122
[ 3449.837978][T13742] dump_stack+0x11/0x1b
[ 3449.842136][T13742] dump_header+0x98/0x410
09:20:43 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff), 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
[ 3449.846636][T13742] out_of_memory+0x62c/0x890
[ 3449.851245][T13742] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3449.857112][T13742] memory_max_write+0x32c/0x3d0
[ 3449.862000][T13742] ? memory_max_show+0x70/0x70
[ 3449.866825][T13742] cgroup_file_write+0x161/0x300
[ 3449.871771][T13742] ? __check_object_size+0x22a/0x2d0
[ 3449.877063][T13742] ? cgroup_seqfile_stop+0x70/0x70
[ 3449.882239][T13742] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3449.887525][T13742] do_iter_readv_writev+0x2de/0x380
[ 3449.892780][T13742] do_iter_write+0x192/0x5c0
[ 3449.897505][T13742] ? splice_from_pipe_next+0x34f/0x3b0
[ 3449.902970][T13742] ? kmalloc_array+0x2d/0x40
[ 3449.907640][T13742] vfs_iter_write+0x4c/0x70
[ 3449.912142][T13742] iter_file_splice_write+0x43a/0x790
[ 3449.917524][T13742] ? splice_from_pipe+0xd0/0xd0
[ 3449.922375][T13742] direct_splice_actor+0x80/0xa0
[ 3449.927324][T13742] splice_direct_to_actor+0x345/0x650
[ 3449.932720][T13742] ? do_splice_direct+0x190/0x190
[ 3449.937754][T13742] do_splice_direct+0x106/0x190
[ 3449.942621][T13742] do_sendfile+0x675/0xc40
[ 3449.947073][T13742] __x64_sys_sendfile64+0x102/0x140
[ 3449.952271][T13742] do_syscall_64+0x44/0xd0
[ 3449.956781][T13742] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3449.962678][T13742] RIP: 0033:0x7f0466d58eb9
[ 3449.967089][T13742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3449.986743][T13742] RSP: 002b:00007f0465ecf168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
09:20:43 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00') (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
ioctl$FIGETBSZ(r3, 0x2, &(0x7f0000000100))
write$cgroup_int(r3, &(0x7f0000000040)=0x4, 0x12) (async)
sendfile(r2, r2, 0x0, 0x2)
[ 3449.995154][T13742] RAX: ffffffffffffffda RBX: 00007f0466e6bf60 RCX: 00007f0466d58eb9
[ 3450.003123][T13742] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3450.011088][T13742] RBP: 00007f0466db308d R08: 0000000000000000 R09: 0000000000000000
[ 3450.019051][T13742] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3450.027069][T13742] R13: 00007ffe91a81ecf R14: 00007f0465ecf300 R15: 0000000000022000
[ 3450.035053][T13742]
[ 3450.038124][T13742] memory: usage 168kB, limit 0kB, failcnt 18042
[ 3450.044373][T13742] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
09:20:43 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
open(&(0x7f00000000c0)='./file1\x00', 0x40000, 0xd)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000080)=0x18)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r0, 0x5000940e, &(0x7f00000003c0)={{r4}, "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"})
09:20:43 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff), 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
[ 3450.051571][T13742] Memory cgroup stats for /syz1:
[ 3450.071511][T13742] anon 0
[ 3450.071511][T13742] file 118784
[ 3450.071511][T13742] kernel_stack 0
[ 3450.071511][T13742] pagetables 0
[ 3450.071511][T13742] percpu 0
[ 3450.071511][T13742] sock 0
[ 3450.071511][T13742] shmem 114688
[ 3450.071511][T13742] file_mapped 114688
[ 3450.071511][T13742] file_dirty 0
[ 3450.071511][T13742] file_writeback 0
[ 3450.071511][T13742] swapcached 0
[ 3450.071511][T13742] inactive_anon 32768
[ 3450.071511][T13742] active_anon 81920
[ 3450.071511][T13742] inactive_file 0
[ 3450.071511][T13742] active_file 4096
[ 3450.071511][T13742] unevictable 0
[ 3450.071511][T13742] slab_reclaimable 32992
[ 3450.071511][T13742] slab_unreclaimable 19928
[ 3450.071511][T13742] slab 52920
[ 3450.071511][T13742] workingset_refault_anon 0
[ 3450.071511][T13742] workingset_refault_file 0
[ 3450.071511][T13742] workingset_activate_anon 0
[ 3450.071511][T13742] workingset_activate_file 0
[ 3450.071511][T13742] workingset_restore_anon 0
[ 3450.071511][T13742] workingset_restore_file 0
[ 3450.167155][T13742] Out of memory and no killable processes...
[ 3450.522059][T26533] device hsr_slave_0 left promiscuous mode
[ 3450.528048][T26533] device hsr_slave_1 left promiscuous mode
[ 3450.534207][T26533] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3450.541591][T26533] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3450.550064][T26533] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3450.557471][T26533] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3450.565389][T26533] device bridge_slave_1 left promiscuous mode
[ 3450.571495][T26533] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3450.579008][T26533] device bridge_slave_0 left promiscuous mode
[ 3450.585166][T26533] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3450.594918][T26533] device veth1_macvtap left promiscuous mode
[ 3450.600915][T26533] device veth0_macvtap left promiscuous mode
[ 3450.606999][T26533] device veth1_vlan left promiscuous mode
[ 3450.612743][T26533] device veth0_vlan left promiscuous mode
[ 3450.692259][T26533] team0 (unregistering): Port device team_slave_1 removed
[ 3450.702521][T26533] team0 (unregistering): Port device team_slave_0 removed
[ 3450.712178][T26533] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3450.723045][T26533] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3450.750570][T26533] bond0 (unregistering): Released all slaves
[ 3451.581807][T14162] lo speed is unknown, defaulting to 1000
[ 3451.617628][T14162] chnl_net:caif_netlink_parms(): no params data found
[ 3451.646558][T14162] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3451.653598][T14162] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3451.661286][T14162] device bridge_slave_0 entered promiscuous mode
[ 3451.668262][T14162] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3451.675290][T14162] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3451.684755][T14162] device bridge_slave_1 entered promiscuous mode
[ 3451.700188][T14162] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3451.710384][T14162] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3451.726753][T14162] team0: Port device team_slave_0 added
[ 3451.733191][T14162] team0: Port device team_slave_1 added
[ 3451.746228][T14162] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3451.753183][T14162] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3451.779306][T14162] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3451.791676][T14162] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3451.798625][T14162] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3451.824507][T14162] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3451.845594][T14162] device hsr_slave_0 entered promiscuous mode
[ 3451.852125][T14162] device hsr_slave_1 entered promiscuous mode
[ 3451.858369][T14162] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3451.866016][T14162] Cannot create hsr debugfs directory
[ 3451.893153][T14162] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3451.900184][T14162] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3451.907377][T14162] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3451.914434][T14162] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3451.940598][T14162] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3451.951299][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3451.959180][T19400] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3451.967076][T19400] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3451.977932][T14162] 8021q: adding VLAN 0 to HW filter on device team0
[ 3451.987607][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3451.995783][ T7812] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3452.002846][ T7812] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3452.012543][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3452.021677][T19401] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3452.028677][T19401] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3452.047261][T14162] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 3452.057669][T14162] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 3452.070927][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3452.079475][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3452.088048][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3452.096581][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3452.105037][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3452.112660][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3452.126395][T14162] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3452.134075][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3452.141755][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3452.211733][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 3452.220341][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3452.256418][T14162] device veth0_vlan entered promiscuous mode
[ 3452.262944][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 3452.271338][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3452.280725][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3452.288320][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3452.297470][T14162] device veth1_vlan entered promiscuous mode
[ 3452.308744][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3452.316803][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3452.325055][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3452.333396][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3452.342893][T14162] device veth0_macvtap entered promiscuous mode
[ 3452.351010][T14162] device veth1_macvtap entered promiscuous mode
[ 3452.361491][T14162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3452.372000][T14162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3452.381812][T14162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3452.392273][T14162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3452.402090][T14162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3452.412517][T14162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3452.422359][T14162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3452.432782][T14162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3452.442589][T14162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3452.452997][T14162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3452.463583][T14162] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3452.472141][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 3452.480366][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 3452.488479][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3452.497890][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3452.506774][T14162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3452.517202][T14162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3452.526995][T14162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3452.537454][T14162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3452.547256][T14162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3452.557658][T14162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3452.567535][T14162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3452.577980][T14162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3452.587787][T14162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3452.598189][T14162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3452.609052][T14162] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3452.618268][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3452.627018][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3452.664662][T14196] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3452.674938][T14196] CPU: 0 PID: 14196 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3452.683385][T14196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3452.693429][T14196] Call Trace:
[ 3452.696685][T14196]
[ 3452.699598][T14196] dump_stack_lvl+0xd6/0x122
[ 3452.704169][T14196] dump_stack+0x11/0x1b
[ 3452.708301][T14196] dump_header+0x98/0x410
[ 3452.712610][T14196] oom_kill_process+0x18e/0x3f0
[ 3452.717439][T14196] out_of_memory+0x5ed/0x890
[ 3452.722004][T14196] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3452.727814][T14196] memory_max_write+0x32c/0x3d0
[ 3452.732650][T14196] ? memory_max_show+0x70/0x70
[ 3452.737461][T14196] cgroup_file_write+0x161/0x300
[ 3452.742375][T14196] ? __check_object_size+0x22a/0x2d0
[ 3452.747640][T14196] ? cgroup_seqfile_stop+0x70/0x70
[ 3452.752727][T14196] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3452.758050][T14196] do_iter_readv_writev+0x2de/0x380
[ 3452.763250][T14196] do_iter_write+0x192/0x5c0
[ 3452.767814][T14196] ? splice_from_pipe_next+0x34f/0x3b0
[ 3452.773266][T14196] ? kmalloc_array+0x2d/0x40
[ 3452.777833][T14196] vfs_iter_write+0x4c/0x70
[ 3452.782468][T14196] iter_file_splice_write+0x43a/0x790
[ 3452.787821][T14196] ? splice_from_pipe+0xd0/0xd0
[ 3452.792652][T14196] direct_splice_actor+0x80/0xa0
[ 3452.797615][T14196] splice_direct_to_actor+0x345/0x650
[ 3452.803034][T14196] ? do_splice_direct+0x190/0x190
[ 3452.808034][T14196] do_splice_direct+0x106/0x190
[ 3452.812866][T14196] do_sendfile+0x675/0xc40
[ 3452.817261][T14196] __x64_sys_sendfile64+0x102/0x140
[ 3452.822434][T14196] do_syscall_64+0x44/0xd0
[ 3452.826827][T14196] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3452.832775][T14196] RIP: 0033:0x7f44ed216eb9
[ 3452.837165][T14196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3452.857132][T14196] RSP: 002b:00007f44ec38d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3452.865523][T14196] RAX: ffffffffffffffda RBX: 00007f44ed329f60 RCX: 00007f44ed216eb9
[ 3452.873472][T14196] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000014
[ 3452.881424][T14196] RBP: 00007f44ed27108d R08: 0000000000000000 R09: 0000000000000000
[ 3452.889401][T14196] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3452.897348][T14196] R13: 00007ffeca418f5f R14: 00007f44ec38d300 R15: 0000000000022000
[ 3452.905298][T14196]
[ 3452.908326][T14196] memory: usage 492kB, limit 0kB, failcnt 18042
[ 3452.914571][T14196] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3452.921466][T14196] Memory cgroup stats for /syz1:
[ 3452.921665][T14196] anon 118784
[ 3452.921665][T14196] file 118784
[ 3452.921665][T14196] kernel_stack 32768
[ 3452.921665][T14196] pagetables 90112
[ 3452.921665][T14196] percpu 0
[ 3452.921665][T14196] sock 0
[ 3452.921665][T14196] shmem 114688
[ 3452.921665][T14196] file_mapped 114688
[ 3452.921665][T14196] file_dirty 0
[ 3452.921665][T14196] file_writeback 0
[ 3452.921665][T14196] swapcached 0
[ 3452.921665][T14196] inactive_anon 151552
[ 3452.921665][T14196] active_anon 81920
[ 3452.921665][T14196] inactive_file 4096
[ 3452.921665][T14196] active_file 0
[ 3452.921665][T14196] unevictable 0
[ 3452.921665][T14196] slab_reclaimable 51176
[ 3452.921665][T14196] slab_unreclaimable 56824
[ 3452.921665][T14196] slab 108000
[ 3452.921665][T14196] workingset_refault_anon 0
[ 3452.921665][T14196] workingset_refault_file 0
[ 3452.921665][T14196] workingset_activate_anon 0
[ 3452.921665][T14196] workingset_activate_file 0
[ 3452.921665][T14196] workingset_restore_anon 0
09:20:46 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0) (async)
wait4(0x0, 0x0, 0x2, 0x0) (async)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540)) (async)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000040), 0x4) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup(r4, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r6 = openat$cgroup_int(r5, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r6, r6, 0x0, 0x2)
09:20:46 executing program 3:
unshare(0x20000400)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x74, &(0x7f0000000040)={r2, 0x0, 0x30}, &(0x7f0000000080)=0x18)
r3 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000500)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000600)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x20}}, './file0\x00'})
r6 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_submit(0x0, 0x7, &(0x7f00000008c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x4ee, r0, &(0x7f0000000040)="c8c7cdc9489bff58e764b9fa36df350ae7bc27a0147c9f8cb3fcd097abdf0e926a397b9001ab8e8294d3e53fd1e6208d5d78c681b9a988499b8cca351126c088ea19bd15736b71e5fb26880a3083a66c59e4fc515f188d8dcd81496c0db438ca51104abafdace84d2d0f0fd218e5dd7be142a4ba930fa54f525ba4eeb35ca40bf8728b1db0336b5adecb03041a215148dfa398d5cf99b6e8987b1971e9521ec6d46fa58949cb4cda8c14a88f8ecc47bf5a05725594e5f91e1c4121c378f70dfc567e83ca105d49", 0xc7, 0x1, 0x0, 0x2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0x7ff, 0xffffffffffffffff, &(0x7f00000001c0)="158000b7ffe3c83b42663282d2c53d9ed41a718cadeb25c581a474816c45383689df6adaa9b1980916ad8cc3a0703467e92f17e83598b028f2ed0e9596cefda035", 0x41, 0x7, 0x0, 0x1}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x3, 0x74, 0xffffffffffffffff, &(0x7f0000000280)="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", 0xfa, 0x6, 0x0, 0x1}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x3, r3, &(0x7f00000003c0)="1db9de1a177e8dd33a4d2dcc6974c90718411b563fac9da41d924d18d72534dfa60a7060596b12a5bf832e5d9158ce1dbce61c81a3a2459b0e3bb1aa6e66428f02dbff8a7180e95c7a6302931bc6af20508d946922b8b6a565fbe23cae0db9b407d3d6abf087224a6f9a27702d7d7abef98106a20e01d0f7a8a0302c032ea05e0fec4afdaf3ed09d9c5f7a7afb906d7f30ca2aa5c4ff697db5c52eb9153ccbf1a33f7cf9d3fd65aa56015e2c2586744e357a617fee3dc5cf7cc9c0b89fad14f7b3d17dfeb74f276f0448d7e15535db29f4287ebd78de7daf1fe97b9b44e5aa", 0xdf, 0x9, 0x0, 0x2}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x2, 0x5, r4, &(0x7f0000000540)="70ad20f75ba37e8274e61557bff6c168c7a8b12d058dfee7c65d2534e8c3510b159f32195642f291821d8b6e1a21842ed63f67a63b1439366790a61c8040874b4b49ec60c6e40f914a65975a9595cfc81019dd02420080445913dc5ff7bcc50e115a24f50314faac427beffc1116e93a1ac77b231035537ca95ad613eef5feba70c7", 0x82, 0x73, 0x0, 0x3, r5}, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x6, 0x7, r6, &(0x7f0000000680)="a924080e4d1b1ba6f9647723d3f429b76da4df6a863fa267b6792704145fb110418115a8c887e7f2497a3314831df40b5cac54ad1b46a84e897b24ae9522cfcd8dcdccbdea1504bc487372ba943377a88e13bfa8dc13dd3016f6853dd7247187fd5daa3e3200784b4bfb4120cc744b64b5e1294795d86dab0e1d6939ea086ff147a572b9d8df237c4adc24c9df485f21ecb402c2963f3e", 0x97, 0x10, 0x0, 0x2}, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x7, 0x467, 0xffffffffffffffff, &(0x7f0000000780)="649379752c9c30866bead6c0ef4bf9df87a5ee4b03cc26c5bd13353454545d75ddd257f4c69552e3bf17ca6a72b632f34e712c06718bc603075fcde904df1738d293a18268a31e6aecefc4b9111d35944613af9097c0289ae358ed454d291ffd5e89fabe5d60a693249c03c5a260f04eef0c241019ee6fc2d76fb9c98c79b7469b07269682d6c01852ca93194c7bfe7ff15d3c17d60e9d51fe06aedcd99e08ca24610c030cf2e60563979d4e7423dbdb4c96315dfeaba19ce48e7a7a08e8b7de0b71fd7ea9210e2a42be509d5c7ee2ab626e885fe48feb8ff451a02cf2d021233762241c1e65c3435ec04a6082", 0xed, 0x1, 0x0, 0x2}])
r7 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:20:46 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x40, 0x0)
sendfile(r0, r0, &(0x7f0000000040)=0x6, 0xc5a0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'})
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r4 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
sendfile(r3, r4, 0x0, 0x0)
09:20:46 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff), 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:46 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2) (async)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
open(&(0x7f00000000c0)='./file1\x00', 0x40000, 0xd)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r0, 0x5000940e, &(0x7f00000003c0)={{r4}, "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"})
09:20:46 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000040)='syz1\x00', 0x200002, 0x0) (async)
r3 = openat$incfs(r0, &(0x7f00000000c0)='.log\x00', 0x102000, 0x9)
openat$cgroup_procs(r3, &(0x7f0000000200)='cgroup.threads\x00', 0x2, 0x0) (async)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
09:20:46 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x1, 0x0, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:46 executing program 3:
unshare(0x20000400)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x74, &(0x7f0000000040)={r2, 0x0, 0x30}, &(0x7f0000000080)=0x18)
r3 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000500)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000600)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x20}}, './file0\x00'}) (async)
r6 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_submit(0x0, 0x7, &(0x7f00000008c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x4ee, r0, &(0x7f0000000040)="c8c7cdc9489bff58e764b9fa36df350ae7bc27a0147c9f8cb3fcd097abdf0e926a397b9001ab8e8294d3e53fd1e6208d5d78c681b9a988499b8cca351126c088ea19bd15736b71e5fb26880a3083a66c59e4fc515f188d8dcd81496c0db438ca51104abafdace84d2d0f0fd218e5dd7be142a4ba930fa54f525ba4eeb35ca40bf8728b1db0336b5adecb03041a215148dfa398d5cf99b6e8987b1971e9521ec6d46fa58949cb4cda8c14a88f8ecc47bf5a05725594e5f91e1c4121c378f70dfc567e83ca105d49", 0xc7, 0x1, 0x0, 0x2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0x7ff, 0xffffffffffffffff, &(0x7f00000001c0)="158000b7ffe3c83b42663282d2c53d9ed41a718cadeb25c581a474816c45383689df6adaa9b1980916ad8cc3a0703467e92f17e83598b028f2ed0e9596cefda035", 0x41, 0x7, 0x0, 0x1}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x3, 0x74, 0xffffffffffffffff, &(0x7f0000000280)="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", 0xfa, 0x6, 0x0, 0x1}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x3, r3, &(0x7f00000003c0)="1db9de1a177e8dd33a4d2dcc6974c90718411b563fac9da41d924d18d72534dfa60a7060596b12a5bf832e5d9158ce1dbce61c81a3a2459b0e3bb1aa6e66428f02dbff8a7180e95c7a6302931bc6af20508d946922b8b6a565fbe23cae0db9b407d3d6abf087224a6f9a27702d7d7abef98106a20e01d0f7a8a0302c032ea05e0fec4afdaf3ed09d9c5f7a7afb906d7f30ca2aa5c4ff697db5c52eb9153ccbf1a33f7cf9d3fd65aa56015e2c2586744e357a617fee3dc5cf7cc9c0b89fad14f7b3d17dfeb74f276f0448d7e15535db29f4287ebd78de7daf1fe97b9b44e5aa", 0xdf, 0x9, 0x0, 0x2}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x2, 0x5, r4, &(0x7f0000000540)="70ad20f75ba37e8274e61557bff6c168c7a8b12d058dfee7c65d2534e8c3510b159f32195642f291821d8b6e1a21842ed63f67a63b1439366790a61c8040874b4b49ec60c6e40f914a65975a9595cfc81019dd02420080445913dc5ff7bcc50e115a24f50314faac427beffc1116e93a1ac77b231035537ca95ad613eef5feba70c7", 0x82, 0x73, 0x0, 0x3, r5}, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x6, 0x7, r6, &(0x7f0000000680)="a924080e4d1b1ba6f9647723d3f429b76da4df6a863fa267b6792704145fb110418115a8c887e7f2497a3314831df40b5cac54ad1b46a84e897b24ae9522cfcd8dcdccbdea1504bc487372ba943377a88e13bfa8dc13dd3016f6853dd7247187fd5daa3e3200784b4bfb4120cc744b64b5e1294795d86dab0e1d6939ea086ff147a572b9d8df237c4adc24c9df485f21ecb402c2963f3e", 0x97, 0x10, 0x0, 0x2}, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x7, 0x467, 0xffffffffffffffff, &(0x7f0000000780)="649379752c9c30866bead6c0ef4bf9df87a5ee4b03cc26c5bd13353454545d75ddd257f4c69552e3bf17ca6a72b632f34e712c06718bc603075fcde904df1738d293a18268a31e6aecefc4b9111d35944613af9097c0289ae358ed454d291ffd5e89fabe5d60a693249c03c5a260f04eef0c241019ee6fc2d76fb9c98c79b7469b07269682d6c01852ca93194c7bfe7ff15d3c17d60e9d51fe06aedcd99e08ca24610c030cf2e60563979d4e7423dbdb4c96315dfeaba19ce48e7a7a08e8b7de0b71fd7ea9210e2a42be509d5c7ee2ab626e885fe48feb8ff451a02cf2d021233762241c1e65c3435ec04a6082", 0xed, 0x1, 0x0, 0x2}]) (async)
r7 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000140), 0x4)
[ 3453.014240][T14196] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=14195,uid=0
[ 3453.029561][T14196] Memory cgroup out of memory: Killed process 14195 (syz-executor.1) total-vm:52452kB, anon-rss:368kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[ 3453.047665][ T26] oom_reaper: reaped process 14195 (syz-executor.1), now anon-rss:0kB, file-rss:14336kB, shmem-rss:12kB
09:20:46 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x40, 0x0)
sendfile(r0, r0, &(0x7f0000000040)=0x6, 0xc5a0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'})
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r4 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
sendfile(r3, r4, 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x40, 0x0) (async)
sendfile(r0, r0, &(0x7f0000000040)=0x6, 0xc5a0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r1, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'}) (async)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
socket$inet(0x2, 0x4000000805, 0x0) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
sendfile(r3, r4, 0x0, 0x0) (async)
09:20:46 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) (async, rerun: 32)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 32)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
open(&(0x7f00000000c0)='./file1\x00', 0x40000, 0xd) (async)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r0, 0x5000940e, &(0x7f00000003c0)={{r4}, "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"})
09:20:46 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000040)='syz1\x00', 0x200002, 0x0)
r3 = openat$incfs(r0, &(0x7f00000000c0)='.log\x00', 0x102000, 0x9)
openat$cgroup_procs(r3, &(0x7f0000000200)='cgroup.threads\x00', 0x2, 0x0)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000040)='syz1\x00', 0x200002, 0x0) (async)
openat$incfs(r0, &(0x7f00000000c0)='.log\x00', 0x102000, 0x9) (async)
openat$cgroup_procs(r3, &(0x7f0000000200)='cgroup.threads\x00', 0x2, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r4, r4, 0x0, 0x2) (async)
09:20:47 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x1, 0x0, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
[ 3453.125738][T14162] syz-executor.1 invoked oom-killer: gfp_mask=0xdc0(GFP_KERNEL|__GFP_ZERO), order=0, oom_score_adj=0
[ 3453.136735][T14162] CPU: 0 PID: 14162 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3453.145581][T14162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3453.155714][T14162] Call Trace:
[ 3453.158987][T14162]
[ 3453.161975][T14162] dump_stack_lvl+0xd6/0x122
[ 3453.166609][T14162] dump_stack+0x11/0x1b
[ 3453.170811][T14162] dump_header+0x98/0x410
[ 3453.175136][T14162] oom_kill_process+0x18e/0x3f0
[ 3453.179986][T14162] out_of_memory+0x5ed/0x890
[ 3453.184594][T14162] ? mem_cgroup_iter+0x29b/0x370
[ 3453.189594][T14162] mem_cgroup_oom+0x484/0x520
[ 3453.194283][T14162] try_charge_memcg+0x75c/0xa50
[ 3453.199132][T14162] ? tracing_record_taskinfo+0x77/0x1b0
[ 3453.204737][T14162] ? __rcu_read_unlock+0x5c/0x290
[ 3453.209861][T14162] ? probe_sched_wakeup+0x75/0x90
[ 3453.214889][T14162] obj_cgroup_charge_pages+0xac/0x140
[ 3453.220338][T14162] obj_cgroup_charge+0xe2/0x1b0
[ 3453.225247][T14162] ? __alloc_file+0x2e/0x1a0
[ 3453.229833][T14162] kmem_cache_alloc+0x96/0x320
[ 3453.234594][T14162] __alloc_file+0x2e/0x1a0
[ 3453.239004][T14162] alloc_empty_file+0xcd/0x1c0
[ 3453.243746][T14162] path_openat+0x6a/0x1eb0
[ 3453.248250][T14162] ? make_kuid+0x117/0x170
[ 3453.252725][T14162] ? __rcu_read_unlock+0x5c/0x290
[ 3453.257723][T14162] ? lockref_get_not_dead+0xf2/0x1a0
[ 3453.263064][T14162] ? __rcu_read_unlock+0x5c/0x290
[ 3453.268106][T14162] ? avc_has_perm_noaudit+0x1c0/0x270
[ 3453.273495][T14162] do_filp_open+0x105/0x220
[ 3453.277980][T14162] do_sys_openat2+0xb5/0x2b0
[ 3453.282629][T14162] __x64_sys_openat+0xef/0x110
[ 3453.287412][T14162] do_syscall_64+0x44/0xd0
[ 3453.291804][T14162] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3453.297724][T14162] RIP: 0033:0x7f44ed2169f8
[ 3453.302118][T14162] Code: 24 18 31 c0 41 83 e2 40 75 40 89 f0 25 00 00 41 00 3d 00 00 41 00 74 32 44 89 c2 4c 89 ce bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 40 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00
[ 3453.321715][T14162] RSP: 002b:00007ffeca418050 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[ 3453.330204][T14162] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f44ed2169f8
[ 3453.338150][T14162] RDX: 0000000000090800 RSI: 00007ffeca419240 RDI: 00000000ffffff9c
[ 3453.346095][T14162] RBP: 00007ffeca41921c R08: 0000000000090800 R09: 00007ffeca419240
[ 3453.354107][T14162] R10: 0000000000000000 R11: 0000000000000287 R12: 00007f44ed2701ea
[ 3453.362118][T14162] R13: 00007ffeca419240 R14: 0000000000000012 R15: 00007ffeca419280
[ 3453.370064][T14162]
[ 3453.373170][T14162] memory: usage 212kB, limit 0kB, failcnt 18061
[ 3453.379478][T14162] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3453.386328][T14162] Memory cgroup stats for /syz1:
[ 3453.392106][T14162] anon 24576
[ 3453.392106][T14162] file 118784
[ 3453.392106][T14162] kernel_stack 0
[ 3453.392106][T14162] pagetables 8192
[ 3453.392106][T14162] percpu 0
[ 3453.392106][T14162] sock 0
[ 3453.392106][T14162] shmem 114688
[ 3453.392106][T14162] file_mapped 114688
[ 3453.392106][T14162] file_dirty 0
[ 3453.392106][T14162] file_writeback 0
[ 3453.392106][T14162] swapcached 0
[ 3453.392106][T14162] inactive_anon 57344
[ 3453.392106][T14162] active_anon 81920
[ 3453.392106][T14162] inactive_file 0
[ 3453.392106][T14162] active_file 4096
[ 3453.392106][T14162] unevictable 0
[ 3453.392106][T14162] slab_reclaimable 35680
[ 3453.392106][T14162] slab_unreclaimable 20256
[ 3453.392106][T14162] slab 55936
[ 3453.392106][T14162] workingset_refault_anon 0
[ 3453.392106][T14162] workingset_refault_file 0
[ 3453.392106][T14162] workingset_activate_anon 0
[ 3453.392106][T14162] workingset_activate_file 0
[ 3453.392106][T14162] workingset_restore_anon 0
[ 3453.392106][T14162] workingset_restore_file 0
[ 3453.488303][T14162] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=14162,uid=0
[ 3453.503664][T14162] Memory cgroup out of memory: Killed process 14162 (syz-executor.1) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
[ 3453.523738][ T26] oom_reaper: reaped process 14162 (syz-executor.1), now anon-rss:0kB, file-rss:13440kB, shmem-rss:0kB
09:20:47 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async)
tgkill(0x0, 0x0, 0x0) (async)
wait4(0x0, 0x0, 0x2, 0x0) (async)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540)) (async)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000040), 0x4) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup(r4, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r6 = openat$cgroup_int(r5, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r6, r6, 0x0, 0x2)
09:20:47 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x1, 0x0, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:47 executing program 3:
unshare(0x20000400)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x74, &(0x7f0000000040)={r2, 0x0, 0x30}, &(0x7f0000000080)=0x18)
r3 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000500)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000600)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x20}}, './file0\x00'})
r6 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_submit(0x0, 0x7, &(0x7f00000008c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x4ee, r0, &(0x7f0000000040)="c8c7cdc9489bff58e764b9fa36df350ae7bc27a0147c9f8cb3fcd097abdf0e926a397b9001ab8e8294d3e53fd1e6208d5d78c681b9a988499b8cca351126c088ea19bd15736b71e5fb26880a3083a66c59e4fc515f188d8dcd81496c0db438ca51104abafdace84d2d0f0fd218e5dd7be142a4ba930fa54f525ba4eeb35ca40bf8728b1db0336b5adecb03041a215148dfa398d5cf99b6e8987b1971e9521ec6d46fa58949cb4cda8c14a88f8ecc47bf5a05725594e5f91e1c4121c378f70dfc567e83ca105d49", 0xc7, 0x1, 0x0, 0x2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0x7ff, 0xffffffffffffffff, &(0x7f00000001c0)="158000b7ffe3c83b42663282d2c53d9ed41a718cadeb25c581a474816c45383689df6adaa9b1980916ad8cc3a0703467e92f17e83598b028f2ed0e9596cefda035", 0x41, 0x7, 0x0, 0x1}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x3, 0x74, 0xffffffffffffffff, &(0x7f0000000280)="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", 0xfa, 0x6, 0x0, 0x1}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x3, r3, &(0x7f00000003c0)="1db9de1a177e8dd33a4d2dcc6974c90718411b563fac9da41d924d18d72534dfa60a7060596b12a5bf832e5d9158ce1dbce61c81a3a2459b0e3bb1aa6e66428f02dbff8a7180e95c7a6302931bc6af20508d946922b8b6a565fbe23cae0db9b407d3d6abf087224a6f9a27702d7d7abef98106a20e01d0f7a8a0302c032ea05e0fec4afdaf3ed09d9c5f7a7afb906d7f30ca2aa5c4ff697db5c52eb9153ccbf1a33f7cf9d3fd65aa56015e2c2586744e357a617fee3dc5cf7cc9c0b89fad14f7b3d17dfeb74f276f0448d7e15535db29f4287ebd78de7daf1fe97b9b44e5aa", 0xdf, 0x9, 0x0, 0x2}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x2, 0x5, r4, &(0x7f0000000540)="70ad20f75ba37e8274e61557bff6c168c7a8b12d058dfee7c65d2534e8c3510b159f32195642f291821d8b6e1a21842ed63f67a63b1439366790a61c8040874b4b49ec60c6e40f914a65975a9595cfc81019dd02420080445913dc5ff7bcc50e115a24f50314faac427beffc1116e93a1ac77b231035537ca95ad613eef5feba70c7", 0x82, 0x73, 0x0, 0x3, r5}, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x6, 0x7, r6, &(0x7f0000000680)="a924080e4d1b1ba6f9647723d3f429b76da4df6a863fa267b6792704145fb110418115a8c887e7f2497a3314831df40b5cac54ad1b46a84e897b24ae9522cfcd8dcdccbdea1504bc487372ba943377a88e13bfa8dc13dd3016f6853dd7247187fd5daa3e3200784b4bfb4120cc744b64b5e1294795d86dab0e1d6939ea086ff147a572b9d8df237c4adc24c9df485f21ecb402c2963f3e", 0x97, 0x10, 0x0, 0x2}, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x7, 0x467, 0xffffffffffffffff, &(0x7f0000000780)="649379752c9c30866bead6c0ef4bf9df87a5ee4b03cc26c5bd13353454545d75ddd257f4c69552e3bf17ca6a72b632f34e712c06718bc603075fcde904df1738d293a18268a31e6aecefc4b9111d35944613af9097c0289ae358ed454d291ffd5e89fabe5d60a693249c03c5a260f04eef0c241019ee6fc2d76fb9c98c79b7469b07269682d6c01852ca93194c7bfe7ff15d3c17d60e9d51fe06aedcd99e08ca24610c030cf2e60563979d4e7423dbdb4c96315dfeaba19ce48e7a7a08e8b7de0b71fd7ea9210e2a42be509d5c7ee2ab626e885fe48feb8ff451a02cf2d021233762241c1e65c3435ec04a6082", 0xed, 0x1, 0x0, 0x2}])
r7 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x20000400) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x74, &(0x7f0000000040)={r2, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
socket$inet(0x2, 0x4000000805, 0x0) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000500)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000600)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x20}}, './file0\x00'}) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
io_submit(0x0, 0x7, &(0x7f00000008c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x4ee, r0, &(0x7f0000000040)="c8c7cdc9489bff58e764b9fa36df350ae7bc27a0147c9f8cb3fcd097abdf0e926a397b9001ab8e8294d3e53fd1e6208d5d78c681b9a988499b8cca351126c088ea19bd15736b71e5fb26880a3083a66c59e4fc515f188d8dcd81496c0db438ca51104abafdace84d2d0f0fd218e5dd7be142a4ba930fa54f525ba4eeb35ca40bf8728b1db0336b5adecb03041a215148dfa398d5cf99b6e8987b1971e9521ec6d46fa58949cb4cda8c14a88f8ecc47bf5a05725594e5f91e1c4121c378f70dfc567e83ca105d49", 0xc7, 0x1, 0x0, 0x2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0x7ff, 0xffffffffffffffff, &(0x7f00000001c0)="158000b7ffe3c83b42663282d2c53d9ed41a718cadeb25c581a474816c45383689df6adaa9b1980916ad8cc3a0703467e92f17e83598b028f2ed0e9596cefda035", 0x41, 0x7, 0x0, 0x1}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x3, 0x74, 0xffffffffffffffff, &(0x7f0000000280)="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", 0xfa, 0x6, 0x0, 0x1}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x3, r3, &(0x7f00000003c0)="1db9de1a177e8dd33a4d2dcc6974c90718411b563fac9da41d924d18d72534dfa60a7060596b12a5bf832e5d9158ce1dbce61c81a3a2459b0e3bb1aa6e66428f02dbff8a7180e95c7a6302931bc6af20508d946922b8b6a565fbe23cae0db9b407d3d6abf087224a6f9a27702d7d7abef98106a20e01d0f7a8a0302c032ea05e0fec4afdaf3ed09d9c5f7a7afb906d7f30ca2aa5c4ff697db5c52eb9153ccbf1a33f7cf9d3fd65aa56015e2c2586744e357a617fee3dc5cf7cc9c0b89fad14f7b3d17dfeb74f276f0448d7e15535db29f4287ebd78de7daf1fe97b9b44e5aa", 0xdf, 0x9, 0x0, 0x2}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x2, 0x5, r4, &(0x7f0000000540)="70ad20f75ba37e8274e61557bff6c168c7a8b12d058dfee7c65d2534e8c3510b159f32195642f291821d8b6e1a21842ed63f67a63b1439366790a61c8040874b4b49ec60c6e40f914a65975a9595cfc81019dd02420080445913dc5ff7bcc50e115a24f50314faac427beffc1116e93a1ac77b231035537ca95ad613eef5feba70c7", 0x82, 0x73, 0x0, 0x3, r5}, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x6, 0x7, r6, &(0x7f0000000680)="a924080e4d1b1ba6f9647723d3f429b76da4df6a863fa267b6792704145fb110418115a8c887e7f2497a3314831df40b5cac54ad1b46a84e897b24ae9522cfcd8dcdccbdea1504bc487372ba943377a88e13bfa8dc13dd3016f6853dd7247187fd5daa3e3200784b4bfb4120cc744b64b5e1294795d86dab0e1d6939ea086ff147a572b9d8df237c4adc24c9df485f21ecb402c2963f3e", 0x97, 0x10, 0x0, 0x2}, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x7, 0x467, 0xffffffffffffffff, &(0x7f0000000780)="649379752c9c30866bead6c0ef4bf9df87a5ee4b03cc26c5bd13353454545d75ddd257f4c69552e3bf17ca6a72b632f34e712c06718bc603075fcde904df1738d293a18268a31e6aecefc4b9111d35944613af9097c0289ae358ed454d291ffd5e89fabe5d60a693249c03c5a260f04eef0c241019ee6fc2d76fb9c98c79b7469b07269682d6c01852ca93194c7bfe7ff15d3c17d60e9d51fe06aedcd99e08ca24610c030cf2e60563979d4e7423dbdb4c96315dfeaba19ce48e7a7a08e8b7de0b71fd7ea9210e2a42be509d5c7ee2ab626e885fe48feb8ff451a02cf2d021233762241c1e65c3435ec04a6082", 0xed, 0x1, 0x0, 0x2}]) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
09:20:47 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="0c0307"], 0xa0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000080)=0x18)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
r8 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r7, 0x84, 0x74, &(0x7f0000000040)={r9, 0x0, 0x30}, &(0x7f0000000080)=0x18)
setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, 0x0, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:20:47 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000040)={0x0, 0x0})
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000000c0)=0x0)
tgkill(r3, r4, 0x24)
09:20:47 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x40, 0x0)
sendfile(r0, r0, &(0x7f0000000040)=0x6, 0xc5a0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'})
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r4 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
sendfile(r3, r4, 0x0, 0x0)
09:20:47 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000040)={0x0, 0x0})
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000000c0)=0x0)
tgkill(r3, r4, 0x24)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
fcntl$getownex(r0, 0x10, &(0x7f0000000040)) (async)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000000c0)) (async)
tgkill(r3, r4, 0x24) (async)
09:20:47 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:47 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
tgkill(0x0, r0, 0x2b)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
tgkill(0x0, r1, 0x2b)
wait4(r0, 0x0, 0x2, 0x0)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
[ 3453.641725][T14635] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3453.651940][T14635] CPU: 0 PID: 14635 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3453.660388][T14635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3453.670434][T14635] Call Trace:
[ 3453.673709][T14635]
[ 3453.676638][T14635] dump_stack_lvl+0xd6/0x122
[ 3453.681295][T14635] dump_stack+0x11/0x1b
[ 3453.685469][T14635] dump_header+0x98/0x410
[ 3453.689878][T14635] out_of_memory+0x62c/0x890
[ 3453.694473][T14635] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3453.700286][T14635] memory_max_write+0x32c/0x3d0
[ 3453.705227][T14635] ? memory_max_show+0x70/0x70
[ 3453.709987][T14635] cgroup_file_write+0x161/0x300
[ 3453.714925][T14635] ? __check_object_size+0x22a/0x2d0
[ 3453.720212][T14635] ? cgroup_seqfile_stop+0x70/0x70
[ 3453.725325][T14635] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3453.730614][T14635] do_iter_readv_writev+0x2de/0x380
[ 3453.735815][T14635] do_iter_write+0x192/0x5c0
09:20:47 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000040)={0x0, 0x0})
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000000c0)=0x0)
tgkill(r3, r4, 0x24)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
fcntl$getownex(r0, 0x10, &(0x7f0000000040)) (async)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000000c0)) (async)
tgkill(r3, r4, 0x24) (async)
[ 3453.740408][T14635] ? splice_from_pipe_next+0x34f/0x3b0
[ 3453.745892][T14635] ? kmalloc_array+0x2d/0x40
[ 3453.750954][T14635] vfs_iter_write+0x4c/0x70
[ 3453.755457][T14635] iter_file_splice_write+0x43a/0x790
[ 3453.760839][T14635] ? splice_from_pipe+0xd0/0xd0
[ 3453.765697][T14635] direct_splice_actor+0x80/0xa0
[ 3453.770632][T14635] splice_direct_to_actor+0x345/0x650
[ 3453.776055][T14635] ? do_splice_direct+0x190/0x190
[ 3453.781087][T14635] do_splice_direct+0x106/0x190
[ 3453.785942][T14635] do_sendfile+0x675/0xc40
[ 3453.790407][T14635] __x64_sys_sendfile64+0x102/0x140
[ 3453.795611][T14635] do_syscall_64+0x44/0xd0
[ 3453.800034][T14635] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3453.805976][T14635] RIP: 0033:0x7f4d3cb0beb9
[ 3453.810387][T14635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3453.829991][T14635] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3453.838491][T14635] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3453.846567][T14635] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3453.854546][T14635] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3453.862522][T14635] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3453.870500][T14635] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3453.878508][T14635]
[ 3453.881757][T14635] memory: usage 168kB, limit 0kB, failcnt 18078
09:20:47 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:47 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x1c)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='openpromfs\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
[ 3453.888008][T14635] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3453.894885][T14635] Memory cgroup stats for /syz1:
[ 3453.906202][T14635] anon 0
[ 3453.906202][T14635] file 118784
[ 3453.906202][T14635] kernel_stack 0
[ 3453.906202][T14635] pagetables 0
[ 3453.906202][T14635] percpu 0
[ 3453.906202][T14635] sock 0
[ 3453.906202][T14635] shmem 114688
[ 3453.906202][T14635] file_mapped 114688
[ 3453.906202][T14635] file_dirty 0
[ 3453.906202][T14635] file_writeback 0
09:20:47 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
r2 = socket(0xa, 0x3, 0x87)
r3 = socket(0xa, 0x3, 0x87)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='blkio.bfq.io_serviced\x00', 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x34, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_PAUSE_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
ioctl$sock_ifreq(r2, 0x8927, &(0x7f0000000300)={'team0\x00', @ifru_hwaddr=@multicast})
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000200)={0xffffffffffffffff})
sendto$packet(r5, &(0x7f0000000240)="4704458afa9f9759d51b597dfbb19af436d528f6919f8a1ababa92520ea598bec0d98ce434c97f75a9d6cfee1ca1704112b6dac8b92a401d0e68bcfc0850040c84ba5dcdd589818ca8736377cb5780da542aac481a4b852da10be2afa30bfc2dad9be161cd", 0x65, 0x800, &(0x7f00000002c0)={0x11, 0x1c, 0x0, 0x1, 0x86}, 0x14)
bind$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
[ 3453.906202][T14635] swapcached 0
[ 3453.906202][T14635] inactive_anon 32768
[ 3453.906202][T14635] active_anon 81920
[ 3453.906202][T14635] inactive_file 4096
[ 3453.906202][T14635] active_file 0
[ 3453.906202][T14635] unevictable 0
[ 3453.906202][T14635] slab_reclaimable 35680
[ 3453.906202][T14635] slab_unreclaimable 19928
[ 3453.906202][T14635] slab 55608
[ 3453.906202][T14635] workingset_refault_anon 0
[ 3453.906202][T14635] workingset_refault_file 0
[ 3453.906202][T14635] workingset_activate_anon 0
[ 3453.906202][T14635] workingset_activate_file 0
09:20:47 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:47 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
r2 = socket(0xa, 0x3, 0x87)
r3 = socket(0xa, 0x3, 0x87)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='blkio.bfq.io_serviced\x00', 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x34, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_PAUSE_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
ioctl$sock_ifreq(r2, 0x8927, &(0x7f0000000300)={'team0\x00', @ifru_hwaddr=@multicast})
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000200)={0xffffffffffffffff})
sendto$packet(r5, &(0x7f0000000240)="4704458afa9f9759d51b597dfbb19af436d528f6919f8a1ababa92520ea598bec0d98ce434c97f75a9d6cfee1ca1704112b6dac8b92a401d0e68bcfc0850040c84ba5dcdd589818ca8736377cb5780da542aac481a4b852da10be2afa30bfc2dad9be161cd", 0x65, 0x800, &(0x7f00000002c0)={0x11, 0x1c, 0x0, 0x1, 0x86}, 0x14)
bind$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
socket(0xa, 0x3, 0x87) (async)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
socket(0xa, 0x3, 0x87) (async)
socket(0xa, 0x3, 0x87) (async)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='blkio.bfq.io_serviced\x00', 0x0, 0x0) (async)
sendmmsg$unix(r4, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x34, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_PAUSE_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0) (async)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
ioctl$sock_ifreq(r2, 0x8927, &(0x7f0000000300)={'team0\x00', @ifru_hwaddr=@multicast}) (async)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000200)) (async)
sendto$packet(r5, &(0x7f0000000240)="4704458afa9f9759d51b597dfbb19af436d528f6919f8a1ababa92520ea598bec0d98ce434c97f75a9d6cfee1ca1704112b6dac8b92a401d0e68bcfc0850040c84ba5dcdd589818ca8736377cb5780da542aac481a4b852da10be2afa30bfc2dad9be161cd", 0x65, 0x800, &(0x7f00000002c0)={0x11, 0x1c, 0x0, 0x1, 0x86}, 0x14) (async)
bind$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10) (async)
[ 3453.906202][T14635] workingset_restore_anon 0
[ 3453.906202][T14635] workingset_restore_file 0
[ 3454.001902][T14635] Out of memory and no killable processes...
09:20:47 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="0c0307"], 0xa0) (async)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
r8 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r7, 0x84, 0x74, &(0x7f0000000040)={r9, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, 0x0, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2)
09:20:47 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x1c)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='openpromfs\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
mkdir(&(0x7f0000000140)='./file0\x00', 0x1c) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='openpromfs\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
09:20:47 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:47 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
r3 = fork()
process_vm_writev(r3, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0)
syz_open_procfs(r3, &(0x7f0000000040)='net/connector\x00')
[ 3454.127608][T15180] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3454.137835][T15180] CPU: 1 PID: 15180 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3454.146368][T15180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3454.156423][T15180] Call Trace:
[ 3454.159704][T15180]
[ 3454.162630][T15180] dump_stack_lvl+0xd6/0x122
[ 3454.167224][T15180] dump_stack+0x11/0x1b
[ 3454.171382][T15180] dump_header+0x98/0x410
[ 3454.175707][T15180] out_of_memory+0x62c/0x890
[ 3454.180339][T15180] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3454.186151][T15180] memory_max_write+0x32c/0x3d0
[ 3454.191082][T15180] ? memory_max_show+0x70/0x70
[ 3454.195848][T15180] cgroup_file_write+0x161/0x300
[ 3454.200786][T15180] ? __check_object_size+0x22a/0x2d0
[ 3454.206098][T15180] ? cgroup_seqfile_stop+0x70/0x70
[ 3454.211208][T15180] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3454.216488][T15180] do_iter_readv_writev+0x2de/0x380
[ 3454.221720][T15180] do_iter_write+0x192/0x5c0
[ 3454.226312][T15180] ? splice_from_pipe_next+0x34f/0x3b0
[ 3454.231913][T15180] ? kmalloc_array+0x2d/0x40
[ 3454.236566][T15180] vfs_iter_write+0x4c/0x70
[ 3454.241203][T15180] iter_file_splice_write+0x43a/0x790
[ 3454.246712][T15180] ? splice_from_pipe+0xd0/0xd0
[ 3454.251569][T15180] direct_splice_actor+0x80/0xa0
[ 3454.256509][T15180] splice_direct_to_actor+0x345/0x650
[ 3454.261883][T15180] ? do_splice_direct+0x190/0x190
[ 3454.266904][T15180] do_splice_direct+0x106/0x190
[ 3454.271786][T15180] do_sendfile+0x675/0xc40
[ 3454.276203][T15180] __x64_sys_sendfile64+0x102/0x140
[ 3454.281411][T15180] do_syscall_64+0x44/0xd0
[ 3454.285840][T15180] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3454.291732][T15180] RIP: 0033:0x7f4d3cb0beb9
[ 3454.296137][T15180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3454.315744][T15180] RSP: 002b:00007f4d3bc40168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
09:20:47 executing program 3:
unshare(0x20000400) (async)
r0 = socket$packet(0x11, 0x2, 0x300) (async)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
r2 = socket(0xa, 0x3, 0x87)
r3 = socket(0xa, 0x3, 0x87) (async)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='blkio.bfq.io_serviced\x00', 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x34, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_PAUSE_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0) (async)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
ioctl$sock_ifreq(r2, 0x8927, &(0x7f0000000300)={'team0\x00', @ifru_hwaddr=@multicast}) (async)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000200)={0xffffffffffffffff})
sendto$packet(r5, &(0x7f0000000240)="4704458afa9f9759d51b597dfbb19af436d528f6919f8a1ababa92520ea598bec0d98ce434c97f75a9d6cfee1ca1704112b6dac8b92a401d0e68bcfc0850040c84ba5dcdd589818ca8736377cb5780da542aac481a4b852da10be2afa30bfc2dad9be161cd", 0x65, 0x800, &(0x7f00000002c0)={0x11, 0x1c, 0x0, 0x1, 0x86}, 0x14) (async)
bind$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
[ 3454.324169][T15180] RAX: ffffffffffffffda RBX: 00007f4d3cc1f100 RCX: 00007f4d3cb0beb9
[ 3454.332135][T15180] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3454.340101][T15180] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3454.348078][T15180] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3454.356112][T15180] R13: 00007ffcd48e4c5f R14: 00007f4d3bc40300 R15: 0000000000022000
[ 3454.364165][T15180]
[ 3454.367331][T15180] memory: usage 168kB, limit 0kB, failcnt 18078
[ 3454.373582][T15180] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3454.380486][T15180] Memory cgroup stats for /syz1:
[ 3454.394044][T15180] anon 0
[ 3454.394044][T15180] file 118784
[ 3454.394044][T15180] kernel_stack 0
[ 3454.394044][T15180] pagetables 0
[ 3454.394044][T15180] percpu 0
[ 3454.394044][T15180] sock 0
[ 3454.394044][T15180] shmem 114688
[ 3454.394044][T15180] file_mapped 114688
[ 3454.394044][T15180] file_dirty 0
[ 3454.394044][T15180] file_writeback 0
[ 3454.394044][T15180] swapcached 0
[ 3454.394044][T15180] inactive_anon 32768
[ 3454.394044][T15180] active_anon 81920
[ 3454.394044][T15180] inactive_file 0
[ 3454.394044][T15180] active_file 4096
[ 3454.394044][T15180] unevictable 0
[ 3454.394044][T15180] slab_reclaimable 32992
[ 3454.394044][T15180] slab_unreclaimable 19928
[ 3454.394044][T15180] slab 52920
[ 3454.394044][T15180] workingset_refault_anon 0
[ 3454.394044][T15180] workingset_refault_file 0
[ 3454.394044][T15180] workingset_activate_anon 0
[ 3454.394044][T15180] workingset_activate_file 0
[ 3454.394044][T15180] workingset_restore_anon 0
[ 3454.394044][T15180] workingset_restore_file 0
[ 3454.489682][T15180] Out of memory and no killable processes...
[ 3454.791549][T11536] device hsr_slave_0 left promiscuous mode
[ 3454.797827][T11536] device hsr_slave_1 left promiscuous mode
[ 3454.804968][T11536] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3454.812353][T11536] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3454.819998][T11536] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3454.827394][T11536] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3454.835242][T11536] device bridge_slave_1 left promiscuous mode
[ 3454.841427][T11536] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3454.848772][T11536] device bridge_slave_0 left promiscuous mode
[ 3454.854883][T11536] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3454.864619][T11536] device veth1_macvtap left promiscuous mode
[ 3454.870741][T11536] device veth0_macvtap left promiscuous mode
[ 3454.876740][T11536] device veth1_vlan left promiscuous mode
[ 3454.882548][T11536] device veth0_vlan left promiscuous mode
[ 3454.959433][T11536] team0 (unregistering): Port device team_slave_1 removed
[ 3454.968742][T11536] team0 (unregistering): Port device team_slave_0 removed
[ 3454.977873][T11536] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3454.988494][T11536] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3455.016964][T11536] bond0 (unregistering): Released all slaves
[ 3455.716178][T15571] lo speed is unknown, defaulting to 1000
[ 3455.753004][T15571] chnl_net:caif_netlink_parms(): no params data found
[ 3455.781026][T15571] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3455.788040][T15571] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3455.795756][T15571] device bridge_slave_0 entered promiscuous mode
[ 3455.802860][T15571] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3455.809891][T15571] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3455.817605][T15571] device bridge_slave_1 entered promiscuous mode
[ 3455.832690][T15571] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3455.843515][T15571] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3455.860550][T15571] team0: Port device team_slave_0 added
[ 3455.866879][T15571] team0: Port device team_slave_1 added
[ 3455.881162][T15571] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3455.888080][T15571] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3455.913964][T15571] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3455.925036][T15571] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3455.932005][T15571] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3455.957974][T15571] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3455.978954][T15571] device hsr_slave_0 entered promiscuous mode
[ 3455.985402][T15571] device hsr_slave_1 entered promiscuous mode
[ 3455.991686][T15571] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3455.999219][T15571] Cannot create hsr debugfs directory
[ 3456.026435][T15571] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3456.033519][T15571] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3456.040815][T15571] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3456.047895][T15571] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3456.074435][T15571] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3456.084749][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3456.092989][T28009] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3456.100985][T28009] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3456.112359][T15571] 8021q: adding VLAN 0 to HW filter on device team0
[ 3456.121371][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3456.129676][T19400] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3456.136693][T19400] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3456.146829][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3456.155073][ T9656] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3456.162098][ T9656] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3456.181942][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3456.190657][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3456.199102][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3456.207384][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3456.216796][T15571] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3456.224752][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3456.238745][T15571] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3456.246368][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3456.253784][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3456.324358][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3456.363041][T15571] device veth0_vlan entered promiscuous mode
[ 3456.370427][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3456.378686][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3456.386433][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3456.395830][T15571] device veth1_vlan entered promiscuous mode
[ 3456.407901][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3456.415926][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3456.424047][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3456.434520][T15571] device veth0_macvtap entered promiscuous mode
[ 3456.442854][T15571] device veth1_macvtap entered promiscuous mode
[ 3456.453700][T15571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3456.464247][T15571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3456.474042][T15571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3456.484441][T15571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3456.494260][T15571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3456.504681][T15571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3456.514524][T15571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3456.525026][T15571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3456.534914][T15571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3456.545332][T15571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3456.556273][T15571] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3456.564419][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3456.573191][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3456.582493][T15571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3456.592958][T15571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3456.602753][T15571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3456.613165][T15571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3456.622970][T15571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3456.633446][T15571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3456.643695][T15571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3456.654111][T15571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3456.663960][T15571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3456.674373][T15571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3456.686348][T15571] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3456.694142][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3456.702567][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3456.740857][T15605] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3456.751057][T15605] CPU: 1 PID: 15605 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3456.759449][T15605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3456.769500][T15605] Call Trace:
[ 3456.772794][T15605]
[ 3456.775714][T15605] dump_stack_lvl+0xd6/0x122
[ 3456.780411][T15605] dump_stack+0x11/0x1b
[ 3456.784664][T15605] dump_header+0x98/0x410
[ 3456.788976][T15605] oom_kill_process+0x18e/0x3f0
[ 3456.793805][T15605] out_of_memory+0x5ed/0x890
[ 3456.798375][T15605] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3456.804330][T15605] memory_max_write+0x32c/0x3d0
[ 3456.809171][T15605] ? memory_max_show+0x70/0x70
[ 3456.813960][T15605] cgroup_file_write+0x161/0x300
[ 3456.818948][T15605] ? __check_object_size+0x22a/0x2d0
[ 3456.824216][T15605] ? cgroup_seqfile_stop+0x70/0x70
[ 3456.829305][T15605] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3456.834569][T15605] do_iter_readv_writev+0x2de/0x380
[ 3456.839884][T15605] do_iter_write+0x192/0x5c0
[ 3456.844467][T15605] ? splice_from_pipe_next+0x34f/0x3b0
[ 3456.849943][T15605] ? kmalloc_array+0x2d/0x40
[ 3456.854513][T15605] vfs_iter_write+0x4c/0x70
[ 3456.858994][T15605] iter_file_splice_write+0x43a/0x790
[ 3456.864351][T15605] ? splice_from_pipe+0xd0/0xd0
[ 3456.869260][T15605] direct_splice_actor+0x80/0xa0
[ 3456.874179][T15605] splice_direct_to_actor+0x345/0x650
[ 3456.879612][T15605] ? do_splice_direct+0x190/0x190
[ 3456.884746][T15605] do_splice_direct+0x106/0x190
[ 3456.889587][T15605] do_sendfile+0x675/0xc40
[ 3456.894006][T15605] __x64_sys_sendfile64+0x102/0x140
[ 3456.899183][T15605] do_syscall_64+0x44/0xd0
[ 3456.903756][T15605] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3456.909636][T15605] RIP: 0033:0x7f1a6af5aeb9
[ 3456.914052][T15605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3456.934072][T15605] RSP: 002b:00007f1a6a0d1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3456.942465][T15605] RAX: ffffffffffffffda RBX: 00007f1a6b06df60 RCX: 00007f1a6af5aeb9
[ 3456.950419][T15605] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3456.958426][T15605] RBP: 00007f1a6afb508d R08: 0000000000000000 R09: 0000000000000000
[ 3456.966459][T15605] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3456.974408][T15605] R13: 00007ffea25f29cf R14: 00007f1a6a0d1300 R15: 0000000000022000
[ 3456.982362][T15605]
[ 3456.985502][T15605] memory: usage 480kB, limit 0kB, failcnt 18078
[ 3456.991844][T15605] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3456.998731][T15605] Memory cgroup stats for /syz1:
[ 3456.999212][T15605] anon 114688
[ 3456.999212][T15605] file 118784
[ 3456.999212][T15605] kernel_stack 32768
[ 3456.999212][T15605] pagetables 90112
[ 3456.999212][T15605] percpu 0
[ 3456.999212][T15605] sock 0
[ 3456.999212][T15605] shmem 114688
[ 3456.999212][T15605] file_mapped 114688
[ 3456.999212][T15605] file_dirty 0
[ 3456.999212][T15605] file_writeback 0
[ 3456.999212][T15605] swapcached 0
[ 3456.999212][T15605] inactive_anon 147456
[ 3456.999212][T15605] active_anon 81920
[ 3456.999212][T15605] inactive_file 0
[ 3456.999212][T15605] active_file 4096
[ 3456.999212][T15605] unevictable 0
[ 3456.999212][T15605] slab_reclaimable 49224
[ 3456.999212][T15605] slab_unreclaimable 53336
[ 3456.999212][T15605] slab 102560
[ 3456.999212][T15605] workingset_refault_anon 0
[ 3456.999212][T15605] workingset_refault_file 0
[ 3456.999212][T15605] workingset_activate_anon 0
[ 3456.999212][T15605] workingset_activate_file 0
[ 3456.999212][T15605] workingset_restore_anon 0
09:20:50 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
tgkill(0x0, r0, 0x2b) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
tgkill(0x0, r1, 0x2b) (async)
wait4(r0, 0x0, 0x2, 0x0) (async)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:20:50 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r0, 0x0)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000080)={0x5, 0xc, 0x8, 0x1, 0x7, 0x10000, &(0x7f0000000040)="e26e20e5bff69f"})
unshare(0x20000400)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:20:50 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x1c) (async, rerun: 32)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 32)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='openpromfs\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:20:50 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2) (async)
r3 = fork()
process_vm_writev(r3, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0) (async)
syz_open_procfs(r3, &(0x7f0000000040)='net/connector\x00')
09:20:50 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:50 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="0c0307"], 0xa0) (async)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
r8 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r7, 0x84, 0x74, &(0x7f0000000040)={r9, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, 0x0, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:20:51 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r0, 0x0)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000080)={0x5, 0xc, 0x8, 0x1, 0x7, 0x10000, &(0x7f0000000040)="e26e20e5bff69f"}) (async)
unshare(0x20000400) (async)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000140), 0x4)
[ 3457.091614][T15605] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=15604,uid=0
[ 3457.106948][T15605] Memory cgroup out of memory: Killed process 15604 (syz-executor.1) total-vm:52452kB, anon-rss:372kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[ 3457.127048][ T26] oom_reaper: reaped process 15604 (syz-executor.1), now anon-rss:0kB, file-rss:14336kB, shmem-rss:8kB
09:20:51 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e676fd1bdfaa6492a6f5d69b3dbfae77ac9181c9d1ffa54c5849b550c3c28e565583cc02ce5b88f9aa37a347a77029d4ab071a3065bcee0a0b0dadc9f577a1814f2", 0x83, 0x20040801, 0x0, 0x0)
09:20:51 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20040801, 0x0, 0x0)
09:20:51 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x480402, 0x6c)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
[ 3457.182196][T15613] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3457.192505][T15613] CPU: 1 PID: 15613 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3457.200927][T15613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3457.210983][T15613] Call Trace:
[ 3457.214284][T15613]
[ 3457.217226][T15613] dump_stack_lvl+0xd6/0x122
[ 3457.221822][T15613] dump_stack+0x11/0x1b
[ 3457.226015][T15613] dump_header+0x98/0x410
09:20:51 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20040801, 0x0, 0x0)
09:20:51 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20040801, 0x0, 0x0)
[ 3457.230344][T15613] oom_kill_process+0x18e/0x3f0
[ 3457.235208][T15613] out_of_memory+0x5ed/0x890
[ 3457.239872][T15613] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3457.245679][T15613] memory_max_write+0x32c/0x3d0
[ 3457.250546][T15613] ? memory_max_show+0x70/0x70
[ 3457.255360][T15613] cgroup_file_write+0x161/0x300
[ 3457.260351][T15613] ? __check_object_size+0x22a/0x2d0
[ 3457.265707][T15613] ? cgroup_seqfile_stop+0x70/0x70
[ 3457.270835][T15613] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3457.276120][T15613] do_iter_readv_writev+0x2de/0x380
[ 3457.281325][T15613] do_iter_write+0x192/0x5c0
[ 3457.285918][T15613] ? splice_from_pipe_next+0x34f/0x3b0
[ 3457.291385][T15613] ? kmalloc_array+0x2d/0x40
[ 3457.296035][T15613] vfs_iter_write+0x4c/0x70
[ 3457.300536][T15613] iter_file_splice_write+0x43a/0x790
[ 3457.305924][T15613] ? splice_from_pipe+0xd0/0xd0
[ 3457.310816][T15613] direct_splice_actor+0x80/0xa0
[ 3457.315754][T15613] splice_direct_to_actor+0x345/0x650
[ 3457.321128][T15613] ? do_splice_direct+0x190/0x190
[ 3457.326133][T15613] do_splice_direct+0x106/0x190
[ 3457.331033][T15613] do_sendfile+0x675/0xc40
[ 3457.335461][T15613] __x64_sys_sendfile64+0x102/0x140
[ 3457.340681][T15613] do_syscall_64+0x44/0xd0
[ 3457.345156][T15613] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3457.351078][T15613] RIP: 0033:0x7f4d3cb0beb9
[ 3457.355548][T15613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3457.375133][T15613] RSP: 002b:00007f4d3bc61168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3457.383538][T15613] RAX: ffffffffffffffda RBX: 00007f4d3cc1f030 RCX: 00007f4d3cb0beb9
[ 3457.391503][T15613] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3457.399453][T15613] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3457.407454][T15613] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3457.415401][T15613] R13: 00007ffcd48e4c5f R14: 00007f4d3bc61300 R15: 0000000000022000
[ 3457.423352][T15613]
[ 3457.426405][T15613] memory: usage 232kB, limit 0kB, failcnt 18097
[ 3457.432631][T15613] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3457.439517][T15613] Memory cgroup stats for /syz1:
[ 3457.439710][T15613] anon 32768
[ 3457.439710][T15613] file 118784
[ 3457.439710][T15613] kernel_stack 0
[ 3457.439710][T15613] pagetables 8192
[ 3457.439710][T15613] percpu 0
[ 3457.439710][T15613] sock 0
[ 3457.439710][T15613] shmem 114688
[ 3457.439710][T15613] file_mapped 114688
[ 3457.439710][T15613] file_dirty 0
[ 3457.439710][T15613] file_writeback 0
[ 3457.439710][T15613] swapcached 0
[ 3457.439710][T15613] inactive_anon 65536
[ 3457.439710][T15613] active_anon 81920
[ 3457.439710][T15613] inactive_file 0
[ 3457.439710][T15613] active_file 4096
[ 3457.439710][T15613] unevictable 0
[ 3457.439710][T15613] slab_reclaimable 35680
[ 3457.439710][T15613] slab_unreclaimable 21792
[ 3457.439710][T15613] slab 57472
[ 3457.439710][T15613] workingset_refault_anon 0
[ 3457.439710][T15613] workingset_refault_file 0
[ 3457.439710][T15613] workingset_activate_anon 0
[ 3457.439710][T15613] workingset_activate_file 0
[ 3457.439710][T15613] workingset_restore_anon 0
[ 3457.439710][T15613] workingset_restore_file 0
[ 3457.536286][T15613] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=15571,uid=0
[ 3457.551521][T15613] Memory cgroup out of memory: Killed process 15571 (syz-executor.1) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
[ 3457.569584][ T26] oom_reaper: reaped process 15571 (syz-executor.1), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
[ 3457.570604][T15931] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3457.590652][T15931] CPU: 1 PID: 15931 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3457.599065][T15931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3457.609099][T15931] Call Trace:
[ 3457.612357][T15931]
[ 3457.615361][T15931] dump_stack_lvl+0xd6/0x122
[ 3457.619935][T15931] dump_stack+0x11/0x1b
[ 3457.624100][T15931] dump_header+0x98/0x410
[ 3457.628468][T15931] out_of_memory+0x62c/0x890
[ 3457.633061][T15931] memory_max_write+0x32c/0x3d0
[ 3457.637893][T15931] ? memory_max_show+0x70/0x70
[ 3457.642658][T15931] cgroup_file_write+0x161/0x300
[ 3457.647622][T15931] ? __check_object_size+0x22a/0x2d0
[ 3457.652958][T15931] ? cgroup_seqfile_stop+0x70/0x70
[ 3457.658050][T15931] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3457.663312][T15931] do_iter_readv_writev+0x2de/0x380
[ 3457.668565][T15931] do_iter_write+0x192/0x5c0
[ 3457.673133][T15931] ? splice_from_pipe_next+0x34f/0x3b0
[ 3457.678575][T15931] ? kmalloc_array+0x2d/0x40
[ 3457.683165][T15931] vfs_iter_write+0x4c/0x70
[ 3457.687714][T15931] iter_file_splice_write+0x43a/0x790
[ 3457.693069][T15931] ? splice_from_pipe+0xd0/0xd0
[ 3457.697968][T15931] direct_splice_actor+0x80/0xa0
[ 3457.702886][T15931] splice_direct_to_actor+0x345/0x650
[ 3457.708261][T15931] ? do_splice_direct+0x190/0x190
[ 3457.713285][T15931] do_splice_direct+0x106/0x190
[ 3457.718139][T15931] do_sendfile+0x675/0xc40
[ 3457.722540][T15931] __x64_sys_sendfile64+0x102/0x140
[ 3457.727779][T15931] do_syscall_64+0x44/0xd0
[ 3457.732244][T15931] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3457.738124][T15931] RIP: 0033:0x7f0a46a70eb9
[ 3457.742516][T15931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3457.762101][T15931] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3457.770493][T15931] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3457.778444][T15931] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3457.786458][T15931] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3457.794406][T15931] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3457.802362][T15931] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3457.810328][T15931]
[ 3457.813479][T15931] memory: usage 176kB, limit 0kB, failcnt 18114
[ 3457.819728][T15931] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3457.826636][T15931] Memory cgroup stats for /syz1:
[ 3457.828073][T15931] anon 0
[ 3457.828073][T15931] file 118784
[ 3457.828073][T15931] kernel_stack 0
[ 3457.828073][T15931] pagetables 0
[ 3457.828073][T15931] percpu 0
[ 3457.828073][T15931] sock 0
[ 3457.828073][T15931] shmem 114688
[ 3457.828073][T15931] file_mapped 114688
[ 3457.828073][T15931] file_dirty 0
[ 3457.828073][T15931] file_writeback 0
[ 3457.828073][T15931] swapcached 0
[ 3457.828073][T15931] inactive_anon 32768
[ 3457.828073][T15931] active_anon 81920
[ 3457.828073][T15931] inactive_file 4096
[ 3457.828073][T15931] active_file 0
[ 3457.828073][T15931] unevictable 0
[ 3457.828073][T15931] slab_reclaimable 35680
[ 3457.828073][T15931] slab_unreclaimable 20520
[ 3457.828073][T15931] slab 56200
[ 3457.828073][T15931] workingset_refault_anon 0
[ 3457.828073][T15931] workingset_refault_file 0
[ 3457.828073][T15931] workingset_activate_anon 0
[ 3457.828073][T15931] workingset_activate_file 0
[ 3457.828073][T15931] workingset_restore_anon 0
[ 3457.828073][T15931] workingset_restore_file 0
[ 3457.923636][T15931] Out of memory and no killable processes...
[ 3457.929619][T15613] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3457.939857][T15613] CPU: 0 PID: 15613 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3457.948284][T15613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3457.958330][T15613] Call Trace:
[ 3457.961587][T15613]
[ 3457.964499][T15613] dump_stack_lvl+0xd6/0x122
[ 3457.969074][T15613] dump_stack+0x11/0x1b
[ 3457.973208][T15613] dump_header+0x98/0x410
[ 3457.977589][T15613] out_of_memory+0x62c/0x890
[ 3457.982210][T15613] memory_max_write+0x32c/0x3d0
[ 3457.987076][T15613] ? memory_max_show+0x70/0x70
[ 3457.991900][T15613] cgroup_file_write+0x161/0x300
[ 3457.996885][T15613] ? __check_object_size+0x22a/0x2d0
[ 3458.002212][T15613] ? cgroup_seqfile_stop+0x70/0x70
[ 3458.007356][T15613] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3458.012621][T15613] do_iter_readv_writev+0x2de/0x380
[ 3458.017951][T15613] do_iter_write+0x192/0x5c0
[ 3458.022516][T15613] ? splice_from_pipe_next+0x34f/0x3b0
[ 3458.027966][T15613] ? kmalloc_array+0x2d/0x40
[ 3458.032541][T15613] vfs_iter_write+0x4c/0x70
[ 3458.037073][T15613] iter_file_splice_write+0x43a/0x790
[ 3458.042424][T15613] ? splice_from_pipe+0xd0/0xd0
[ 3458.047333][T15613] direct_splice_actor+0x80/0xa0
[ 3458.052292][T15613] splice_direct_to_actor+0x345/0x650
[ 3458.057700][T15613] ? do_splice_direct+0x190/0x190
[ 3458.062792][T15613] do_splice_direct+0x106/0x190
[ 3458.067664][T15613] do_sendfile+0x675/0xc40
[ 3458.072061][T15613] __x64_sys_sendfile64+0x102/0x140
[ 3458.077293][T15613] do_syscall_64+0x44/0xd0
[ 3458.081777][T15613] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3458.087657][T15613] RIP: 0033:0x7f4d3cb0beb9
[ 3458.092078][T15613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3458.111698][T15613] RSP: 002b:00007f4d3bc61168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3458.120190][T15613] RAX: ffffffffffffffda RBX: 00007f4d3cc1f030 RCX: 00007f4d3cb0beb9
[ 3458.128244][T15613] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3458.136191][T15613] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3458.144228][T15613] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3458.152231][T15613] R13: 00007ffcd48e4c5f R14: 00007f4d3bc61300 R15: 0000000000022000
[ 3458.160201][T15613]
[ 3458.163230][T15613] memory: usage 176kB, limit 0kB, failcnt 18114
[ 3458.169453][T15613] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3458.176313][T15613] Memory cgroup stats for /syz1:
[ 3458.176677][T15613] anon 0
[ 3458.176677][T15613] file 118784
[ 3458.176677][T15613] kernel_stack 0
[ 3458.176677][T15613] pagetables 0
[ 3458.176677][T15613] percpu 0
[ 3458.176677][T15613] sock 0
[ 3458.176677][T15613] shmem 114688
[ 3458.176677][T15613] file_mapped 114688
[ 3458.176677][T15613] file_dirty 0
[ 3458.176677][T15613] file_writeback 0
[ 3458.176677][T15613] swapcached 0
[ 3458.176677][T15613] inactive_anon 32768
[ 3458.176677][T15613] active_anon 81920
[ 3458.176677][T15613] inactive_file 4096
[ 3458.176677][T15613] active_file 0
[ 3458.176677][T15613] unevictable 0
09:20:52 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 32)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async, rerun: 32)
tgkill(0x0, 0x0, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
tgkill(0x0, r0, 0x2b) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
tgkill(0x0, r1, 0x2b) (async, rerun: 32)
wait4(r0, 0x0, 0x2, 0x0) (rerun: 32)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 64)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:20:52 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000), 0x0, 0x20040801, 0x0, 0x0)
09:20:52 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
r3 = fork()
process_vm_writev(r3, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0)
syz_open_procfs(r3, &(0x7f0000000040)='net/connector\x00')
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
fork() (async)
process_vm_writev(r3, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0) (async)
syz_open_procfs(r3, &(0x7f0000000040)='net/connector\x00') (async)
09:20:52 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r0, 0x0) (async)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000080)={0x5, 0xc, 0x8, 0x1, 0x7, 0x10000, &(0x7f0000000040)="e26e20e5bff69f"}) (async)
unshare(0x20000400) (async)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:20:52 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x480402, 0x6c) (async)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:20:52 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x8080, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
umount2(&(0x7f0000000080)='./file0\x00', 0x8)
sendfile(r2, r2, 0x0, 0x2)
[ 3458.176677][T15613] slab_reclaimable 35680
[ 3458.176677][T15613] slab_unreclaimable 20520
[ 3458.176677][T15613] slab 56200
[ 3458.176677][T15613] workingset_refault_anon 0
[ 3458.176677][T15613] workingset_refault_file 0
[ 3458.176677][T15613] workingset_activate_anon 0
[ 3458.176677][T15613] workingset_activate_file 0
[ 3458.176677][T15613] workingset_restore_anon 0
[ 3458.176677][T15613] workingset_restore_file 0
[ 3458.272257][T15613] Out of memory and no killable processes...
09:20:52 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000), 0x0, 0x20040801, 0x0, 0x0)
09:20:52 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='tmpfs\x00', 0x40008, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r4, &(0x7f0000000040)={0x12000201c})
[ 3458.358297][T15935] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3458.368527][T15935] CPU: 0 PID: 15935 Comm: syz-executor.2 Not tainted 5.16.0-syzkaller #0
[ 3458.376960][T15935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3458.387041][T15935] Call Trace:
[ 3458.390382][T15935]
[ 3458.393309][T15935] dump_stack_lvl+0xd6/0x122
[ 3458.397941][T15935] dump_stack+0x11/0x1b
[ 3458.402099][T15935] dump_header+0x98/0x410
[ 3458.406506][T15935] out_of_memory+0x62c/0x890
[ 3458.411096][T15935] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3458.416954][T15935] memory_max_write+0x32c/0x3d0
[ 3458.421838][T15935] ? memory_max_show+0x70/0x70
[ 3458.426670][T15935] cgroup_file_write+0x161/0x300
[ 3458.431608][T15935] ? __check_object_size+0x22a/0x2d0
[ 3458.436882][T15935] ? cgroup_seqfile_stop+0x70/0x70
[ 3458.442038][T15935] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3458.447307][T15935] do_iter_readv_writev+0x2de/0x380
[ 3458.452647][T15935] do_iter_write+0x192/0x5c0
[ 3458.457269][T15935] ? splice_from_pipe_next+0x34f/0x3b0
[ 3458.462747][T15935] ? kmalloc_array+0x2d/0x40
[ 3458.467322][T15935] vfs_iter_write+0x4c/0x70
[ 3458.471812][T15935] iter_file_splice_write+0x43a/0x790
[ 3458.477256][T15935] ? splice_from_pipe+0xd0/0xd0
[ 3458.482155][T15935] direct_splice_actor+0x80/0xa0
[ 3458.487158][T15935] splice_direct_to_actor+0x345/0x650
[ 3458.492538][T15935] ? do_splice_direct+0x190/0x190
[ 3458.497581][T15935] do_splice_direct+0x106/0x190
[ 3458.502501][T15935] do_sendfile+0x675/0xc40
[ 3458.506945][T15935] __x64_sys_sendfile64+0x102/0x140
[ 3458.512149][T15935] do_syscall_64+0x44/0xd0
[ 3458.516556][T15935] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3458.522511][T15935] RIP: 0033:0x7f0466d58eb9
[ 3458.526991][T15935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3458.546743][T15935] RSP: 002b:00007f0465ecf168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
09:20:52 executing program 3:
unshare(0x20000400)
unshare(0x50000000)
r0 = socket$packet(0x11, 0x2, 0x300)
sendto(r0, &(0x7f0000000140)="a034139a60095c6cf9e4ee821d31f40591403de1ece68c9527f8ee3615b7253e62c6af4ce7a737b712ce030be7505673d185daa80728", 0x36, 0x48880, &(0x7f0000000080)=@ethernet={0x306, @multicast}, 0x80)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x1, 0x8000}, 0x4)
unshare(0x800)
09:20:52 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x8080, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
umount2(&(0x7f0000000080)='./file0\x00', 0x8)
sendfile(r2, r2, 0x0, 0x2)
09:20:52 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000), 0x0, 0x20040801, 0x0, 0x0)
[ 3458.555138][T15935] RAX: ffffffffffffffda RBX: 00007f0466e6bf60 RCX: 00007f0466d58eb9
[ 3458.563125][T15935] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3458.571084][T15935] RBP: 00007f0466db308d R08: 0000000000000000 R09: 0000000000000000
[ 3458.579047][T15935] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3458.587001][T15935] R13: 00007ffe91a81ecf R14: 00007f0465ecf300 R15: 0000000000022000
[ 3458.595009][T15935]
[ 3458.598054][T15935] memory: usage 172kB, limit 0kB, failcnt 18114
09:20:52 executing program 3:
unshare(0x20000400)
unshare(0x50000000)
r0 = socket$packet(0x11, 0x2, 0x300)
sendto(r0, &(0x7f0000000140)="a034139a60095c6cf9e4ee821d31f40591403de1ece68c9527f8ee3615b7253e62c6af4ce7a737b712ce030be7505673d185daa80728", 0x36, 0x48880, &(0x7f0000000080)=@ethernet={0x306, @multicast}, 0x80)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x1, 0x8000}, 0x4)
unshare(0x800)
unshare(0x20000400) (async)
unshare(0x50000000) (async)
socket$packet(0x11, 0x2, 0x300) (async)
sendto(r0, &(0x7f0000000140)="a034139a60095c6cf9e4ee821d31f40591403de1ece68c9527f8ee3615b7253e62c6af4ce7a737b712ce030be7505673d185daa80728", 0x36, 0x48880, &(0x7f0000000080)=@ethernet={0x306, @multicast}, 0x80) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x1, 0x8000}, 0x4) (async)
unshare(0x800) (async)
09:20:52 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x480402, 0x6c)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
open(&(0x7f0000000040)='./file0\x00', 0x480402, 0x6c) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
[ 3458.604316][T15935] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
09:20:52 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e772bc919ca6e0157dc6d30355b5f7178e4de0f0b1212edd54b01e2add959bf1187fb99a2d8703234a956b849e77777afa378e6d8188a98426b5789b34a4d7ec858e", 0x42, 0x20040801, 0x0, 0x0)
[ 3458.611184][T15935] Memory cgroup stats for /syz1:
[ 3458.667561][T15935] anon 0
[ 3458.667561][T15935] file 118784
[ 3458.667561][T15935] kernel_stack 0
[ 3458.667561][T15935] pagetables 0
[ 3458.667561][T15935] percpu 0
[ 3458.667561][T15935] sock 0
[ 3458.667561][T15935] shmem 114688
[ 3458.667561][T15935] file_mapped 114688
[ 3458.667561][T15935] file_dirty 0
[ 3458.667561][T15935] file_writeback 0
[ 3458.667561][T15935] swapcached 0
[ 3458.667561][T15935] inactive_anon 32768
[ 3458.667561][T15935] active_anon 81920
[ 3458.667561][T15935] inactive_file 4096
[ 3458.667561][T15935] active_file 0
[ 3458.667561][T15935] unevictable 0
[ 3458.667561][T15935] slab_reclaimable 32992
[ 3458.667561][T15935] slab_unreclaimable 19928
[ 3458.667561][T15935] slab 52920
[ 3458.667561][T15935] workingset_refault_anon 0
[ 3458.667561][T15935] workingset_refault_file 0
[ 3458.667561][T15935] workingset_activate_anon 0
[ 3458.667561][T15935] workingset_activate_file 0
[ 3458.667561][T15935] workingset_restore_anon 0
[ 3458.667561][T15935] workingset_restore_file 0
09:20:52 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x103000, &(0x7f0000000200)={[{@gid}, {@nr_blocks={'nr_blocks', 0x3d, [0x35, 0x25, 0x32, 0x70, 0x37]}}, {@mpol={'mpol', 0x3d, {'default', '=static', @void}}}], [{@func={'func', 0x3d, 'BPRM_CHECK'}}, {@dont_hash}]})
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
09:20:52 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x8080, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
umount2(&(0x7f0000000080)='./file0\x00', 0x8)
sendfile(r2, r2, 0x0, 0x2)
09:20:52 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:20:52 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x20040801, 0x0, 0x0)
09:20:52 executing program 3:
unshare(0x20000400) (async)
unshare(0x50000000) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
sendto(r0, &(0x7f0000000140)="a034139a60095c6cf9e4ee821d31f40591403de1ece68c9527f8ee3615b7253e62c6af4ce7a737b712ce030be7505673d185daa80728", 0x36, 0x48880, &(0x7f0000000080)=@ethernet={0x306, @multicast}, 0x80) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x1, 0x8000}, 0x4)
unshare(0x800)
[ 3458.763086][T15935] Out of memory and no killable processes...
[ 3458.845150][T16567] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3458.855147][T16567] CPU: 0 PID: 16567 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3458.863563][T16567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3458.873617][T16567] Call Trace:
[ 3458.876904][T16567]
[ 3458.879907][T16567] dump_stack_lvl+0xd6/0x122
[ 3458.884573][T16567] dump_stack+0x11/0x1b
[ 3458.888752][T16567] dump_header+0x98/0x410
[ 3458.893084][T16567] out_of_memory+0x62c/0x890
[ 3458.897673][T16567] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3458.903521][T16567] memory_max_write+0x32c/0x3d0
[ 3458.908508][T16567] ? memory_max_show+0x70/0x70
[ 3458.913287][T16567] cgroup_file_write+0x161/0x300
[ 3458.918305][T16567] ? __check_object_size+0x22a/0x2d0
[ 3458.923667][T16567] ? cgroup_seqfile_stop+0x70/0x70
[ 3458.928856][T16567] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3458.934147][T16567] do_iter_readv_writev+0x2de/0x380
[ 3458.939401][T16567] do_iter_write+0x192/0x5c0
[ 3458.944068][T16567] ? splice_from_pipe_next+0x34f/0x3b0
[ 3458.949533][T16567] ? kmalloc_array+0x2d/0x40
[ 3458.954133][T16567] vfs_iter_write+0x4c/0x70
[ 3458.958715][T16567] iter_file_splice_write+0x43a/0x790
[ 3458.964094][T16567] ? splice_from_pipe+0xd0/0xd0
[ 3458.968956][T16567] direct_splice_actor+0x80/0xa0
[ 3458.973900][T16567] splice_direct_to_actor+0x345/0x650
[ 3458.979275][T16567] ? do_splice_direct+0x190/0x190
[ 3458.984326][T16567] do_splice_direct+0x106/0x190
[ 3458.989255][T16567] do_sendfile+0x675/0xc40
[ 3458.993729][T16567] __x64_sys_sendfile64+0x102/0x140
[ 3458.998976][T16567] do_syscall_64+0x44/0xd0
[ 3459.003393][T16567] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3459.009290][T16567] RIP: 0033:0x7f0a46a70eb9
[ 3459.013723][T16567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3459.033406][T16567] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3459.041817][T16567] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3459.049794][T16567] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3459.057809][T16567] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3459.065782][T16567] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3459.073751][T16567] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3459.081906][T16567]
[ 3459.084956][T16567] memory: usage 168kB, limit 0kB, failcnt 18114
[ 3459.091210][T16567] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3459.098050][T16567] Memory cgroup stats for /syz1:
[ 3459.108576][T16567] anon 0
[ 3459.108576][T16567] file 118784
[ 3459.108576][T16567] kernel_stack 0
[ 3459.108576][T16567] pagetables 0
[ 3459.108576][T16567] percpu 0
[ 3459.108576][T16567] sock 0
[ 3459.108576][T16567] shmem 114688
[ 3459.108576][T16567] file_mapped 114688
[ 3459.108576][T16567] file_dirty 0
[ 3459.108576][T16567] file_writeback 0
[ 3459.108576][T16567] swapcached 0
[ 3459.108576][T16567] inactive_anon 32768
[ 3459.108576][T16567] active_anon 81920
[ 3459.108576][T16567] inactive_file 0
[ 3459.108576][T16567] active_file 4096
[ 3459.108576][T16567] unevictable 0
[ 3459.108576][T16567] slab_reclaimable 32992
[ 3459.108576][T16567] slab_unreclaimable 19928
[ 3459.108576][T16567] slab 52920
[ 3459.108576][T16567] workingset_refault_anon 0
[ 3459.108576][T16567] workingset_refault_file 0
[ 3459.108576][T16567] workingset_activate_anon 0
[ 3459.108576][T16567] workingset_activate_file 0
[ 3459.108576][T16567] workingset_restore_anon 0
[ 3459.108576][T16567] workingset_restore_file 0
[ 3459.204152][T16567] Out of memory and no killable processes...
[ 3459.481804][T31801] device hsr_slave_0 left promiscuous mode
[ 3459.488012][T31801] device hsr_slave_1 left promiscuous mode
[ 3459.494150][T31801] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3459.501599][T31801] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3459.509099][T31801] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3459.516545][T31801] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3459.524129][T31801] device bridge_slave_1 left promiscuous mode
[ 3459.530406][T31801] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3459.537952][T31801] device bridge_slave_0 left promiscuous mode
[ 3459.544132][T31801] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3459.554233][T31801] device veth1_macvtap left promiscuous mode
[ 3459.560226][T31801] device veth0_macvtap left promiscuous mode
[ 3459.566275][T31801] device veth1_vlan left promiscuous mode
[ 3459.572011][T31801] device veth0_vlan left promiscuous mode
[ 3459.649014][T31801] team0 (unregistering): Port device team_slave_1 removed
[ 3459.659205][T31801] team0 (unregistering): Port device team_slave_0 removed
[ 3459.669128][T31801] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3459.681522][T31801] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3459.708355][T31801] bond0 (unregistering): Released all slaves
[ 3460.443143][T16773] lo speed is unknown, defaulting to 1000
[ 3460.477431][T16773] chnl_net:caif_netlink_parms(): no params data found
[ 3460.507019][T16773] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3460.514140][T16773] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3460.521610][T16773] device bridge_slave_0 entered promiscuous mode
[ 3460.528403][T16773] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3460.535427][T16773] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3460.542985][T16773] device bridge_slave_1 entered promiscuous mode
[ 3460.558000][T16773] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3460.568452][T16773] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3460.585913][T16773] team0: Port device team_slave_0 added
[ 3460.592157][T16773] team0: Port device team_slave_1 added
[ 3460.606190][T16773] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3460.613129][T16773] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3460.639013][T16773] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3460.650340][T16773] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3460.657265][T16773] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3460.683162][T16773] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3460.704604][T16773] device hsr_slave_0 entered promiscuous mode
[ 3460.711756][T16773] device hsr_slave_1 entered promiscuous mode
[ 3460.718033][T16773] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3460.725635][T16773] Cannot create hsr debugfs directory
[ 3460.752182][T16773] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3460.759193][T16773] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3460.766535][T16773] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3460.773558][T16773] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3460.799733][T16773] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3460.810149][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3460.817880][T19400] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3460.826675][T19400] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3460.837761][T16773] 8021q: adding VLAN 0 to HW filter on device team0
[ 3460.846922][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3460.855122][T19402] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3460.862141][T19402] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3460.880988][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3460.889310][T19402] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3460.896341][T19402] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3460.904788][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3460.913349][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3460.921918][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3460.930260][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3460.939467][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3460.948920][T16773] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3460.962326][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3460.969648][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3460.978502][T16773] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3461.054831][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3461.100616][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3461.109039][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3461.116824][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3461.124567][T16773] device veth0_vlan entered promiscuous mode
[ 3461.133717][T16773] device veth1_vlan entered promiscuous mode
[ 3461.145748][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3461.154423][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3461.162817][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3461.173134][T16773] device veth0_macvtap entered promiscuous mode
[ 3461.181714][T16773] device veth1_macvtap entered promiscuous mode
[ 3461.192687][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3461.203175][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3461.212984][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3461.223392][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3461.233272][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3461.243707][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3461.253509][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3461.263919][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3461.273833][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3461.284316][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3461.295774][T16773] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3461.304433][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3461.313814][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 3461.323952][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3461.334390][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3461.344212][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3461.354625][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3461.364438][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3461.374847][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3461.384712][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
09:20:55 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async)
tgkill(0x0, 0x0, 0x0) (async)
wait4(0x0, 0x0, 0x2, 0x0) (async)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='tmpfs\x00', 0x40008, 0x0) (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2) (async)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r4, &(0x7f0000000040)={0x12000201c})
09:20:55 executing program 0:
syz_usbip_server_init(0xa1d81589c5c792bc)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:20:55 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000), 0x0, 0x20040801, 0x0, 0x0)
09:20:55 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
unshare(0x400)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:20:55 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x103000, &(0x7f0000000200)={[{@gid}, {@nr_blocks={'nr_blocks', 0x3d, [0x35, 0x25, 0x32, 0x70, 0x37]}}, {@mpol={'mpol', 0x3d, {'default', '=static', @void}}}], [{@func={'func', 0x3d, 'BPRM_CHECK'}}, {@dont_hash}]}) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
09:20:55 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
[ 3461.395231][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3461.405049][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3461.415459][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3461.427090][T16773] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3461.435789][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
09:20:55 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000), 0x0, 0x20040801, 0x0, 0x0)
09:20:55 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async, rerun: 64)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 64)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x103000, &(0x7f0000000200)={[{@gid}, {@nr_blocks={'nr_blocks', 0x3d, [0x35, 0x25, 0x32, 0x70, 0x37]}}, {@mpol={'mpol', 0x3d, {'default', '=static', @void}}}], [{@func={'func', 0x3d, 'BPRM_CHECK'}}, {@dont_hash}]}) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
[ 3461.499716][T16809] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3461.509950][T16809] CPU: 0 PID: 16809 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3461.518400][T16809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3461.528500][T16809] Call Trace:
[ 3461.531778][T16809]
[ 3461.534740][T16809] dump_stack_lvl+0xd6/0x122
[ 3461.539386][T16809] dump_stack+0x11/0x1b
[ 3461.543544][T16809] dump_header+0x98/0x410
09:20:55 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000), 0x0, 0x20040801, 0x0, 0x0)
09:20:55 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = fork()
process_vm_writev(r0, &(0x7f0000002500)=[{&(0x7f0000000200)=""/115, 0x73}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f0000000280)=""/141, 0x8d}, {&(0x7f00000013c0)=""/174, 0xae}, {&(0x7f0000001480)=""/67, 0x43}, {&(0x7f0000001500)=""/4096, 0x1000}], 0x6, &(0x7f0000000340)=[{&(0x7f0000000100)=""/33, 0x21}, {&(0x7f0000002580)=""/230, 0xe6}, {&(0x7f0000002680)=""/187, 0xbb}], 0x3, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x8800, 0x1)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
openat$cgroup_int(r3, &(0x7f0000000040)='cpu.weight\x00', 0x2, 0x0)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000002740), 0x2c000, 0x0)
read(r5, &(0x7f0000002780)=""/4096, 0x1000)
sendfile(r4, r4, 0x0, 0x2)
09:20:55 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3461.547882][T16809] oom_kill_process+0x18e/0x3f0
[ 3461.552746][T16809] out_of_memory+0x5ed/0x890
[ 3461.557334][T16809] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3461.563266][T16809] memory_max_write+0x32c/0x3d0
[ 3461.568123][T16809] ? memory_max_show+0x70/0x70
[ 3461.572953][T16809] cgroup_file_write+0x161/0x300
[ 3461.577959][T16809] ? __check_object_size+0x22a/0x2d0
[ 3461.583290][T16809] ? cgroup_seqfile_stop+0x70/0x70
[ 3461.588405][T16809] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3461.593698][T16809] do_iter_readv_writev+0x2de/0x380
09:20:55 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="0c0307"], 0xa0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000080)=0x18)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
r8 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r7, 0x84, 0x74, &(0x7f0000000040)={r9, 0x0, 0x30}, &(0x7f0000000080)=0x18)
setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, 0x0, 0x0)
sendfile(r2, r2, 0x0, 0x2)
[ 3461.598915][T16809] do_iter_write+0x192/0x5c0
[ 3461.603505][T16809] ? splice_from_pipe_next+0x34f/0x3b0
[ 3461.608973][T16809] ? kmalloc_array+0x2d/0x40
[ 3461.613627][T16809] vfs_iter_write+0x4c/0x70
[ 3461.618167][T16809] iter_file_splice_write+0x43a/0x790
[ 3461.623596][T16809] ? splice_from_pipe+0xd0/0xd0
[ 3461.628527][T16809] direct_splice_actor+0x80/0xa0
[ 3461.633481][T16809] splice_direct_to_actor+0x345/0x650
[ 3461.638855][T16809] ? do_splice_direct+0x190/0x190
[ 3461.643964][T16809] do_splice_direct+0x106/0x190
[ 3461.648889][T16809] do_sendfile+0x675/0xc40
[ 3461.653313][T16809] __x64_sys_sendfile64+0x102/0x140
[ 3461.658509][T16809] do_syscall_64+0x44/0xd0
[ 3461.662924][T16809] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3461.668814][T16809] RIP: 0033:0x7f4d3cb0beb9
[ 3461.673203][T16809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3461.692816][T16809] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3461.701206][T16809] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3461.709168][T16809] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000014
[ 3461.717176][T16809] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3461.725133][T16809] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3461.733118][T16809] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3461.741074][T16809]
[ 3461.744150][T16809] memory: usage 240kB, limit 0kB, failcnt 18133
[ 3461.750408][T16809] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3461.757330][T16809] Memory cgroup stats for /syz1:
[ 3461.760569][T16809] anon 24576
[ 3461.760569][T16809] file 118784
[ 3461.760569][T16809] kernel_stack 0
[ 3461.760569][T16809] pagetables 8192
[ 3461.760569][T16809] percpu 0
[ 3461.760569][T16809] sock 0
[ 3461.760569][T16809] shmem 114688
[ 3461.760569][T16809] file_mapped 114688
[ 3461.760569][T16809] file_dirty 0
[ 3461.760569][T16809] file_writeback 0
[ 3461.760569][T16809] swapcached 0
[ 3461.760569][T16809] inactive_anon 57344
[ 3461.760569][T16809] active_anon 81920
[ 3461.760569][T16809] inactive_file 4096
[ 3461.760569][T16809] active_file 0
[ 3461.760569][T16809] unevictable 0
[ 3461.760569][T16809] slab_reclaimable 44568
[ 3461.760569][T16809] slab_unreclaimable 25632
[ 3461.760569][T16809] slab 70200
[ 3461.760569][T16809] workingset_refault_anon 0
[ 3461.760569][T16809] workingset_refault_file 0
[ 3461.760569][T16809] workingset_activate_anon 0
[ 3461.760569][T16809] workingset_activate_file 0
[ 3461.760569][T16809] workingset_restore_anon 0
[ 3461.760569][T16809] workingset_restore_file 0
[ 3461.856804][T16809] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16773,uid=0
[ 3461.872133][T16809] Memory cgroup out of memory: Killed process 16773 (syz-executor.1) total-vm:48480kB, anon-rss:368kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
[ 3461.889814][ T26] oom_reaper: reaped process 16773 (syz-executor.1), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
[ 3461.900964][T17031] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3461.911140][T17031] CPU: 1 PID: 17031 Comm: syz-executor.4 Not tainted 5.16.0-syzkaller #0
[ 3461.919552][T17031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3461.929588][T17031] Call Trace:
[ 3461.932851][T17031]
[ 3461.935765][T17031] dump_stack_lvl+0xd6/0x122
[ 3461.940426][T17031] dump_stack+0x11/0x1b
[ 3461.944575][T17031] dump_header+0x98/0x410
[ 3461.948917][T17031] out_of_memory+0x62c/0x890
[ 3461.953514][T17031] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3461.959369][T17031] memory_max_write+0x32c/0x3d0
[ 3461.964218][T17031] ? memory_max_show+0x70/0x70
[ 3461.968968][T17031] cgroup_file_write+0x161/0x300
[ 3461.973905][T17031] ? __check_object_size+0x22a/0x2d0
[ 3461.979267][T17031] ? cgroup_seqfile_stop+0x70/0x70
[ 3461.984430][T17031] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3461.989715][T17031] do_iter_readv_writev+0x2de/0x380
[ 3461.994917][T17031] do_iter_write+0x192/0x5c0
[ 3461.999487][T17031] ? splice_from_pipe_next+0x34f/0x3b0
[ 3462.004930][T17031] ? kmalloc_array+0x2d/0x40
[ 3462.009533][T17031] vfs_iter_write+0x4c/0x70
[ 3462.014091][T17031] iter_file_splice_write+0x43a/0x790
[ 3462.019545][T17031] ? splice_from_pipe+0xd0/0xd0
[ 3462.024382][T17031] direct_splice_actor+0x80/0xa0
[ 3462.029350][T17031] splice_direct_to_actor+0x345/0x650
[ 3462.034703][T17031] ? do_splice_direct+0x190/0x190
[ 3462.039715][T17031] do_splice_direct+0x106/0x190
[ 3462.044615][T17031] do_sendfile+0x675/0xc40
[ 3462.049162][T17031] __x64_sys_sendfile64+0x102/0x140
[ 3462.054457][T17031] do_syscall_64+0x44/0xd0
[ 3462.058884][T17031] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3462.064887][T17031] RIP: 0033:0x7f0e0806feb9
[ 3462.069278][T17031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3462.088862][T17031] RSP: 002b:00007f0e071e6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3462.097255][T17031] RAX: ffffffffffffffda RBX: 00007f0e08182f60 RCX: 00007f0e0806feb9
[ 3462.105218][T17031] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3462.113166][T17031] RBP: 00007f0e080ca08d R08: 0000000000000000 R09: 0000000000000000
[ 3462.121197][T17031] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3462.129145][T17031] R13: 00007ffd0b58fe4f R14: 00007f0e071e6300 R15: 0000000000022000
[ 3462.137136][T17031]
[ 3462.140224][T17031] memory: usage 176kB, limit 0kB, failcnt 18150
[ 3462.146466][T17031] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3462.153337][T17031] Memory cgroup stats for /syz1:
[ 3462.155682][T17031] anon 0
[ 3462.155682][T17031] file 118784
[ 3462.155682][T17031] kernel_stack 0
[ 3462.155682][T17031] pagetables 0
[ 3462.155682][T17031] percpu 0
[ 3462.155682][T17031] sock 0
[ 3462.155682][T17031] shmem 114688
[ 3462.155682][T17031] file_mapped 114688
[ 3462.155682][T17031] file_dirty 0
[ 3462.155682][T17031] file_writeback 0
[ 3462.155682][T17031] swapcached 0
[ 3462.155682][T17031] inactive_anon 32768
[ 3462.155682][T17031] active_anon 81920
[ 3462.155682][T17031] inactive_file 0
[ 3462.155682][T17031] active_file 4096
[ 3462.155682][T17031] unevictable 0
[ 3462.155682][T17031] slab_reclaimable 35280
[ 3462.155682][T17031] slab_unreclaimable 20168
[ 3462.155682][T17031] slab 55448
[ 3462.155682][T17031] workingset_refault_anon 0
[ 3462.155682][T17031] workingset_refault_file 0
[ 3462.155682][T17031] workingset_activate_anon 0
[ 3462.155682][T17031] workingset_activate_file 0
[ 3462.155682][T17031] workingset_restore_anon 0
[ 3462.155682][T17031] workingset_restore_file 0
[ 3462.251430][T17031] Out of memory and no killable processes...
[ 3462.257457][T16809] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3462.267693][T16809] CPU: 0 PID: 16809 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3462.276087][T16809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3462.286137][T16809] Call Trace:
[ 3462.289446][T16809]
[ 3462.292369][T16809] dump_stack_lvl+0xd6/0x122
[ 3462.296957][T16809] dump_stack+0x11/0x1b
[ 3462.301159][T16809] dump_header+0x98/0x410
[ 3462.305516][T16809] out_of_memory+0x62c/0x890
[ 3462.310116][T16809] memory_max_write+0x32c/0x3d0
[ 3462.314982][T16809] ? memory_max_show+0x70/0x70
[ 3462.319730][T16809] cgroup_file_write+0x161/0x300
[ 3462.324670][T16809] ? __check_object_size+0x22a/0x2d0
[ 3462.329985][T16809] ? cgroup_seqfile_stop+0x70/0x70
[ 3462.335086][T16809] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3462.340351][T16809] do_iter_readv_writev+0x2de/0x380
[ 3462.345637][T16809] do_iter_write+0x192/0x5c0
[ 3462.350204][T16809] ? splice_from_pipe_next+0x34f/0x3b0
[ 3462.355661][T16809] ? kmalloc_array+0x2d/0x40
[ 3462.360315][T16809] vfs_iter_write+0x4c/0x70
[ 3462.364794][T16809] iter_file_splice_write+0x43a/0x790
[ 3462.370180][T16809] ? splice_from_pipe+0xd0/0xd0
[ 3462.375130][T16809] direct_splice_actor+0x80/0xa0
[ 3462.380058][T16809] splice_direct_to_actor+0x345/0x650
[ 3462.385434][T16809] ? do_splice_direct+0x190/0x190
[ 3462.390504][T16809] do_splice_direct+0x106/0x190
[ 3462.395337][T16809] do_sendfile+0x675/0xc40
[ 3462.399732][T16809] __x64_sys_sendfile64+0x102/0x140
[ 3462.405020][T16809] do_syscall_64+0x44/0xd0
[ 3462.409475][T16809] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3462.415348][T16809] RIP: 0033:0x7f4d3cb0beb9
[ 3462.419738][T16809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3462.439327][T16809] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3462.447742][T16809] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3462.455749][T16809] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000014
[ 3462.463766][T16809] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3462.471732][T16809] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3462.479701][T16809] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3462.487743][T16809]
[ 3462.490775][T16809] memory: usage 176kB, limit 0kB, failcnt 18150
[ 3462.497010][T16809] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3462.503888][T16809] Memory cgroup stats for /syz1:
[ 3462.504525][T16809] anon 0
[ 3462.504525][T16809] file 118784
[ 3462.504525][T16809] kernel_stack 0
[ 3462.504525][T16809] pagetables 0
[ 3462.504525][T16809] percpu 0
[ 3462.504525][T16809] sock 0
[ 3462.504525][T16809] shmem 114688
[ 3462.504525][T16809] file_mapped 114688
[ 3462.504525][T16809] file_dirty 0
[ 3462.504525][T16809] file_writeback 0
[ 3462.504525][T16809] swapcached 0
[ 3462.504525][T16809] inactive_anon 32768
[ 3462.504525][T16809] active_anon 81920
[ 3462.504525][T16809] inactive_file 0
[ 3462.504525][T16809] active_file 4096
[ 3462.504525][T16809] unevictable 0
[ 3462.504525][T16809] slab_reclaimable 35280
[ 3462.504525][T16809] slab_unreclaimable 19928
[ 3462.504525][T16809] slab 55208
[ 3462.504525][T16809] workingset_refault_anon 0
[ 3462.504525][T16809] workingset_refault_file 0
[ 3462.504525][T16809] workingset_activate_anon 0
[ 3462.504525][T16809] workingset_activate_file 0
[ 3462.504525][T16809] workingset_restore_anon 0
[ 3462.504525][T16809] workingset_restore_file 0
[ 3462.600200][T16809] Out of memory and no killable processes...
09:20:56 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async)
tgkill(0x0, 0x0, 0x0) (async)
wait4(0x0, 0x0, 0x2, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async, rerun: 64)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (rerun: 64)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='tmpfs\x00', 0x40008, 0x0) (async, rerun: 64)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2) (async)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r4, &(0x7f0000000040)={0x12000201c})
09:20:56 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300) (async)
unshare(0x400)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:20:56 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = fork()
process_vm_writev(r0, &(0x7f0000002500)=[{&(0x7f0000000200)=""/115, 0x73}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f0000000280)=""/141, 0x8d}, {&(0x7f00000013c0)=""/174, 0xae}, {&(0x7f0000001480)=""/67, 0x43}, {&(0x7f0000001500)=""/4096, 0x1000}], 0x6, &(0x7f0000000340)=[{&(0x7f0000000100)=""/33, 0x21}, {&(0x7f0000002580)=""/230, 0xe6}, {&(0x7f0000002680)=""/187, 0xbb}], 0x3, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x8800, 0x1)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
openat$cgroup_int(r3, &(0x7f0000000040)='cpu.weight\x00', 0x2, 0x0)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000002740), 0x2c000, 0x0)
read(r5, &(0x7f0000002780)=""/4096, 0x1000)
sendfile(r4, r4, 0x0, 0x2)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
fork() (async)
process_vm_writev(r0, &(0x7f0000002500)=[{&(0x7f0000000200)=""/115, 0x73}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f0000000280)=""/141, 0x8d}, {&(0x7f00000013c0)=""/174, 0xae}, {&(0x7f0000001480)=""/67, 0x43}, {&(0x7f0000001500)=""/4096, 0x1000}], 0x6, &(0x7f0000000340)=[{&(0x7f0000000100)=""/33, 0x21}, {&(0x7f0000002580)=""/230, 0xe6}, {&(0x7f0000002680)=""/187, 0xbb}], 0x3, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
open(&(0x7f00000000c0)='./file0\x00', 0x8800, 0x1) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0) (async)
openat$cgroup_int(r3, &(0x7f0000000040)='cpu.weight\x00', 0x2, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000002740), 0x2c000, 0x0) (async)
read(r5, &(0x7f0000002780)=""/4096, 0x1000) (async)
sendfile(r4, r4, 0x0, 0x2) (async)
09:20:56 executing program 0:
syz_usbip_server_init(0xa1d81589c5c792bc) (async)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:20:56 executing program 4:
unshare(0x4020000)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x2000}, 0xffffffffffffff9c)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@dev={0xfe, 0x80, '\x00', 0x26}, 0x5, 0x0, 0x0, 0x3, 0x1, 0xb81}, 0x20)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x4, 0x3}, 0x4)
09:20:56 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
umount2(&(0x7f0000000040)='./file0\x00', 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
09:20:56 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
tgkill(0x0, 0x0, 0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000040)='net/rt6_stats\x00')
sendmsg$key(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x2, 0x14, 0x9, 0x3, 0x1c, 0x0, 0x70bd2a, 0x25dfdbfc, [@sadb_x_nat_t_port={0x1, 0x15, 0x4e24}, @sadb_spirange={0x2, 0x10, 0x4d6, 0x4d6}, @sadb_ident={0x2, 0xb, 0x9, 0x0, 0x3}, @sadb_x_sec_ctx={0x15, 0x18, 0x4, 0x9, 0xa0, "1e1d60e9497310ed46086a36fe715dbd1dedb34e9c31c722ae0b6248030aa644dd199354a7ec95c52b5658c0c2c781898000b96954312f913b441a415dcf744e385df6b289cfceb9615478667e08a1d856d02857e0e0c571a8001f4f16dff1baa2f4ccf4e20cbd3f2249d1d77427eca98200a166ce5cbb1269db797c6772d079bcc135440624edbba96bf6122a1bc764b4fe28465ba29eb67840fc91a5dedf53"}]}, 0xe0}}, 0x40)
wait4(0x0, 0x0, 0x2, 0x0)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0x5)
setuid(r5)
sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)=@ipv6_newroute={0x9c, 0x18, 0x200, 0x70bd28, 0x25dfdbfd, {0xa, 0x14, 0x20, 0x7f, 0x0, 0x2, 0xfd}, [@RTA_ENCAP={0x10, 0x16, 0x0, 0x1, @LWT_BPF_XMIT={0xc, 0x3, 0x0, 0x1, @LWT_BPF_PROG_NAME={0x7, 0x2, 'ct\x00'}}}, @RTA_METRICS={0x47, 0x8, 0x0, 0x1, "06297cb1c431af1e4b779087dd5843523c6a62233e211f5c9c57b938e5a1a4f09a9fa64676c5f94c87eb3aa093cbdb8a1a87fbbf65a2bbe82c432a566ab687145ebdb3"}, @RTA_EXPIRES={0x8, 0x17, 0x7}, @RTA_UID={0x8, 0x19, r5}, @RTA_PREF={0x5, 0x14, 0x43}, @RTA_PREF={0x5, 0x14, 0x9}, @RTA_PREF={0x5, 0x14, 0x6}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4004}, 0x20000000)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="0200000f0000e2ff2e2f225a5c9d0f8eb408f3b4b40066696c653000"])
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0x5c, 0x30, 0x727, 0x70bd28, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x300, {0x0, 0x10000000}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0x5c}}, 0x0)
creat(&(0x7f0000000380)='.\x00', 0x0)
[ 3462.936427][T17038] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3462.946442][T17038] CPU: 0 PID: 17038 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3462.954891][T17038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3462.964954][T17038] Call Trace:
[ 3462.968227][T17038]
[ 3462.971223][T17038] dump_stack_lvl+0xd6/0x122
[ 3462.975820][T17038] dump_stack+0x11/0x1b
[ 3462.980045][T17038] dump_header+0x98/0x410
[ 3462.984371][T17038] out_of_memory+0x62c/0x890
[ 3462.988959][T17038] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3462.994836][T17038] memory_max_write+0x32c/0x3d0
[ 3462.999691][T17038] ? memory_max_show+0x70/0x70
[ 3463.004455][T17038] cgroup_file_write+0x161/0x300
[ 3463.009397][T17038] ? __check_object_size+0x22a/0x2d0
[ 3463.014724][T17038] ? cgroup_seqfile_stop+0x70/0x70
[ 3463.019882][T17038] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3463.025165][T17038] do_iter_readv_writev+0x2de/0x380
[ 3463.030409][T17038] do_iter_write+0x192/0x5c0
[ 3463.035003][T17038] ? splice_from_pipe_next+0x34f/0x3b0
[ 3463.040468][T17038] ? kmalloc_array+0x2d/0x40
[ 3463.045119][T17038] vfs_iter_write+0x4c/0x70
[ 3463.049664][T17038] iter_file_splice_write+0x43a/0x790
[ 3463.055043][T17038] ? splice_from_pipe+0xd0/0xd0
[ 3463.059897][T17038] direct_splice_actor+0x80/0xa0
[ 3463.064839][T17038] splice_direct_to_actor+0x345/0x650
[ 3463.070250][T17038] ? do_splice_direct+0x190/0x190
[ 3463.075276][T17038] do_splice_direct+0x106/0x190
[ 3463.080126][T17038] do_sendfile+0x675/0xc40
[ 3463.084544][T17038] __x64_sys_sendfile64+0x102/0x140
[ 3463.089814][T17038] do_syscall_64+0x44/0xd0
[ 3463.094235][T17038] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3463.100179][T17038] RIP: 0033:0x7f0a46a70eb9
[ 3463.104630][T17038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3463.124286][T17038] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3463.132747][T17038] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3463.140811][T17038] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3463.148780][T17038] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3463.156761][T17038] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3463.164783][T17038] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3463.172754][T17038]
[ 3463.175896][T17038] memory: usage 172kB, limit 0kB, failcnt 18150
09:20:57 executing program 3:
unshare(0x20000400) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
unshare(0x400) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:20:57 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = fork()
process_vm_writev(r0, &(0x7f0000002500)=[{&(0x7f0000000200)=""/115, 0x73}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f0000000280)=""/141, 0x8d}, {&(0x7f00000013c0)=""/174, 0xae}, {&(0x7f0000001480)=""/67, 0x43}, {&(0x7f0000001500)=""/4096, 0x1000}], 0x6, &(0x7f0000000340)=[{&(0x7f0000000100)=""/33, 0x21}, {&(0x7f0000002580)=""/230, 0xe6}, {&(0x7f0000002680)=""/187, 0xbb}], 0x3, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x8800, 0x1)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
openat$cgroup_int(r3, &(0x7f0000000040)='cpu.weight\x00', 0x2, 0x0)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000002740), 0x2c000, 0x0)
read(r5, &(0x7f0000002780)=""/4096, 0x1000)
sendfile(r4, r4, 0x0, 0x2)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
fork() (async)
process_vm_writev(r0, &(0x7f0000002500)=[{&(0x7f0000000200)=""/115, 0x73}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f0000000280)=""/141, 0x8d}, {&(0x7f00000013c0)=""/174, 0xae}, {&(0x7f0000001480)=""/67, 0x43}, {&(0x7f0000001500)=""/4096, 0x1000}], 0x6, &(0x7f0000000340)=[{&(0x7f0000000100)=""/33, 0x21}, {&(0x7f0000002580)=""/230, 0xe6}, {&(0x7f0000002680)=""/187, 0xbb}], 0x3, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
open(&(0x7f00000000c0)='./file0\x00', 0x8800, 0x1) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0) (async)
openat$cgroup_int(r3, &(0x7f0000000040)='cpu.weight\x00', 0x2, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000002740), 0x2c000, 0x0) (async)
read(r5, &(0x7f0000002780)=""/4096, 0x1000) (async)
sendfile(r4, r4, 0x0, 0x2) (async)
09:20:57 executing program 4:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x3}, 0x4)
[ 3463.182170][T17038] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3463.189159][T17038] Memory cgroup stats for /syz1:
[ 3463.192789][T17038] anon 0
[ 3463.192789][T17038] file 118784
[ 3463.192789][T17038] kernel_stack 0
[ 3463.192789][T17038] pagetables 0
[ 3463.192789][T17038] percpu 0
[ 3463.192789][T17038] sock 0
[ 3463.192789][T17038] shmem 114688
[ 3463.192789][T17038] file_mapped 114688
[ 3463.192789][T17038] file_dirty 0
[ 3463.192789][T17038] file_writeback 0
[ 3463.192789][T17038] swapcached 0
[ 3463.192789][T17038] inactive_anon 32768
[ 3463.192789][T17038] active_anon 81920
[ 3463.192789][T17038] inactive_file 0
[ 3463.192789][T17038] active_file 4096
[ 3463.192789][T17038] unevictable 0
[ 3463.192789][T17038] slab_reclaimable 32992
[ 3463.192789][T17038] slab_unreclaimable 19928
[ 3463.192789][T17038] slab 52920
[ 3463.192789][T17038] workingset_refault_anon 0
[ 3463.192789][T17038] workingset_refault_file 0
[ 3463.192789][T17038] workingset_activate_anon 0
[ 3463.192789][T17038] workingset_activate_file 0
[ 3463.192789][T17038] workingset_restore_anon 0
[ 3463.192789][T17038] workingset_restore_file 0
09:20:57 executing program 4:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66696c653000e893af2bf6997d4b0765880000e22bbd71c2ac408cc1d3ca1ccd3c293e0b04d96e95d6e6af081810fe8ca96dafd926f16bf0e871354d038e1eaac414eba986ec45b4a485bf10fde052000000f4615d73f480749461199a81cbace57bf7dc7696c9cee9bce7346c3bfa0cf2f533bfe3df9d9a536f9206a82265017c965ab646f5c3438b415c893e90e356c02d8a3a4a40df1157cf317ec8c90a6334b26a17455d80bc215e3b907b08e92a8b52a8d3519abc2a6bba62cf97e0c83e3ec2fdd4fe5cfcdc295842509f763f1e4cf17e5e9f83e8c7b4d1e326cf5e8e5b00"/246])
setsockopt$inet_int(r3, 0x0, 0xe, &(0x7f0000000100)=0x80000000, 0x4)
sendfile(r1, r2, &(0x7f0000000040)=0x1, 0x40)
r4 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
[ 3463.288339][T17038] Out of memory and no killable processes...
09:20:57 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0xa4200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='tmpfs\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0x2}}, './file0\x00'})
r4 = openat$cgroup(r3, &(0x7f00000000c0)='syz1\x00', 0x200002, 0x0)
preadv(r4, &(0x7f0000001540)=[{&(0x7f0000000200)=""/232, 0xe8}, {&(0x7f0000000300)=""/107, 0x6b}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/96, 0x60}, {&(0x7f0000001440)=""/131, 0x83}, {&(0x7f0000000100)=""/32, 0x20}, {&(0x7f0000001500)=""/6, 0x6}], 0x7, 0x8, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TCGETS2(r5, 0x80285442, 0x0)
r6 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendmsg$nl_route(r3, &(0x7f0000001680)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001640)={&(0x7f0000001600)=@getaddr={0x14, 0x16, 0x404, 0x70bd25, 0x25dfdbfe, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000880}, 0x4)
sendfile(r6, r6, 0x0, 0x4)
[ 3463.382752][T17542] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3463.392990][T17542] CPU: 0 PID: 17542 Comm: syz-executor.4 Not tainted 5.16.0-syzkaller #0
[ 3463.401403][T17542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3463.411524][T17542] Call Trace:
[ 3463.414800][T17542]
[ 3463.417723][T17542] dump_stack_lvl+0xd6/0x122
[ 3463.422322][T17542] dump_stack+0x11/0x1b
[ 3463.426480][T17542] dump_header+0x98/0x410
[ 3463.430810][T17542] out_of_memory+0x62c/0x890
[ 3463.435403][T17542] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3463.441274][T17542] memory_max_write+0x32c/0x3d0
[ 3463.446162][T17542] ? memory_max_show+0x70/0x70
[ 3463.450931][T17542] cgroup_file_write+0x161/0x300
[ 3463.456002][T17542] ? __check_object_size+0x22a/0x2d0
[ 3463.461292][T17542] ? cgroup_seqfile_stop+0x70/0x70
[ 3463.466427][T17542] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3463.471711][T17542] do_iter_readv_writev+0x2de/0x380
[ 3463.476951][T17542] do_iter_write+0x192/0x5c0
[ 3463.481540][T17542] ? splice_from_pipe_next+0x34f/0x3b0
[ 3463.487063][T17542] ? kmalloc_array+0x2d/0x40
[ 3463.491680][T17542] vfs_iter_write+0x4c/0x70
[ 3463.496254][T17542] iter_file_splice_write+0x43a/0x790
[ 3463.501631][T17542] ? splice_from_pipe+0xd0/0xd0
[ 3463.506561][T17542] direct_splice_actor+0x80/0xa0
[ 3463.511498][T17542] splice_direct_to_actor+0x345/0x650
[ 3463.516874][T17542] ? do_splice_direct+0x190/0x190
[ 3463.521905][T17542] do_splice_direct+0x106/0x190
[ 3463.526757][T17542] do_sendfile+0x675/0xc40
[ 3463.531202][T17542] __x64_sys_sendfile64+0x102/0x140
[ 3463.536408][T17542] do_syscall_64+0x44/0xd0
[ 3463.540972][T17542] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3463.546867][T17542] RIP: 0033:0x7f0e0806feb9
[ 3463.551277][T17542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3463.570911][T17542] RSP: 002b:00007f0e071e6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3463.579359][T17542] RAX: ffffffffffffffda RBX: 00007f0e08182f60 RCX: 00007f0e0806feb9
[ 3463.587341][T17542] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3463.595306][T17542] RBP: 00007f0e080ca08d R08: 0000000000000000 R09: 0000000000000000
[ 3463.603272][T17542] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3463.611237][T17542] R13: 00007ffd0b58fe4f R14: 00007f0e071e6300 R15: 0000000000022000
[ 3463.619212][T17542]
[ 3463.622429][T17542] memory: usage 168kB, limit 0kB, failcnt 18150
09:20:57 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x4e)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x618000, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r1, 0x0)
r2 = openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
[ 3463.628672][T17542] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3463.635529][T17542] Memory cgroup stats for /syz1:
[ 3463.645138][T11536] device hsr_slave_0 left promiscuous mode
[ 3463.670190][T11536] device hsr_slave_1 left promiscuous mode
09:20:57 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0xa4200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 32)
tgkill(0x0, 0x0, 0x2b) (async, rerun: 32)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='tmpfs\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0x2}}, './file0\x00'})
r4 = openat$cgroup(r3, &(0x7f00000000c0)='syz1\x00', 0x200002, 0x0)
preadv(r4, &(0x7f0000001540)=[{&(0x7f0000000200)=""/232, 0xe8}, {&(0x7f0000000300)=""/107, 0x6b}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/96, 0x60}, {&(0x7f0000001440)=""/131, 0x83}, {&(0x7f0000000100)=""/32, 0x20}, {&(0x7f0000001500)=""/6, 0x6}], 0x7, 0x8, 0x0) (async)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TCGETS2(r5, 0x80285442, 0x0) (async)
r6 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendmsg$nl_route(r3, &(0x7f0000001680)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001640)={&(0x7f0000001600)=@getaddr={0x14, 0x16, 0x404, 0x70bd25, 0x25dfdbfe, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000880}, 0x4) (async)
sendfile(r6, r6, 0x0, 0x4)
09:20:57 executing program 0:
syz_usbip_server_init(0xa1d81589c5c792bc)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
syz_usbip_server_init(0xa1d81589c5c792bc) (async)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
09:20:57 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0xa4200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='tmpfs\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0x2}}, './file0\x00'})
r4 = openat$cgroup(r3, &(0x7f00000000c0)='syz1\x00', 0x200002, 0x0)
preadv(r4, &(0x7f0000001540)=[{&(0x7f0000000200)=""/232, 0xe8}, {&(0x7f0000000300)=""/107, 0x6b}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/96, 0x60}, {&(0x7f0000001440)=""/131, 0x83}, {&(0x7f0000000100)=""/32, 0x20}, {&(0x7f0000001500)=""/6, 0x6}], 0x7, 0x8, 0x0) (async)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TCGETS2(r5, 0x80285442, 0x0)
r6 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendmsg$nl_route(r3, &(0x7f0000001680)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001640)={&(0x7f0000001600)=@getaddr={0x14, 0x16, 0x404, 0x70bd25, 0x25dfdbfe, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000880}, 0x4) (async)
sendfile(r6, r6, 0x0, 0x4)
[ 3463.690263][T11536] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3463.697694][T11536] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3463.720349][T11536] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3463.727746][T11536] batman_adv: batadv0: Removing interface: batadv_slave_1
09:20:57 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x4e)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x618000, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r1, 0x0) (async)
r2 = openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
09:20:57 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
[ 3463.758157][T11536] device bridge_slave_1 left promiscuous mode
[ 3463.764383][T11536] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3463.787011][T11536] device bridge_slave_0 left promiscuous mode
[ 3463.793195][T11536] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3463.842774][T11536] device veth1_macvtap left promiscuous mode
[ 3463.848774][T11536] device veth0_macvtap left promiscuous mode
[ 3463.854802][T11536] device veth1_vlan left promiscuous mode
[ 3463.860664][T11536] device veth0_vlan left promiscuous mode
[ 3463.870048][T17542] anon 0
[ 3463.870048][T17542] file 118784
[ 3463.870048][T17542] kernel_stack 0
[ 3463.870048][T17542] pagetables 0
[ 3463.870048][T17542] percpu 0
[ 3463.870048][T17542] sock 0
[ 3463.870048][T17542] shmem 114688
[ 3463.870048][T17542] file_mapped 114688
[ 3463.870048][T17542] file_dirty 0
[ 3463.870048][T17542] file_writeback 0
[ 3463.870048][T17542] swapcached 0
[ 3463.870048][T17542] inactive_anon 32768
[ 3463.870048][T17542] active_anon 81920
[ 3463.870048][T17542] inactive_file 0
[ 3463.870048][T17542] active_file 4096
[ 3463.870048][T17542] unevictable 0
[ 3463.870048][T17542] slab_reclaimable 32992
[ 3463.870048][T17542] slab_unreclaimable 19928
[ 3463.870048][T17542] slab 52920
[ 3463.870048][T17542] workingset_refault_anon 0
[ 3463.870048][T17542] workingset_refault_file 0
[ 3463.870048][T17542] workingset_activate_anon 0
[ 3463.870048][T17542] workingset_activate_file 0
[ 3463.870048][T17542] workingset_restore_anon 0
[ 3463.870048][T17542] workingset_restore_file 0
[ 3463.960572][T17542] Out of memory and no killable processes...
[ 3463.966588][T17933] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3463.976838][T17933] CPU: 1 PID: 17933 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3463.985257][T17933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3463.995311][T17933] Call Trace:
[ 3463.998569][T17933]
[ 3464.001479][T17933] dump_stack_lvl+0xd6/0x122
[ 3464.006079][T17933] dump_stack+0x11/0x1b
[ 3464.010215][T17933] dump_header+0x98/0x410
[ 3464.014670][T17933] out_of_memory+0x62c/0x890
[ 3464.019242][T17933] memory_max_write+0x32c/0x3d0
[ 3464.024075][T17933] ? memory_max_show+0x70/0x70
[ 3464.028818][T17933] cgroup_file_write+0x161/0x300
[ 3464.033756][T17933] ? __check_object_size+0x22a/0x2d0
[ 3464.039209][T17933] ? cgroup_seqfile_stop+0x70/0x70
[ 3464.044296][T17933] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3464.049576][T17933] do_iter_readv_writev+0x2de/0x380
[ 3464.054754][T17933] do_iter_write+0x192/0x5c0
[ 3464.059319][T17933] ? splice_from_pipe_next+0x34f/0x3b0
[ 3464.064765][T17933] ? kmalloc_array+0x2d/0x40
[ 3464.069416][T17933] vfs_iter_write+0x4c/0x70
[ 3464.073895][T17933] iter_file_splice_write+0x43a/0x790
[ 3464.079252][T17933] ? splice_from_pipe+0xd0/0xd0
[ 3464.084081][T17933] direct_splice_actor+0x80/0xa0
[ 3464.088999][T17933] splice_direct_to_actor+0x345/0x650
[ 3464.094363][T17933] ? do_splice_direct+0x190/0x190
[ 3464.099424][T17933] do_splice_direct+0x106/0x190
[ 3464.104257][T17933] do_sendfile+0x675/0xc40
[ 3464.108656][T17933] __x64_sys_sendfile64+0x102/0x140
[ 3464.113903][T17933] do_syscall_64+0x44/0xd0
[ 3464.118371][T17933] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3464.124245][T17933] RIP: 0033:0x7f4d3cb0beb9
[ 3464.128637][T17933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3464.148265][T17933] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3464.156652][T17933] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3464.164604][T17933] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3464.172637][T17933] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3464.180589][T17933] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3464.188550][T17933] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3464.196505][T17933]
[ 3464.199576][T17933] memory: usage 168kB, limit 0kB, failcnt 18150
[ 3464.205835][T17933] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3464.212761][T17933] Memory cgroup stats for /syz1:
[ 3464.213753][T17933] anon 0
[ 3464.213753][T17933] file 118784
[ 3464.213753][T17933] kernel_stack 0
[ 3464.213753][T17933] pagetables 0
[ 3464.213753][T17933] percpu 0
[ 3464.213753][T17933] sock 0
[ 3464.213753][T17933] shmem 114688
[ 3464.213753][T17933] file_mapped 114688
[ 3464.213753][T17933] file_dirty 0
[ 3464.213753][T17933] file_writeback 0
[ 3464.213753][T17933] swapcached 0
[ 3464.213753][T17933] inactive_anon 32768
[ 3464.213753][T17933] active_anon 81920
[ 3464.213753][T17933] inactive_file 0
[ 3464.213753][T17933] active_file 4096
[ 3464.213753][T17933] unevictable 0
[ 3464.213753][T17933] slab_reclaimable 32992
[ 3464.213753][T17933] slab_unreclaimable 19928
[ 3464.213753][T17933] slab 52920
[ 3464.213753][T17933] workingset_refault_anon 0
[ 3464.213753][T17933] workingset_refault_file 0
[ 3464.213753][T17933] workingset_activate_anon 0
[ 3464.213753][T17933] workingset_activate_file 0
[ 3464.213753][T17933] workingset_restore_anon 0
[ 3464.213753][T17933] workingset_restore_file 0
[ 3464.309248][T17933] Out of memory and no killable processes...
[ 3464.392154][T11536] team0 (unregistering): Port device team_slave_1 removed
[ 3464.402499][T11536] team0 (unregistering): Port device team_slave_0 removed
[ 3464.412516][T11536] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3464.423596][T11536] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3464.450875][T11536] bond0 (unregistering): Released all slaves
[ 3465.092165][T17981] lo speed is unknown, defaulting to 1000
[ 3465.129267][T17981] chnl_net:caif_netlink_parms(): no params data found
[ 3465.157120][T17981] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3465.164168][T17981] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3465.171741][T17981] device bridge_slave_0 entered promiscuous mode
[ 3465.178696][T17981] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3465.185737][T17981] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3465.194424][T17981] device bridge_slave_1 entered promiscuous mode
[ 3465.209894][T17981] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3465.220134][T17981] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3465.237160][T17981] team0: Port device team_slave_0 added
[ 3465.243458][T17981] team0: Port device team_slave_1 added
[ 3465.256567][T17981] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3465.263507][T17981] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3465.289453][T17981] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3465.301765][T17981] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3465.308736][T17981] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3465.334702][T17981] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3465.355970][T17981] device hsr_slave_0 entered promiscuous mode
[ 3465.362459][T17981] device hsr_slave_1 entered promiscuous mode
[ 3465.368746][T17981] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3465.376303][T17981] Cannot create hsr debugfs directory
[ 3465.403582][T17981] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3465.410628][T17981] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3465.417840][T17981] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3465.424856][T17981] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3465.450682][T17981] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3465.461211][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3465.469039][T28009] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3465.477084][T28009] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3465.488881][T17981] 8021q: adding VLAN 0 to HW filter on device team0
[ 3465.496926][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3465.505310][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3465.513651][T19402] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3465.520671][T19402] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3465.529731][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3465.539687][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3465.548026][ T7812] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3465.555038][ T7812] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3465.570294][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 3465.579001][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 3465.587697][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 3465.596132][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3465.604625][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 3465.613133][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3465.621802][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 3465.630050][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3465.638055][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 3465.646393][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3465.655805][T17981] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3465.664057][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3465.677652][T17981] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3465.685530][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3465.692973][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3465.758145][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 3465.767980][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3465.804119][T17981] device veth0_vlan entered promiscuous mode
[ 3465.810642][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 3465.818779][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3465.827666][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3465.835376][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3465.845037][T17981] device veth1_vlan entered promiscuous mode
[ 3465.856913][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3465.865161][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3465.873223][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3465.881545][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3465.891697][T17981] device veth0_macvtap entered promiscuous mode
[ 3465.899645][T17981] device veth1_macvtap entered promiscuous mode
[ 3465.910549][T17981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3465.921039][T17981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3465.930922][T17981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3465.941339][T17981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3465.951174][T17981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3465.961576][T17981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3465.971445][T17981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3465.981847][T17981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3465.991648][T17981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3466.002055][T17981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3466.012683][T17981] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3466.021075][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 3466.028944][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 3466.037086][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3466.045617][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3466.055232][T17981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3466.065647][T17981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3466.075454][T17981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3466.085860][T17981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3466.095668][T17981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3466.106166][T17981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3466.116010][T17981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3466.126411][T17981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3466.136281][T17981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3466.146693][T17981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
09:21:00 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
tgkill(0x0, 0x0, 0x0) (async)
r1 = syz_open_procfs(r0, &(0x7f0000000040)='net/rt6_stats\x00')
sendmsg$key(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x2, 0x14, 0x9, 0x3, 0x1c, 0x0, 0x70bd2a, 0x25dfdbfc, [@sadb_x_nat_t_port={0x1, 0x15, 0x4e24}, @sadb_spirange={0x2, 0x10, 0x4d6, 0x4d6}, @sadb_ident={0x2, 0xb, 0x9, 0x0, 0x3}, @sadb_x_sec_ctx={0x15, 0x18, 0x4, 0x9, 0xa0, "1e1d60e9497310ed46086a36fe715dbd1dedb34e9c31c722ae0b6248030aa644dd199354a7ec95c52b5658c0c2c781898000b96954312f913b441a415dcf744e385df6b289cfceb9615478667e08a1d856d02857e0e0c571a8001f4f16dff1baa2f4ccf4e20cbd3f2249d1d77427eca98200a166ce5cbb1269db797c6772d079bcc135440624edbba96bf6122a1bc764b4fe28465ba29eb67840fc91a5dedf53"}]}, 0xe0}}, 0x40) (async)
wait4(0x0, 0x0, 0x2, 0x0) (async)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0x5)
setuid(r5) (async)
sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)=@ipv6_newroute={0x9c, 0x18, 0x200, 0x70bd28, 0x25dfdbfd, {0xa, 0x14, 0x20, 0x7f, 0x0, 0x2, 0xfd}, [@RTA_ENCAP={0x10, 0x16, 0x0, 0x1, @LWT_BPF_XMIT={0xc, 0x3, 0x0, 0x1, @LWT_BPF_PROG_NAME={0x7, 0x2, 'ct\x00'}}}, @RTA_METRICS={0x47, 0x8, 0x0, 0x1, "06297cb1c431af1e4b779087dd5843523c6a62233e211f5c9c57b938e5a1a4f09a9fa64676c5f94c87eb3aa093cbdb8a1a87fbbf65a2bbe82c432a566ab687145ebdb3"}, @RTA_EXPIRES={0x8, 0x17, 0x7}, @RTA_UID={0x8, 0x19, r5}, @RTA_PREF={0x5, 0x14, 0x43}, @RTA_PREF={0x5, 0x14, 0x9}, @RTA_PREF={0x5, 0x14, 0x6}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4004}, 0x20000000) (async)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="0200000f0000e2ff2e2f225a5c9d0f8eb408f3b4b40066696c653000"])
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0x5c, 0x30, 0x727, 0x70bd28, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x300, {0x0, 0x10000000}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0x5c}}, 0x0) (async)
creat(&(0x7f0000000380)='.\x00', 0x0)
09:21:00 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x4e) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x618000, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r1, 0x0) (async)
r2 = openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
09:21:00 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f00000006c0)='./file0/file0\x00', &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000)
sendmsg$unix(r0, &(0x7f00000007c0)={&(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000000300)=[{&(0x7f0000000200)="a7d731054b2b5b1221550ab0d4eb7a6241ef4b03d967f3f02579d221ce09611c2f6651d7866860b0a0f063237ae478904a9e8b3a51a2a3361662f13698fcf317aadab025a6deece80e8b7141f6fce1634fcd9d74dd9601840b3e48fa83b7a1fc38c41f05dec17a3d01123170b24af9f622fe82466c873653f47a76ffee7ff46ef287c9ae3ae283478bc75f142e01cc9e7348038cbbe277311074da5f9bad2c3721c0192b0577b6eda33e99d7ceabf62a780918feafd6d1382d206a2a8784682648fc3cede8068c1f9244", 0xca}, {&(0x7f0000000040)="f49995ab86233618d8054bf5477b2b35f22e8322c6b89527bd0ab0dceb3ed80ed60e1e3bb492c11e5dea9f647cbe7d72", 0x30}, {&(0x7f00000003c0)="c2f406d7dce595a2cdfba220c8b543e3db7393a44ad96239200a7bdf55c8ae0efb142cc566dbac3f4520f46ab21e5094d9f3eaba9bab78bd1fd47bd0992ba78bb0cbad782f165f55760b206f9a5c7bde9011b1f2a263d1e62cfff8dd9d6d4e683fe4af9e7d4c008fb0d962fb04c47d01b63607d2fdd67d68265bdd92917f7c2acefefc1905a590738dc034db577cec615a455ae2cdcdcad27bf72587fe71092c9f20cb65a0dbe87f38cf940de31c3a915b72aba937e0292843a9a456463793622dea3c44cd80a79b6ce867cded75ac94071b8b8c9c09a3af848bedeb88b7301f827007e17d07174706c53bfc181ff7930c082a0af8d808", 0xf7}, {&(0x7f00000004c0)="0b1cb644d47ee5d7dc342a3c0c1618383ae6e3dcc861d3660338c9fe71f855c1b6d40e73559f06403877fa3262d58bf495ecf03ea0756157875475106a7910042379208b491b540b0c37d00e9c422419a3a65d5980ec346663fc3164bc2fb8edb22854982623b6c117fd1dfe76f33c37afccc818cf8f588be78905703d250883fa310566e0ad67080e8d3b5d871d588a7f58760910c6c95a384ebca9dba7d57ef6ccd74a94963b0a6a01c1b9b5d95eed391b84e0d459fa3c95a9fba15ff4bd80ca17c5841872567a78896bb21d2a3a751957a0402db660af30a9cb04d49c16e3e8554de2e49f1b", 0xe7}, {&(0x7f00000005c0)="6e20512f77e49f1bec5556a46886fdc2c4f43927bce125d6a94457185326343082afc5ac3836bedac8ac6f4d88fed58b0afc7539368263c26a4c02115d0f54ec3f561d043c2592e6c9a70900262a775150007e571c061fcbdf1fc1c23c1aecaf1280c047644edc31502faa84cfe6cc2a94bbae01bee3961506775042e13a3e40e2c607892b5b0d7bdd977b0296496561d6803797fdb71604957726cba385504e65b1b08346fdedad4f55fab9a052c2a939b31ba6f1d45a19841d95c09177d268641bfe52b2", 0xc5}], 0x5, &(0x7f0000000780)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r1, 0xffffffffffffffff}}}], 0x20, 0x804}, 0x44801)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000001ac0)=ANY=[@ANYBLOB="36397459394d51cbb1040000", @ANYRES32=r2, @ANYBLOB="040047aa091e75f40000000000002e2f66696c65302f66696c65302f66f49e187b028bb4467f3961fce468a57e696c653000"])
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000440)={{}, 0x0, 0x0, @unused=[0x0, 0x0, 0x8, 0x1000], @devid})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000300)={{}, 0x0, 0x0, @unused=[0x1, 0x0, 0x1, 0x7], @devid})
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000240)={0x0, 0x1, {0x80, @usage=0x2, 0x0, 0x9, 0x36dd, 0xfffffffffffffff8, 0x7, 0x1, 0x500, @usage=0x2, 0x5, 0x3, [0x3, 0x0, 0x0, 0x0, 0x0, 0x6]}, {0x0, @struct={0x435, 0x7}, 0x0, 0x9, 0xc48, 0x2, 0x8, 0x10001, 0x20, @usage=0x9, 0xa7, 0x0, [0x4ce3, 0x4, 0x80000000, 0x3, 0x1, 0x3fe000000]}, {0x1, @struct={0x4, 0x7}, 0x0, 0x0, 0x6, 0x0, 0x6, 0x5, 0x40, @usage=0x8, 0x6350, 0x1, [0xffffffff, 0x3, 0x1ff, 0x3ff, 0x101, 0xd781]}, {0x200, 0x7, 0x8}})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000ac0)={{}, 0x0, 0x0, @unused=[0x2, 0xcf, 0x7fffffff, 0x8], @devid})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r5, 0x0)
mount_setattr(r4, &(0x7f0000000840)='./file0\x00', 0x800, &(0x7f0000000880)={0x4, 0x2, 0x0, {r5}}, 0x20)
socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r6, r6, 0x0, 0x2)
09:21:00 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
unshare(0x20000800)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
r2 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
unshare(0xc040080)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000080)={0x1, 0x4}, 0x4)
unshare(0x4020200)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0x6, &(0x7f0000000000)=ANY=[@ANYRES32], &(0x7f0000000080)='GPL\x00', 0xb, 0xb7, &(0x7f000000cf3d)=""/183, 0x0, 0xc, '\x00', 0x0, 0x3, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000001bc0)=ANY=[@ANYBLOB="18010000ff00fd050000f6ff45bcea7997d76807da000000118efe63d5006f000000511aa36315475ae8725cccbc1ea7e09b51fd61cc8b42d732efd244ebcd76ffef0ea162c46ebf3d6c06dc46804f48c1b83260823ddeacd279fb8c9dcf5a5654070742396b47470a00c6103b7c65d4c707e706ef938b4400d83b010903ff417cca59495e516694b6840ca4c17900b89a024cf4b71f265b993d5664e1cb32b12fa9baee1f853cd1c619f82a8825ec0e0ff386ea7f32698cc20d08765c6a2bbc9179446f6dd050a416920aa66f716e0ff2cd7203783c66bd2c", @ANYRESOCT, @ANYRES32], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='lock_acquire\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x19, 0x10, &(0x7f00000018c0)=ANY=[@ANYRES64, @ANYRES32, @ANYRESOCT, @ANYRES32, @ANYBLOB="000029435c7e74e2bf70a5d5000002000000850000004c1109898800000000f0b60000b3dc8f3abd11e7a8006003000000000000b87bb47c22ecffffff08"], &(0x7f0000001680)='GPL\x00', 0x0, 0xff2, &(0x7f0000000600)=""/4082, 0x41100, 0x1, '\x00', 0x0, 0x7, 0xffffffffffffffff, 0x8, &(0x7f0000001640)={0x9, 0x3}, 0x8, 0x10, &(0x7f00000001c0)={0x3, 0xc, 0xa, 0xce95}, 0x10, 0x0, r3}, 0x78)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r4, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@bloom_filter={0x1e, 0x3b, 0x3f, 0x0, 0x1, 0x1, 0x1ff, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x17, 0x1, &(0x7f0000000180)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000240)={0x5, 0x5, 0x80000001, 0x8001}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=[r4, 0x1, r5]}, 0x80)
09:21:00 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (fail_nth: 1)
09:21:00 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
[ 3466.157505][T17981] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3466.166088][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3466.174593][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
09:21:00 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
newfstatat(0xffffffffffffff9c, &(0x7f00000006c0)='./file0/file0\x00', &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000)
sendmsg$unix(r0, &(0x7f00000007c0)={&(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000000300)=[{&(0x7f0000000200)="a7d731054b2b5b1221550ab0d4eb7a6241ef4b03d967f3f02579d221ce09611c2f6651d7866860b0a0f063237ae478904a9e8b3a51a2a3361662f13698fcf317aadab025a6deece80e8b7141f6fce1634fcd9d74dd9601840b3e48fa83b7a1fc38c41f05dec17a3d01123170b24af9f622fe82466c873653f47a76ffee7ff46ef287c9ae3ae283478bc75f142e01cc9e7348038cbbe277311074da5f9bad2c3721c0192b0577b6eda33e99d7ceabf62a780918feafd6d1382d206a2a8784682648fc3cede8068c1f9244", 0xca}, {&(0x7f0000000040)="f49995ab86233618d8054bf5477b2b35f22e8322c6b89527bd0ab0dceb3ed80ed60e1e3bb492c11e5dea9f647cbe7d72", 0x30}, {&(0x7f00000003c0)="c2f406d7dce595a2cdfba220c8b543e3db7393a44ad96239200a7bdf55c8ae0efb142cc566dbac3f4520f46ab21e5094d9f3eaba9bab78bd1fd47bd0992ba78bb0cbad782f165f55760b206f9a5c7bde9011b1f2a263d1e62cfff8dd9d6d4e683fe4af9e7d4c008fb0d962fb04c47d01b63607d2fdd67d68265bdd92917f7c2acefefc1905a590738dc034db577cec615a455ae2cdcdcad27bf72587fe71092c9f20cb65a0dbe87f38cf940de31c3a915b72aba937e0292843a9a456463793622dea3c44cd80a79b6ce867cded75ac94071b8b8c9c09a3af848bedeb88b7301f827007e17d07174706c53bfc181ff7930c082a0af8d808", 0xf7}, {&(0x7f00000004c0)="0b1cb644d47ee5d7dc342a3c0c1618383ae6e3dcc861d3660338c9fe71f855c1b6d40e73559f06403877fa3262d58bf495ecf03ea0756157875475106a7910042379208b491b540b0c37d00e9c422419a3a65d5980ec346663fc3164bc2fb8edb22854982623b6c117fd1dfe76f33c37afccc818cf8f588be78905703d250883fa310566e0ad67080e8d3b5d871d588a7f58760910c6c95a384ebca9dba7d57ef6ccd74a94963b0a6a01c1b9b5d95eed391b84e0d459fa3c95a9fba15ff4bd80ca17c5841872567a78896bb21d2a3a751957a0402db660af30a9cb04d49c16e3e8554de2e49f1b", 0xe7}, {&(0x7f00000005c0)="6e20512f77e49f1bec5556a46886fdc2c4f43927bce125d6a94457185326343082afc5ac3836bedac8ac6f4d88fed58b0afc7539368263c26a4c02115d0f54ec3f561d043c2592e6c9a70900262a775150007e571c061fcbdf1fc1c23c1aecaf1280c047644edc31502faa84cfe6cc2a94bbae01bee3961506775042e13a3e40e2c607892b5b0d7bdd977b0296496561d6803797fdb71604957726cba385504e65b1b08346fdedad4f55fab9a052c2a939b31ba6f1d45a19841d95c09177d268641bfe52b2", 0xc5}], 0x5, &(0x7f0000000780)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r1, 0xffffffffffffffff}}}], 0x20, 0x804}, 0x44801) (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000001ac0)=ANY=[@ANYBLOB="36397459394d51cbb1040000", @ANYRES32=r2, @ANYBLOB="040047aa091e75f40000000000002e2f66696c65302f66696c65302f66f49e187b028bb4467f3961fce468a57e696c653000"]) (async)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000440)={{}, 0x0, 0x0, @unused=[0x0, 0x0, 0x8, 0x1000], @devid}) (async)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000300)={{}, 0x0, 0x0, @unused=[0x1, 0x0, 0x1, 0x7], @devid}) (async, rerun: 32)
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000240)={0x0, 0x1, {0x80, @usage=0x2, 0x0, 0x9, 0x36dd, 0xfffffffffffffff8, 0x7, 0x1, 0x500, @usage=0x2, 0x5, 0x3, [0x3, 0x0, 0x0, 0x0, 0x0, 0x6]}, {0x0, @struct={0x435, 0x7}, 0x0, 0x9, 0xc48, 0x2, 0x8, 0x10001, 0x20, @usage=0x9, 0xa7, 0x0, [0x4ce3, 0x4, 0x80000000, 0x3, 0x1, 0x3fe000000]}, {0x1, @struct={0x4, 0x7}, 0x0, 0x0, 0x6, 0x0, 0x6, 0x5, 0x40, @usage=0x8, 0x6350, 0x1, [0xffffffff, 0x3, 0x1ff, 0x3ff, 0x101, 0xd781]}, {0x200, 0x7, 0x8}}) (rerun: 32)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000ac0)={{}, 0x0, 0x0, @unused=[0x2, 0xcf, 0x7fffffff, 0x8], @devid}) (async)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r5, 0x0) (async)
mount_setattr(r4, &(0x7f0000000840)='./file0\x00', 0x800, &(0x7f0000000880)={0x4, 0x2, 0x0, {r5}}, 0x20) (async)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r6 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r6, r6, 0x0, 0x2)
[ 3466.225638][T18027] FAULT_INJECTION: forcing a failure.
[ 3466.225638][T18027] name failslab, interval 1, probability 0, space 0, times 0
[ 3466.238265][T18027] CPU: 0 PID: 18027 Comm: syz-executor.4 Not tainted 5.16.0-syzkaller #0
[ 3466.246683][T18027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3466.255539][T18028] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3466.256730][T18027] Call Trace:
[ 3466.256738][T18027]
[ 3466.256746][T18027] dump_stack_lvl+0xd6/0x122
[ 3466.277601][T18027] dump_stack+0x11/0x1b
[ 3466.281787][T18027] should_fail+0x23c/0x250
[ 3466.286189][T18027] ? sctp_datamsg_from_user+0x50/0x9c0
[ 3466.291657][T18027] __should_failslab+0x81/0x90
[ 3466.296414][T18027] should_failslab+0x5/0x20
[ 3466.300977][T18027] kmem_cache_alloc_trace+0x52/0x350
[ 3466.306250][T18027] ? rmqueue+0x4a/0xd20
[ 3466.310392][T18027] sctp_datamsg_from_user+0x50/0x9c0
[ 3466.315723][T18027] ? mntput+0x45/0x70
[ 3466.319689][T18027] ? __rcu_read_unlock+0x5c/0x290
[ 3466.324699][T18027] ? __genradix_ptr+0x2ab/0x330
[ 3466.329615][T18027] sctp_sendmsg_to_asoc+0x504/0xc00
[ 3466.334828][T18027] sctp_sendmsg+0x1296/0x1ad0
[ 3466.339498][T18027] inet_sendmsg+0x5f/0x80
[ 3466.343847][T18027] __sys_sendto+0x21e/0x2c0
[ 3466.348417][T18027] __x64_sys_sendto+0x74/0x90
[ 3466.353119][T18027] do_syscall_64+0x44/0xd0
[ 3466.357585][T18027] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3466.363494][T18027] RIP: 0033:0x7f0e0806feb9
[ 3466.367937][T18027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3466.387533][T18027] RSP: 002b:00007f0e071e6168 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 3466.396005][T18027] RAX: ffffffffffffffda RBX: 00007f0e08182f60 RCX: 00007f0e0806feb9
[ 3466.403962][T18027] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[ 3466.411934][T18027] RBP: 00007f0e071e61d0 R08: 0000000000000000 R09: 0000000000000000
[ 3466.419894][T18027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3466.427901][T18027] R13: 00007ffd0b58fe4f R14: 00007f0e071e6300 R15: 0000000000022000
[ 3466.435871][T18027]
[ 3466.438876][T18028] CPU: 1 PID: 18028 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3466.447352][T18028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3466.457399][T18028] Call Trace:
[ 3466.460667][T18028]
[ 3466.463594][T18028] dump_stack_lvl+0xd6/0x122
[ 3466.468260][T18028] dump_stack+0x11/0x1b
[ 3466.472445][T18028] dump_header+0x98/0x410
09:21:00 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (fail_nth: 2)
09:21:00 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = socket(0x18, 0x0, 0x0)
close(r2)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000300)={'vcan0\x00', 0x0})
bind$can_j1939(r3, &(0x7f0000000040)={0x1d, r5, 0x2}, 0x18)
connect$can_j1939(r2, &(0x7f0000000000)={0x1d, r5}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x43, 0x0, 0x0, 0x0, 0x2}, [@map_idx={0x18, 0xa, 0x5, 0x0, 0x9}]}, &(0x7f00000000c0)='syzkaller\x00', 0xdc, 0x1000, &(0x7f00000003c0)=""/4096, 0x40f00, 0x1c, '\x00', r5, 0x0, r1, 0x8, &(0x7f0000000100)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000200)={0x3, 0x0, 0x0, 0x1}, 0x10}, 0x80)
r6 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r6, r6, 0x0, 0x2)
[ 3466.476779][T18028] oom_kill_process+0x18e/0x3f0
[ 3466.481654][T18028] out_of_memory+0x5ed/0x890
[ 3466.486244][T18028] memory_max_write+0x32c/0x3d0
[ 3466.491106][T18028] ? memory_max_show+0x70/0x70
[ 3466.495867][T18028] cgroup_file_write+0x161/0x300
[ 3466.500805][T18028] ? __check_object_size+0x22a/0x2d0
[ 3466.506094][T18028] ? cgroup_seqfile_stop+0x70/0x70
[ 3466.511278][T18028] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3466.516563][T18028] do_iter_readv_writev+0x2de/0x380
[ 3466.521149][T18142] FAULT_INJECTION: forcing a failure.
[ 3466.521149][T18142] name failslab, interval 1, probability 0, space 0, times 0
[ 3466.521808][T18028] do_iter_write+0x192/0x5c0
[ 3466.538900][T18028] ? splice_from_pipe_next+0x34f/0x3b0
[ 3466.544532][T18028] ? kmalloc_array+0x2d/0x40
[ 3466.549114][T18028] vfs_iter_write+0x4c/0x70
[ 3466.553608][T18028] iter_file_splice_write+0x43a/0x790
[ 3466.558979][T18028] ? splice_from_pipe+0xd0/0xd0
[ 3466.563831][T18028] direct_splice_actor+0x80/0xa0
[ 3466.568756][T18028] splice_direct_to_actor+0x345/0x650
[ 3466.574116][T18028] ? do_splice_direct+0x190/0x190
[ 3466.579186][T18028] do_splice_direct+0x106/0x190
[ 3466.584026][T18028] do_sendfile+0x675/0xc40
[ 3466.588445][T18028] __x64_sys_sendfile64+0x102/0x140
[ 3466.593661][T18028] do_syscall_64+0x44/0xd0
[ 3466.598135][T18028] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3466.604017][T18028] RIP: 0033:0x7f4d3cb0beb9
[ 3466.608416][T18028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3466.628014][T18028] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3466.636410][T18028] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3466.644433][T18028] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3466.652508][T18028] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3466.660464][T18028] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3466.668466][T18028] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3466.676430][T18028]
[ 3466.679567][T18142] CPU: 0 PID: 18142 Comm: syz-executor.4 Not tainted 5.16.0-syzkaller #0
[ 3466.679880][T18028] memory: usage 544kB, limit 0kB, failcnt 18169
[ 3466.688005][T18142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3466.694228][T18028] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3466.694243][T18028] Memory cgroup stats for /syz1:
[ 3466.704274][T18142] Call Trace:
[ 3466.704282][T18142]
[ 3466.704289][T18142] dump_stack_lvl+0xd6/0x122
[ 3466.725399][T18028] anon 118784
[ 3466.725399][T18028] file 118784
[ 3466.725399][T18028] kernel_stack 81920
[ 3466.725399][T18028] pagetables 90112
[ 3466.725399][T18028] percpu 0
[ 3466.725399][T18028] sock 0
[ 3466.725399][T18028] shmem 114688
[ 3466.725399][T18028] file_mapped 114688
[ 3466.725399][T18028] file_dirty 0
[ 3466.725399][T18028] file_writeback 0
[ 3466.725399][T18028] swapcached 0
[ 3466.725399][T18028] inactive_anon 151552
[ 3466.725399][T18028] active_anon 81920
[ 3466.725399][T18028] inactive_file 0
[ 3466.725399][T18028] active_file 4096
[ 3466.725399][T18028] unevictable 0
[ 3466.725399][T18028] slab_reclaimable 49832
[ 3466.725399][T18028] slab_unreclaimable 62384
[ 3466.725399][T18028] slab 112216
[ 3466.725399][T18028] workingset_refault_anon 0
[ 3466.725399][T18028] workingset_refault_file 0
[ 3466.725399][T18028] workingset_activate_anon 0
[ 3466.725399][T18028] workingset_activate_file 0
[ 3466.725399][T18028] workingset_restore_anon 0
[ 3466.726870][T18142] dump_stack+0x11/0x1b
[ 3466.814324][T18028] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0
[ 3466.818440][T18142] should_fail+0x23c/0x250
[ 3466.818450][T18028] ,mems_allowed=0
[ 3466.818467][T18142] __should_failslab+0x81/0x90
[ 3466.826341][T18028] ,oom_memcg=
[ 3466.830717][T18142] should_failslab+0x5/0x20
[ 3466.834351][T18028] /syz1,task_memcg=
[ 3466.839088][T18142] kmem_cache_alloc_node+0x61/0x2d0
[ 3466.842379][T18028] /syz1
[ 3466.846843][T18142] ? __alloc_skb+0xf0/0x450
[ 3466.850636][T18028] ,task=syz-executor.1,pid=18029,uid=0
[ 3466.855795][T18142] __alloc_skb+0xf0/0x450
[ 3466.858564][T18028] Memory cgroup out of memory: Killed process 18029 (syz-executor.1) total-vm:49008kB, anon-rss:380kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[ 3466.863014][T18142] _sctp_make_chunk+0x53/0x210
[ 3466.895098][T18142] sctp_make_datafrag_empty+0x69/0x1d0
[ 3466.900620][T18142] sctp_datamsg_from_user+0x581/0x9c0
[ 3466.904917][T17981] syz-executor.1 invoked oom-killer: gfp_mask=0xdc0(GFP_KERNEL|__GFP_ZERO), order=0, oom_score_adj=0
[ 3466.906002][T18142] ? __genradix_ptr+0x2ab/0x330
[ 3466.921672][T18142] sctp_sendmsg_to_asoc+0x504/0xc00
[ 3466.926884][T18142] sctp_sendmsg+0x1296/0x1ad0
[ 3466.931628][T18142] inet_sendmsg+0x5f/0x80
[ 3466.936012][T18142] __sys_sendto+0x21e/0x2c0
[ 3466.940510][T18142] __x64_sys_sendto+0x74/0x90
[ 3466.945177][T18142] do_syscall_64+0x44/0xd0
[ 3466.949585][T18142] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3466.955508][T18142] RIP: 0033:0x7f0e0806feb9
[ 3466.959911][T18142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3466.980755][T18142] RSP: 002b:00007f0e071e6168 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 3466.989180][T18142] RAX: ffffffffffffffda RBX: 00007f0e08182f60 RCX: 00007f0e0806feb9
[ 3466.997139][T18142] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[ 3467.005096][T18142] RBP: 00007f0e071e61d0 R08: 0000000000000000 R09: 0000000000000000
[ 3467.013108][T18142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3467.021120][T18142] R13: 00007ffd0b58fe4f R14: 00007f0e071e6300 R15: 0000000000022000
09:21:00 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:00 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 64)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0) (rerun: 64)
tgkill(0x0, 0x0, 0x0) (async)
r1 = syz_open_procfs(r0, &(0x7f0000000040)='net/rt6_stats\x00')
sendmsg$key(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x2, 0x14, 0x9, 0x3, 0x1c, 0x0, 0x70bd2a, 0x25dfdbfc, [@sadb_x_nat_t_port={0x1, 0x15, 0x4e24}, @sadb_spirange={0x2, 0x10, 0x4d6, 0x4d6}, @sadb_ident={0x2, 0xb, 0x9, 0x0, 0x3}, @sadb_x_sec_ctx={0x15, 0x18, 0x4, 0x9, 0xa0, "1e1d60e9497310ed46086a36fe715dbd1dedb34e9c31c722ae0b6248030aa644dd199354a7ec95c52b5658c0c2c781898000b96954312f913b441a415dcf744e385df6b289cfceb9615478667e08a1d856d02857e0e0c571a8001f4f16dff1baa2f4ccf4e20cbd3f2249d1d77427eca98200a166ce5cbb1269db797c6772d079bcc135440624edbba96bf6122a1bc764b4fe28465ba29eb67840fc91a5dedf53"}]}, 0xe0}}, 0x40)
wait4(0x0, 0x0, 0x2, 0x0) (async)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async, rerun: 64)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (rerun: 64)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0x5)
setuid(r5) (async)
sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)=@ipv6_newroute={0x9c, 0x18, 0x200, 0x70bd28, 0x25dfdbfd, {0xa, 0x14, 0x20, 0x7f, 0x0, 0x2, 0xfd}, [@RTA_ENCAP={0x10, 0x16, 0x0, 0x1, @LWT_BPF_XMIT={0xc, 0x3, 0x0, 0x1, @LWT_BPF_PROG_NAME={0x7, 0x2, 'ct\x00'}}}, @RTA_METRICS={0x47, 0x8, 0x0, 0x1, "06297cb1c431af1e4b779087dd5843523c6a62233e211f5c9c57b938e5a1a4f09a9fa64676c5f94c87eb3aa093cbdb8a1a87fbbf65a2bbe82c432a566ab687145ebdb3"}, @RTA_EXPIRES={0x8, 0x17, 0x7}, @RTA_UID={0x8, 0x19, r5}, @RTA_PREF={0x5, 0x14, 0x43}, @RTA_PREF={0x5, 0x14, 0x9}, @RTA_PREF={0x5, 0x14, 0x6}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4004}, 0x20000000) (async)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="0200000f0000e2ff2e2f225a5c9d0f8eb408f3b4b40066696c653000"]) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0x5c, 0x30, 0x727, 0x70bd28, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x300, {0x0, 0x10000000}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0x5c}}, 0x0) (async)
creat(&(0x7f0000000380)='.\x00', 0x0)
09:21:00 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f00000006c0)='./file0/file0\x00', &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000)
sendmsg$unix(r0, &(0x7f00000007c0)={&(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000000300)=[{&(0x7f0000000200)="a7d731054b2b5b1221550ab0d4eb7a6241ef4b03d967f3f02579d221ce09611c2f6651d7866860b0a0f063237ae478904a9e8b3a51a2a3361662f13698fcf317aadab025a6deece80e8b7141f6fce1634fcd9d74dd9601840b3e48fa83b7a1fc38c41f05dec17a3d01123170b24af9f622fe82466c873653f47a76ffee7ff46ef287c9ae3ae283478bc75f142e01cc9e7348038cbbe277311074da5f9bad2c3721c0192b0577b6eda33e99d7ceabf62a780918feafd6d1382d206a2a8784682648fc3cede8068c1f9244", 0xca}, {&(0x7f0000000040)="f49995ab86233618d8054bf5477b2b35f22e8322c6b89527bd0ab0dceb3ed80ed60e1e3bb492c11e5dea9f647cbe7d72", 0x30}, {&(0x7f00000003c0)="c2f406d7dce595a2cdfba220c8b543e3db7393a44ad96239200a7bdf55c8ae0efb142cc566dbac3f4520f46ab21e5094d9f3eaba9bab78bd1fd47bd0992ba78bb0cbad782f165f55760b206f9a5c7bde9011b1f2a263d1e62cfff8dd9d6d4e683fe4af9e7d4c008fb0d962fb04c47d01b63607d2fdd67d68265bdd92917f7c2acefefc1905a590738dc034db577cec615a455ae2cdcdcad27bf72587fe71092c9f20cb65a0dbe87f38cf940de31c3a915b72aba937e0292843a9a456463793622dea3c44cd80a79b6ce867cded75ac94071b8b8c9c09a3af848bedeb88b7301f827007e17d07174706c53bfc181ff7930c082a0af8d808", 0xf7}, {&(0x7f00000004c0)="0b1cb644d47ee5d7dc342a3c0c1618383ae6e3dcc861d3660338c9fe71f855c1b6d40e73559f06403877fa3262d58bf495ecf03ea0756157875475106a7910042379208b491b540b0c37d00e9c422419a3a65d5980ec346663fc3164bc2fb8edb22854982623b6c117fd1dfe76f33c37afccc818cf8f588be78905703d250883fa310566e0ad67080e8d3b5d871d588a7f58760910c6c95a384ebca9dba7d57ef6ccd74a94963b0a6a01c1b9b5d95eed391b84e0d459fa3c95a9fba15ff4bd80ca17c5841872567a78896bb21d2a3a751957a0402db660af30a9cb04d49c16e3e8554de2e49f1b", 0xe7}, {&(0x7f00000005c0)="6e20512f77e49f1bec5556a46886fdc2c4f43927bce125d6a94457185326343082afc5ac3836bedac8ac6f4d88fed58b0afc7539368263c26a4c02115d0f54ec3f561d043c2592e6c9a70900262a775150007e571c061fcbdf1fc1c23c1aecaf1280c047644edc31502faa84cfe6cc2a94bbae01bee3961506775042e13a3e40e2c607892b5b0d7bdd977b0296496561d6803797fdb71604957726cba385504e65b1b08346fdedad4f55fab9a052c2a939b31ba6f1d45a19841d95c09177d268641bfe52b2", 0xc5}], 0x5, &(0x7f0000000780)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r1, 0xffffffffffffffff}}}], 0x20, 0x804}, 0x44801) (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000001ac0)=ANY=[@ANYBLOB="36397459394d51cbb1040000", @ANYRES32=r2, @ANYBLOB="040047aa091e75f40000000000002e2f66696c65302f66696c65302f66f49e187b028bb4467f3961fce468a57e696c653000"])
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000440)={{}, 0x0, 0x0, @unused=[0x0, 0x0, 0x8, 0x1000], @devid}) (async)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000300)={{}, 0x0, 0x0, @unused=[0x1, 0x0, 0x1, 0x7], @devid}) (async)
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000240)={0x0, 0x1, {0x80, @usage=0x2, 0x0, 0x9, 0x36dd, 0xfffffffffffffff8, 0x7, 0x1, 0x500, @usage=0x2, 0x5, 0x3, [0x3, 0x0, 0x0, 0x0, 0x0, 0x6]}, {0x0, @struct={0x435, 0x7}, 0x0, 0x9, 0xc48, 0x2, 0x8, 0x10001, 0x20, @usage=0x9, 0xa7, 0x0, [0x4ce3, 0x4, 0x80000000, 0x3, 0x1, 0x3fe000000]}, {0x1, @struct={0x4, 0x7}, 0x0, 0x0, 0x6, 0x0, 0x6, 0x5, 0x40, @usage=0x8, 0x6350, 0x1, [0xffffffff, 0x3, 0x1ff, 0x3ff, 0x101, 0xd781]}, {0x200, 0x7, 0x8}}) (async)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000ac0)={{}, 0x0, 0x0, @unused=[0x2, 0xcf, 0x7fffffff, 0x8], @devid}) (async)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r5, 0x0) (async)
mount_setattr(r4, &(0x7f0000000840)='./file0\x00', 0x800, &(0x7f0000000880)={0x4, 0x2, 0x0, {r5}}, 0x20)
socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r6, r6, 0x0, 0x2)
09:21:00 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (fail_nth: 3)
[ 3467.029078][T18142]
[ 3467.032090][T17981] CPU: 1 PID: 17981 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3467.040573][T17981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3467.050681][T17981] Call Trace:
[ 3467.053957][T17981]
[ 3467.056879][T17981] dump_stack_lvl+0xd6/0x122
[ 3467.061477][T17981] dump_stack+0x11/0x1b
[ 3467.065672][T17981] dump_header+0x98/0x410
[ 3467.070165][T17981] oom_kill_process+0x18e/0x3f0
[ 3467.075092][T17981] out_of_memory+0x5ed/0x890
[ 3467.077873][T18253] FAULT_INJECTION: forcing a failure.
[ 3467.077873][T18253] name failslab, interval 1, probability 0, space 0, times 0
[ 3467.079702][T17981] mem_cgroup_oom+0x484/0x520
[ 3467.097030][T17981] try_charge_memcg+0x75c/0xa50
[ 3467.101873][T17981] ? tracing_record_taskinfo+0x77/0x1b0
[ 3467.107476][T17981] ? __rcu_read_unlock+0x5c/0x290
[ 3467.112526][T17981] ? probe_sched_wakeup+0x75/0x90
[ 3467.117587][T17981] obj_cgroup_charge_pages+0xac/0x140
[ 3467.122990][T17981] obj_cgroup_charge+0xe2/0x1b0
[ 3467.127927][T17981] ? __alloc_file+0x2e/0x1a0
[ 3467.132504][T17981] kmem_cache_alloc+0x96/0x320
[ 3467.137312][T17981] ? avc_has_perm_noaudit+0x1c0/0x270
[ 3467.142725][T17981] __alloc_file+0x2e/0x1a0
[ 3467.147172][T17981] alloc_empty_file+0xcd/0x1c0
[ 3467.152030][T17981] path_openat+0x6a/0x1eb0
[ 3467.156527][T17981] ? make_kuid+0x117/0x170
[ 3467.161010][T17981] ? __rcu_read_unlock+0x5c/0x290
[ 3467.166043][T17981] ? lockref_get_not_dead+0xf2/0x1a0
[ 3467.171352][T17981] ? __rcu_read_unlock+0x5c/0x290
[ 3467.176424][T17981] ? avc_has_perm_noaudit+0x1c0/0x270
[ 3467.181784][T17981] do_filp_open+0x105/0x220
[ 3467.186277][T17981] do_sys_openat2+0xb5/0x2b0
[ 3467.190888][T17981] __x64_sys_openat+0xef/0x110
[ 3467.195694][T17981] do_syscall_64+0x44/0xd0
[ 3467.200101][T17981] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3467.206057][T17981] RIP: 0033:0x7f6d184139f8
[ 3467.210521][T17981] Code: 24 18 31 c0 41 83 e2 40 75 40 89 f0 25 00 00 41 00 3d 00 00 41 00 74 32 44 89 c2 4c 89 ce bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 40 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00
[ 3467.230189][T17981] RSP: 002b:00007ffc0b1d4c90 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[ 3467.238589][T17981] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f6d184139f8
[ 3467.246545][T17981] RDX: 0000000000090800 RSI: 00007ffc0b1d5e80 RDI: 00000000ffffff9c
[ 3467.254520][T17981] RBP: 00007ffc0b1d5e5c R08: 0000000000090800 R09: 00007ffc0b1d5e80
[ 3467.262481][T17981] R10: 0000000000000000 R11: 0000000000000287 R12: 00007f6d1846d1ea
[ 3467.270437][T17981] R13: 00007ffc0b1d5e80 R14: 0000000000000013 R15: 00007ffc0b1d5ec0
[ 3467.278398][T17981]
[ 3467.281402][T18253] CPU: 0 PID: 18253 Comm: syz-executor.4 Not tainted 5.16.0-syzkaller #0
[ 3467.281781][T17981] memory: usage 272kB, limit 0kB, failcnt 18188
[ 3467.289895][T18253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3467.289909][T18253] Call Trace:
[ 3467.289916][T18253]
[ 3467.296204][T17981] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3467.296217][T17981] Memory cgroup stats for /syz1:
[ 3467.316283][T17981] anon 40960
[ 3467.316283][T17981] file 118784
[ 3467.316283][T17981] kernel_stack 0
[ 3467.316283][T17981] pagetables 8192
[ 3467.316283][T17981] percpu 0
[ 3467.316283][T17981] sock 0
[ 3467.316283][T17981] shmem 114688
[ 3467.316283][T17981] file_mapped 114688
[ 3467.316283][T17981] file_dirty 0
[ 3467.316283][T17981] file_writeback 0
[ 3467.316283][T17981] swapcached 0
[ 3467.316283][T17981] inactive_anon 73728
[ 3467.316283][T17981] active_anon 81920
[ 3467.316283][T17981] inactive_file 0
[ 3467.316283][T17981] active_file 4096
[ 3467.316283][T17981] unevictable 0
[ 3467.316283][T17981] slab_reclaimable 40752
[ 3467.316283][T17981] slab_unreclaimable 45680
[ 3467.316283][T17981] slab 86432
[ 3467.316283][T17981] workingset_refault_anon 0
[ 3467.316283][T17981] workingset_refault_file 0
[ 3467.316283][T17981] workingset_activate_anon 0
[ 3467.316283][T17981] workingset_activate_file 0
[ 3467.316283][T17981] workingset_restore_anon 0
[ 3467.316283][T17981] workingset_restore_file 0
[ 3467.319420][T18253] dump_stack_lvl+0xd6/0x122
[ 3467.324359][T17981] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null)
[ 3467.415370][T18253] dump_stack+0x11/0x1b
[ 3467.419969][T17981] ,cpuset=
[ 3467.426774][T18253] should_fail+0x23c/0x250
[ 3467.430916][T17981] syz1
[ 3467.433932][T18253] __should_failslab+0x81/0x90
[ 3467.438319][T17981] ,mems_allowed=0
[ 3467.440971][T18253] should_failslab+0x5/0x20
[ 3467.440998][T18253] kmem_cache_alloc_node_trace+0x61/0x310
[ 3467.445732][T17981] ,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=17981,uid=0
[ 3467.445770][T17981] Memory cgroup out of memory: Killed process 17981 (syz-executor.1) total-vm:48480kB, anon-rss:360kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:0
[ 3467.449414][T18253] ? __kmalloc_node_track_caller+0x30/0x40
[ 3467.455982][ T26] oom_reaper: reaped process 17981 (syz-executor.1), now anon-rss:0kB, file-rss:13492kB, shmem-rss:0kB
[ 3467.459601][T18253] __kmalloc_node_track_caller+0x30/0x40
[ 3467.459631][T18253] ? _sctp_make_chunk+0x53/0x210
[ 3467.512219][T18253] __alloc_skb+0x19d/0x450
[ 3467.516645][T18253] _sctp_make_chunk+0x53/0x210
[ 3467.521477][T18253] sctp_make_datafrag_empty+0x69/0x1d0
[ 3467.522018][T18359] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3467.526967][T18253] sctp_datamsg_from_user+0x581/0x9c0
[ 3467.542475][T18253] ? __genradix_ptr+0x2ab/0x330
[ 3467.547371][T18253] sctp_sendmsg_to_asoc+0x504/0xc00
[ 3467.552559][T18253] sctp_sendmsg+0x1296/0x1ad0
[ 3467.557230][T18253] inet_sendmsg+0x5f/0x80
[ 3467.561547][T18253] __sys_sendto+0x21e/0x2c0
[ 3467.566115][T18253] __x64_sys_sendto+0x74/0x90
[ 3467.570783][T18253] do_syscall_64+0x44/0xd0
[ 3467.575245][T18253] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3467.581162][T18253] RIP: 0033:0x7f0e0806feb9
[ 3467.585563][T18253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3467.605166][T18253] RSP: 002b:00007f0e071e6168 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 3467.613603][T18253] RAX: ffffffffffffffda RBX: 00007f0e08182f60 RCX: 00007f0e0806feb9
[ 3467.621562][T18253] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
09:21:01 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x3e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
chroot(&(0x7f0000000040)='./file0\x00')
[ 3467.629519][T18253] RBP: 00007f0e071e61d0 R08: 0000000000000000 R09: 0000000000000000
[ 3467.637473][T18253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3467.645478][T18253] R13: 00007ffd0b58fe4f R14: 00007f0e071e6300 R15: 0000000000022000
[ 3467.653436][T18253]
[ 3467.656440][T18359] CPU: 1 PID: 18359 Comm: syz-executor.2 Not tainted 5.16.0-syzkaller #0
[ 3467.664929][T18359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3467.674978][T18359] Call Trace:
[ 3467.678253][T18359]
09:21:01 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (fail_nth: 4)
[ 3467.681204][T18359] dump_stack_lvl+0xd6/0x122
[ 3467.685821][T18359] dump_stack+0x11/0x1b
[ 3467.690071][T18359] dump_header+0x98/0x410
[ 3467.694425][T18359] out_of_memory+0x62c/0x890
[ 3467.699068][T18359] memory_max_write+0x32c/0x3d0
[ 3467.703046][T18416] FAULT_INJECTION: forcing a failure.
[ 3467.703046][T18416] name failslab, interval 1, probability 0, space 0, times 0
[ 3467.704004][T18359] ? memory_max_show+0x70/0x70
[ 3467.721311][T18359] cgroup_file_write+0x161/0x300
[ 3467.726245][T18359] ? __check_object_size+0x22a/0x2d0
[ 3467.731589][T18359] ? cgroup_seqfile_stop+0x70/0x70
[ 3467.736737][T18359] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3467.742010][T18359] do_iter_readv_writev+0x2de/0x380
[ 3467.747198][T18359] do_iter_write+0x192/0x5c0
[ 3467.751782][T18359] ? splice_from_pipe_next+0x34f/0x3b0
[ 3467.757234][T18359] ? kmalloc_array+0x2d/0x40
[ 3467.761844][T18359] vfs_iter_write+0x4c/0x70
[ 3467.766335][T18359] iter_file_splice_write+0x43a/0x790
[ 3467.771704][T18359] ? splice_from_pipe+0xd0/0xd0
[ 3467.776543][T18359] direct_splice_actor+0x80/0xa0
[ 3467.781497][T18359] splice_direct_to_actor+0x345/0x650
[ 3467.786915][T18359] ? do_splice_direct+0x190/0x190
[ 3467.792000][T18359] do_splice_direct+0x106/0x190
[ 3467.796912][T18359] do_sendfile+0x675/0xc40
[ 3467.801323][T18359] __x64_sys_sendfile64+0x102/0x140
[ 3467.806511][T18359] do_syscall_64+0x44/0xd0
[ 3467.810926][T18359] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3467.816810][T18359] RIP: 0033:0x7f0466d58eb9
[ 3467.821237][T18359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3467.840916][T18359] RSP: 002b:00007f0465ecf168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3467.849361][T18359] RAX: ffffffffffffffda RBX: 00007f0466e6bf60 RCX: 00007f0466d58eb9
[ 3467.857321][T18359] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3467.865277][T18359] RBP: 00007f0466db308d R08: 0000000000000000 R09: 0000000000000000
[ 3467.873236][T18359] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3467.881192][T18359] R13: 00007ffe91a81ecf R14: 00007f0465ecf300 R15: 0000000000022000
[ 3467.889188][T18359]
[ 3467.892198][T18416] CPU: 0 PID: 18416 Comm: syz-executor.4 Not tainted 5.16.0-syzkaller #0
[ 3467.892448][T18359] memory: usage 212kB, limit 0kB, failcnt 18205
[ 3467.900638][T18416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3467.900651][T18416] Call Trace:
[ 3467.900657][T18416]
[ 3467.900664][T18416] dump_stack_lvl+0xd6/0x122
[ 3467.906873][T18359] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3467.906888][T18359] Memory cgroup stats for
[ 3467.916918][T18416] dump_stack+0x11/0x1b
[ 3467.916942][T18416] should_fail+0x23c/0x250
[ 3467.920220][T18359] /syz1
[ 3467.923116][T18416] ? _sctp_make_chunk+0xba/0x210
[ 3467.927680][T18359] :
[ 3467.934509][T18416] __should_failslab+0x81/0x90
[ 3467.952656][T18359] anon 0
[ 3467.952656][T18359] file 118784
[ 3467.952656][T18359] kernel_stack 0
[ 3467.952656][T18359] pagetables 0
[ 3467.952656][T18359] percpu 0
[ 3467.952656][T18359] sock 0
[ 3467.952656][T18359] shmem 114688
[ 3467.952656][T18359] file_mapped 114688
[ 3467.952656][T18359] file_dirty 0
[ 3467.952656][T18359] file_writeback 0
[ 3467.952656][T18359] swapcached 0
[ 3467.952656][T18359] inactive_anon 32768
[ 3467.952656][T18359] active_anon 81920
[ 3467.952656][T18359] inactive_file 4096
[ 3467.952656][T18359] active_file 0
[ 3467.952656][T18359] unevictable 0
[ 3467.952656][T18359] slab_reclaimable 35280
[ 3467.952656][T18359] slab_unreclaimable 20408
[ 3467.952656][T18359] slab 55688
[ 3467.952656][T18359] workingset_refault_anon 0
[ 3467.952656][T18359] workingset_refault_file 0
[ 3467.952656][T18359] workingset_activate_anon 0
[ 3467.952656][T18359] workingset_activate_file 0
[ 3467.952656][T18359] workingset_restore_anon 0
[ 3467.952656][T18359] workingset_restore_file 0
[ 3467.955099][T18416] should_failslab+0x5/0x20
[ 3467.957503][T18359] Out of memory and no killable processes...
[ 3467.966221][T18356] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3468.052659][T18416] kmem_cache_alloc+0x4f/0x320
[ 3468.052690][T18416] _sctp_make_chunk+0xba/0x210
[ 3468.082706][T18416] sctp_make_datafrag_empty+0x69/0x1d0
[ 3468.088217][T18416] sctp_datamsg_from_user+0x581/0x9c0
[ 3468.093657][T18416] ? __genradix_ptr+0x2ab/0x330
[ 3468.098533][T18416] sctp_sendmsg_to_asoc+0x504/0xc00
[ 3468.103757][T18416] sctp_sendmsg+0x1296/0x1ad0
[ 3468.108480][T18416] inet_sendmsg+0x5f/0x80
[ 3468.112806][T18416] __sys_sendto+0x21e/0x2c0
[ 3468.117364][T18416] __x64_sys_sendto+0x74/0x90
[ 3468.122034][T18416] do_syscall_64+0x44/0xd0
[ 3468.126443][T18416] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3468.132338][T18416] RIP: 0033:0x7f0e0806feb9
[ 3468.136750][T18416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3468.156351][T18416] RSP: 002b:00007f0e071e6168 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 3468.164754][T18416] RAX: ffffffffffffffda RBX: 00007f0e08182f60 RCX: 00007f0e0806feb9
[ 3468.172805][T18416] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
09:21:01 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
unshare(0x20000800)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
r2 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
unshare(0xc040080)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000080)={0x1, 0x4}, 0x4)
unshare(0x4020200)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0x6, &(0x7f0000000000)=ANY=[@ANYRES32], &(0x7f0000000080)='GPL\x00', 0xb, 0xb7, &(0x7f000000cf3d)=""/183, 0x0, 0xc, '\x00', 0x0, 0x3, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000001bc0)=ANY=[@ANYBLOB="18010000ff00fd050000f6ff45bcea7997d76807da000000118efe63d5006f000000511aa36315475ae8725cccbc1ea7e09b51fd61cc8b42d732efd244ebcd76ffef0ea162c46ebf3d6c06dc46804f48c1b83260823ddeacd279fb8c9dcf5a5654070742396b47470a00c6103b7c65d4c707e706ef938b4400d83b010903ff417cca59495e516694b6840ca4c17900b89a024cf4b71f265b993d5664e1cb32b12fa9baee1f853cd1c619f82a8825ec0e0ff386ea7f32698cc20d08765c6a2bbc9179446f6dd050a416920aa66f716e0ff2cd7203783c66bd2c", @ANYRESOCT, @ANYRES32], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='lock_acquire\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x19, 0x10, &(0x7f00000018c0)=ANY=[@ANYRES64, @ANYRES32, @ANYRESOCT, @ANYRES32, @ANYBLOB="000029435c7e74e2bf70a5d5000002000000850000004c1109898800000000f0b60000b3dc8f3abd11e7a8006003000000000000b87bb47c22ecffffff08"], &(0x7f0000001680)='GPL\x00', 0x0, 0xff2, &(0x7f0000000600)=""/4082, 0x41100, 0x1, '\x00', 0x0, 0x7, 0xffffffffffffffff, 0x8, &(0x7f0000001640)={0x9, 0x3}, 0x8, 0x10, &(0x7f00000001c0)={0x3, 0xc, 0xa, 0xce95}, 0x10, 0x0, r3}, 0x78)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r4, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@bloom_filter={0x1e, 0x3b, 0x3f, 0x0, 0x1, 0x1, 0x1ff, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x17, 0x1, &(0x7f0000000180)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000240)={0x5, 0x5, 0x80000001, 0x8001}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=[r4, 0x1, r5]}, 0x80)
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
unshare(0x20000800) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
socket(0xa, 0x3, 0x87) (async)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
socket(0xa, 0x3, 0x87) (async)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
unshare(0xc040080) (async)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000080)={0x1, 0x4}, 0x4) (async)
unshare(0x4020200) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0x6, &(0x7f0000000000)=ANY=[@ANYRES32], &(0x7f0000000080)='GPL\x00', 0xb, 0xb7, &(0x7f000000cf3d)=""/183, 0x0, 0xc, '\x00', 0x0, 0x3, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000001bc0)=ANY=[@ANYBLOB="18010000ff00fd050000f6ff45bcea7997d76807da000000118efe63d5006f000000511aa36315475ae8725cccbc1ea7e09b51fd61cc8b42d732efd244ebcd76ffef0ea162c46ebf3d6c06dc46804f48c1b83260823ddeacd279fb8c9dcf5a5654070742396b47470a00c6103b7c65d4c707e706ef938b4400d83b010903ff417cca59495e516694b6840ca4c17900b89a024cf4b71f265b993d5664e1cb32b12fa9baee1f853cd1c619f82a8825ec0e0ff386ea7f32698cc20d08765c6a2bbc9179446f6dd050a416920aa66f716e0ff2cd7203783c66bd2c", @ANYRESOCT, @ANYRES32], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='lock_acquire\x00', r3}, 0x10) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x19, 0x10, &(0x7f00000018c0)=ANY=[@ANYRES64, @ANYRES32, @ANYRESOCT, @ANYRES32, @ANYBLOB="000029435c7e74e2bf70a5d5000002000000850000004c1109898800000000f0b60000b3dc8f3abd11e7a8006003000000000000b87bb47c22ecffffff08"], &(0x7f0000001680)='GPL\x00', 0x0, 0xff2, &(0x7f0000000600)=""/4082, 0x41100, 0x1, '\x00', 0x0, 0x7, 0xffffffffffffffff, 0x8, &(0x7f0000001640)={0x9, 0x3}, 0x8, 0x10, &(0x7f00000001c0)={0x3, 0xc, 0xa, 0xce95}, 0x10, 0x0, r3}, 0x78) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r4, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@bloom_filter={0x1e, 0x3b, 0x3f, 0x0, 0x1, 0x1, 0x1ff, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x5}, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x17, 0x1, &(0x7f0000000180)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000240)={0x5, 0x5, 0x80000001, 0x8001}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=[r4, 0x1, r5]}, 0x80) (async)
09:21:01 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
r2 = socket(0x18, 0x0, 0x0)
close(r2) (async)
r3 = socket$can_j1939(0x1d, 0x2, 0x7) (async)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000300)={'vcan0\x00', 0x0})
bind$can_j1939(r3, &(0x7f0000000040)={0x1d, r5, 0x2}, 0x18)
connect$can_j1939(r2, &(0x7f0000000000)={0x1d, r5}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x43, 0x0, 0x0, 0x0, 0x2}, [@map_idx={0x18, 0xa, 0x5, 0x0, 0x9}]}, &(0x7f00000000c0)='syzkaller\x00', 0xdc, 0x1000, &(0x7f00000003c0)=""/4096, 0x40f00, 0x1c, '\x00', r5, 0x0, r1, 0x8, &(0x7f0000000100)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000200)={0x3, 0x0, 0x0, 0x1}, 0x10}, 0x80) (async)
r6 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r6, r6, 0x0, 0x2)
09:21:02 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (fail_nth: 5)
[ 3468.180765][T18416] RBP: 00007f0e071e61d0 R08: 0000000000000000 R09: 0000000000000000
[ 3468.188871][T18416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3468.196827][T18416] R13: 00007ffd0b58fe4f R14: 00007f0e071e6300 R15: 0000000000022000
[ 3468.204791][T18416]
[ 3468.207800][T18356] CPU: 1 PID: 18356 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3468.216214][T18356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3468.226269][T18356] Call Trace:
[ 3468.229540][T18356]
[ 3468.232478][T18356] dump_stack_lvl+0xd6/0x122
[ 3468.237072][T18356] dump_stack+0x11/0x1b
[ 3468.241276][T18356] dump_header+0x98/0x410
[ 3468.245615][T18356] out_of_memory+0x62c/0x890
[ 3468.247332][T18467] FAULT_INJECTION: forcing a failure.
[ 3468.247332][T18467] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3468.250207][T18356] memory_max_write+0x32c/0x3d0
[ 3468.268077][T18356] ? memory_max_show+0x70/0x70
[ 3468.272834][T18356] cgroup_file_write+0x161/0x300
[ 3468.277759][T18356] ? __check_object_size+0x22a/0x2d0
[ 3468.283052][T18356] ? cgroup_seqfile_stop+0x70/0x70
[ 3468.288244][T18356] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3468.293553][T18356] do_iter_readv_writev+0x2de/0x380
[ 3468.298754][T18356] do_iter_write+0x192/0x5c0
[ 3468.303379][T18356] ? splice_from_pipe_next+0x34f/0x3b0
[ 3468.308939][T18356] ? kmalloc_array+0x2d/0x40
[ 3468.313517][T18356] vfs_iter_write+0x4c/0x70
[ 3468.318008][T18356] iter_file_splice_write+0x43a/0x790
[ 3468.323372][T18356] ? splice_from_pipe+0xd0/0xd0
[ 3468.328243][T18356] direct_splice_actor+0x80/0xa0
[ 3468.333369][T18356] splice_direct_to_actor+0x345/0x650
[ 3468.338734][T18356] ? do_splice_direct+0x190/0x190
[ 3468.343765][T18356] do_splice_direct+0x106/0x190
[ 3468.348649][T18356] do_sendfile+0x675/0xc40
[ 3468.353093][T18356] __x64_sys_sendfile64+0x102/0x140
[ 3468.358351][T18356] do_syscall_64+0x44/0xd0
[ 3468.362756][T18356] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3468.368654][T18356] RIP: 0033:0x7f4d3cb0beb9
[ 3468.373071][T18356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3468.392660][T18356] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3468.401599][T18356] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3468.409558][T18356] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3468.417524][T18356] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3468.425507][T18356] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3468.433461][T18356] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3468.441418][T18356]
[ 3468.444423][T18467] CPU: 0 PID: 18467 Comm: syz-executor.4 Not tainted 5.16.0-syzkaller #0
[ 3468.444632][T18356] memory: usage 176kB, limit 0kB, failcnt 18205
[ 3468.452836][T18467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3468.452848][T18467] Call Trace:
[ 3468.452856][T18467]
[ 3468.459060][T18356] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3468.469094][T18467] dump_stack_lvl+0xd6/0x122
[ 3468.469130][T18467] dump_stack+0x11/0x1b
[ 3468.469149][T18467] should_fail+0x23c/0x250
[ 3468.469168][T18467] should_fail_usercopy+0x16/0x20
[ 3468.472453][T18356] Memory cgroup stats for
[ 3468.475357][T18467] _copy_from_iter+0x131/0x990
[ 3468.482190][T18356] /syz1
[ 3468.486742][T18467] ? check_stack_object+0x61/0x70
[ 3468.490882][T18356] :
[ 3468.495260][T18467] ? __virt_addr_valid+0x15a/0x1a0
[ 3468.509973][T18356] anon 0
[ 3468.509973][T18356] file 118784
[ 3468.509973][T18356] kernel_stack 0
09:21:02 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x3e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
chroot(&(0x7f0000000040)='./file0\x00')
09:21:02 executing program 0:
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000040)={r2, 0x0, 0x30}, &(0x7f0000000080)=0x18)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000200)={r2, @in={{0x2, 0x4e20, @loopback}}, 0x81, 0xfff, 0x4, 0x6, 0xfffffbff}, &(0x7f0000000040)=0x98)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
r6 = inotify_init()
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f00000003c0))
09:21:02 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
r2 = socket(0x18, 0x0, 0x0)
close(r2)
r3 = socket$can_j1939(0x1d, 0x2, 0x7) (async)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000300)={'vcan0\x00', 0x0})
bind$can_j1939(r3, &(0x7f0000000040)={0x1d, r5, 0x2}, 0x18) (async)
connect$can_j1939(r2, &(0x7f0000000000)={0x1d, r5}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x43, 0x0, 0x0, 0x0, 0x2}, [@map_idx={0x18, 0xa, 0x5, 0x0, 0x9}]}, &(0x7f00000000c0)='syzkaller\x00', 0xdc, 0x1000, &(0x7f00000003c0)=""/4096, 0x40f00, 0x1c, '\x00', r5, 0x0, r1, 0x8, &(0x7f0000000100)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000200)={0x3, 0x0, 0x0, 0x1}, 0x10}, 0x80)
r6 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r6, r6, 0x0, 0x2)
[ 3468.509973][T18356] pagetables 0
[ 3468.509973][T18356] percpu 0
[ 3468.509973][T18356] sock 0
[ 3468.509973][T18356] shmem 114688
[ 3468.509973][T18356] file_mapped 114688
[ 3468.509973][T18356] file_dirty 0
[ 3468.509973][T18356] file_writeback 0
[ 3468.509973][T18356] swapcached 0
[ 3468.509973][T18356] inactive_anon 32768
[ 3468.509973][T18356] active_anon 81920
[ 3468.509973][T18356] inactive_file 4096
[ 3468.509973][T18356] active_file 0
[ 3468.509973][T18356] unevictable 0
[ 3468.509973][T18356] slab_reclaimable 35280
[ 3468.509973][T18356] slab_unreclaimable 20408
09:21:02 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0xa06080, &(0x7f0000000200)={[{@mode={'mode', 0x3d, 0x3}}, {@mode={'mode', 0x3d, 0xffffffff}}, {@mode={'mode', 0x3d, 0xc1}}, {@mode={'mode', 0x3d, 0x380}}], [{@obj_user={'obj_user', 0x3d, 'syz1\x00'}}, {@func={'func', 0x3d, 'MMAP_CHECK'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@func={'func', 0x3d, 'CREDS_CHECK'}}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@func={'func', 0x3d, 'BPRM_CHECK'}}, {@dont_hash}, {@measure}]})
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
[ 3468.509973][T18356] slab 55688
[ 3468.509973][T18356] workingset_refault_anon 0
[ 3468.509973][T18356] workingset_refault_file 0
[ 3468.509973][T18356] workingset_activate_anon 0
[ 3468.509973][T18356] workingset_activate_file 0
[ 3468.509973][T18356] workingset_restore_anon 0
[ 3468.509973][T18356] workingset_restore_file 0
[ 3468.512132][T18467] ? __check_object_size+0x22a/0x2d0
[ 3468.517152][T18356] Out of memory and no killable processes...
[ 3468.625587][T18783] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3468.626270][T18467] sctp_user_addto_chunk+0x67/0x130
[ 3468.641319][T18467] sctp_datamsg_from_user+0x59d/0x9c0
[ 3468.646764][T18467] ? __genradix_ptr+0x2ab/0x330
[ 3468.651832][T18467] sctp_sendmsg_to_asoc+0x504/0xc00
[ 3468.657085][T18467] sctp_sendmsg+0x1296/0x1ad0
[ 3468.661754][T18467] inet_sendmsg+0x5f/0x80
[ 3468.666286][T18467] __sys_sendto+0x21e/0x2c0
[ 3468.670782][T18467] __x64_sys_sendto+0x74/0x90
[ 3468.675496][T18467] do_syscall_64+0x44/0xd0
[ 3468.680031][T18467] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3468.685944][T18467] RIP: 0033:0x7f0e0806feb9
[ 3468.690342][T18467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3468.709979][T18467] RSP: 002b:00007f0e071e6168 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 3468.718373][T18467] RAX: ffffffffffffffda RBX: 00007f0e08182f60 RCX: 00007f0e0806feb9
[ 3468.726338][T18467] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[ 3468.734342][T18467] RBP: 00007f0e071e61d0 R08: 0000000000000000 R09: 0000000000000000
[ 3468.742304][T18467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3468.750269][T18467] R13: 00007ffd0b58fe4f R14: 00007f0e071e6300 R15: 0000000000022000
[ 3468.758281][T18467]
[ 3468.761286][T18783] CPU: 1 PID: 18783 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3468.769700][T18783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3468.779784][T18783] Call Trace:
[ 3468.783057][T18783]
[ 3468.785980][T18783] dump_stack_lvl+0xd6/0x122
[ 3468.790617][T18783] dump_stack+0x11/0x1b
[ 3468.794759][T18783] dump_header+0x98/0x410
[ 3468.799076][T18783] out_of_memory+0x62c/0x890
[ 3468.803667][T18783] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3468.809478][T18783] memory_max_write+0x32c/0x3d0
[ 3468.814357][T18783] ? memory_max_show+0x70/0x70
[ 3468.819123][T18783] cgroup_file_write+0x161/0x300
[ 3468.824043][T18783] ? __check_object_size+0x22a/0x2d0
[ 3468.829402][T18783] ? cgroup_seqfile_stop+0x70/0x70
[ 3468.834495][T18783] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3468.839758][T18783] do_iter_readv_writev+0x2de/0x380
[ 3468.844955][T18783] do_iter_write+0x192/0x5c0
[ 3468.849524][T18783] ? splice_from_pipe_next+0x34f/0x3b0
[ 3468.854967][T18783] ? kmalloc_array+0x2d/0x40
[ 3468.859540][T18783] vfs_iter_write+0x4c/0x70
[ 3468.864027][T18783] iter_file_splice_write+0x43a/0x790
[ 3468.869396][T18783] ? splice_from_pipe+0xd0/0xd0
[ 3468.874241][T18783] direct_splice_actor+0x80/0xa0
[ 3468.879210][T18783] splice_direct_to_actor+0x345/0x650
[ 3468.884593][T18783] ? do_splice_direct+0x190/0x190
[ 3468.889662][T18783] do_splice_direct+0x106/0x190
[ 3468.894493][T18783] do_sendfile+0x675/0xc40
[ 3468.898942][T18783] __x64_sys_sendfile64+0x102/0x140
[ 3468.904119][T18783] do_syscall_64+0x44/0xd0
[ 3468.908533][T18783] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3468.914435][T18783] RIP: 0033:0x7f0a46a70eb9
[ 3468.918899][T18783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3468.938495][T18783] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3468.946955][T18783] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3468.954903][T18783] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3468.962857][T18783] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3468.970809][T18783] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3468.978758][T18783] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3468.986740][T18783]
[ 3468.990092][T18783] memory: usage 176kB, limit 0kB, failcnt 18205
[ 3468.996332][T18783] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3469.003186][T18783] Memory cgroup stats for /syz1:
[ 3469.003305][T18783] anon 0
[ 3469.003305][T18783] file 118784
[ 3469.003305][T18783] kernel_stack 0
[ 3469.003305][T18783] pagetables 0
[ 3469.003305][T18783] percpu 0
[ 3469.003305][T18783] sock 0
[ 3469.003305][T18783] shmem 114688
[ 3469.003305][T18783] file_mapped 114688
[ 3469.003305][T18783] file_dirty 4096
[ 3469.003305][T18783] file_writeback 0
[ 3469.003305][T18783] swapcached 0
[ 3469.003305][T18783] inactive_anon 32768
[ 3469.003305][T18783] active_anon 81920
[ 3469.003305][T18783] inactive_file 0
[ 3469.003305][T18783] active_file 4096
[ 3469.003305][T18783] unevictable 0
[ 3469.003305][T18783] slab_reclaimable 35280
[ 3469.003305][T18783] slab_unreclaimable 20408
[ 3469.003305][T18783] slab 55688
[ 3469.003305][T18783] workingset_refault_anon 0
[ 3469.003305][T18783] workingset_refault_file 0
[ 3469.003305][T18783] workingset_activate_anon 0
[ 3469.003305][T18783] workingset_activate_file 0
[ 3469.003305][T18783] workingset_restore_anon 0
[ 3469.003305][T18783] workingset_restore_file 0
[ 3469.099595][T18783] Out of memory and no killable processes...
[ 3469.132975][T18792] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3469.143219][T18792] CPU: 0 PID: 18792 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3469.151637][T18792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3469.161685][T18792] Call Trace:
[ 3469.164959][T18792]
[ 3469.167963][T18792] dump_stack_lvl+0xd6/0x122
[ 3469.172559][T18792] dump_stack+0x11/0x1b
[ 3469.176777][T18792] dump_header+0x98/0x410
[ 3469.181087][T18792] out_of_memory+0x62c/0x890
[ 3469.185719][T18792] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3469.191524][T18792] memory_max_write+0x32c/0x3d0
[ 3469.196356][T18792] ? memory_max_show+0x70/0x70
[ 3469.201115][T18792] cgroup_file_write+0x161/0x300
[ 3469.206030][T18792] ? __check_object_size+0x22a/0x2d0
[ 3469.211298][T18792] ? cgroup_seqfile_stop+0x70/0x70
[ 3469.216551][T18792] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3469.221814][T18792] do_iter_readv_writev+0x2de/0x380
[ 3469.226996][T18792] do_iter_write+0x192/0x5c0
[ 3469.231646][T18792] ? splice_from_pipe_next+0x34f/0x3b0
[ 3469.237087][T18792] ? kmalloc_array+0x2d/0x40
[ 3469.241726][T18792] vfs_iter_write+0x4c/0x70
[ 3469.246208][T18792] iter_file_splice_write+0x43a/0x790
[ 3469.251568][T18792] ? splice_from_pipe+0xd0/0xd0
[ 3469.256429][T18792] direct_splice_actor+0x80/0xa0
[ 3469.261392][T18792] splice_direct_to_actor+0x345/0x650
[ 3469.266857][T18792] ? do_splice_direct+0x190/0x190
[ 3469.271892][T18792] do_splice_direct+0x106/0x190
[ 3469.276727][T18792] do_sendfile+0x675/0xc40
[ 3469.281227][T18792] __x64_sys_sendfile64+0x102/0x140
[ 3469.286403][T18792] do_syscall_64+0x44/0xd0
[ 3469.290803][T18792] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3469.296676][T18792] RIP: 0033:0x7f4d3cb0beb9
[ 3469.301074][T18792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3469.320733][T18792] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3469.329143][T18792] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3469.337090][T18792] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3469.345087][T18792] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3469.353046][T18792] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3469.361044][T18792] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3469.368996][T18792]
[ 3469.372038][T18792] memory: usage 176kB, limit 0kB, failcnt 18205
[ 3469.378270][T18792] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3469.385279][T18792] Memory cgroup stats for /syz1:
[ 3469.389262][T18792] anon 0
[ 3469.389262][T18792] file 118784
[ 3469.389262][T18792] kernel_stack 0
[ 3469.389262][T18792] pagetables 0
[ 3469.389262][T18792] percpu 0
[ 3469.389262][T18792] sock 0
[ 3469.389262][T18792] shmem 114688
[ 3469.389262][T18792] file_mapped 114688
[ 3469.389262][T18792] file_dirty 4096
[ 3469.389262][T18792] file_writeback 0
[ 3469.389262][T18792] swapcached 0
[ 3469.389262][T18792] inactive_anon 32768
[ 3469.389262][T18792] active_anon 81920
[ 3469.389262][T18792] inactive_file 0
[ 3469.389262][T18792] active_file 4096
[ 3469.389262][T18792] unevictable 0
[ 3469.389262][T18792] slab_reclaimable 35280
[ 3469.389262][T18792] slab_unreclaimable 19928
[ 3469.389262][T18792] slab 55208
[ 3469.389262][T18792] workingset_refault_anon 0
[ 3469.389262][T18792] workingset_refault_file 0
[ 3469.389262][T18792] workingset_activate_anon 0
[ 3469.389262][T18792] workingset_activate_file 0
[ 3469.389262][T18792] workingset_restore_anon 0
[ 3469.389262][T18792] workingset_restore_file 0
[ 3469.485029][T18792] Out of memory and no killable processes...
09:21:03 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWRULE={0x1c, 0x6, 0xa, 0x201, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELFLOWTABLE={0x1c, 0x18, 0xa, 0x201, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_NEWTABLE={0x48, 0x0, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0xd4}, 0x1, 0x0, 0x0, 0x15}, 0x4000)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = ioctl$NS_GET_PARENT(r1, 0xb702, 0x0)
fsetxattr$security_ima(r3, &(0x7f0000000040), &(0x7f00000000c0)=@v1={0x2, "fd339bd1ece8"}, 0x7, 0xa237a462afe5e57b)
r4 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:21:03 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (fail_nth: 6)
09:21:03 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (rerun: 64)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0xa06080, &(0x7f0000000200)={[{@mode={'mode', 0x3d, 0x3}}, {@mode={'mode', 0x3d, 0xffffffff}}, {@mode={'mode', 0x3d, 0xc1}}, {@mode={'mode', 0x3d, 0x380}}], [{@obj_user={'obj_user', 0x3d, 'syz1\x00'}}, {@func={'func', 0x3d, 'MMAP_CHECK'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@func={'func', 0x3d, 'CREDS_CHECK'}}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@func={'func', 0x3d, 'BPRM_CHECK'}}, {@dont_hash}, {@measure}]}) (async)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:03 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x3e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 32)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
chroot(&(0x7f0000000040)='./file0\x00')
09:21:03 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
unshare(0x20000800)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
r2 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
unshare(0xc040080)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000080)={0x1, 0x4}, 0x4)
unshare(0x4020200)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0x6, &(0x7f0000000000)=ANY=[@ANYRES32], &(0x7f0000000080)='GPL\x00', 0xb, 0xb7, &(0x7f000000cf3d)=""/183, 0x0, 0xc, '\x00', 0x0, 0x3, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000001bc0)=ANY=[@ANYBLOB="18010000ff00fd050000f6ff45bcea7997d76807da000000118efe63d5006f000000511aa36315475ae8725cccbc1ea7e09b51fd61cc8b42d732efd244ebcd76ffef0ea162c46ebf3d6c06dc46804f48c1b83260823ddeacd279fb8c9dcf5a5654070742396b47470a00c6103b7c65d4c707e706ef938b4400d83b010903ff417cca59495e516694b6840ca4c17900b89a024cf4b71f265b993d5664e1cb32b12fa9baee1f853cd1c619f82a8825ec0e0ff386ea7f32698cc20d08765c6a2bbc9179446f6dd050a416920aa66f716e0ff2cd7203783c66bd2c", @ANYRESOCT, @ANYRES32], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='lock_acquire\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x19, 0x10, &(0x7f00000018c0)=ANY=[@ANYRES64, @ANYRES32, @ANYRESOCT, @ANYRES32, @ANYBLOB="000029435c7e74e2bf70a5d5000002000000850000004c1109898800000000f0b60000b3dc8f3abd11e7a8006003000000000000b87bb47c22ecffffff08"], &(0x7f0000001680)='GPL\x00', 0x0, 0xff2, &(0x7f0000000600)=""/4082, 0x41100, 0x1, '\x00', 0x0, 0x7, 0xffffffffffffffff, 0x8, &(0x7f0000001640)={0x9, 0x3}, 0x8, 0x10, &(0x7f00000001c0)={0x3, 0xc, 0xa, 0xce95}, 0x10, 0x0, r3}, 0x78)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r4, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@bloom_filter={0x1e, 0x3b, 0x3f, 0x0, 0x1, 0x1, 0x1ff, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x17, 0x1, &(0x7f0000000180)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000240)={0x5, 0x5, 0x80000001, 0x8001}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=[r4, 0x1, r5]}, 0x80)
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
unshare(0x20000800) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
socket(0xa, 0x3, 0x87) (async)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
socket(0xa, 0x3, 0x87) (async)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
unshare(0xc040080) (async)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000080)={0x1, 0x4}, 0x4) (async)
unshare(0x4020200) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0x6, &(0x7f0000000000)=ANY=[@ANYRES32], &(0x7f0000000080)='GPL\x00', 0xb, 0xb7, &(0x7f000000cf3d)=""/183, 0x0, 0xc, '\x00', 0x0, 0x3, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000001bc0)=ANY=[@ANYBLOB="18010000ff00fd050000f6ff45bcea7997d76807da000000118efe63d5006f000000511aa36315475ae8725cccbc1ea7e09b51fd61cc8b42d732efd244ebcd76ffef0ea162c46ebf3d6c06dc46804f48c1b83260823ddeacd279fb8c9dcf5a5654070742396b47470a00c6103b7c65d4c707e706ef938b4400d83b010903ff417cca59495e516694b6840ca4c17900b89a024cf4b71f265b993d5664e1cb32b12fa9baee1f853cd1c619f82a8825ec0e0ff386ea7f32698cc20d08765c6a2bbc9179446f6dd050a416920aa66f716e0ff2cd7203783c66bd2c", @ANYRESOCT, @ANYRES32], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='lock_acquire\x00', r3}, 0x10) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x19, 0x10, &(0x7f00000018c0)=ANY=[@ANYRES64, @ANYRES32, @ANYRESOCT, @ANYRES32, @ANYBLOB="000029435c7e74e2bf70a5d5000002000000850000004c1109898800000000f0b60000b3dc8f3abd11e7a8006003000000000000b87bb47c22ecffffff08"], &(0x7f0000001680)='GPL\x00', 0x0, 0xff2, &(0x7f0000000600)=""/4082, 0x41100, 0x1, '\x00', 0x0, 0x7, 0xffffffffffffffff, 0x8, &(0x7f0000001640)={0x9, 0x3}, 0x8, 0x10, &(0x7f00000001c0)={0x3, 0xc, 0xa, 0xce95}, 0x10, 0x0, r3}, 0x78) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r4, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@bloom_filter={0x1e, 0x3b, 0x3f, 0x0, 0x1, 0x1, 0x1ff, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x5}, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x17, 0x1, &(0x7f0000000180)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x4, 0x2}, 0x8, 0x10, &(0x7f0000000240)={0x5, 0x5, 0x80000001, 0x8001}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)=[r4, 0x1, r5]}, 0x80) (async)
09:21:03 executing program 0:
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000040)={r2, 0x0, 0x30}, &(0x7f0000000080)=0x18)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000200)={r2, @in={{0x2, 0x4e20, @loopback}}, 0x81, 0xfff, 0x4, 0x6, 0xfffffbff}, &(0x7f0000000040)=0x98)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
r6 = inotify_init()
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f00000003c0))
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000040)={r2, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000200)={r2, @in={{0x2, 0x4e20, @loopback}}, 0x81, 0xfff, 0x4, 0x6, 0xfffffbff}, &(0x7f0000000040)=0x98) (async)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r5, r5, 0x0, 0x2) (async)
inotify_init() (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f00000003c0)) (async)
09:21:03 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async)
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0) (async)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWRULE={0x1c, 0x6, 0xa, 0x201, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELFLOWTABLE={0x1c, 0x18, 0xa, 0x201, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_NEWTABLE={0x48, 0x0, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0xd4}, 0x1, 0x0, 0x0, 0x15}, 0x4000)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
r3 = ioctl$NS_GET_PARENT(r1, 0xb702, 0x0)
fsetxattr$security_ima(r3, &(0x7f0000000040), &(0x7f00000000c0)=@v1={0x2, "fd339bd1ece8"}, 0x7, 0xa237a462afe5e57b)
r4 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
[ 3469.559303][T18894] FAULT_INJECTION: forcing a failure.
[ 3469.559303][T18894] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3469.572388][T18894] CPU: 0 PID: 18894 Comm: syz-executor.4 Not tainted 5.16.0-syzkaller #0
[ 3469.580829][T18894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3469.590932][T18894] Call Trace:
[ 3469.594208][T18894]
[ 3469.597183][T18894] dump_stack_lvl+0xd6/0x122
[ 3469.601828][T18894] dump_stack+0x11/0x1b
09:21:03 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0xa06080, &(0x7f0000000200)={[{@mode={'mode', 0x3d, 0x3}}, {@mode={'mode', 0x3d, 0xffffffff}}, {@mode={'mode', 0x3d, 0xc1}}, {@mode={'mode', 0x3d, 0x380}}], [{@obj_user={'obj_user', 0x3d, 'syz1\x00'}}, {@func={'func', 0x3d, 'MMAP_CHECK'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@func={'func', 0x3d, 'CREDS_CHECK'}}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@func={'func', 0x3d, 'BPRM_CHECK'}}, {@dont_hash}, {@measure}]})
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0xa06080, &(0x7f0000000200)={[{@mode={'mode', 0x3d, 0x3}}, {@mode={'mode', 0x3d, 0xffffffff}}, {@mode={'mode', 0x3d, 0xc1}}, {@mode={'mode', 0x3d, 0x380}}], [{@obj_user={'obj_user', 0x3d, 'syz1\x00'}}, {@func={'func', 0x3d, 'MMAP_CHECK'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@func={'func', 0x3d, 'CREDS_CHECK'}}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@func={'func', 0x3d, 'BPRM_CHECK'}}, {@dont_hash}, {@measure}]}) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
[ 3469.605999][T18894] should_fail+0x23c/0x250
[ 3469.610417][T18894] should_fail_usercopy+0x16/0x20
[ 3469.615446][T18894] _copy_to_user+0x1c/0x90
[ 3469.619872][T18894] simple_read_from_buffer+0xab/0x120
[ 3469.625283][T18894] proc_fail_nth_read+0x10d/0x150
[ 3469.630310][T18894] ? proc_fault_inject_write+0x230/0x230
[ 3469.635958][T18894] vfs_read+0x1e6/0x750
[ 3469.640113][T18894] ? __fget_files+0x1d2/0x210
[ 3469.644795][T18894] ksys_read+0xd9/0x190
[ 3469.648950][T18894] __x64_sys_read+0x3e/0x50
[ 3469.653534][T18894] do_syscall_64+0x44/0xd0
[ 3469.658008][T18894] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3469.663941][T18894] RIP: 0033:0x7f0e08022a6c
[ 3469.668402][T18894] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 3469.688003][T18894] RSP: 002b:00007f0e071e6160 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3469.696429][T18894] RAX: ffffffffffffffda RBX: 00007f0e08182f60 RCX: 00007f0e08022a6c
09:21:03 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
unshare(0x2020000)
unshare(0x20030d80)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
[ 3469.704418][T18894] RDX: 000000000000000f RSI: 00007f0e071e61e0 RDI: 0000000000000004
[ 3469.712387][T18894] RBP: 00007f0e071e61d0 R08: 0000000000000000 R09: 0000000000000000
[ 3469.720430][T18894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3469.728396][T18894] R13: 00007ffd0b58fe4f R14: 00007f0e071e6300 R15: 0000000000022000
[ 3469.736428][T18894]
09:21:03 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x82)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r0, &(0x7f0000000280)='memory.events\x00', 0x0, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
faccessat(r0, &(0x7f0000000040)='./file0\x00', 0x80)
ioctl$FIBMAP(r2, 0x1, &(0x7f00000002c0)=0x5)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x100000a, 0x10, r0, 0x5ec89000)
sendmsg$AUDIT_MAKE_EQUIV(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x28, 0x3f7, 0x2, 0x70bd2d, 0x25dfdbfc, {0x7, 0x7, './file0', './file0'}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x4004c81)
09:21:03 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r4 = fork()
process_vm_writev(r4, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0)
r5 = fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000280)={0x0, 0x0})
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
tgkill(0x0, r7, 0x2b)
r8 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000340), 0x109802, 0x0)
clone3(&(0x7f00000003c0)={0x80000, &(0x7f0000000040), &(0x7f00000000c0), &(0x7f0000000100), {0x2f}, &(0x7f0000000200)=""/27, 0x1b, &(0x7f0000000240)=""/15, &(0x7f0000000300)=[r4, r5, r6, r7], 0x4, {r8}}, 0x58)
sendfile(r3, r3, 0x0, 0x2)
[ 3469.754669][T19312] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3469.764876][T19312] CPU: 0 PID: 19312 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3469.773286][T19312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3469.783438][T19312] Call Trace:
[ 3469.786712][T19312]
[ 3469.789648][T19312] dump_stack_lvl+0xd6/0x122
[ 3469.794244][T19312] dump_stack+0x11/0x1b
[ 3469.798400][T19312] dump_header+0x98/0x410
[ 3469.802728][T19312] out_of_memory+0x62c/0x890
[ 3469.807353][T19312] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3469.813166][T19312] memory_max_write+0x32c/0x3d0
[ 3469.818017][T19312] ? memory_max_show+0x70/0x70
[ 3469.822778][T19312] cgroup_file_write+0x161/0x300
[ 3469.827781][T19312] ? __check_object_size+0x22a/0x2d0
[ 3469.833071][T19312] ? cgroup_seqfile_stop+0x70/0x70
[ 3469.838250][T19312] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3469.843538][T19312] do_iter_readv_writev+0x2de/0x380
[ 3469.848789][T19312] do_iter_write+0x192/0x5c0
[ 3469.853378][T19312] ? splice_from_pipe_next+0x34f/0x3b0
[ 3469.858840][T19312] ? kmalloc_array+0x2d/0x40
[ 3469.863502][T19312] vfs_iter_write+0x4c/0x70
[ 3469.868005][T19312] iter_file_splice_write+0x43a/0x790
[ 3469.873505][T19312] ? splice_from_pipe+0xd0/0xd0
[ 3469.878362][T19312] direct_splice_actor+0x80/0xa0
[ 3469.883312][T19312] splice_direct_to_actor+0x345/0x650
[ 3469.888785][T19312] ? do_splice_direct+0x190/0x190
[ 3469.894108][T19312] do_splice_direct+0x106/0x190
[ 3469.898989][T19312] do_sendfile+0x675/0xc40
[ 3469.903411][T19312] __x64_sys_sendfile64+0x102/0x140
[ 3469.908612][T19312] do_syscall_64+0x44/0xd0
[ 3469.913061][T19312] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3469.919005][T19312] RIP: 0033:0x7f4d3cb0beb9
[ 3469.923423][T19312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3469.943024][T19312] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3469.951431][T19312] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3469.959394][T19312] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3469.967504][T19312] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3469.975467][T19312] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3469.983433][T19312] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3469.991409][T19312]
[ 3469.994478][T19312] memory: usage 168kB, limit 0kB, failcnt 18205
[ 3470.000734][T19312] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
09:21:03 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x82)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r0, &(0x7f0000000280)='memory.events\x00', 0x0, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
faccessat(r0, &(0x7f0000000040)='./file0\x00', 0x80)
ioctl$FIBMAP(r2, 0x1, &(0x7f00000002c0)=0x5)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x100000a, 0x10, r0, 0x5ec89000)
sendmsg$AUDIT_MAKE_EQUIV(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x28, 0x3f7, 0x2, 0x70bd2d, 0x25dfdbfc, {0x7, 0x7, './file0', './file0'}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x4004c81)
mkdir(&(0x7f0000000140)='./file0\x00', 0x82) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup_ro(r0, &(0x7f0000000280)='memory.events\x00', 0x0, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
faccessat(r0, &(0x7f0000000040)='./file0\x00', 0x80) (async)
ioctl$FIBMAP(r2, 0x1, &(0x7f00000002c0)=0x5) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r3, r3, 0x0, 0x2) (async)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x100000a, 0x10, r0, 0x5ec89000) (async)
sendmsg$AUDIT_MAKE_EQUIV(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x28, 0x3f7, 0x2, 0x70bd2d, 0x25dfdbfc, {0x7, 0x7, './file0', './file0'}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x4004c81) (async)
09:21:03 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:03 executing program 3:
unshare(0x20000400) (async, rerun: 32)
r0 = socket$packet(0x11, 0x2, 0x300) (rerun: 32)
unshare(0x2020000) (async, rerun: 64)
unshare(0x20030d80) (async, rerun: 64)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
[ 3470.007574][T19312] Memory cgroup stats for /syz1:
[ 3470.022771][T19312] anon 0
[ 3470.022771][T19312] file 118784
[ 3470.022771][T19312] kernel_stack 0
[ 3470.022771][T19312] pagetables 0
[ 3470.022771][T19312] percpu 0
[ 3470.022771][T19312] sock 0
[ 3470.022771][T19312] shmem 114688
[ 3470.022771][T19312] file_mapped 114688
[ 3470.022771][T19312] file_dirty 4096
[ 3470.022771][T19312] file_writeback 0
[ 3470.022771][T19312] swapcached 0
[ 3470.022771][T19312] inactive_anon 32768
[ 3470.022771][T19312] active_anon 81920
[ 3470.022771][T19312] inactive_file 0
[ 3470.022771][T19312] active_file 4096
[ 3470.022771][T19312] unevictable 0
[ 3470.022771][T19312] slab_reclaimable 32992
[ 3470.022771][T19312] slab_unreclaimable 19928
[ 3470.022771][T19312] slab 52920
[ 3470.022771][T19312] workingset_refault_anon 0
[ 3470.022771][T19312] workingset_refault_file 0
[ 3470.022771][T19312] workingset_activate_anon 0
[ 3470.022771][T19312] workingset_activate_file 0
[ 3470.022771][T19312] workingset_restore_anon 0
[ 3470.022771][T19312] workingset_restore_file 0
[ 3470.118718][T19312] Out of memory and no killable processes...
[ 3470.124736][T19317] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3470.134935][T19317] CPU: 1 PID: 19317 Comm: syz-executor.2 Not tainted 5.16.0-syzkaller #0
[ 3470.143443][T19317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3470.153578][T19317] Call Trace:
[ 3470.156880][T19317]
[ 3470.159803][T19317] dump_stack_lvl+0xd6/0x122
[ 3470.164400][T19317] dump_stack+0x11/0x1b
[ 3470.168559][T19317] dump_header+0x98/0x410
[ 3470.172930][T19317] out_of_memory+0x62c/0x890
[ 3470.177532][T19317] memory_max_write+0x32c/0x3d0
[ 3470.182968][T19317] ? memory_max_show+0x70/0x70
[ 3470.187775][T19317] cgroup_file_write+0x161/0x300
[ 3470.192812][T19317] ? __check_object_size+0x22a/0x2d0
[ 3470.198150][T19317] ? cgroup_seqfile_stop+0x70/0x70
[ 3470.203338][T19317] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3470.208627][T19317] do_iter_readv_writev+0x2de/0x380
[ 3470.213885][T19317] do_iter_write+0x192/0x5c0
[ 3470.218504][T19317] ? splice_from_pipe_next+0x34f/0x3b0
[ 3470.223968][T19317] ? kmalloc_array+0x2d/0x40
[ 3470.228561][T19317] vfs_iter_write+0x4c/0x70
[ 3470.233081][T19317] iter_file_splice_write+0x43a/0x790
[ 3470.238464][T19317] ? splice_from_pipe+0xd0/0xd0
[ 3470.243322][T19317] direct_splice_actor+0x80/0xa0
[ 3470.248352][T19317] splice_direct_to_actor+0x345/0x650
[ 3470.253727][T19317] ? do_splice_direct+0x190/0x190
[ 3470.258802][T19317] do_splice_direct+0x106/0x190
[ 3470.263687][T19317] do_sendfile+0x675/0xc40
[ 3470.268105][T19317] __x64_sys_sendfile64+0x102/0x140
09:21:04 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x82) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r0, &(0x7f0000000280)='memory.events\x00', 0x0, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
faccessat(r0, &(0x7f0000000040)='./file0\x00', 0x80) (async)
ioctl$FIBMAP(r2, 0x1, &(0x7f00000002c0)=0x5)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2) (async)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x100000a, 0x10, r0, 0x5ec89000) (async)
sendmsg$AUDIT_MAKE_EQUIV(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x28, 0x3f7, 0x2, 0x70bd2d, 0x25dfdbfc, {0x7, 0x7, './file0', './file0'}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x4004c81)
09:21:04 executing program 0:
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) (async)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000040)={r2, 0x0, 0x30}, &(0x7f0000000080)=0x18)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000200)={r2, @in={{0x2, 0x4e20, @loopback}}, 0x81, 0xfff, 0x4, 0x6, 0xfffffbff}, &(0x7f0000000040)=0x98) (async)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
r6 = inotify_init()
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f00000003c0))
09:21:04 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
unshare(0x2020000)
unshare(0x20030d80)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
unshare(0x2020000) (async)
unshare(0x20030d80) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
[ 3470.273312][T19317] do_syscall_64+0x44/0xd0
[ 3470.277763][T19317] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3470.283719][T19317] RIP: 0033:0x7f0466d58eb9
[ 3470.288128][T19317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3470.307794][T19317] RSP: 002b:00007f0465ecf168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3470.316210][T19317] RAX: ffffffffffffffda RBX: 00007f0466e6bf60 RCX: 00007f0466d58eb9
09:21:04 executing program 4:
r0 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
ftruncate(r0, 0x57)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3470.324185][T19317] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3470.332156][T19317] RBP: 00007f0466db308d R08: 0000000000000000 R09: 0000000000000000
[ 3470.340150][T19317] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3470.348247][T19317] R13: 00007ffe91a81ecf R14: 00007f0465ecf300 R15: 0000000000022000
[ 3470.356260][T19317]
[ 3470.359494][T19317] memory: usage 168kB, limit 0kB, failcnt 18205
[ 3470.365748][T19317] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3470.372649][T19317] Memory cgroup stats for /syz1:
[ 3470.391525][T19317] anon 0
[ 3470.391525][T19317] file 118784
[ 3470.391525][T19317] kernel_stack 0
[ 3470.391525][T19317] pagetables 0
[ 3470.391525][T19317] percpu 0
[ 3470.391525][T19317] sock 0
[ 3470.391525][T19317] shmem 114688
[ 3470.391525][T19317] file_mapped 114688
[ 3470.391525][T19317] file_dirty 4096
[ 3470.391525][T19317] file_writeback 0
[ 3470.391525][T19317] swapcached 0
[ 3470.391525][T19317] inactive_anon 32768
[ 3470.391525][T19317] active_anon 81920
[ 3470.391525][T19317] inactive_file 4096
[ 3470.391525][T19317] active_file 0
[ 3470.391525][T19317] unevictable 0
[ 3470.391525][T19317] slab_reclaimable 32992
[ 3470.391525][T19317] slab_unreclaimable 19928
[ 3470.391525][T19317] slab 52920
[ 3470.391525][T19317] workingset_refault_anon 0
[ 3470.391525][T19317] workingset_refault_file 0
[ 3470.391525][T19317] workingset_activate_anon 0
[ 3470.391525][T19317] workingset_activate_file 0
[ 3470.391525][T19317] workingset_restore_anon 0
[ 3470.391525][T19317] workingset_restore_file 0
[ 3470.487342][T19317] Out of memory and no killable processes...
[ 3470.503883][T19762] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3470.514093][T19762] CPU: 1 PID: 19762 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3470.522506][T19762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3470.532558][T19762] Call Trace:
[ 3470.535833][T19762]
[ 3470.538763][T19762] dump_stack_lvl+0xd6/0x122
[ 3470.543374][T19762] dump_stack+0x11/0x1b
[ 3470.547579][T19762] dump_header+0x98/0x410
[ 3470.551978][T19762] out_of_memory+0x62c/0x890
[ 3470.556577][T19762] memory_max_write+0x32c/0x3d0
[ 3470.561431][T19762] ? memory_max_show+0x70/0x70
[ 3470.566198][T19762] cgroup_file_write+0x161/0x300
[ 3470.571208][T19762] ? __check_object_size+0x22a/0x2d0
[ 3470.576493][T19762] ? cgroup_seqfile_stop+0x70/0x70
[ 3470.581606][T19762] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3470.586887][T19762] do_iter_readv_writev+0x2de/0x380
[ 3470.592157][T19762] do_iter_write+0x192/0x5c0
[ 3470.596746][T19762] ? splice_from_pipe_next+0x34f/0x3b0
[ 3470.602275][T19762] ? kmalloc_array+0x2d/0x40
[ 3470.606908][T19762] vfs_iter_write+0x4c/0x70
[ 3470.611408][T19762] iter_file_splice_write+0x43a/0x790
[ 3470.616784][T19762] ? splice_from_pipe+0xd0/0xd0
[ 3470.621725][T19762] direct_splice_actor+0x80/0xa0
[ 3470.626690][T19762] splice_direct_to_actor+0x345/0x650
[ 3470.632151][T19762] ? do_splice_direct+0x190/0x190
[ 3470.637201][T19762] do_splice_direct+0x106/0x190
[ 3470.642055][T19762] do_sendfile+0x675/0xc40
[ 3470.646468][T19762] __x64_sys_sendfile64+0x102/0x140
[ 3470.651645][T19762] do_syscall_64+0x44/0xd0
[ 3470.656042][T19762] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3470.661916][T19762] RIP: 0033:0x7f4d3cb0beb9
[ 3470.666313][T19762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3470.685897][T19762] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3470.694355][T19762] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3470.702347][T19762] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3470.710295][T19762] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3470.718336][T19762] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3470.726293][T19762] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3470.734242][T19762]
[ 3470.737431][T19762] memory: usage 168kB, limit 0kB, failcnt 18205
[ 3470.743675][T19762] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3470.750575][T19762] Memory cgroup stats for /syz1:
[ 3470.751247][T19762] anon 0
[ 3470.751247][T19762] file 118784
[ 3470.751247][T19762] kernel_stack 0
[ 3470.751247][T19762] pagetables 0
[ 3470.751247][T19762] percpu 0
[ 3470.751247][T19762] sock 0
[ 3470.751247][T19762] shmem 114688
[ 3470.751247][T19762] file_mapped 114688
[ 3470.751247][T19762] file_dirty 4096
[ 3470.751247][T19762] file_writeback 0
[ 3470.751247][T19762] swapcached 0
[ 3470.751247][T19762] inactive_anon 32768
[ 3470.751247][T19762] active_anon 81920
[ 3470.751247][T19762] inactive_file 0
[ 3470.751247][T19762] active_file 4096
[ 3470.751247][T19762] unevictable 0
[ 3470.751247][T19762] slab_reclaimable 32992
[ 3470.751247][T19762] slab_unreclaimable 19928
[ 3470.751247][T19762] slab 52920
[ 3470.751247][T19762] workingset_refault_anon 0
[ 3470.751247][T19762] workingset_refault_file 0
[ 3470.751247][T19762] workingset_activate_anon 0
[ 3470.751247][T19762] workingset_activate_file 0
[ 3470.751247][T19762] workingset_restore_anon 0
[ 3470.751247][T19762] workingset_restore_file 0
[ 3470.847367][T19762] Out of memory and no killable processes...
[ 3471.221807][T11536] device hsr_slave_0 left promiscuous mode
[ 3471.228007][T11536] device hsr_slave_1 left promiscuous mode
[ 3471.234167][T11536] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3471.241578][T11536] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3471.249121][T11536] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3471.256517][T11536] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3471.264156][T11536] device bridge_slave_1 left promiscuous mode
[ 3471.270271][T11536] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3471.278025][T11536] device bridge_slave_0 left promiscuous mode
[ 3471.284202][T11536] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3471.293984][T11536] device veth1_macvtap left promiscuous mode
[ 3471.300070][T11536] device veth0_macvtap left promiscuous mode
[ 3471.306060][T11536] device veth1_vlan left promiscuous mode
[ 3471.311880][T11536] device veth0_vlan left promiscuous mode
[ 3471.390441][T11536] team0 (unregistering): Port device team_slave_1 removed
[ 3471.399877][T11536] team0 (unregistering): Port device team_slave_0 removed
[ 3471.409086][T11536] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3471.422114][T11536] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3471.449074][T11536] bond0 (unregistering): Released all slaves
[ 3471.810673][T20067] lo speed is unknown, defaulting to 1000
[ 3471.861375][T20067] chnl_net:caif_netlink_parms(): no params data found
[ 3471.892666][T20067] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3471.899681][T20067] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3471.907182][T20067] device bridge_slave_0 entered promiscuous mode
[ 3471.914202][T20067] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3471.921305][T20067] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3471.928799][T20067] device bridge_slave_1 entered promiscuous mode
[ 3471.944064][T20067] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3471.954299][T20067] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3471.972554][T20067] team0: Port device team_slave_0 added
[ 3471.978706][T20067] team0: Port device team_slave_1 added
[ 3471.991763][T20067] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3471.998684][T20067] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3472.024559][T20067] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3472.035471][T20067] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3472.042487][T20067] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3472.068388][T20067] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3472.091179][T20067] device hsr_slave_0 entered promiscuous mode
[ 3472.097666][T20067] device hsr_slave_1 entered promiscuous mode
[ 3472.103926][T20067] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3472.111487][T20067] Cannot create hsr debugfs directory
[ 3472.138287][T20067] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3472.145324][T20067] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3472.152553][T20067] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3472.159660][T20067] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3472.186613][T20067] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3472.197389][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3472.206830][T19401] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3472.214486][T19401] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3472.225265][T20067] 8021q: adding VLAN 0 to HW filter on device team0
[ 3472.234416][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3472.242781][T19400] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3472.249837][T19400] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3472.259414][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3472.268564][T19185] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3472.275593][T19185] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3472.293523][T20067] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 3472.303873][T20067] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 3472.317355][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3472.326274][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3472.334960][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3472.343358][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3472.351799][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3472.359458][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3472.374155][T20067] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3472.381418][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3472.388737][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3472.460968][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3472.502414][T20067] device veth0_vlan entered promiscuous mode
[ 3472.510345][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3472.518744][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3472.526483][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3472.534792][T20067] device veth1_vlan entered promiscuous mode
[ 3472.547190][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3472.555383][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3472.564567][T28009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3472.574144][T20067] device veth0_macvtap entered promiscuous mode
[ 3472.582213][T20067] device veth1_macvtap entered promiscuous mode
[ 3472.593724][T20067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3472.604200][T20067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3472.614001][T20067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3472.624468][T20067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3472.634269][T20067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3472.644742][T20067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3472.654631][T20067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3472.665100][T20067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3472.674979][T20067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3472.685408][T20067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3472.696901][T20067] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3472.705485][T20067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3472.716005][T20067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3472.725808][T20067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3472.736230][T20067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3472.746032][T20067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3472.756445][T20067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3472.766302][T20067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3472.776780][T20067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3472.786590][T20067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
09:21:06 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async)
tgkill(0x0, 0x0, 0x0) (async)
wait4(0x0, 0x0, 0x2, 0x0) (async)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 64)
sendmsg$NFT_BATCH(r1, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWRULE={0x1c, 0x6, 0xa, 0x201, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELFLOWTABLE={0x1c, 0x18, 0xa, 0x201, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_NEWTABLE={0x48, 0x0, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0xd4}, 0x1, 0x0, 0x0, 0x15}, 0x4000) (async, rerun: 64)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async, rerun: 64)
r3 = ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) (rerun: 64)
fsetxattr$security_ima(r3, &(0x7f0000000040), &(0x7f00000000c0)=@v1={0x2, "fd339bd1ece8"}, 0x7, 0xa237a462afe5e57b) (async)
r4 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:21:06 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0xa1c0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = socket(0xa, 0x3, 0x87)
open(&(0x7f00000002c0)='./file0\x00', 0x200, 0x20)
sendmmsg$unix(r0, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="7805f0ff", @ANYRES16=0x0, @ANYBLOB="02002bbd7000ffdbdf258900000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x578}, 0x1, 0x0, 0x0, 0x404c885}, 0x48000)
lsetxattr$trusted_overlay_upper(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000300)=ANY=[@ANYBLOB="00fb40057063b14207e8caf67f34d90d05e44db4c0e41cd178e5a597136d73e864e13c8516312d01c004080710cb238aaad44715232b2aebbf32810687616239c084a06745dd19b9a23e48"], 0x40, 0x3)
r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:06 executing program 4:
r0 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
ftruncate(r0, 0x57) (async)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 32)
sendto$inet6(r1, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 32)
sendto$inet6(r1, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:06 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
tgkill(0x0, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r4 = fork()
process_vm_writev(r4, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0)
r5 = fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000280)={0x0, 0x0})
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
tgkill(0x0, r7, 0x2b)
r8 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000340), 0x109802, 0x0)
clone3(&(0x7f00000003c0)={0x80000, &(0x7f0000000040), &(0x7f00000000c0), &(0x7f0000000100), {0x2f}, &(0x7f0000000200)=""/27, 0x1b, &(0x7f0000000240)=""/15, &(0x7f0000000300)=[r4, r5, r6, r7], 0x4, {r8}}, 0x58)
sendfile(r3, r3, 0x0, 0x2)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
fork() (async)
process_vm_writev(r4, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0) (async)
fork() (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000280)) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async)
tgkill(0x0, r7, 0x2b) (async)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000340), 0x109802, 0x0) (async)
clone3(&(0x7f00000003c0)={0x80000, &(0x7f0000000040), &(0x7f00000000c0), &(0x7f0000000100), {0x2f}, &(0x7f0000000200)=""/27, 0x1b, &(0x7f0000000240)=""/15, &(0x7f0000000300)=[r4, r5, r6, r7], 0x4, {r8}}, 0x58) (async)
sendfile(r3, r3, 0x0, 0x2) (async)
09:21:06 executing program 3:
unshare(0x20000400)
unshare(0xc0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:06 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup(r0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
[ 3472.797040][T20067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3472.809575][T20067] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3472.817167][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3472.825935][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3472.834802][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
09:21:06 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0xa1c0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = socket(0xa, 0x3, 0x87)
open(&(0x7f00000002c0)='./file0\x00', 0x200, 0x20) (async, rerun: 64)
sendmmsg$unix(r0, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (rerun: 64)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="7805f0ff", @ANYRES16=0x0, @ANYBLOB="02002bbd7000ffdbdf258900000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x578}, 0x1, 0x0, 0x0, 0x404c885}, 0x48000) (async)
lsetxattr$trusted_overlay_upper(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000300)=ANY=[@ANYBLOB="00fb40057063b14207e8caf67f34d90d05e44db4c0e41cd178e5a597136d73e864e13c8516312d01c004080710cb238aaad44715232b2aebbf32810687616239c084a06745dd19b9a23e48"], 0x40, 0x3) (async)
r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:06 executing program 3:
unshare(0x20000400)
unshare(0xc0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x20000400) (async)
unshare(0xc0) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
09:21:06 executing program 4:
r0 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
ftruncate(r0, 0x57) (async)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r1, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r1, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3472.919565][T20135] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3472.929818][T20135] CPU: 1 PID: 20135 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3472.938319][T20135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3472.948451][T20135] Call Trace:
[ 3472.951769][T20135]
[ 3472.954696][T20135] dump_stack_lvl+0xd6/0x122
[ 3472.959331][T20135] dump_stack+0x11/0x1b
[ 3472.963484][T20135] dump_header+0x98/0x410
09:21:06 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0xa1c0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = socket(0xa, 0x3, 0x87)
open(&(0x7f00000002c0)='./file0\x00', 0x200, 0x20) (async)
sendmmsg$unix(r0, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="7805f0ff", @ANYRES16=0x0, @ANYBLOB="02002bbd7000ffdbdf258900000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x578}, 0x1, 0x0, 0x0, 0x404c885}, 0x48000) (async)
lsetxattr$trusted_overlay_upper(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000300)=ANY=[@ANYBLOB="00fb40057063b14207e8caf67f34d90d05e44db4c0e41cd178e5a597136d73e864e13c8516312d01c004080710cb238aaad44715232b2aebbf32810687616239c084a06745dd19b9a23e48"], 0x40, 0x3) (async)
r1 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:06 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3472.967812][T20135] oom_kill_process+0x18e/0x3f0
[ 3472.972670][T20135] out_of_memory+0x5ed/0x890
[ 3472.977274][T20135] ? mem_cgroup_iter+0x29b/0x370
[ 3472.982257][T20135] mem_cgroup_oom+0x484/0x520
[ 3472.987010][T20135] try_charge_memcg+0x75c/0xa50
[ 3472.991862][T20135] ? sched_clock_cpu+0xe/0x1a0
[ 3472.996672][T20135] ? __set_cpus_allowed_ptr_locked+0x387/0x770
[ 3473.002831][T20135] ? __vma_adjust+0x18ac/0x1a70
[ 3473.007755][T20135] ? __rcu_read_unlock+0x5c/0x290
[ 3473.012783][T20135] obj_cgroup_charge_pages+0xac/0x140
09:21:06 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
[ 3473.018159][T20135] obj_cgroup_charge+0xe2/0x1b0
[ 3473.023037][T20135] ? vm_area_dup+0x44/0x130
[ 3473.027545][T20135] kmem_cache_alloc+0x96/0x320
[ 3473.032312][T20135] vm_area_dup+0x44/0x130
[ 3473.036640][T20135] ? __rcu_read_unlock+0x5c/0x290
[ 3473.041722][T20135] ? avc_has_perm_noaudit+0x1c0/0x270
[ 3473.047146][T20135] ? __this_cpu_preempt_check+0x18/0x20
[ 3473.052763][T20135] __split_vma+0x82/0x320
[ 3473.057094][T20135] split_vma+0x57/0x70
[ 3473.061159][T20135] mprotect_fixup+0x45a/0x570
[ 3473.065822][T20135] do_mprotect_pkey+0x517/0x6e0
[ 3473.070708][T20135] __x64_sys_mprotect+0x44/0x50
[ 3473.075553][T20135] do_syscall_64+0x44/0xd0
[ 3473.079973][T20135] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3473.085878][T20135] RIP: 0033:0x7fcb2718efc7
[ 3473.090284][T20135] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 0a 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3473.109988][T20135] RSP: 002b:00007ffd61cf4708 EFLAGS: 00000206 ORIG_RAX: 000000000000000a
[ 3473.118375][T20135] RAX: ffffffffffffffda RBX: 0000000000021000 RCX: 00007fcb2718efc7
[ 3473.126326][T20135] RDX: 0000000000000003 RSI: 0000000000020000 RDI: 00007fcb262a4000
[ 3473.134310][T20135] RBP: 00007ffd61cf47e0 R08: 00000000ffffffff R09: 00007fcb262c3700
[ 3473.142260][T20135] R10: 0000000000020022 R11: 0000000000000206 R12: 00007ffd61cf4900
[ 3473.150208][T20135] R13: 00007fcb262c3700 R14: 0000000000000000 R15: 0000000000022000
[ 3473.158162][T20135]
[ 3473.161349][T20135] memory: usage 464kB, limit 0kB, failcnt 18224
[ 3473.167587][T20135] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3473.174495][T20135] Memory cgroup stats for /syz1:
[ 3473.176752][T20135] anon 106496
[ 3473.176752][T20135] file 118784
[ 3473.176752][T20135] kernel_stack 49152
[ 3473.176752][T20135] pagetables 90112
[ 3473.176752][T20135] percpu 0
[ 3473.176752][T20135] sock 0
[ 3473.176752][T20135] shmem 114688
[ 3473.176752][T20135] file_mapped 114688
[ 3473.176752][T20135] file_dirty 4096
[ 3473.176752][T20135] file_writeback 0
[ 3473.176752][T20135] swapcached 0
[ 3473.176752][T20135] inactive_anon 139264
[ 3473.176752][T20135] active_anon 81920
[ 3473.176752][T20135] inactive_file 0
[ 3473.176752][T20135] active_file 4096
[ 3473.176752][T20135] unevictable 0
[ 3473.176752][T20135] slab_reclaimable 36096
[ 3473.176752][T20135] slab_unreclaimable 48184
[ 3473.176752][T20135] slab 84280
[ 3473.176752][T20135] workingset_refault_anon 0
[ 3473.176752][T20135] workingset_refault_file 0
[ 3473.176752][T20135] workingset_activate_anon 0
[ 3473.176752][T20135] workingset_activate_file 0
[ 3473.176752][T20135] workingset_restore_anon 0
[ 3473.269472][T20135] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=20135,uid=0
[ 3473.284730][T20135] Memory cgroup out of memory: Killed process 20135 (syz-executor.1) total-vm:48876kB, anon-rss:380kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000
[ 3473.310622][T20111] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
09:21:07 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r2 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540))
perf_event_open(&(0x7f00000000c0)={0xba10cbb8fa6b3f1d, 0x80, 0x9, 0x81, 0x2, 0x3, 0x0, 0x1000000000000, 0x80a00, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfff, 0x1, @perf_bp={&(0x7f0000000040), 0x4}, 0x4020, 0x7, 0x0, 0x3, 0x3, 0x9, 0x2, 0x0, 0x1, 0x0, 0x3f}, 0x0, 0xffffffffffffffff, r2, 0x2)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r1)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:21:07 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
09:21:07 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
tgkill(0x0, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r4 = fork()
process_vm_writev(r4, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0) (async)
r5 = fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000280)={0x0, 0x0})
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
tgkill(0x0, r7, 0x2b) (async)
r8 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000340), 0x109802, 0x0)
clone3(&(0x7f00000003c0)={0x80000, &(0x7f0000000040), &(0x7f00000000c0), &(0x7f0000000100), {0x2f}, &(0x7f0000000200)=""/27, 0x1b, &(0x7f0000000240)=""/15, &(0x7f0000000300)=[r4, r5, r6, r7], 0x4, {r8}}, 0x58) (async)
sendfile(r3, r3, 0x0, 0x2)
09:21:07 executing program 3:
unshare(0x20000400)
unshare(0xc0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x20000400) (async)
unshare(0xc0) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
09:21:07 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
mount(&(0x7f0000000040)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='fuse\x00', 0x4000, &(0x7f0000000200)='syz1\x00')
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
[ 3473.320841][T20111] CPU: 1 PID: 20111 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3473.329251][T20111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3473.339306][T20111] Call Trace:
[ 3473.342580][T20111]
[ 3473.345508][T20111] dump_stack_lvl+0xd6/0x122
[ 3473.350104][T20111] dump_stack+0x11/0x1b
[ 3473.354265][T20111] dump_header+0x98/0x410
[ 3473.358604][T20111] oom_kill_process+0x18e/0x3f0
[ 3473.363472][T20111] out_of_memory+0x5ed/0x890
[ 3473.368078][T20111] memory_max_write+0x32c/0x3d0
[ 3473.372930][T20111] ? memory_max_show+0x70/0x70
[ 3473.377708][T20111] cgroup_file_write+0x161/0x300
[ 3473.382698][T20111] ? __check_object_size+0x22a/0x2d0
[ 3473.387989][T20111] ? cgroup_seqfile_stop+0x70/0x70
[ 3473.393175][T20111] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3473.398499][T20111] do_iter_readv_writev+0x2de/0x380
[ 3473.403761][T20111] do_iter_write+0x192/0x5c0
[ 3473.408389][T20111] ? splice_from_pipe_next+0x34f/0x3b0
[ 3473.413945][T20111] ? kmalloc_array+0x2d/0x40
[ 3473.418586][T20111] vfs_iter_write+0x4c/0x70
[ 3473.423091][T20111] iter_file_splice_write+0x43a/0x790
[ 3473.428485][T20111] ? splice_from_pipe+0xd0/0xd0
[ 3473.433397][T20111] direct_splice_actor+0x80/0xa0
[ 3473.438316][T20111] splice_direct_to_actor+0x345/0x650
[ 3473.443679][T20111] ? do_splice_direct+0x190/0x190
[ 3473.448758][T20111] do_splice_direct+0x106/0x190
[ 3473.453598][T20111] do_sendfile+0x675/0xc40
[ 3473.458067][T20111] __x64_sys_sendfile64+0x102/0x140
[ 3473.463262][T20111] do_syscall_64+0x44/0xd0
[ 3473.467688][T20111] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3473.473563][T20111] RIP: 0033:0x7f4d3cb0beb9
[ 3473.478052][T20111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3473.497646][T20111] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3473.506038][T20111] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3473.514006][T20111] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3473.521956][T20111] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3473.529909][T20111] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3473.537865][T20111] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3473.545825][T20111]
[ 3473.549101][T20111] memory: usage 264kB, limit 0kB, failcnt 18260
[ 3473.555354][T20111] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3473.562322][T20111] Memory cgroup stats for /syz1:
[ 3473.564489][T20111] anon 40960
[ 3473.564489][T20111] file 118784
[ 3473.564489][T20111] kernel_stack 0
[ 3473.564489][T20111] pagetables 8192
[ 3473.564489][T20111] percpu 0
[ 3473.564489][T20111] sock 0
[ 3473.564489][T20111] shmem 114688
[ 3473.564489][T20111] file_mapped 114688
[ 3473.564489][T20111] file_dirty 4096
[ 3473.564489][T20111] file_writeback 0
[ 3473.564489][T20111] swapcached 0
[ 3473.564489][T20111] inactive_anon 73728
[ 3473.564489][T20111] active_anon 81920
[ 3473.564489][T20111] inactive_file 4096
[ 3473.564489][T20111] active_file 0
[ 3473.564489][T20111] unevictable 0
[ 3473.564489][T20111] slab_reclaimable 36096
[ 3473.564489][T20111] slab_unreclaimable 35272
[ 3473.564489][T20111] slab 71368
[ 3473.564489][T20111] workingset_refault_anon 0
[ 3473.564489][T20111] workingset_refault_file 0
[ 3473.564489][T20111] workingset_activate_anon 0
[ 3473.564489][T20111] workingset_activate_file 0
[ 3473.564489][T20111] workingset_restore_anon 0
[ 3473.656544][T20111] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=20067,uid=0
[ 3473.672001][T20111] Memory cgroup out of memory: Killed process 20067 (syz-executor.1) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:0
[ 3473.692998][T20920] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3473.702999][T20920] CPU: 0 PID: 20920 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3473.711391][T20920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
09:21:07 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup(r0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
dup(r0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r3, r3, 0x0, 0x2) (async)
09:21:07 executing program 2:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fcntl$getown(r0, 0x9)
tgkill(r1, 0x0, 0x2b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x180, 0x0)
write$RDMA_USER_CM_CMD_NOTIFY(r2, &(0x7f00000000c0)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0x7}}, 0x10)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:21:07 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18)
fstatfs(r2, &(0x7f00000000c0)=""/217)
accept4$inet6(r1, &(0x7f0000000040), &(0x7f0000000080)=0x1c, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:07 executing program 3:
unshare(0x3a050200)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140), 0x0, 0x0)
setsockopt$packet_int(r1, 0x107, 0x0, &(0x7f0000000040)=0x1f, 0x4)
09:21:07 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18)
fstatfs(r2, &(0x7f00000000c0)=""/217)
accept4$inet6(r1, &(0x7f0000000040), &(0x7f0000000080)=0x1c, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
fstatfs(r2, &(0x7f00000000c0)=""/217) (async)
accept4$inet6(r1, &(0x7f0000000040), &(0x7f0000000080)=0x1c, 0x0) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
[ 3473.721484][T20920] Call Trace:
[ 3473.724758][T20920]
[ 3473.727685][T20920] dump_stack_lvl+0xd6/0x122
[ 3473.732286][T20920] dump_stack+0x11/0x1b
[ 3473.736447][T20920] dump_header+0x98/0x410
[ 3473.740882][T20920] out_of_memory+0x62c/0x890
[ 3473.745572][T20920] memory_max_write+0x32c/0x3d0
[ 3473.750524][T20920] ? memory_max_show+0x70/0x70
[ 3473.755298][T20920] cgroup_file_write+0x161/0x300
[ 3473.760235][T20920] ? __check_object_size+0x22a/0x2d0
[ 3473.765534][T20920] ? cgroup_seqfile_stop+0x70/0x70
09:21:07 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18)
fstatfs(r2, &(0x7f00000000c0)=""/217)
accept4$inet6(r1, &(0x7f0000000040), &(0x7f0000000080)=0x1c, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
fstatfs(r2, &(0x7f00000000c0)=""/217) (async)
accept4$inet6(r1, &(0x7f0000000040), &(0x7f0000000080)=0x1c, 0x0) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
[ 3473.770686][T20920] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3473.776078][T20920] do_iter_readv_writev+0x2de/0x380
[ 3473.781281][T20920] do_iter_write+0x192/0x5c0
[ 3473.785948][T20920] ? splice_from_pipe_next+0x34f/0x3b0
[ 3473.791419][T20920] ? kmalloc_array+0x2d/0x40
[ 3473.796022][T20920] vfs_iter_write+0x4c/0x70
[ 3473.800531][T20920] iter_file_splice_write+0x43a/0x790
[ 3473.805983][T20920] ? splice_from_pipe+0xd0/0xd0
[ 3473.810911][T20920] direct_splice_actor+0x80/0xa0
[ 3473.815860][T20920] splice_direct_to_actor+0x345/0x650
09:21:07 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3473.821298][T20920] ? do_splice_direct+0x190/0x190
[ 3473.826340][T20920] do_splice_direct+0x106/0x190
[ 3473.831281][T20920] do_sendfile+0x675/0xc40
[ 3473.835777][T20920] __x64_sys_sendfile64+0x102/0x140
[ 3473.841019][T20920] do_syscall_64+0x44/0xd0
[ 3473.845535][T20920] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3473.851439][T20920] RIP: 0033:0x7f0a46a70eb9
[ 3473.855848][T20920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3473.875509][T20920] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3473.883900][T20920] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3473.891850][T20920] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3473.899876][T20920] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3473.907827][T20920] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3473.915775][T20920] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3473.923733][T20920]
[ 3473.926804][T20920] memory: usage 180kB, limit 0kB, failcnt 18277
[ 3473.933056][T20920] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3473.939913][T20920] Memory cgroup stats for /syz1:
[ 3473.940183][T20920] anon 0
[ 3473.940183][T20920] file 118784
[ 3473.940183][T20920] kernel_stack 0
[ 3473.940183][T20920] pagetables 0
[ 3473.940183][T20920] percpu 0
[ 3473.940183][T20920] sock 0
[ 3473.940183][T20920] shmem 114688
[ 3473.940183][T20920] file_mapped 114688
[ 3473.940183][T20920] file_dirty 0
[ 3473.940183][T20920] file_writeback 0
[ 3473.940183][T20920] swapcached 0
[ 3473.940183][T20920] inactive_anon 32768
[ 3473.940183][T20920] active_anon 81920
[ 3473.940183][T20920] inactive_file 4096
[ 3473.940183][T20920] active_file 0
[ 3473.940183][T20920] unevictable 0
[ 3473.940183][T20920] slab_reclaimable 34136
[ 3473.940183][T20920] slab_unreclaimable 21200
[ 3473.940183][T20920] slab 55336
[ 3473.940183][T20920] workingset_refault_anon 0
[ 3473.940183][T20920] workingset_refault_file 0
[ 3473.940183][T20920] workingset_activate_anon 0
[ 3473.940183][T20920] workingset_activate_file 0
[ 3473.940183][T20920] workingset_restore_anon 0
[ 3473.940183][T20920] workingset_restore_file 0
[ 3474.035875][T20920] Out of memory and no killable processes...
[ 3474.042708][T21149] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3474.052917][T21149] CPU: 1 PID: 21149 Comm: syz-executor.2 Not tainted 5.16.0-syzkaller #0
[ 3474.061311][T21149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3474.071361][T21149] Call Trace:
[ 3474.074621][T21149]
[ 3474.077537][T21149] dump_stack_lvl+0xd6/0x122
[ 3474.082109][T21149] dump_stack+0x11/0x1b
[ 3474.086245][T21149] dump_header+0x98/0x410
[ 3474.090586][T21149] out_of_memory+0x62c/0x890
[ 3474.095160][T21149] memory_max_write+0x32c/0x3d0
[ 3474.100029][T21149] ? memory_max_show+0x70/0x70
[ 3474.104797][T21149] cgroup_file_write+0x161/0x300
[ 3474.109711][T21149] ? __check_object_size+0x22a/0x2d0
[ 3474.115126][T21149] ? cgroup_seqfile_stop+0x70/0x70
[ 3474.120262][T21149] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3474.125542][T21149] do_iter_readv_writev+0x2de/0x380
[ 3474.130784][T21149] do_iter_write+0x192/0x5c0
[ 3474.135354][T21149] ? splice_from_pipe_next+0x34f/0x3b0
[ 3474.140840][T21149] ? kmalloc_array+0x2d/0x40
[ 3474.145439][T21149] vfs_iter_write+0x4c/0x70
[ 3474.149936][T21149] iter_file_splice_write+0x43a/0x790
[ 3474.155293][T21149] ? splice_from_pipe+0xd0/0xd0
[ 3474.160158][T21149] direct_splice_actor+0x80/0xa0
[ 3474.165100][T21149] splice_direct_to_actor+0x345/0x650
[ 3474.170457][T21149] ? do_splice_direct+0x190/0x190
[ 3474.175493][T21149] do_splice_direct+0x106/0x190
[ 3474.180531][T21149] do_sendfile+0x675/0xc40
[ 3474.184938][T21149] __x64_sys_sendfile64+0x102/0x140
[ 3474.190121][T21149] do_syscall_64+0x44/0xd0
[ 3474.194566][T21149] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3474.200455][T21149] RIP: 0033:0x7f0466d58eb9
[ 3474.204876][T21149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3474.224512][T21149] RSP: 002b:00007f0465ecf168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3474.232919][T21149] RAX: ffffffffffffffda RBX: 00007f0466e6bf60 RCX: 00007f0466d58eb9
[ 3474.240870][T21149] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3474.248820][T21149] RBP: 00007f0466db308d R08: 0000000000000000 R09: 0000000000000000
[ 3474.256787][T21149] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3474.264756][T21149] R13: 00007ffe91a81ecf R14: 00007f0465ecf300 R15: 0000000000022000
[ 3474.272714][T21149]
[ 3474.275953][T21149] memory: usage 176kB, limit 0kB, failcnt 18277
[ 3474.282236][T21149] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3474.289075][T21149] Memory cgroup stats for /syz1:
[ 3474.289669][T21149] anon 0
[ 3474.289669][T21149] file 118784
[ 3474.289669][T21149] kernel_stack 0
[ 3474.289669][T21149] pagetables 0
[ 3474.289669][T21149] percpu 0
[ 3474.289669][T21149] sock 0
[ 3474.289669][T21149] shmem 114688
[ 3474.289669][T21149] file_mapped 114688
[ 3474.289669][T21149] file_dirty 0
[ 3474.289669][T21149] file_writeback 0
[ 3474.289669][T21149] swapcached 0
[ 3474.289669][T21149] inactive_anon 32768
[ 3474.289669][T21149] active_anon 81920
[ 3474.289669][T21149] inactive_file 4096
[ 3474.289669][T21149] active_file 0
[ 3474.289669][T21149] unevictable 0
[ 3474.289669][T21149] slab_reclaimable 34136
[ 3474.289669][T21149] slab_unreclaimable 19928
[ 3474.289669][T21149] slab 54064
[ 3474.289669][T21149] workingset_refault_anon 0
[ 3474.289669][T21149] workingset_refault_file 0
[ 3474.289669][T21149] workingset_activate_anon 0
[ 3474.289669][T21149] workingset_activate_file 0
[ 3474.289669][T21149] workingset_restore_anon 0
[ 3474.289669][T21149] workingset_restore_file 0
[ 3474.385303][T21149] Out of memory and no killable processes...
09:21:08 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
mount(&(0x7f0000000040)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='fuse\x00', 0x4000, &(0x7f0000000200)='syz1\x00') (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:08 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:08 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 64)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (rerun: 64)
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0) (async)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r2 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540)) (async)
perf_event_open(&(0x7f00000000c0)={0xba10cbb8fa6b3f1d, 0x80, 0x9, 0x81, 0x2, 0x3, 0x0, 0x1000000000000, 0x80a00, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfff, 0x1, @perf_bp={&(0x7f0000000040), 0x4}, 0x4020, 0x7, 0x0, 0x3, 0x3, 0x9, 0x2, 0x0, 0x1, 0x0, 0x3f}, 0x0, 0xffffffffffffffff, r2, 0x2)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r1) (async)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:21:08 executing program 3:
unshare(0x3a050200) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140), 0x0, 0x0) (async)
setsockopt$packet_int(r1, 0x107, 0x0, &(0x7f0000000040)=0x1f, 0x4)
09:21:08 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup(r0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
09:21:08 executing program 2:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fcntl$getown(r0, 0x9)
tgkill(r1, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x180, 0x0)
write$RDMA_USER_CM_CMD_NOTIFY(r2, &(0x7f00000000c0)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0x7}}, 0x10) (async)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:21:08 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
mount(&(0x7f0000000040)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='fuse\x00', 0x4000, &(0x7f0000000200)='syz1\x00')
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
mount(&(0x7f0000000040)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='fuse\x00', 0x4000, &(0x7f0000000200)='syz1\x00') (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
09:21:08 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
[ 3474.502291][T21372] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3474.512500][T21372] CPU: 0 PID: 21372 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3474.520910][T21372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3474.530959][T21372] Call Trace:
[ 3474.534234][T21372]
[ 3474.537226][T21372] dump_stack_lvl+0xd6/0x122
[ 3474.541828][T21372] dump_stack+0x11/0x1b
[ 3474.545987][T21372] dump_header+0x98/0x410
[ 3474.550332][T21372] out_of_memory+0x62c/0x890
[ 3474.554947][T21372] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3474.560939][T21372] memory_max_write+0x32c/0x3d0
[ 3474.565849][T21372] ? memory_max_show+0x70/0x70
[ 3474.570648][T21372] cgroup_file_write+0x161/0x300
[ 3474.575583][T21372] ? __check_object_size+0x22a/0x2d0
[ 3474.580987][T21372] ? cgroup_seqfile_stop+0x70/0x70
[ 3474.586100][T21372] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3474.591387][T21372] do_iter_readv_writev+0x2de/0x380
[ 3474.596635][T21372] do_iter_write+0x192/0x5c0
09:21:08 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f0000000040)={0x8000, 0x1, 0x3f, 0x800, 0x40}, 0xc)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3474.601220][T21372] ? splice_from_pipe_next+0x34f/0x3b0
[ 3474.606701][T21372] ? kmalloc_array+0x2d/0x40
[ 3474.611295][T21372] vfs_iter_write+0x4c/0x70
[ 3474.615797][T21372] iter_file_splice_write+0x43a/0x790
[ 3474.621311][T21372] ? splice_from_pipe+0xd0/0xd0
[ 3474.626170][T21372] direct_splice_actor+0x80/0xa0
[ 3474.631110][T21372] splice_direct_to_actor+0x345/0x650
[ 3474.636597][T21372] ? do_splice_direct+0x190/0x190
[ 3474.641626][T21372] do_splice_direct+0x106/0x190
[ 3474.646500][T21372] do_sendfile+0x675/0xc40
09:21:08 executing program 2:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fcntl$getown(r0, 0x9)
tgkill(r1, 0x0, 0x2b) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x180, 0x0)
write$RDMA_USER_CM_CMD_NOTIFY(r2, &(0x7f00000000c0)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0x7}}, 0x10) (async)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
[ 3474.650917][T21372] __x64_sys_sendfile64+0x102/0x140
[ 3474.656178][T21372] do_syscall_64+0x44/0xd0
[ 3474.660597][T21372] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3474.666577][T21372] RIP: 0033:0x7f4d3cb0beb9
[ 3474.671075][T21372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3474.690746][T21372] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3474.699215][T21372] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3474.707195][T21372] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3474.715167][T21372] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3474.723133][T21372] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3474.731101][T21372] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3474.739147][T21372]
[ 3474.742361][T21372] memory: usage 168kB, limit 0kB, failcnt 18277
09:21:08 executing program 3:
unshare(0x3a050200) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140), 0x0, 0x0)
setsockopt$packet_int(r1, 0x107, 0x0, &(0x7f0000000040)=0x1f, 0x4)
[ 3474.748602][T21372] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
09:21:08 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f0000000040)={0x8000, 0x1, 0x3f, 0x800, 0x40}, 0xc) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3474.755462][T21372] Memory cgroup stats for /syz1:
[ 3474.782968][T21372] anon 0
[ 3474.782968][T21372] file 118784
[ 3474.782968][T21372] kernel_stack 0
[ 3474.782968][T21372] pagetables 0
[ 3474.782968][T21372] percpu 0
[ 3474.782968][T21372] sock 0
[ 3474.782968][T21372] shmem 114688
[ 3474.782968][T21372] file_mapped 114688
[ 3474.782968][T21372] file_dirty 0
[ 3474.782968][T21372] file_writeback 0
[ 3474.782968][T21372] swapcached 0
[ 3474.782968][T21372] inactive_anon 32768
[ 3474.782968][T21372] active_anon 81920
[ 3474.782968][T21372] inactive_file 4096
[ 3474.782968][T21372] active_file 0
[ 3474.782968][T21372] unevictable 0
[ 3474.782968][T21372] slab_reclaimable 32992
[ 3474.782968][T21372] slab_unreclaimable 19928
[ 3474.782968][T21372] slab 52920
[ 3474.782968][T21372] workingset_refault_anon 0
[ 3474.782968][T21372] workingset_refault_file 0
[ 3474.782968][T21372] workingset_activate_anon 0
[ 3474.782968][T21372] workingset_activate_file 0
[ 3474.782968][T21372] workingset_restore_anon 0
[ 3474.782968][T21372] workingset_restore_file 0
09:21:08 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f0000000040)={0x8000, 0x1, 0x3f, 0x800, 0x40}, 0xc)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f0000000040)={0x8000, 0x1, 0x3f, 0x800, 0x40}, 0xc) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
[ 3474.878583][T21372] Out of memory and no killable processes...
[ 3474.886198][T21892] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3474.896274][T21892] CPU: 0 PID: 21892 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3474.904680][T21892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3474.914738][T21892] Call Trace:
[ 3474.918011][T21892]
[ 3474.920936][T21892] dump_stack_lvl+0xd6/0x122
[ 3474.925531][T21892] dump_stack+0x11/0x1b
[ 3474.929689][T21892] dump_header+0x98/0x410
[ 3474.934026][T21892] out_of_memory+0x62c/0x890
[ 3474.938707][T21892] memory_max_write+0x32c/0x3d0
[ 3474.943562][T21892] ? memory_max_show+0x70/0x70
[ 3474.948326][T21892] cgroup_file_write+0x161/0x300
[ 3474.953261][T21892] ? __check_object_size+0x22a/0x2d0
[ 3474.958661][T21892] ? cgroup_seqfile_stop+0x70/0x70
[ 3474.963775][T21892] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3474.969059][T21892] do_iter_readv_writev+0x2de/0x380
[ 3474.974333][T21892] do_iter_write+0x192/0x5c0
[ 3474.978926][T21892] ? splice_from_pipe_next+0x34f/0x3b0
[ 3474.984389][T21892] ? kmalloc_array+0x2d/0x40
[ 3474.988977][T21892] vfs_iter_write+0x4c/0x70
[ 3474.993479][T21892] iter_file_splice_write+0x43a/0x790
[ 3474.998882][T21892] ? splice_from_pipe+0xd0/0xd0
[ 3475.003735][T21892] direct_splice_actor+0x80/0xa0
[ 3475.008673][T21892] splice_direct_to_actor+0x345/0x650
[ 3475.014119][T21892] ? do_splice_direct+0x190/0x190
[ 3475.019144][T21892] do_splice_direct+0x106/0x190
[ 3475.024003][T21892] do_sendfile+0x675/0xc40
[ 3475.028419][T21892] __x64_sys_sendfile64+0x102/0x140
[ 3475.033649][T21892] do_syscall_64+0x44/0xd0
[ 3475.038075][T21892] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3475.043969][T21892] RIP: 0033:0x7f0a46a70eb9
[ 3475.048380][T21892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3475.068032][T21892] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3475.076449][T21892] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3475.084403][T21892] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3475.092359][T21892] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3475.100334][T21892] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3475.108288][T21892] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3475.116248][T21892]
[ 3475.119288][T21892] memory: usage 168kB, limit 0kB, failcnt 18277
[ 3475.125539][T21892] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3475.132467][T21892] Memory cgroup stats for /syz1:
[ 3475.139615][T21892] anon 0
[ 3475.139615][T21892] file 118784
[ 3475.139615][T21892] kernel_stack 0
[ 3475.139615][T21892] pagetables 0
[ 3475.139615][T21892] percpu 0
[ 3475.139615][T21892] sock 0
[ 3475.139615][T21892] shmem 114688
[ 3475.139615][T21892] file_mapped 114688
[ 3475.139615][T21892] file_dirty 0
[ 3475.139615][T21892] file_writeback 0
[ 3475.139615][T21892] swapcached 0
[ 3475.139615][T21892] inactive_anon 32768
[ 3475.139615][T21892] active_anon 81920
[ 3475.139615][T21892] inactive_file 0
[ 3475.139615][T21892] active_file 4096
[ 3475.139615][T21892] unevictable 0
[ 3475.139615][T21892] slab_reclaimable 32992
[ 3475.139615][T21892] slab_unreclaimable 19928
[ 3475.139615][T21892] slab 52920
[ 3475.139615][T21892] workingset_refault_anon 0
[ 3475.139615][T21892] workingset_refault_file 0
[ 3475.139615][T21892] workingset_activate_anon 0
[ 3475.139615][T21892] workingset_activate_file 0
[ 3475.139615][T21892] workingset_restore_anon 0
[ 3475.139615][T21892] workingset_restore_file 0
[ 3475.235162][T21892] Out of memory and no killable processes...
[ 3475.602562][T11536] device hsr_slave_0 left promiscuous mode
[ 3475.608656][T11536] device hsr_slave_1 left promiscuous mode
[ 3475.614887][T11536] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3475.622266][T11536] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3475.629739][T11536] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3475.637142][T11536] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3475.644722][T11536] device bridge_slave_1 left promiscuous mode
[ 3475.651000][T11536] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3475.658544][T11536] device bridge_slave_0 left promiscuous mode
[ 3475.664672][T11536] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3475.674701][T11536] device veth1_macvtap left promiscuous mode
[ 3475.680708][T11536] device veth0_macvtap left promiscuous mode
[ 3475.686683][T11536] device veth1_vlan left promiscuous mode
[ 3475.692419][T11536] device veth0_vlan left promiscuous mode
[ 3475.768086][T11536] team0 (unregistering): Port device team_slave_1 removed
[ 3475.777794][T11536] team0 (unregistering): Port device team_slave_0 removed
[ 3475.787080][T11536] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3475.798462][T11536] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3475.826186][T11536] bond0 (unregistering): Released all slaves
[ 3476.523989][T22404] lo speed is unknown, defaulting to 1000
[ 3476.559682][T22404] chnl_net:caif_netlink_parms(): no params data found
[ 3476.588896][T22404] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3476.596017][T22404] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3476.604747][T22404] device bridge_slave_0 entered promiscuous mode
[ 3476.611897][T22404] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3476.618901][T22404] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3476.626610][T22404] device bridge_slave_1 entered promiscuous mode
[ 3476.642339][T22404] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3476.652598][T22404] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3476.669282][T22404] team0: Port device team_slave_0 added
[ 3476.675683][T22404] team0: Port device team_slave_1 added
[ 3476.689270][T22404] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3476.696245][T22404] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3476.722326][T22404] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3476.733773][T22404] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3476.740713][T22404] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3476.766596][T22404] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3476.787552][T22404] device hsr_slave_0 entered promiscuous mode
[ 3476.794400][T22404] device hsr_slave_1 entered promiscuous mode
[ 3476.800954][T22404] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3476.808478][T22404] Cannot create hsr debugfs directory
[ 3476.835545][T22404] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3476.842578][T22404] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3476.849963][T22404] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3476.856984][T22404] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3476.871129][T19185] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3476.878831][T19185] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3476.899055][T22404] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3476.910015][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 3476.917718][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3476.927253][T22404] 8021q: adding VLAN 0 to HW filter on device team0
[ 3476.935546][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3476.944767][T19400] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3476.953005][T19400] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3476.960023][T19400] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3476.970351][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3476.978812][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3476.987144][ T5036] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3476.994163][ T5036] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3477.009692][T22404] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 3477.020027][T22404] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 3477.031386][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 3477.039992][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 3477.048704][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 3477.057174][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3477.065542][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 3477.073913][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3477.082226][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 3477.090430][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3477.098662][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 3477.106927][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3477.117301][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3477.125408][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3477.135555][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3477.142991][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3477.152527][T22404] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3477.226842][T24590] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 3477.235535][T24590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3477.270890][T24590] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 3477.278894][T24590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3477.288400][T22404] device veth0_vlan entered promiscuous mode
[ 3477.294735][T24590] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3477.302414][T24590] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3477.312758][T22404] device veth1_vlan entered promiscuous mode
[ 3477.325350][T22404] device veth0_macvtap entered promiscuous mode
[ 3477.332561][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3477.340758][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3477.348829][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3477.357197][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3477.366580][T22404] device veth1_macvtap entered promiscuous mode
[ 3477.373518][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 3477.381363][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 3477.393166][T22404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3477.403595][T22404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3477.413413][T22404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3477.423826][T22404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3477.433624][T22404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3477.444034][T22404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3477.453832][T22404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3477.464245][T22404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3477.474051][T22404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3477.484486][T22404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3477.495354][T22404] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3477.503653][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3477.512328][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3477.521620][T22404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3477.532083][T22404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3477.541905][T22404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3477.552319][T22404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3477.562133][T22404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3477.572590][T22404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3477.582392][T22404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3477.592838][T22404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3477.602651][T22404] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3477.613056][T22404] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3477.623839][T22404] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3477.632612][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3477.641132][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3477.676893][T22438] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3477.687210][T22438] CPU: 0 PID: 22438 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3477.695685][T22438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3477.705774][T22438] Call Trace:
[ 3477.709084][T22438]
[ 3477.711996][T22438] dump_stack_lvl+0xd6/0x122
[ 3477.716569][T22438] dump_stack+0x11/0x1b
[ 3477.720710][T22438] dump_header+0x98/0x410
[ 3477.725093][T22438] oom_kill_process+0x18e/0x3f0
[ 3477.729953][T22438] out_of_memory+0x5ed/0x890
[ 3477.734574][T22438] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3477.740362][T22438] memory_max_write+0x32c/0x3d0
[ 3477.745205][T22438] ? memory_max_show+0x70/0x70
[ 3477.749990][T22438] cgroup_file_write+0x161/0x300
[ 3477.754943][T22438] ? __check_object_size+0x22a/0x2d0
[ 3477.760364][T22438] ? cgroup_seqfile_stop+0x70/0x70
[ 3477.765469][T22438] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3477.770739][T22438] do_iter_readv_writev+0x2de/0x380
[ 3477.775918][T22438] do_iter_write+0x192/0x5c0
[ 3477.780549][T22438] ? splice_from_pipe_next+0x34f/0x3b0
[ 3477.786027][T22438] ? kmalloc_array+0x2d/0x40
[ 3477.790599][T22438] vfs_iter_write+0x4c/0x70
[ 3477.795087][T22438] iter_file_splice_write+0x43a/0x790
[ 3477.800446][T22438] ? splice_from_pipe+0xd0/0xd0
[ 3477.805291][T22438] direct_splice_actor+0x80/0xa0
[ 3477.810703][T22438] splice_direct_to_actor+0x345/0x650
[ 3477.816176][T22438] ? do_splice_direct+0x190/0x190
[ 3477.821192][T22438] do_splice_direct+0x106/0x190
[ 3477.826023][T22438] do_sendfile+0x675/0xc40
[ 3477.830467][T22438] __x64_sys_sendfile64+0x102/0x140
[ 3477.835689][T22438] do_syscall_64+0x44/0xd0
[ 3477.840088][T22438] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3477.845981][T22438] RIP: 0033:0x7f9097f72eb9
[ 3477.850385][T22438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3477.870025][T22438] RSP: 002b:00007f90970e9168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3477.878418][T22438] RAX: ffffffffffffffda RBX: 00007f9098085f60 RCX: 00007f9097f72eb9
[ 3477.886370][T22438] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3477.894329][T22438] RBP: 00007f9097fcd08d R08: 0000000000000000 R09: 0000000000000000
[ 3477.902280][T22438] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3477.910230][T22438] R13: 00007ffc5a46d8df R14: 00007f90970e9300 R15: 0000000000022000
[ 3477.918183][T22438]
[ 3477.921455][T22438] memory: usage 524kB, limit 0kB, failcnt 18277
[ 3477.927681][T22438] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3477.934569][T22438] Memory cgroup stats for /syz1:
[ 3477.934819][T22438] anon 98304
[ 3477.934819][T22438] file 118784
[ 3477.934819][T22438] kernel_stack 81920
[ 3477.934819][T22438] pagetables 90112
[ 3477.934819][T22438] percpu 0
[ 3477.934819][T22438] sock 0
[ 3477.934819][T22438] shmem 114688
[ 3477.934819][T22438] file_mapped 114688
[ 3477.934819][T22438] file_dirty 0
[ 3477.934819][T22438] file_writeback 0
[ 3477.934819][T22438] swapcached 0
[ 3477.934819][T22438] inactive_anon 90112
[ 3477.934819][T22438] active_anon 81920
[ 3477.934819][T22438] inactive_file 0
[ 3477.934819][T22438] active_file 4096
[ 3477.934819][T22438] unevictable 0
[ 3477.934819][T22438] slab_reclaimable 46120
[ 3477.934819][T22438] slab_unreclaimable 67264
[ 3477.934819][T22438] slab 113384
[ 3477.934819][T22438] workingset_refault_anon 0
[ 3477.934819][T22438] workingset_refault_file 0
[ 3477.934819][T22438] workingset_activate_anon 0
[ 3477.934819][T22438] workingset_activate_file 0
[ 3477.934819][T22438] workingset_restore_anon 0
09:21:11 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r2 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540)) (async)
perf_event_open(&(0x7f00000000c0)={0xba10cbb8fa6b3f1d, 0x80, 0x9, 0x81, 0x2, 0x3, 0x0, 0x1000000000000, 0x80a00, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfff, 0x1, @perf_bp={&(0x7f0000000040), 0x4}, 0x4020, 0x7, 0x0, 0x3, 0x3, 0x9, 0x2, 0x0, 0x1, 0x0, 0x3f}, 0x0, 0xffffffffffffffff, r2, 0x2) (async)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r1) (async)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:21:11 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000040)={0x0, @in6={{0xa, 0x4e20, 0x65e7c6d8, @mcast2, 0x7}}, 0x1000, 0xffff, 0xaf5, 0x5, 0xbc}, &(0x7f0000000100)=0x98)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={r4}, &(0x7f0000000180)=0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
r6 = pidfd_getfd(0xffffffffffffffff, r2, 0x0)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000200)={r5, 0x4}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r6, 0x84, 0x7c, &(0x7f0000000280)={r7, 0x9, 0x5b4}, &(0x7f00000002c0)=0x8)
09:21:11 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0/file0\x00', &(0x7f00000001c0)='debugfs\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:11 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
pselect6(0x40, &(0x7f0000000040)={0xf2b9, 0x1f, 0x4, 0x0, 0x6, 0x5, 0x7fe, 0x200}, &(0x7f0000000080)={0x5, 0x9, 0xffffffffffffffc0, 0x7, 0xc8, 0xd2, 0x80, 0x8}, &(0x7f00000000c0)={0x488adf26, 0x5, 0x0, 0xa3c, 0x40, 0x8, 0x20, 0x5}, &(0x7f0000000100)={0x0, 0x3938700}, &(0x7f00000001c0)={&(0x7f0000000180)={[0x80]}, 0x8})
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:11 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:11 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='tracefs\x00', 0x842000, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:11 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0/file0\x00', &(0x7f00000001c0)='debugfs\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f00000000c0)='./file0/file0\x00', &(0x7f00000001c0)='debugfs\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
09:21:11 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='tracefs\x00', 0x842000, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:11 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
pselect6(0x40, &(0x7f0000000040)={0xf2b9, 0x1f, 0x4, 0x0, 0x6, 0x5, 0x7fe, 0x200}, &(0x7f0000000080)={0x5, 0x9, 0xffffffffffffffc0, 0x7, 0xc8, 0xd2, 0x80, 0x8}, &(0x7f00000000c0)={0x488adf26, 0x5, 0x0, 0xa3c, 0x40, 0x8, 0x20, 0x5}, &(0x7f0000000100)={0x0, 0x3938700}, &(0x7f00000001c0)={&(0x7f0000000180)={[0x80]}, 0x8})
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
pselect6(0x40, &(0x7f0000000040)={0xf2b9, 0x1f, 0x4, 0x0, 0x6, 0x5, 0x7fe, 0x200}, &(0x7f0000000080)={0x5, 0x9, 0xffffffffffffffc0, 0x7, 0xc8, 0xd2, 0x80, 0x8}, &(0x7f00000000c0)={0x488adf26, 0x5, 0x0, 0xa3c, 0x40, 0x8, 0x20, 0x5}, &(0x7f0000000100)={0x0, 0x3938700}, &(0x7f00000001c0)={&(0x7f0000000180)={[0x80]}, 0x8}) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
09:21:11 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3478.027298][T22438] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=22437,uid=0
[ 3478.042602][T22438] Memory cgroup out of memory: Killed process 22437 (syz-executor.1) total-vm:49008kB, anon-rss:368kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000
09:21:11 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84) (async, rerun: 64)
r2 = socket$inet(0x2, 0x80001, 0x84) (rerun: 64)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000040)={0x0, @in6={{0xa, 0x4e20, 0x65e7c6d8, @mcast2, 0x7}}, 0x1000, 0xffff, 0xaf5, 0x5, 0xbc}, &(0x7f0000000100)=0x98)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={r4}, &(0x7f0000000180)=0x8) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
r6 = pidfd_getfd(0xffffffffffffffff, r2, 0x0) (async, rerun: 32)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000200)={r5, 0x4}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r6, 0x84, 0x7c, &(0x7f0000000280)={r7, 0x9, 0x5b4}, &(0x7f00000002c0)=0x8)
[ 3478.122246][T22404] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3478.132205][T22404] CPU: 1 PID: 22404 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3478.140616][T22404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3478.150720][T22404] Call Trace:
[ 3478.153992][T22404]
[ 3478.156919][T22404] dump_stack_lvl+0xd6/0x122
[ 3478.161516][T22404] dump_stack+0x11/0x1b
[ 3478.165676][T22404] dump_header+0x98/0x410
09:21:11 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3478.170005][T22404] oom_kill_process+0x18e/0x3f0
[ 3478.174887][T22404] out_of_memory+0x5ed/0x890
[ 3478.179478][T22404] ? mem_cgroup_iter+0x29b/0x370
[ 3478.184453][T22404] mem_cgroup_oom+0x484/0x520
[ 3478.189127][T22404] try_charge_memcg+0x75c/0xa50
[ 3478.193975][T22404] ? __alloc_pages+0x18e/0x330
[ 3478.198743][T22404] ? __rcu_read_unlock+0x5c/0x290
[ 3478.203766][T22404] charge_memcg+0x51/0x1e0
[ 3478.208198][T22404] __mem_cgroup_charge+0x25/0xa0
[ 3478.213137][T22404] do_anonymous_page+0x1d6/0x8d0
[ 3478.218080][T22404] handle_mm_fault+0x814/0x1590
[ 3478.222917][T22404] do_user_addr_fault+0x609/0xbe0
[ 3478.227994][T22404] exc_page_fault+0x91/0x290
[ 3478.232566][T22404] ? asm_exc_page_fault+0x8/0x30
[ 3478.237482][T22404] asm_exc_page_fault+0x1e/0x30
[ 3478.242392][T22404] RIP: 0033:0x7f9097f41e85
[ 3478.246821][T22404] Code: e8 4b 8d 0c 2f 48 8b 6c 24 18 48 39 d3 48 89 4b 60 0f 95 c2 48 83 c8 01 0f b6 d2 48 c1 e2 02 4c 09 ea 48 83 ca 01 49 89 57 08 <48> 89 41 08 49 83 c7 10 eb b3 48 8d 3d fa dd 09 00 e8 75 c9 ff ff
[ 3478.266410][T22404] RSP: 002b:00007ffc5a46b780 EFLAGS: 00010206
[ 3478.272490][T22404] RAX: 00000000000108a1 RBX: 00007f90980595e0 RCX: 00005555566c4760
[ 3478.280436][T22404] RDX: 0000000000008041 RSI: 0000000000000000 RDI: 0000000000000004
[ 3478.288385][T22404] RBP: 0000000000008030 R08: 0000000000000003 R09: 00007f9098059640
[ 3478.296408][T22404] R10: 0000000000000231 R11: 0000000000000000 R12: 0000000000000802
[ 3478.304421][T22404] R13: 0000000000008040 R14: 0000000000000804 R15: 00005555566bc720
[ 3478.312373][T22404]
[ 3478.315412][T22404] memory: usage 224kB, limit 0kB, failcnt 18296
[ 3478.321706][T22404] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3478.328540][T22404] Memory cgroup stats for /syz1:
[ 3478.328836][T22404] anon 36864
[ 3478.328836][T22404] file 118784
[ 3478.328836][T22404] kernel_stack 0
[ 3478.328836][T22404] pagetables 8192
[ 3478.328836][T22404] percpu 0
[ 3478.328836][T22404] sock 0
[ 3478.328836][T22404] shmem 114688
[ 3478.328836][T22404] file_mapped 114688
[ 3478.328836][T22404] file_dirty 0
[ 3478.328836][T22404] file_writeback 0
[ 3478.328836][T22404] swapcached 0
[ 3478.328836][T22404] inactive_anon 69632
[ 3478.328836][T22404] active_anon 81920
[ 3478.328836][T22404] inactive_file 0
[ 3478.328836][T22404] active_file 4096
[ 3478.328836][T22404] unevictable 0
[ 3478.328836][T22404] slab_reclaimable 35680
[ 3478.328836][T22404] slab_unreclaimable 20456
[ 3478.328836][T22404] slab 56136
[ 3478.328836][T22404] workingset_refault_anon 0
[ 3478.328836][T22404] workingset_refault_file 0
[ 3478.328836][T22404] workingset_activate_anon 0
[ 3478.328836][T22404] workingset_activate_file 0
[ 3478.328836][T22404] workingset_restore_anon 0
[ 3478.328836][T22404] workingset_restore_file 0
[ 3478.424972][T22404] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=22404,uid=0
[ 3478.440189][T22404] Memory cgroup out of memory: Killed process 22404 (syz-executor.1) total-vm:48480kB, anon-rss:360kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:0
[ 3478.458195][ T26] oom_reaper: reaped process 22404 (syz-executor.1), now anon-rss:0kB, file-rss:13472kB, shmem-rss:0kB
09:21:12 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0/file0\x00', &(0x7f00000001c0)='debugfs\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f00000000c0)='./file0/file0\x00', &(0x7f00000001c0)='debugfs\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
09:21:12 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='tracefs\x00', 0x842000, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='tracefs\x00', 0x842000, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
09:21:12 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:12 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000040)={0x0, @in6={{0xa, 0x4e20, 0x65e7c6d8, @mcast2, 0x7}}, 0x1000, 0xffff, 0xaf5, 0x5, 0xbc}, &(0x7f0000000100)=0x98)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={r4}, &(0x7f0000000180)=0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 32)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
r6 = pidfd_getfd(0xffffffffffffffff, r2, 0x0) (async)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000200)={r5, 0x4}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r6, 0x84, 0x7c, &(0x7f0000000280)={r7, 0x9, 0x5b4}, &(0x7f00000002c0)=0x8)
09:21:12 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x100000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000840))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
rmdir(&(0x7f0000000040)='./file0\x00')
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
09:21:12 executing program 3:
unshare(0x20000400) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
pselect6(0x40, &(0x7f0000000040)={0xf2b9, 0x1f, 0x4, 0x0, 0x6, 0x5, 0x7fe, 0x200}, &(0x7f0000000080)={0x5, 0x9, 0xffffffffffffffc0, 0x7, 0xc8, 0xd2, 0x80, 0x8}, &(0x7f00000000c0)={0x488adf26, 0x5, 0x0, 0xa3c, 0x40, 0x8, 0x20, 0x5}, &(0x7f0000000100)={0x0, 0x3938700}, &(0x7f00000001c0)={&(0x7f0000000180)={[0x80]}, 0x8}) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:12 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:12 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
ioctl$FS_IOC_GETFLAGS(r3, 0x80086601, &(0x7f0000000280))
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r5, 0x0)
r6 = inotify_init1(0x800)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r5, 0x6, &(0x7f0000000240)={0x8001, 0x0, &(0x7f0000000200)=[0xffffffffffffffff, r6]}, 0x2)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'})
getsockopt$inet6_tcp_int(r7, 0x6, 0x11, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
09:21:12 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:12 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
r1 = accept4$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000080)=0x1c, 0x80800)
sendto$inet6(r1, &(0x7f00000000c0)="a4b77d5fab3bf3894a955103e54de39bbb5e1250234334ccbb61148ce1de4fa93dda7fe6641d6997c0cf0ef2e33c70f4fef5f7937344d32e22a3c919ec43925c8f71b06cd54e1944", 0x48, 0x44040, &(0x7f0000000140)={0xa, 0x4e21, 0xfffffffa, @mcast2, 0x24000}, 0x1c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:12 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:12 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
openat$cgroup_ro(r2, &(0x7f0000000100)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0)
r3 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r5, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2, {0x100, 0x7}}, './file0\x00'})
openat$cgroup_int(r1, &(0x7f0000000040)='cgroup.max.descendants\x00', 0x2, 0x0)
09:21:12 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x20000400) (async)
socket$packet(0x11, 0x3, 0x300) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
09:21:12 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3478.628904][T23091] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3478.639152][T23091] CPU: 1 PID: 23091 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3478.647566][T23091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3478.657615][T23091] Call Trace:
[ 3478.660892][T23091]
[ 3478.663817][T23091] dump_stack_lvl+0xd6/0x122
[ 3478.668409][T23091] dump_stack+0x11/0x1b
[ 3478.672574][T23091] dump_header+0x98/0x410
[ 3478.676936][T23091] out_of_memory+0x62c/0x890
[ 3478.681521][T23091] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3478.687380][T23091] memory_max_write+0x32c/0x3d0
[ 3478.692237][T23091] ? memory_max_show+0x70/0x70
[ 3478.697155][T23091] cgroup_file_write+0x161/0x300
[ 3478.702094][T23091] ? __check_object_size+0x22a/0x2d0
[ 3478.707383][T23091] ? cgroup_seqfile_stop+0x70/0x70
[ 3478.712516][T23091] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3478.717930][T23091] do_iter_readv_writev+0x2de/0x380
[ 3478.723138][T23091] do_iter_write+0x192/0x5c0
09:21:12 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3478.727731][T23091] ? splice_from_pipe_next+0x34f/0x3b0
[ 3478.733191][T23091] ? kmalloc_array+0x2d/0x40
[ 3478.737783][T23091] vfs_iter_write+0x4c/0x70
[ 3478.742410][T23091] iter_file_splice_write+0x43a/0x790
[ 3478.747793][T23091] ? splice_from_pipe+0xd0/0xd0
[ 3478.752684][T23091] direct_splice_actor+0x80/0xa0
[ 3478.757626][T23091] splice_direct_to_actor+0x345/0x650
[ 3478.763008][T23091] ? do_splice_direct+0x190/0x190
[ 3478.768037][T23091] do_splice_direct+0x106/0x190
[ 3478.772980][T23091] do_sendfile+0x675/0xc40
09:21:12 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={r1, 0x3, 0x10}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3478.777403][T23091] __x64_sys_sendfile64+0x102/0x140
[ 3478.782600][T23091] do_syscall_64+0x44/0xd0
[ 3478.787188][T23091] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3478.793086][T23091] RIP: 0033:0x7f4d3cb0beb9
[ 3478.797496][T23091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3478.817285][T23091] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3478.825773][T23091] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3478.833744][T23091] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3478.841801][T23091] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3478.849779][T23091] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3478.857780][T23091] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3478.865842][T23091]
[ 3478.868970][T23091] memory: usage 168kB, limit 0kB, failcnt 18313
[ 3478.875225][T23091] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3478.882103][T23091] Memory cgroup stats for /syz1:
[ 3478.888478][T23091] anon 0
[ 3478.888478][T23091] file 118784
[ 3478.888478][T23091] kernel_stack 0
[ 3478.888478][T23091] pagetables 0
[ 3478.888478][T23091] percpu 0
[ 3478.888478][T23091] sock 0
[ 3478.888478][T23091] shmem 114688
[ 3478.888478][T23091] file_mapped 114688
[ 3478.888478][T23091] file_dirty 4096
[ 3478.888478][T23091] file_writeback 0
[ 3478.888478][T23091] swapcached 0
[ 3478.888478][T23091] inactive_anon 32768
[ 3478.888478][T23091] active_anon 81920
[ 3478.888478][T23091] inactive_file 0
[ 3478.888478][T23091] active_file 4096
[ 3478.888478][T23091] unevictable 0
[ 3478.888478][T23091] slab_reclaimable 32992
[ 3478.888478][T23091] slab_unreclaimable 19928
[ 3478.888478][T23091] slab 52920
[ 3478.888478][T23091] workingset_refault_anon 0
[ 3478.888478][T23091] workingset_refault_file 0
[ 3478.888478][T23091] workingset_activate_anon 0
[ 3478.888478][T23091] workingset_activate_file 0
[ 3478.888478][T23091] workingset_restore_anon 0
[ 3478.888478][T23091] workingset_restore_file 0
[ 3478.984266][T23091] Out of memory and no killable processes...
[ 3479.311974][T31801] device hsr_slave_0 left promiscuous mode
[ 3479.317989][T31801] device hsr_slave_1 left promiscuous mode
[ 3479.324793][T31801] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3479.332237][T31801] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3479.340411][T31801] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3479.347780][T31801] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3479.355561][T31801] device bridge_slave_1 left promiscuous mode
[ 3479.361739][T31801] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3479.369297][T31801] device bridge_slave_0 left promiscuous mode
[ 3479.375424][T31801] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3479.385067][T31801] device veth1_macvtap left promiscuous mode
[ 3479.391140][T31801] device veth0_macvtap left promiscuous mode
[ 3479.397115][T31801] device veth1_vlan left promiscuous mode
[ 3479.402866][T31801] device veth0_vlan left promiscuous mode
[ 3479.481884][T31801] team0 (unregistering): Port device team_slave_1 removed
[ 3479.491821][T31801] team0 (unregistering): Port device team_slave_0 removed
[ 3479.501438][T31801] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3479.512665][T31801] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3479.539029][T31801] bond0 (unregistering): Released all slaves
[ 3480.367822][T23411] lo speed is unknown, defaulting to 1000
[ 3480.404657][T23411] chnl_net:caif_netlink_parms(): no params data found
[ 3480.433256][T23411] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3480.440289][T23411] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3480.447665][T23411] device bridge_slave_0 entered promiscuous mode
[ 3480.454978][T23411] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3480.462019][T23411] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3480.469448][T23411] device bridge_slave_1 entered promiscuous mode
[ 3480.485198][T23411] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3480.495379][T23411] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3480.512696][T23411] team0: Port device team_slave_0 added
[ 3480.519001][T23411] team0: Port device team_slave_1 added
[ 3480.532447][T23411] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3480.539368][T23411] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3480.565274][T23411] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3480.577418][T23411] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3480.584381][T23411] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3480.610334][T23411] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3480.631018][T23411] device hsr_slave_0 entered promiscuous mode
[ 3480.637409][T23411] device hsr_slave_1 entered promiscuous mode
[ 3480.644017][T23411] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3480.651588][T23411] Cannot create hsr debugfs directory
[ 3480.677980][T23411] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3480.685041][T23411] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3480.692394][T23411] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3480.699469][T23411] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3480.725539][T23411] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3480.736120][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3480.743905][ T7812] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3480.752382][ T7812] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3480.763285][T23411] 8021q: adding VLAN 0 to HW filter on device team0
[ 3480.772191][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3480.780673][ T5036] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3480.787680][ T5036] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3480.800534][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3480.808961][ T5036] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3480.815973][ T5036] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3480.826408][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3480.835164][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3480.848549][T23411] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 3480.858930][T23411] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 3480.871332][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3480.880050][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3480.888423][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3480.896897][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3480.910292][T23411] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3480.917855][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3480.925506][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3480.992723][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3481.032129][T23411] device veth0_vlan entered promiscuous mode
[ 3481.040067][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 3481.048171][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3481.057112][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3481.064874][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3481.072930][T23411] device veth1_vlan entered promiscuous mode
[ 3481.085319][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3481.093166][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3481.101525][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3481.109820][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3481.119313][T23411] device veth0_macvtap entered promiscuous mode
[ 3481.127585][T23411] device veth1_macvtap entered promiscuous mode
[ 3481.137880][T23411] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3481.148324][T23411] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3481.158196][T23411] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3481.168715][T23411] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3481.178517][T23411] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3481.188955][T23411] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3481.198803][T23411] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3481.209209][T23411] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3481.219051][T23411] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3481.229518][T23411] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3481.241790][T23411] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3481.249340][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 3481.257578][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 3481.266088][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3481.274529][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3481.285534][T23411] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3481.295980][T23411] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3481.305823][T23411] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3481.316319][T23411] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3481.326113][T23411] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3481.336563][T23411] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3481.346373][T23411] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3481.356781][T23411] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3481.366701][T23411] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3481.377110][T23411] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3481.388532][T23411] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3481.396065][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3481.404704][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3481.442082][T23445] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3481.452317][T23445] CPU: 1 PID: 23445 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3481.460710][T23445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3481.470807][T23445] Call Trace:
[ 3481.474066][T23445]
[ 3481.477015][T23445] dump_stack_lvl+0xd6/0x122
[ 3481.481590][T23445] dump_stack+0x11/0x1b
[ 3481.485753][T23445] dump_header+0x98/0x410
[ 3481.490097][T23445] oom_kill_process+0x18e/0x3f0
[ 3481.494931][T23445] out_of_memory+0x5ed/0x890
[ 3481.499557][T23445] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3481.505348][T23445] memory_max_write+0x32c/0x3d0
[ 3481.510179][T23445] ? memory_max_show+0x70/0x70
[ 3481.514963][T23445] cgroup_file_write+0x161/0x300
[ 3481.519932][T23445] ? __check_object_size+0x22a/0x2d0
[ 3481.525253][T23445] ? cgroup_seqfile_stop+0x70/0x70
[ 3481.530359][T23445] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3481.535635][T23445] do_iter_readv_writev+0x2de/0x380
[ 3481.541039][T23445] do_iter_write+0x192/0x5c0
[ 3481.545606][T23445] ? splice_from_pipe_next+0x34f/0x3b0
[ 3481.551101][T23445] ? kmalloc_array+0x2d/0x40
[ 3481.555671][T23445] vfs_iter_write+0x4c/0x70
[ 3481.560226][T23445] iter_file_splice_write+0x43a/0x790
[ 3481.565582][T23445] ? splice_from_pipe+0xd0/0xd0
[ 3481.570427][T23445] direct_splice_actor+0x80/0xa0
[ 3481.575344][T23445] splice_direct_to_actor+0x345/0x650
[ 3481.580785][T23445] ? do_splice_direct+0x190/0x190
[ 3481.585796][T23445] do_splice_direct+0x106/0x190
[ 3481.590629][T23445] do_sendfile+0x675/0xc40
[ 3481.595055][T23445] __x64_sys_sendfile64+0x102/0x140
[ 3481.600232][T23445] do_syscall_64+0x44/0xd0
[ 3481.604632][T23445] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3481.610523][T23445] RIP: 0033:0x7fab58e6deb9
[ 3481.614917][T23445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3481.634502][T23445] RSP: 002b:00007fab57fe4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3481.642890][T23445] RAX: ffffffffffffffda RBX: 00007fab58f80f60 RCX: 00007fab58e6deb9
[ 3481.650839][T23445] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3481.658789][T23445] RBP: 00007fab58ec808d R08: 0000000000000000 R09: 0000000000000000
[ 3481.666769][T23445] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3481.674787][T23445] R13: 00007ffce739e7af R14: 00007fab57fe4300 R15: 0000000000022000
[ 3481.682786][T23445]
[ 3481.685811][T23445] memory: usage 484kB, limit 0kB, failcnt 18313
[ 3481.692048][T23445] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3481.698885][T23445] Memory cgroup stats for /syz1:
[ 3481.699340][T23445] anon 118784
[ 3481.699340][T23445] file 118784
[ 3481.699340][T23445] kernel_stack 32768
[ 3481.699340][T23445] pagetables 90112
[ 3481.699340][T23445] percpu 0
[ 3481.699340][T23445] sock 0
[ 3481.699340][T23445] shmem 114688
[ 3481.699340][T23445] file_mapped 114688
[ 3481.699340][T23445] file_dirty 4096
[ 3481.699340][T23445] file_writeback 0
[ 3481.699340][T23445] swapcached 0
[ 3481.699340][T23445] inactive_anon 94208
[ 3481.699340][T23445] active_anon 81920
[ 3481.699340][T23445] inactive_file 0
[ 3481.699340][T23445] active_file 4096
[ 3481.699340][T23445] unevictable 0
[ 3481.699340][T23445] slab_reclaimable 50200
[ 3481.699340][T23445] slab_unreclaimable 53600
[ 3481.699340][T23445] slab 103800
[ 3481.699340][T23445] workingset_refault_anon 0
[ 3481.699340][T23445] workingset_refault_file 0
[ 3481.699340][T23445] workingset_activate_anon 0
[ 3481.699340][T23445] workingset_activate_file 0
[ 3481.699340][T23445] workingset_restore_anon 0
09:21:15 executing program 3:
unshare(0x20000400) (async)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:15 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:15 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
r1 = accept4$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000080)=0x1c, 0x80800)
sendto$inet6(r1, &(0x7f00000000c0)="a4b77d5fab3bf3894a955103e54de39bbb5e1250234334ccbb61148ce1de4fa93dda7fe6641d6997c0cf0ef2e33c70f4fef5f7937344d32e22a3c919ec43925c8f71b06cd54e1944", 0x48, 0x44040, &(0x7f0000000140)={0xa, 0x4e21, 0xfffffffa, @mcast2, 0x24000}, 0x1c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
accept4$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000080)=0x1c, 0x80800) (async)
sendto$inet6(r1, &(0x7f00000000c0)="a4b77d5fab3bf3894a955103e54de39bbb5e1250234334ccbb61148ce1de4fa93dda7fe6641d6997c0cf0ef2e33c70f4fef5f7937344d32e22a3c919ec43925c8f71b06cd54e1944", 0x48, 0x44040, &(0x7f0000000140)={0xa, 0x4e21, 0xfffffffa, @mcast2, 0x24000}, 0x1c) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
09:21:15 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x100000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0) (async)
wait4(0x0, 0x0, 0x2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000840)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
rmdir(&(0x7f0000000040)='./file0\x00') (async)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
09:21:15 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
openat$cgroup_ro(r2, &(0x7f0000000100)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0)
r3 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r5, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2, {0x100, 0x7}}, './file0\x00'})
openat$cgroup_int(r1, &(0x7f0000000040)='cgroup.max.descendants\x00', 0x2, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) (async)
openat$cgroup_ro(r2, &(0x7f0000000100)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) (async)
openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r4, r4, 0x0, 0x2) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r5, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2, {0x100, 0x7}}, './file0\x00'}) (async)
openat$cgroup_int(r1, &(0x7f0000000040)='cgroup.max.descendants\x00', 0x2, 0x0) (async)
09:21:15 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
r3 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
ioctl$FS_IOC_GETFLAGS(r3, 0x80086601, &(0x7f0000000280))
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2) (async)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r5, 0x0)
r6 = inotify_init1(0x800)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r5, 0x6, &(0x7f0000000240)={0x8001, 0x0, &(0x7f0000000200)=[0xffffffffffffffff, r6]}, 0x2) (async)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'})
getsockopt$inet6_tcp_int(r7, 0x6, 0x11, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
[ 3481.792103][T23445] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=23444,uid=0
[ 3481.807450][T23445] Memory cgroup out of memory: Killed process 23444 (syz-executor.1) total-vm:52452kB, anon-rss:372kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000
09:21:15 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
r1 = accept4$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000080)=0x1c, 0x80800)
sendto$inet6(r1, &(0x7f00000000c0)="a4b77d5fab3bf3894a955103e54de39bbb5e1250234334ccbb61148ce1de4fa93dda7fe6641d6997c0cf0ef2e33c70f4fef5f7937344d32e22a3c919ec43925c8f71b06cd54e1944", 0x48, 0x44040, &(0x7f0000000140)={0xa, 0x4e21, 0xfffffffa, @mcast2, 0x24000}, 0x1c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:15 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x2000}, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
[ 3481.855126][T23450] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3481.865132][T23450] CPU: 0 PID: 23450 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3481.873560][T23450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3481.883675][T23450] Call Trace:
[ 3481.886948][T23450]
[ 3481.889876][T23450] dump_stack_lvl+0xd6/0x122
[ 3481.894552][T23450] dump_stack+0x11/0x1b
[ 3481.898710][T23450] dump_header+0x98/0x410
09:21:15 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3481.903059][T23450] oom_kill_process+0x18e/0x3f0
[ 3481.907912][T23450] out_of_memory+0x5ed/0x890
[ 3481.912503][T23450] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3481.918337][T23450] memory_max_write+0x32c/0x3d0
[ 3481.923225][T23450] ? memory_max_show+0x70/0x70
[ 3481.927991][T23450] cgroup_file_write+0x161/0x300
[ 3481.932932][T23450] ? __check_object_size+0x22a/0x2d0
[ 3481.938205][T23450] ? cgroup_seqfile_stop+0x70/0x70
[ 3481.943332][T23450] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3481.948617][T23450] do_iter_readv_writev+0x2de/0x380
09:21:15 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async, rerun: 32)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 32)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
socket$inet6_sctp(0xa, 0x1, 0x84) (async, rerun: 32)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (rerun: 32)
[ 3481.953831][T23450] do_iter_write+0x192/0x5c0
[ 3481.958484][T23450] ? splice_from_pipe_next+0x34f/0x3b0
[ 3481.963981][T23450] ? kmalloc_array+0x2d/0x40
[ 3481.968697][T23450] vfs_iter_write+0x4c/0x70
[ 3481.973201][T23450] iter_file_splice_write+0x43a/0x790
[ 3481.978583][T23450] ? splice_from_pipe+0xd0/0xd0
[ 3481.983531][T23450] direct_splice_actor+0x80/0xa0
[ 3481.988555][T23450] splice_direct_to_actor+0x345/0x650
[ 3481.994016][T23450] ? do_splice_direct+0x190/0x190
[ 3481.999053][T23450] do_splice_direct+0x106/0x190
09:21:15 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3482.003968][T23450] do_sendfile+0x675/0xc40
[ 3482.008385][T23450] __x64_sys_sendfile64+0x102/0x140
[ 3482.013584][T23450] do_syscall_64+0x44/0xd0
[ 3482.018003][T23450] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3482.023905][T23450] RIP: 0033:0x7f0a46a70eb9
[ 3482.028315][T23450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
09:21:15 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30, 0x4000000000000000, 0x10003}, &(0x7f0000000080)=0x18)
sendto$inet6(r1, &(0x7f0000000200)="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", 0x1000, 0x800, &(0x7f0000000040)={0xa, 0x4e22, 0x81, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x5}, 0x1c)
09:21:15 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x2000}, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x2000}, 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
[ 3482.047938][T23450] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3482.056453][T23450] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3482.064407][T23450] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3482.072421][T23450] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3482.080521][T23450] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3482.088620][T23450] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3482.096598][T23450]
[ 3482.099801][T23450] memory: usage 236kB, limit 0kB, failcnt 18332
[ 3482.106043][T23450] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3482.112944][T23450] Memory cgroup stats for /syz1:
[ 3482.113454][T23450] anon 24576
[ 3482.113454][T23450] file 118784
[ 3482.113454][T23450] kernel_stack 0
[ 3482.113454][T23450] pagetables 8192
[ 3482.113454][T23450] percpu 0
[ 3482.113454][T23450] sock 0
[ 3482.113454][T23450] shmem 114688
[ 3482.113454][T23450] file_mapped 114688
[ 3482.113454][T23450] file_dirty 4096
[ 3482.113454][T23450] file_writeback 0
[ 3482.113454][T23450] swapcached 0
[ 3482.113454][T23450] inactive_anon 57344
[ 3482.113454][T23450] active_anon 81920
[ 3482.113454][T23450] inactive_file 0
[ 3482.113454][T23450] active_file 4096
[ 3482.113454][T23450] unevictable 0
[ 3482.113454][T23450] slab_reclaimable 35680
[ 3482.113454][T23450] slab_unreclaimable 20760
[ 3482.113454][T23450] slab 56440
[ 3482.113454][T23450] workingset_refault_anon 0
[ 3482.113454][T23450] workingset_refault_file 0
[ 3482.113454][T23450] workingset_activate_anon 0
[ 3482.113454][T23450] workingset_activate_file 0
[ 3482.113454][T23450] workingset_restore_anon 0
[ 3482.205615][T23450] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=23411,uid=0
[ 3482.221098][T23450] Memory cgroup out of memory: Killed process 23411 (syz-executor.1) total-vm:48480kB, anon-rss:368kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:0
[ 3482.239086][ T26] oom_reaper: reaped process 23411 (syz-executor.1), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
[ 3482.248620][T23455] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3482.260430][T23455] CPU: 1 PID: 23455 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3482.268838][T23455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3482.278872][T23455] Call Trace:
[ 3482.282274][T23455]
[ 3482.285248][T23455] dump_stack_lvl+0xd6/0x122
[ 3482.289824][T23455] dump_stack+0x11/0x1b
[ 3482.294020][T23455] dump_header+0x98/0x410
[ 3482.298331][T23455] out_of_memory+0x62c/0x890
[ 3482.302930][T23455] memory_max_write+0x32c/0x3d0
[ 3482.307798][T23455] ? memory_max_show+0x70/0x70
[ 3482.312572][T23455] cgroup_file_write+0x161/0x300
[ 3482.317499][T23455] ? __check_object_size+0x22a/0x2d0
[ 3482.322827][T23455] ? cgroup_seqfile_stop+0x70/0x70
[ 3482.327920][T23455] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3482.333232][T23455] do_iter_readv_writev+0x2de/0x380
[ 3482.338412][T23455] do_iter_write+0x192/0x5c0
[ 3482.342982][T23455] ? splice_from_pipe_next+0x34f/0x3b0
[ 3482.348427][T23455] ? kmalloc_array+0x2d/0x40
[ 3482.353067][T23455] vfs_iter_write+0x4c/0x70
[ 3482.357562][T23455] iter_file_splice_write+0x43a/0x790
[ 3482.362922][T23455] ? splice_from_pipe+0xd0/0xd0
[ 3482.367809][T23455] direct_splice_actor+0x80/0xa0
[ 3482.372734][T23455] splice_direct_to_actor+0x345/0x650
[ 3482.378147][T23455] ? do_splice_direct+0x190/0x190
[ 3482.383215][T23455] do_splice_direct+0x106/0x190
[ 3482.388048][T23455] do_sendfile+0x675/0xc40
[ 3482.392453][T23455] __x64_sys_sendfile64+0x102/0x140
[ 3482.397731][T23455] do_syscall_64+0x44/0xd0
[ 3482.402154][T23455] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3482.408044][T23455] RIP: 0033:0x7f4d3cb0beb9
[ 3482.412442][T23455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3482.432079][T23455] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3482.440546][T23455] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3482.448496][T23455] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3482.456445][T23455] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3482.464401][T23455] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3482.472392][T23455] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3482.480345][T23455]
[ 3482.483628][T23455] memory: usage 176kB, limit 0kB, failcnt 18349
[ 3482.489913][T23455] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3482.496750][T23455] Memory cgroup stats for /syz1:
[ 3482.498201][T23455] anon 0
[ 3482.498201][T23455] file 118784
[ 3482.498201][T23455] kernel_stack 0
[ 3482.498201][T23455] pagetables 0
[ 3482.498201][T23455] percpu 0
[ 3482.498201][T23455] sock 0
[ 3482.498201][T23455] shmem 114688
[ 3482.498201][T23455] file_mapped 114688
[ 3482.498201][T23455] file_dirty 4096
[ 3482.498201][T23455] file_writeback 0
[ 3482.498201][T23455] swapcached 0
[ 3482.498201][T23455] inactive_anon 32768
[ 3482.498201][T23455] active_anon 81920
[ 3482.498201][T23455] inactive_file 4096
[ 3482.498201][T23455] active_file 0
[ 3482.498201][T23455] unevictable 0
[ 3482.498201][T23455] slab_reclaimable 35680
[ 3482.498201][T23455] slab_unreclaimable 20520
[ 3482.498201][T23455] slab 56200
[ 3482.498201][T23455] workingset_refault_anon 0
[ 3482.498201][T23455] workingset_refault_file 0
[ 3482.498201][T23455] workingset_activate_anon 0
[ 3482.498201][T23455] workingset_activate_file 0
[ 3482.498201][T23455] workingset_restore_anon 0
[ 3482.498201][T23455] workingset_restore_file 0
[ 3482.594478][T23455] Out of memory and no killable processes...
09:21:16 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:16 executing program 3:
unshare(0x20000400) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x2000}, 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:16 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
openat$cgroup_ro(r2, &(0x7f0000000100)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0)
r3 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2) (async, rerun: 32)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (rerun: 32)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r5, 0x0) (async, rerun: 32)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2, {0x100, 0x7}}, './file0\x00'}) (rerun: 32)
openat$cgroup_int(r1, &(0x7f0000000040)='cgroup.max.descendants\x00', 0x2, 0x0)
09:21:16 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 32)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
r3 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
ioctl$FS_IOC_GETFLAGS(r3, 0x80086601, &(0x7f0000000280)) (async)
r4 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2) (async)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r5, 0x0)
r6 = inotify_init1(0x800)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r5, 0x6, &(0x7f0000000240)={0x8001, 0x0, &(0x7f0000000200)=[0xffffffffffffffff, r6]}, 0x2) (async)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'})
getsockopt$inet6_tcp_int(r7, 0x6, 0x11, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
09:21:16 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x100000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0) (async)
wait4(0x0, 0x0, 0x2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000840)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async, rerun: 32)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 32)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
rmdir(&(0x7f0000000040)='./file0\x00') (async)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
09:21:16 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={r0})
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
[ 3482.754156][T24224] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3482.764131][T24224] CPU: 1 PID: 24224 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3482.772547][T24224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3482.782691][T24224] Call Trace:
[ 3482.785966][T24224]
[ 3482.788893][T24224] dump_stack_lvl+0xd6/0x122
[ 3482.793589][T24224] dump_stack+0x11/0x1b
[ 3482.797761][T24224] dump_header+0x98/0x410
[ 3482.802097][T24224] out_of_memory+0x62c/0x890
[ 3482.806732][T24224] memory_max_write+0x32c/0x3d0
[ 3482.811612][T24224] ? memory_max_show+0x70/0x70
[ 3482.816584][T24224] cgroup_file_write+0x161/0x300
[ 3482.821523][T24224] ? __check_object_size+0x22a/0x2d0
[ 3482.826818][T24224] ? cgroup_seqfile_stop+0x70/0x70
[ 3482.831927][T24224] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3482.837280][T24224] do_iter_readv_writev+0x2de/0x380
[ 3482.842541][T24224] do_iter_write+0x192/0x5c0
[ 3482.847137][T24224] ? splice_from_pipe_next+0x34f/0x3b0
[ 3482.852599][T24224] ? kmalloc_array+0x2d/0x40
[ 3482.857192][T24224] vfs_iter_write+0x4c/0x70
[ 3482.861757][T24224] iter_file_splice_write+0x43a/0x790
[ 3482.867210][T24224] ? splice_from_pipe+0xd0/0xd0
[ 3482.872066][T24224] direct_splice_actor+0x80/0xa0
[ 3482.877008][T24224] splice_direct_to_actor+0x345/0x650
[ 3482.882385][T24224] ? do_splice_direct+0x190/0x190
[ 3482.887572][T24224] do_splice_direct+0x106/0x190
[ 3482.892425][T24224] do_sendfile+0x675/0xc40
[ 3482.896855][T24224] __x64_sys_sendfile64+0x102/0x140
[ 3482.902055][T24224] do_syscall_64+0x44/0xd0
[ 3482.906476][T24224] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3482.912380][T24224] RIP: 0033:0x7f0a46a70eb9
[ 3482.916877][T24224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3482.936482][T24224] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3482.944897][T24224] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
09:21:16 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000540))
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f00000002c0)='-\x00')
mount(&(0x7f0000000040)=@md0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='hpfs\x00', 0x2040, &(0x7f0000000280)='##*#C\x00')
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x4, 0x5, 0x4, 0x76, 0x0, 0x40, 0x581, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x10001, 0x0, @perf_config_ext={0x9, 0x10001}, 0x8000, 0x9, 0x5, 0x7, 0x731, 0x7, 0xff, 0x0, 0xb98, 0x0, 0x183}, 0x0, 0x0, r0, 0x2)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
09:21:16 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async, rerun: 64)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (rerun: 64)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 64)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30, 0x4000000000000000, 0x10003}, &(0x7f0000000080)=0x18)
sendto$inet6(r1, &(0x7f0000000200)="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", 0x1000, 0x800, &(0x7f0000000040)={0xa, 0x4e22, 0x81, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x5}, 0x1c)
09:21:16 executing program 3:
unshare(0x20000400) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={r0})
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:16 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30, 0x4000000000000000, 0x10003}, &(0x7f0000000080)=0x18) (async)
sendto$inet6(r1, &(0x7f0000000200)="d18e6b592931e6a497c075c025d8dd2968c62044e438386662dcfd93269e1d458bf0a860ab32c16b40027054fead40dd1adae5da6b00f3f2b8f146b6edcc969a47a153002e0a0b9fa8a5603155d861a2a67c81451ef2f2dbd2334687beecb71bb20f62da2b26de4d375a9f234c7ff2f031834738cd01e60a0a1373f76e0a7cd2423ae57f6739400ff9f54fe21a251425c49088f1feb54b148e59f4e299b743b99cd6d3cb7d3d625971e9087f8df94e921833be30f475e2512242bccf8bcc58200e2dcf2adf797c5cb5c22993bf677b1b12ef2bf598b516d460c2e4ae0c44c6f95a2a2d43d3bceeaa38f778615709e2bf2410185e9f1d65290accd481281dceaef21634f3b9324fb7f3d834f61f2fd99bbeacf6115bf568d6f07af129016f4fbfbddfc37a64563d5094fcced9838b65dc8f508da794bf4582e01f062ece97f764365879dde4a3cb1b386f75d918e3b70fee45eb9714ca99b8774c86a3ca8299767cb9353393bd413a39b6aa4980969bfe92d888ce52c0518630377335a1e0b4b7ea1178a32a5b26509b429b4c6fdf8287f39091ad1b634d28f9257522117d29b61845c01a6a3e797e275790911b71066cd34e3f753e8b1a1843b996745403637398bf22891b1d954424364e19e0728bcc5817448069fc2ce5d677cebe50ba5d3a58a088b3e0ca54f4b2f6e34e4445de35776838675c7482c7be3c4e518f11df37856d2767d0a05a057156419ce02adf729455ce559b2125f10629d94a123989d86916c9bc131064b88234ef34b9e2d1abeb0f8b94de4eaaf7b3272b5b517b3fa2bea9214cc72234e4e65d602857d1eef1719159214900baf3065c792453affa889d599e15c9fb6f3179ed0cab7ca8ac023c9cfd1a6ccb24a316364ad0e79ddc27ee3b383301142b9188a18c72e2e2becf92d0ebe4a41d4ede42e1f888180579c9294690c0b82703f5cd5956cafa731fd0339a8adf0c5c194cb16edf4e7ed28db87b36286a9c1dd95273e2dce3f447f394f6dff7f08b0228a057972dbd235d45cd073d97abbaa90c26db265ae9e465df22cae19186692cdee34da7d87c0688ff7a0c4a34b5a5becef4b1c6bcdc4adda3f86b439d1cddb2f27c482e26cd69394bee9f637fadce177ddab42fbc98b28e549cc7940c617229e4c47b67e3fb7880db2cd519535e50ccf9e3ee2b898265333b63b3d708c0692d4b3eb0bbde8845267fe008a684125498b8aecc3b5299532d4ab935946bfa0b31d15fab6b170e1acb6869e100166170aa1cb8a0e510cd5c4d7a6b777ce2cdf347960cb08ecf5b09da46f4270baecf876f39864eb8bb116ccf15670e14dea58a51df7b4254fc214d93e99b8a68cd1d9d4e9652035cb85fe51ad11f9103057b2aeda40989e6187ec4a9fedea56f83224cb153c4e3f3e49d9ca5e5385e98eab20f07d1054b51486c660d1cf7678bfbfcc4e3aa063ade39f3ed0cf4d3c94bc07341bfd711ad473b10dfad503cb78ecdb93a73f716b29747073ff405a305e4e4e8a9fbfd535283ee0c520fc8ac3c5048ed2cc71d97ba5eb5274157b652950e80afd3d394b7203d7c1893446bc0d1db3ed861c332bd95f257bfb325991435d6fb20337a8abfd7a58664d2dc05b4d0ff507f0b6fe954939a9fd1f0ec7653796d94f5b01ba1cfe0cb4061489bef391599c8aaef272b7d6911b6272df7cbb786812df7d042623fe2c8dc0fc06758b3c1ad2aa7a0f98258694fff79caf996253888823ae9c1f1ad894d2c9ffdc141bf5bc937078f567f2cab1658fa60827890ae915427409a9095a5dc7cfca2166f0e7fee58a2d912fd9e5ea11b42df86de4f91f26a0858de2f5c751a2cb7c67bc56f09f1b65d901a114af4892b3057d342471baf7e58bb63134faee0546b6484c10ce09d8f9e92b622d979ad6cd2723231928eced7b1190baa6b3e92dabcaf40d1c39dc9c3266ea1c7457edc19c7f6373dd6046ef71b8b53407bebbbbfc0f8fe143978b584ca37b1543eee933e38f22678cd48dc61c3a8ef3365bb76951852cc184c6dcccce5c1a9fe8ffb694ea59584ffa3101d5931d73b66db38489afc4eadd8d45d0b93829088f02f7b3561303c0b208e472ca835d871592ec3805e1a44326378254feaf3e405799192991a89ec782db93b3d962a4e26622fbb7a7162d5a677a09c5c61dc967921de4e61ede8ccb77e7e235d93e3f4b88e40f25bc368d6c82268b75f0f0756ef3032b82d7a12d1979a56730f6de14b34249b310c07efd956b1e7b79ed1cb0a0e27f642927ef1104abd20a5cb4f9ea663bb6d2ac219d3e08e29991e89ca9b94c311e5497786c8c8a4139a0e5e3c04e646b2748dbaecf9744773f565d128328e826af31233c2ffb5fea2191d5c9e2ec63405a7c1dda09148bbd3b51d91ca8d8bc687eec3709ed66f091ead5aee7c9fb856611ecd7882e2ea0044d07e4ff6bbf50af9fbcd90084d21e7c10daa592bc7fc1a47c8d50199330c41c0f08d98abb3a4c2c6ecc863524e07ba86dce5ba449a0e85d5595dd2fb6324dbb1425204e786527aa3cb4172a29e5aa05efd21ca54311ef9b904a62a70ae4f256b3f2c4d0434dd7711f790f2d48d626dee5af03a9af9c8479cba7fe5cc77d41357f61faa16fc37ca61cfb18a07677251e760790bc512659aa4cdd3bf8f200780583c0efe6e29b1a4021a0f4605f859beddbb8b89922379c41f8700762f4c438e131d8cc5bbcd1ff891a6feb8ea44ccb68e8fa4e32ae395a2d118d4669e2784760b83b7acfa30e4e80e7e542eb012c37a4d6183f543e3983532c5809e2d4e1741ccbc771d14eb40809be0fbe63f781a28d7493f766b810e3585e5b68d51014c352039c32f2362785159365b133a8c5a850f08cdee5b54a3d82781635d7ba41a1f06f3a9b19f06440c15d0c3ac7890e7237fc260ac35bfc2b955dc14db6ef04b3275bc08b44ce4ba0e283439085aacb970b3b26cd482dda536a5d577ee0d19c0c5e514aada2d7efe42d92e53996eb9f001cc9233b6d564229afa1d4a23ecdc0ee9f183bddae75c8b8679f32ec0a85bd885fe7b99a2e163e23fe5f576d2aedcc17b27951b9b91e813aaf6d8b47a8800e3dee4872cfaa606024393c2b306a8c49a7e9e452d76ae34f2bc9914ab5258af714196b14e064ba1949f5538416d0191a0ed146ceb4e90d7a7aa1b7b3d0666f6f22bdcdb1ab422fa31f2f5299ae8e0b4bf8e1d3c1a67a8fa0378299818798d06ffef4f3e95615dea977df81b14fca582472d3b2d9a977ce61b2ac6ebf20234ebad39cd61e12650585ca52be249458e63912cf4fd1256672acabbb4236c1c2990d80d3f2015337b49ff02d7fd35d33b67ee7a61414a188727a06c236d38c93d14d346a2cacfef753b04d49c37014ffc9394a1441f961b3d28dec6663b8fecc2467d6ce6134e120c0555458a201d9f6ef88043c52ac99ed7bfdaf33675e74a601149b0d617d0b5945a30b06476bd81f25d143ad4043142f6ded06413454dba6e1a1582df1750f38814ce978a6cd43a735f2fc97da5afbc30fc4596b9657e46665a4f7da89ff57d720a9cc7311bf16c53aa84064869a0d58141f2c399f3e1852cac6b4e1dc120444b3e9cd591fdffb6a0117d0b7207ea909241d2a5fc4c49c50e68fd958fbf22dd7b151c4df046891f504c2d7af5447ff51191d8f88527c989bea98b697533747dd875604fa06bb1bd1d76c6f946024f3996f49a583932116f5f95edfe822e30a56c2bffc8ed87cbb46e5734da3a4b7c6ef5b9481aa55fe37ae0e4b71464a4cbccdbffe134a27a17fedc0d79f228efc79af6c7147e79c428784b286834f631ff4c7c7cf580c9ae64f56420d62ec480f2fd33939c0adeb80f2c3ae25ee0cd08bb07a71978ca815d683a977c0307059cf23850149b488ab82d7c954ce52e451748911f123c2a8b2f372d2228d67713c33b866685b5929fe6957a6d3788698d746346dc848585864cfa8a49c72b09944b37cf783efb36ea3c505765115213bcc00e363126e028de3dba4a56af5511017b0db3b522bf37c92d4df0154377095510f9a1ef4384cd21200fa93d7e37a9a68f9b1d78dbee89e8b8e43ec31c651637dc64ac232e7292734e2fb6f2a6c3282b1dc6ad8c8856c5b4e08a009f1c90023c1b71cdc7525e74fceea572de7110ab1176fb32f7a5bb95580e96418eb51bb8123e2243e3f6c9eb7caf9764e03aa2c976404987731ce919ee0178a109386678f9936f673937673841e0070cc0cf83a2ff6424f82f85dfde0611492a8114e9ea1b54aeff3ea5592669a8579c74168faa590fb61f50fa0572a0737a973e6bd8ac8ee378cfe096351a085d6787d781725d6ebfb75a24ace898cbd30768a45f490a21e43fc0e347d685a3be76c3b794dbd0b96b7d3e3277bd9a8d5d8420a5a62dfeb0f7f980bd51eaf052bb9aa19a9a49bf73f5e67ae3e2061dc103a63c56a8cc556ac6d4e65b15b18087e76f85504027d81d226df6edf5d46edfbd133e1fef3c53e84dfa42c2a8d5460c3dffda4ccc968647bb11825ea04be49bc677631b6ada85df86f3d3a857f55b0109ccb3b755ae62bb6177b9387d4e031e8d1ff6f9ce3825f8a6e5b6b273e5d6a0bab5e6f93e12a0c37502652082510c98255be7f177e3e747cb31fff711ba82581d0f2638fa0612d9e3eea5c65224d3ea9121a3c4dc4b85db585b339c467bce200568deb815999d2d81e1ac627da114d2188aa2693662406629c65e739d776af5340d9ee5a8674fa6141d8fd47f90603dd03a0c0f9cc321e802fd9d506ea248c9c58aa6487b1d40c2eb7d5f0673e489d7e83508d82303d734d63cc2ff68688c6abb8ef00381b260a0a2964d24564b9bbcd73ed497a354e3992b589f1cce1eb2ac990869ed74013ecef500b06581df9e745a2e151ec4d6eb96405d01c5e26d6c05aa70b5e2521380157aa36baf97e1dd14e64890d01d6ce53e200e9ae7aa10c2514e44129dbdf76342bf54723e083899b62aba550389404fbc3543cab87ff74efa3d973a590123f55d43fd28a5b3a71290ee5e9edb53b31950fc26d29b8f3ea08281f602de67a6c1c625e0ce50856069d099a772161e8d92319de81be4c9b5e3f5da254a71edd862a48a22f6e3537b7e7b3f5f8fb2cf9382a355135b352ea5f909956cae239f461c309f224e9856e142bc445dc9112128ac243abb5ef63b8dede73f700d8a4b817296eb30616fe801335f7124324f4d8bd345e0637995fadcee59339bf56972730e4f16698b16d968ab0f30baad101b73b235c776be014f72325a0ffcc9b0678349e17cba41e3cc002f70abe7c75eafa77e47e961ff80601769c4836b98d1f7f58907ac16fb90bc18ef80648c6302d910dfb13d01161a144f45d7b60507229910870acdb8a26a0363921572a1b2a43487027b5116a6809a0fa81c5da216f389b66f7ac8b65f50ea935d2ea278f0d0168c9e68acdb9241355c0124867fa0b029bf51083303099d36d54e0851c216c155d5202dd68a1a079ed5d39c8a659889b9e16d6592fbd9ad5a01908b2a39318b6f2522758bd2be9413250248242215deabbe562d05e71ddb9850600571e1d943ec8be79c5d4aa4fee752f6686d1009dbb79c32e8637037f9255b19bf9440ab922c945c104cb4bafab92232709ad603292d5c359eb3277c32e6d8491a9017d5edb43eb8201e3fbaaa4b586beafe9bea4811104821dd378556ccfcd4410358023b25db8eb55f4b33c9ae6ec58988ce7ad80317ded5b2ee6697fab2c3a005cc24cbf985a7c768cf7e85d76f683d86288304b8b59c7c1f", 0x1000, 0x800, &(0x7f0000000040)={0xa, 0x4e22, 0x81, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x5}, 0x1c)
[ 3482.952877][T24224] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3482.960853][T24224] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3482.968826][T24224] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3482.976796][T24224] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3482.984768][T24224]
[ 3482.987827][T24224] memory: usage 168kB, limit 0kB, failcnt 18349
[ 3482.994094][T24224] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3483.000949][T24224] Memory cgroup stats for /syz1:
[ 3483.081513][T24224] anon 0
[ 3483.081513][T24224] file 118784
[ 3483.081513][T24224] kernel_stack 0
[ 3483.081513][T24224] pagetables 0
[ 3483.081513][T24224] percpu 0
[ 3483.081513][T24224] sock 0
[ 3483.081513][T24224] shmem 114688
[ 3483.081513][T24224] file_mapped 114688
[ 3483.081513][T24224] file_dirty 4096
[ 3483.081513][T24224] file_writeback 0
[ 3483.081513][T24224] swapcached 0
[ 3483.081513][T24224] inactive_anon 32768
[ 3483.081513][T24224] active_anon 81920
[ 3483.081513][T24224] inactive_file 0
[ 3483.081513][T24224] active_file 4096
[ 3483.081513][T24224] unevictable 0
[ 3483.081513][T24224] slab_reclaimable 32992
[ 3483.081513][T24224] slab_unreclaimable 19928
[ 3483.081513][T24224] slab 52920
[ 3483.081513][T24224] workingset_refault_anon 0
[ 3483.081513][T24224] workingset_refault_file 0
[ 3483.081513][T24224] workingset_activate_anon 0
[ 3483.081513][T24224] workingset_activate_file 0
[ 3483.081513][T24224] workingset_restore_anon 0
[ 3483.081513][T24224] workingset_restore_file 0
09:21:16 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={r0})
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={r0}) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
09:21:16 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000080)=0x18)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000040)={r6, 0x100}, &(0x7f0000000080)=0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3483.177539][T24224] Out of memory and no killable processes...
[ 3483.183604][T24419] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3483.194127][T24419] CPU: 1 PID: 24419 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3483.202540][T24419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3483.212679][T24419] Call Trace:
[ 3483.215955][T24419]
[ 3483.218884][T24419] dump_stack_lvl+0xd6/0x122
[ 3483.223480][T24419] dump_stack+0x11/0x1b
[ 3483.227652][T24419] dump_header+0x98/0x410
[ 3483.232026][T24419] out_of_memory+0x62c/0x890
[ 3483.236615][T24419] memory_max_write+0x32c/0x3d0
[ 3483.241471][T24419] ? memory_max_show+0x70/0x70
[ 3483.246238][T24419] cgroup_file_write+0x161/0x300
[ 3483.251215][T24419] ? cgroup_seqfile_stop+0x70/0x70
[ 3483.256333][T24419] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3483.261620][T24419] do_iter_readv_writev+0x2de/0x380
[ 3483.266825][T24419] do_iter_write+0x192/0x5c0
[ 3483.271541][T24419] ? splice_from_pipe_next+0x34f/0x3b0
[ 3483.277085][T24419] ? kmalloc_array+0x2d/0x40
[ 3483.281679][T24419] vfs_iter_write+0x4c/0x70
[ 3483.286183][T24419] iter_file_splice_write+0x43a/0x790
[ 3483.291563][T24419] ? splice_from_pipe+0xd0/0xd0
[ 3483.296418][T24419] direct_splice_actor+0x80/0xa0
[ 3483.301389][T24419] splice_direct_to_actor+0x345/0x650
[ 3483.306836][T24419] ? do_splice_direct+0x190/0x190
[ 3483.311907][T24419] do_splice_direct+0x106/0x190
[ 3483.316763][T24419] do_sendfile+0x675/0xc40
[ 3483.321265][T24419] __x64_sys_sendfile64+0x102/0x140
[ 3483.326465][T24419] do_syscall_64+0x44/0xd0
[ 3483.330886][T24419] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3483.336850][T24419] RIP: 0033:0x7f4d3cb0beb9
[ 3483.341261][T24419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3483.360884][T24419] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3483.369297][T24419] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3483.377264][T24419] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000014
[ 3483.385313][T24419] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3483.393281][T24419] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3483.401287][T24419] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3483.409295][T24419]
[ 3483.413340][T24419] memory: usage 168kB, limit 0kB, failcnt 18349
[ 3483.419844][T24419] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3483.427034][T24419] Memory cgroup stats for /syz1:
[ 3483.456052][T24419] anon 0
[ 3483.456052][T24419] file 118784
[ 3483.456052][T24419] kernel_stack 0
[ 3483.456052][T24419] pagetables 0
[ 3483.456052][T24419] percpu 0
[ 3483.456052][T24419] sock 0
[ 3483.456052][T24419] shmem 114688
[ 3483.456052][T24419] file_mapped 114688
[ 3483.456052][T24419] file_dirty 4096
[ 3483.456052][T24419] file_writeback 0
[ 3483.456052][T24419] swapcached 0
[ 3483.456052][T24419] inactive_anon 32768
[ 3483.456052][T24419] active_anon 81920
[ 3483.456052][T24419] inactive_file 0
[ 3483.456052][T24419] active_file 4096
[ 3483.456052][T24419] unevictable 0
[ 3483.456052][T24419] slab_reclaimable 32992
[ 3483.456052][T24419] slab_unreclaimable 19928
[ 3483.456052][T24419] slab 52920
[ 3483.456052][T24419] workingset_refault_anon 0
[ 3483.456052][T24419] workingset_refault_file 0
[ 3483.456052][T24419] workingset_activate_anon 0
[ 3483.456052][T24419] workingset_activate_file 0
[ 3483.456052][T24419] workingset_restore_anon 0
[ 3483.456052][T24419] workingset_restore_file 0
09:21:17 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x59, "3b9c1d19b38c97de6ce27bde8ec14c013c0fb5be629280363c44bd191ab85f8c63b2852facb7f941bc602a737a5c9fbe7a1a6c92a5425831b9fc273909296113ad0dc67063154dadf558fc6406fbf2e105e74218a198cc3189"}, &(0x7f00000000c0)=0x61)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:17 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000080)=0x18)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000040)={r6, 0x100}, &(0x7f0000000080)=0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:17 executing program 3:
unshare(0x20000400)
unshare(0x50020500)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x7}, 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
getsockopt$packet_int(r1, 0x107, 0x7, &(0x7f0000000040), &(0x7f0000000080)=0x4)
09:21:17 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000000100)=0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
fstat(r2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
setresuid(0xee01, r3, 0x0)
getresuid(&(0x7f0000000200), &(0x7f0000000240)=0x0, &(0x7f0000000280))
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee01}}, './file0\x00'})
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000300)={{}, {0x1, 0x6}, [{0x2, 0x1, r1}, {0x2, 0x2, r3}, {0x2, 0x4, 0xee01}, {0x2, 0x1, 0xee00}, {0x2, 0x6, 0xffffffffffffffff}, {0x2, 0x2, 0xffffffffffffffff}, {0x2, 0x5, r5}, {0x2, 0x4}, {0x2, 0x4, r7}], {}, [{0x8, 0x4, 0xee01}], {0x10, 0x4}}, 0x74, 0x1)
r8 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r9 = openat$cgroup_int(r8, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
openat$cgroup_int(r6, &(0x7f00000004c0)='memory.oom.group\x00', 0x2, 0x0)
fstat(r9, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0})
r11 = socket$packet(0x11, 0x3, 0x300)
fstat(r11, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0})
setresuid(0xee01, r12, 0x0)
write$P9_RSTATu(r6, &(0x7f0000000440)={0x62, 0x7d, 0x1, {{0x0, 0x4d, 0x0, 0x7f, {0x40}, 0x100000, 0x1, 0x3ff, 0x4, 0xb, 'memory.max\x00', 0xb, 'memory.max\x00', 0x1, ':', 0x3, '(-\''}, 0x0, '', r10, r4, r12}}, 0x62)
sendfile(r9, r9, 0x0, 0x2)
[ 3483.553565][T24419] Out of memory and no killable processes...
[ 3483.762352][T11536] device hsr_slave_0 left promiscuous mode
[ 3483.768462][T11536] device hsr_slave_1 left promiscuous mode
[ 3483.774713][T11536] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3483.782101][T11536] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3483.792921][T11536] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3483.800307][T11536] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3483.807868][T11536] device bridge_slave_1 left promiscuous mode
[ 3483.814060][T11536] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3483.821563][T11536] device bridge_slave_0 left promiscuous mode
[ 3483.827633][T11536] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3483.837348][T11536] device veth1_macvtap left promiscuous mode
[ 3483.843381][T11536] device veth0_macvtap left promiscuous mode
[ 3483.849393][T11536] device veth1_vlan left promiscuous mode
[ 3483.855155][T11536] device veth0_vlan left promiscuous mode
[ 3483.934324][T11536] team0 (unregistering): Port device team_slave_1 removed
[ 3483.944564][T11536] team0 (unregistering): Port device team_slave_0 removed
[ 3483.954209][T11536] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3483.965013][T11536] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3483.990901][T11536] bond0 (unregistering): Released all slaves
[ 3484.694348][T24913] lo speed is unknown, defaulting to 1000
[ 3484.731567][T24913] chnl_net:caif_netlink_parms(): no params data found
[ 3484.760854][T24913] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3484.767930][T24913] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3484.775470][T24913] device bridge_slave_0 entered promiscuous mode
[ 3484.782573][T24913] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3484.789628][T24913] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3484.797272][T24913] device bridge_slave_1 entered promiscuous mode
[ 3484.812450][T24913] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3484.823371][T24913] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3484.840829][T24913] team0: Port device team_slave_0 added
[ 3484.847278][T24913] team0: Port device team_slave_1 added
[ 3484.861614][T24913] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3484.868579][T24913] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3484.894719][T24913] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3484.906364][T24913] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3484.913312][T24913] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3484.939276][T24913] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3484.960529][T24913] device hsr_slave_0 entered promiscuous mode
[ 3484.967001][T24913] device hsr_slave_1 entered promiscuous mode
[ 3484.973280][T24913] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3484.980834][T24913] Cannot create hsr debugfs directory
[ 3485.006933][T24913] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3485.014049][T24913] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3485.021384][T24913] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3485.028388][T24913] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3485.054321][T24913] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3485.062247][ T9656] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3485.069721][ T9656] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3485.082776][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 3485.090766][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3485.099303][T24913] 8021q: adding VLAN 0 to HW filter on device team0
[ 3485.110475][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3485.118843][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3485.127170][ T5036] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3485.134198][ T5036] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3485.141947][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3485.150387][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3485.158693][ T5036] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3485.165708][ T5036] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3485.173438][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 3485.183714][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 3485.197986][T24913] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 3485.208386][T24913] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 3485.221478][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 3485.229970][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3485.238434][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 3485.246854][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3485.255455][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 3485.263820][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3485.272375][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 3485.280553][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3485.288860][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3485.296821][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3485.307052][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3485.315351][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3485.325184][T24913] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3485.402341][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 3485.410987][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3485.446160][T24913] device veth0_vlan entered promiscuous mode
[ 3485.452684][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 3485.461033][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3485.470962][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3485.478519][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3485.487864][T24913] device veth1_vlan entered promiscuous mode
[ 3485.499533][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3485.507509][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3485.515383][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3485.523993][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3485.533391][T24913] device veth0_macvtap entered promiscuous mode
[ 3485.541312][T24913] device veth1_macvtap entered promiscuous mode
[ 3485.551695][T24913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3485.562161][T24913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3485.571968][T24913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3485.582369][T24913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3485.592167][T24913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3485.602623][T24913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3485.612553][T24913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3485.622997][T24913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3485.632820][T24913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3485.643278][T24913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3485.653934][T24913] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3485.663680][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 3485.671899][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 3485.679604][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3485.688357][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3485.697652][T24913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3485.708153][T24913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3485.717963][T24913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3485.728394][T24913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3485.738216][T24913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3485.748708][T24913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3485.759033][T24913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3485.769469][T24913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3485.779288][T24913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3485.789808][T24913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3485.802694][T24913] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3485.810460][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3485.819003][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3485.862001][T24950] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3485.872175][T24950] CPU: 1 PID: 24950 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3485.880570][T24950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3485.890604][T24950] Call Trace:
[ 3485.893863][T24950]
[ 3485.896772][T24950] dump_stack_lvl+0xd6/0x122
[ 3485.901344][T24950] dump_stack+0x11/0x1b
[ 3485.905481][T24950] dump_header+0x98/0x410
[ 3485.909792][T24950] oom_kill_process+0x18e/0x3f0
[ 3485.914621][T24950] out_of_memory+0x5ed/0x890
[ 3485.919187][T24950] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3485.924974][T24950] memory_max_write+0x32c/0x3d0
[ 3485.929807][T24950] ? memory_max_show+0x70/0x70
[ 3485.934547][T24950] cgroup_file_write+0x161/0x300
[ 3485.939469][T24950] ? __check_object_size+0x22a/0x2d0
[ 3485.944736][T24950] ? cgroup_seqfile_stop+0x70/0x70
[ 3485.949826][T24950] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3485.955090][T24950] do_iter_readv_writev+0x2de/0x380
[ 3485.960269][T24950] do_iter_write+0x192/0x5c0
[ 3485.964837][T24950] ? splice_from_pipe_next+0x34f/0x3b0
[ 3485.970275][T24950] ? kmalloc_array+0x2d/0x40
[ 3485.974841][T24950] vfs_iter_write+0x4c/0x70
[ 3485.979323][T24950] iter_file_splice_write+0x43a/0x790
[ 3485.984694][T24950] ? splice_from_pipe+0xd0/0xd0
[ 3485.989539][T24950] direct_splice_actor+0x80/0xa0
[ 3485.994458][T24950] splice_direct_to_actor+0x345/0x650
[ 3485.999809][T24950] ? do_splice_direct+0x190/0x190
[ 3486.004813][T24950] do_splice_direct+0x106/0x190
[ 3486.009643][T24950] do_sendfile+0x675/0xc40
[ 3486.014037][T24950] __x64_sys_sendfile64+0x102/0x140
[ 3486.019213][T24950] do_syscall_64+0x44/0xd0
[ 3486.023628][T24950] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3486.029505][T24950] RIP: 0033:0x7fc026011eb9
[ 3486.033899][T24950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3486.053482][T24950] RSP: 002b:00007fc025188168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3486.061870][T24950] RAX: ffffffffffffffda RBX: 00007fc026124f60 RCX: 00007fc026011eb9
[ 3486.069820][T24950] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3486.077768][T24950] RBP: 00007fc02606c08d R08: 0000000000000000 R09: 0000000000000000
[ 3486.085716][T24950] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3486.093665][T24950] R13: 00007ffd92abca1f R14: 00007fc025188300 R15: 0000000000022000
[ 3486.101629][T24950]
[ 3486.104650][T24950] memory: usage 520kB, limit 0kB, failcnt 18349
[ 3486.110884][T24950] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3486.117718][T24950] Memory cgroup stats for /syz1:
[ 3486.118941][T24950] anon 94208
[ 3486.118941][T24950] file 118784
[ 3486.118941][T24950] kernel_stack 81920
[ 3486.118941][T24950] pagetables 90112
[ 3486.118941][T24950] percpu 0
[ 3486.118941][T24950] sock 0
[ 3486.118941][T24950] shmem 114688
[ 3486.118941][T24950] file_mapped 114688
[ 3486.118941][T24950] file_dirty 0
[ 3486.118941][T24950] file_writeback 4096
[ 3486.118941][T24950] swapcached 0
[ 3486.118941][T24950] inactive_anon 118784
[ 3486.118941][T24950] active_anon 81920
[ 3486.118941][T24950] inactive_file 0
[ 3486.118941][T24950] active_file 4096
[ 3486.118941][T24950] unevictable 0
[ 3486.118941][T24950] slab_reclaimable 50200
[ 3486.118941][T24950] slab_unreclaimable 68192
[ 3486.118941][T24950] slab 118392
[ 3486.118941][T24950] workingset_refault_anon 0
[ 3486.118941][T24950] workingset_refault_file 0
[ 3486.118941][T24950] workingset_activate_anon 0
[ 3486.118941][T24950] workingset_activate_file 0
[ 3486.118941][T24950] workingset_restore_anon 0
09:21:20 executing program 3:
unshare(0x20000400)
unshare(0x50020500)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x7}, 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
getsockopt$packet_int(r1, 0x107, 0x7, &(0x7f0000000040), &(0x7f0000000080)=0x4)
unshare(0x20000400) (async)
unshare(0x50020500) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x7}, 0x4) (async)
socket(0xa, 0x3, 0x87) (async)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
getsockopt$packet_int(r1, 0x107, 0x7, &(0x7f0000000040), &(0x7f0000000080)=0x4) (async)
09:21:20 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540)) (async)
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000540))
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f00000002c0)='-\x00') (async)
mount(&(0x7f0000000040)=@md0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='hpfs\x00', 0x2040, &(0x7f0000000280)='##*#C\x00') (async)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x4, 0x5, 0x4, 0x76, 0x0, 0x40, 0x581, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x10001, 0x0, @perf_config_ext={0x9, 0x10001}, 0x8000, 0x9, 0x5, 0x7, 0x731, 0x7, 0xff, 0x0, 0xb98, 0x0, 0x183}, 0x0, 0x0, r0, 0x2) (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
09:21:20 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000000100)=0x0) (async)
r2 = socket$packet(0x11, 0x3, 0x300)
fstat(r2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
setresuid(0xee01, r3, 0x0) (async)
getresuid(&(0x7f0000000200), &(0x7f0000000240)=0x0, &(0x7f0000000280)) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee01}}, './file0\x00'})
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000300)={{}, {0x1, 0x6}, [{0x2, 0x1, r1}, {0x2, 0x2, r3}, {0x2, 0x4, 0xee01}, {0x2, 0x1, 0xee00}, {0x2, 0x6, 0xffffffffffffffff}, {0x2, 0x2, 0xffffffffffffffff}, {0x2, 0x5, r5}, {0x2, 0x4}, {0x2, 0x4, r7}], {}, [{0x8, 0x4, 0xee01}], {0x10, 0x4}}, 0x74, 0x1)
r8 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r9 = openat$cgroup_int(r8, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
openat$cgroup_int(r6, &(0x7f00000004c0)='memory.oom.group\x00', 0x2, 0x0)
fstat(r9, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0}) (async)
r11 = socket$packet(0x11, 0x3, 0x300)
fstat(r11, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0})
setresuid(0xee01, r12, 0x0) (async)
write$P9_RSTATu(r6, &(0x7f0000000440)={0x62, 0x7d, 0x1, {{0x0, 0x4d, 0x0, 0x7f, {0x40}, 0x100000, 0x1, 0x3ff, 0x4, 0xb, 'memory.max\x00', 0xb, 'memory.max\x00', 0x1, ':', 0x3, '(-\''}, 0x0, '', r10, r4, r12}}, 0x62) (async)
sendfile(r9, r9, 0x0, 0x2)
09:21:20 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000040)={r6, 0x100}, &(0x7f0000000080)=0x8) (async, rerun: 32)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (rerun: 32)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:20 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:20 executing program 1:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0x0, 0x6}, 0x89, 0x0, 0x200, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000a40)={0x1, 0x80, 0x0, 0x6, 0xbc, 0x1, 0x0, 0x2, 0x2, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0xc5, 0x90dc}, 0x21, 0x4, 0x0, 0x3, 0x7fffffff, 0x299, 0x7ff, 0x0, 0xa16, 0x0, 0xbb}, 0x0, 0x9, r1, 0x8)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = socket$inet(0x2, 0x4000000805, 0x0)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000040)={0x0, 0x0, 0x30}, &(0x7f0000000080)=0x18)
flock(0xffffffffffffffff, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
vmsplice(r3, &(0x7f0000000980)=[{&(0x7f00000000c0)="1e7c40c27b07ba90e0e9789d6f415242b8232db49451086e14a18da583f097a8b7745117d3e32e7941ef3a850356f4f11d5813a604285719fb7c0150f231e89d804b8b7ab2c39878fa443e6fb6b0df8a25e036d1b23290dafce3b63e7d63a9b43ba02eecef5e5dca212550b43b0a0815", 0x70}, {&(0x7f0000000200)="ddf1797695f2f2fc056aa3e6034a65589c6ef5716c49ba2531b9312a275d8fbdb425b88e381f34086748a8e5d47975558aaa0fcd2c07eb174a47466f55e2a38953fa1d4977c0a4041e291ed1b9d63c82e8b45a7f5db2faa15307d5b91e71abb5555633c505b2a9024018114df6124cd8b5e82983dbfa4648ed4eed7d34570e4d7ecb2adee757e36e89f47dca53fdff9b56769ad05dab3113771bdebecf762e70a08834fdc46f2470eca5f03b7f09c7f66e625e3155e1a4c1cb2a30485a46f0ad55fb2059412a5ff711fcf7043a9de921ea55ea8a9edf3bf2e7dfb21c98e5eb3d09e3", 0xe2}, {&(0x7f0000000300)="3da347fa68ff9ca74bf08d18a8c9f45766822913c77c46ecc315eb934b1e336aae427d3474e02e600044d890c6c804563a04e3db99bc430fafca7d6eb2af1cf085e542974f34942e4004c51e6f0bf753ee893a94730be26f2c31c580b5a3ce3b34a66ebfcba21794461ab5bcd454e47804f1d69a141274", 0x77}, {&(0x7f00000003c0)="a9d82e3127b4bb27a31034bce1ef9b15bbb8484c3d15c285f535c1914ed5a3ddc24777a0a42cad5efe87b99e1dbc63863dc96ef4b49a5914f69b55c6eac0833103511510459b43833ab150109a2db2537970c8fea42d1bb23f34a298cd3a16417617ecd2a8517314917d1655c646fe13261611c8ff4b77a8218fd33f2d77bdb31170dc166fdd1db5c35725ac233b1525adb8109e442361b541b73bbb4254cb79a42169b03809f8f428ad035f25fe60142cbf767a977559e9c7808a68d24cb914ebdcb91de2ffd33c54d50c815ac45a3a442f324b271735c454f9472ebeba0e76d6785000e6f336a5c7b8f71dbf1e0f5b1db5df", 0xf3}, {&(0x7f0000000840)="60855ba9cad3b8c4c728f7a6364bead66b00f6403dfa15bedafb8f17cda09e716ee1595d415ee33e7e58c9e171d7845d4acaed3edea665c74bf9686c5745ccab18c4a946cd29f4005fecd938e6b86b753f5d321fba267fc0fc051ab8ac956df895e5d64287092f0cd967a8cfa48e0457d71ef35746f08fe086eff75f406fada298bb02df6a938a1d544b91f140f0af572fe632160d9e922b76590a880aad731b0e312ddf36e37c996985c636ec0e62b348d2a2e6a8763a4b1bc2e807809b0519aeb9bf52dd4cb96cee0d6928dfd0bbc2d451fac3788ea36f35dafe41c643bcc13bc624348829193faf984428e475c2", 0xef}, {&(0x7f00000004c0)="bebdf8e3d60aaa9b8e7e4244574c765fb88f343d098334fbee69d4137c1c31ddb9d089f833b8099fb8bd6f3aa125db4fdc8ffd8109c589586a42c6ea912456b078a891d58c2443437739ec682b73e6845e6149c11692f8117a1d0f25800152868374e8e5bd3a1a15a8ad8cca30706615f846322e9b21b3a5dd48ead4", 0x7c}, {&(0x7f0000000040)="39f50bfe69f9ca219420f11ce2a3c6ddcd53b4e894c632be48366effe59b5a01", 0x20}, {&(0x7f0000000740)="7e8850eda3921400e5f58b096b258187dcf85e155d7aaa20985049b79e49e37df0d0102eede3f68f34913b7e658706447f75b1518c92d9d4da29ed782e3f36d6a8a492b87f15237bf0df1b326af6e1ce03a5056023474adb573621d977ff1d4ae1ac642e655d5055c62899241afc34fa783a38a2834fbdf82f7a4e50419e0dbcee593b699761ba65e36b88d605f95e44385b44edcdf57c72db513a75612f24e91057456400ce879c8dee01c6e8abaac0d750909b9b19bcc739d25b61", 0xbc}, {&(0x7f0000000940)="567e09e026ee16c659307d15e187ae2f4e47a0aa856211bbdff876a19c715c55354047ed751d43bdabe98845b70b79963669e2a77723eb7591c9a040", 0x3c}], 0x9, 0xd)
r4 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:21:20 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3486.211567][T24950] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=24949,uid=0
[ 3486.226822][T24950] Memory cgroup out of memory: Killed process 24949 (syz-executor.1) total-vm:49008kB, anon-rss:368kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000
[ 3486.247566][ T26] oom_reaper: reaped process 24949 (syz-executor.1), now anon-rss:0kB, file-rss:14336kB, shmem-rss:4kB
09:21:20 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000000100)=0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
fstat(r2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
setresuid(0xee01, r3, 0x0)
getresuid(&(0x7f0000000200), &(0x7f0000000240)=0x0, &(0x7f0000000280))
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee01}}, './file0\x00'})
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000300)={{}, {0x1, 0x6}, [{0x2, 0x1, r1}, {0x2, 0x2, r3}, {0x2, 0x4, 0xee01}, {0x2, 0x1, 0xee00}, {0x2, 0x6, 0xffffffffffffffff}, {0x2, 0x2, 0xffffffffffffffff}, {0x2, 0x5, r5}, {0x2, 0x4}, {0x2, 0x4, r7}], {}, [{0x8, 0x4, 0xee01}], {0x10, 0x4}}, 0x74, 0x1)
r8 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r9 = openat$cgroup_int(r8, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
openat$cgroup_int(r6, &(0x7f00000004c0)='memory.oom.group\x00', 0x2, 0x0)
fstat(r9, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0})
r11 = socket$packet(0x11, 0x3, 0x300)
fstat(r11, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0})
setresuid(0xee01, r12, 0x0)
write$P9_RSTATu(r6, &(0x7f0000000440)={0x62, 0x7d, 0x1, {{0x0, 0x4d, 0x0, 0x7f, {0x40}, 0x100000, 0x1, 0x3ff, 0x4, 0xb, 'memory.max\x00', 0xb, 'memory.max\x00', 0x1, ':', 0x3, '(-\''}, 0x0, '', r10, r4, r12}}, 0x62)
sendfile(r9, r9, 0x0, 0x2)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000000100)) (async)
socket$packet(0x11, 0x3, 0x300) (async)
fstat(r2, &(0x7f00000002c0)) (async)
setresuid(0xee01, r3, 0x0) (async)
getresuid(&(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee01}}, './file0\x00'}) (async)
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000300)={{}, {0x1, 0x6}, [{0x2, 0x1, r1}, {0x2, 0x2, r3}, {0x2, 0x4, 0xee01}, {0x2, 0x1, 0xee00}, {0x2, 0x6, 0xffffffffffffffff}, {0x2, 0x2, 0xffffffffffffffff}, {0x2, 0x5, r5}, {0x2, 0x4}, {0x2, 0x4, r7}], {}, [{0x8, 0x4, 0xee01}], {0x10, 0x4}}, 0x74, 0x1) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r8, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
openat$cgroup_int(r6, &(0x7f00000004c0)='memory.oom.group\x00', 0x2, 0x0) (async)
fstat(r9, &(0x7f00000003c0)) (async)
socket$packet(0x11, 0x3, 0x300) (async)
fstat(r11, &(0x7f00000002c0)) (async)
setresuid(0xee01, r12, 0x0) (async)
write$P9_RSTATu(r6, &(0x7f0000000440)={0x62, 0x7d, 0x1, {{0x0, 0x4d, 0x0, 0x7f, {0x40}, 0x100000, 0x1, 0x3ff, 0x4, 0xb, 'memory.max\x00', 0xb, 'memory.max\x00', 0x1, ':', 0x3, '(-\''}, 0x0, '', r10, r4, r12}}, 0x62) (async)
sendfile(r9, r9, 0x0, 0x2) (async)
09:21:20 executing program 2:
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3, 0x10}, 0xc)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3486.294455][T24955] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3486.304678][T24955] CPU: 1 PID: 24955 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3486.313148][T24955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3486.323202][T24955] Call Trace:
[ 3486.326479][T24955]
[ 3486.329405][T24955] dump_stack_lvl+0xd6/0x122
[ 3486.333997][T24955] dump_stack+0x11/0x1b
[ 3486.338168][T24955] dump_header+0x98/0x410
09:21:20 executing program 2:
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3, 0x10}, 0xc)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:20 executing program 2:
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3, 0x10}, 0xc)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:20 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3486.342506][T24955] oom_kill_process+0x18e/0x3f0
[ 3486.347373][T24955] out_of_memory+0x5ed/0x890
[ 3486.351966][T24955] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3486.357808][T24955] memory_max_write+0x32c/0x3d0
[ 3486.362714][T24955] ? memory_max_show+0x70/0x70
[ 3486.367485][T24955] cgroup_file_write+0x161/0x300
[ 3486.372423][T24955] ? __check_object_size+0x22a/0x2d0
[ 3486.377762][T24955] ? cgroup_seqfile_stop+0x70/0x70
[ 3486.382876][T24955] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3486.388189][T24955] do_iter_readv_writev+0x2de/0x380
[ 3486.393431][T24955] do_iter_write+0x192/0x5c0
[ 3486.398019][T24955] ? splice_from_pipe_next+0x34f/0x3b0
[ 3486.403542][T24955] ? kmalloc_array+0x2d/0x40
[ 3486.408137][T24955] vfs_iter_write+0x4c/0x70
[ 3486.412638][T24955] iter_file_splice_write+0x43a/0x790
[ 3486.418089][T24955] ? splice_from_pipe+0xd0/0xd0
[ 3486.422939][T24955] direct_splice_actor+0x80/0xa0
[ 3486.427941][T24955] splice_direct_to_actor+0x345/0x650
[ 3486.433386][T24955] ? do_splice_direct+0x190/0x190
[ 3486.438407][T24955] do_splice_direct+0x106/0x190
[ 3486.443246][T24955] do_sendfile+0x675/0xc40
[ 3486.447699][T24955] __x64_sys_sendfile64+0x102/0x140
[ 3486.452928][T24955] do_syscall_64+0x44/0xd0
[ 3486.457346][T24955] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3486.463222][T24955] RIP: 0033:0x7f4d3cb0beb9
[ 3486.467642][T24955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3486.487226][T24955] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3486.495612][T24955] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3486.503559][T24955] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3486.511507][T24955] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3486.519462][T24955] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3486.527423][T24955] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3486.535373][T24955]
[ 3486.538407][T24955] memory: usage 244kB, limit 0kB, failcnt 18368
09:21:20 executing program 3:
unshare(0x20000400) (async, rerun: 64)
unshare(0x50020500) (async, rerun: 64)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x7}, 0x4) (async)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
getsockopt$packet_int(r1, 0x107, 0x7, &(0x7f0000000040), &(0x7f0000000080)=0x4)
[ 3486.544753][T24955] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3486.551609][T24955] Memory cgroup stats for /syz1:
[ 3486.554765][T24955] anon 24576
[ 3486.554765][T24955] file 118784
[ 3486.554765][T24955] kernel_stack 0
[ 3486.554765][T24955] pagetables 8192
[ 3486.554765][T24955] percpu 0
[ 3486.554765][T24955] sock 0
[ 3486.554765][T24955] shmem 114688
[ 3486.554765][T24955] file_mapped 114688
[ 3486.554765][T24955] file_dirty 0
[ 3486.554765][T24955] file_writeback 0
[ 3486.554765][T24955] swapcached 0
[ 3486.554765][T24955] inactive_anon 57344
[ 3486.554765][T24955] active_anon 81920
[ 3486.554765][T24955] inactive_file 0
[ 3486.554765][T24955] active_file 4096
[ 3486.554765][T24955] unevictable 0
[ 3486.554765][T24955] slab_reclaimable 35680
[ 3486.554765][T24955] slab_unreclaimable 21528
[ 3486.554765][T24955] slab 57208
[ 3486.554765][T24955] workingset_refault_anon 0
[ 3486.554765][T24955] workingset_refault_file 0
[ 3486.554765][T24955] workingset_activate_anon 0
[ 3486.554765][T24955] workingset_activate_file 0
[ 3486.554765][T24955] workingset_restore_anon 0
[ 3486.554765][T24955] workingset_restore_file 0
[ 3486.650831][T24955] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=24913,uid=0
[ 3486.666138][T24955] Memory cgroup out of memory: Killed process 24913 (syz-executor.1) total-vm:48480kB, anon-rss:360kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:0
[ 3486.683797][ T26] oom_reaper: reaped process 24913 (syz-executor.1), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
[ 3486.694959][T24955] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3486.705135][T24955] CPU: 1 PID: 24955 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3486.713527][T24955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3486.723777][T24955] Call Trace:
[ 3486.727038][T24955]
[ 3486.730040][T24955] dump_stack_lvl+0xd6/0x122
[ 3486.734617][T24955] dump_stack+0x11/0x1b
[ 3486.738751][T24955] dump_header+0x98/0x410
[ 3486.743137][T24955] out_of_memory+0x62c/0x890
[ 3486.747771][T24955] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3486.753561][T24955] memory_max_write+0x32c/0x3d0
[ 3486.758414][T24955] ? memory_max_show+0x70/0x70
[ 3486.763222][T24955] cgroup_file_write+0x161/0x300
[ 3486.768142][T24955] ? __check_object_size+0x22a/0x2d0
[ 3486.773455][T24955] ? cgroup_seqfile_stop+0x70/0x70
[ 3486.778549][T24955] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3486.783853][T24955] do_iter_readv_writev+0x2de/0x380
[ 3486.789036][T24955] do_iter_write+0x192/0x5c0
[ 3486.793613][T24955] ? splice_from_pipe_next+0x34f/0x3b0
[ 3486.799057][T24955] ? kmalloc_array+0x2d/0x40
[ 3486.803628][T24955] vfs_iter_write+0x4c/0x70
[ 3486.808191][T24955] iter_file_splice_write+0x43a/0x790
[ 3486.813543][T24955] ? splice_from_pipe+0xd0/0xd0
[ 3486.818494][T24955] direct_splice_actor+0x80/0xa0
[ 3486.823549][T24955] splice_direct_to_actor+0x345/0x650
[ 3486.829043][T24955] ? do_splice_direct+0x190/0x190
[ 3486.834051][T24955] do_splice_direct+0x106/0x190
[ 3486.838905][T24955] do_sendfile+0x675/0xc40
[ 3486.843317][T24955] __x64_sys_sendfile64+0x102/0x140
[ 3486.848547][T24955] do_syscall_64+0x44/0xd0
[ 3486.852967][T24955] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3486.858868][T24955] RIP: 0033:0x7f4d3cb0beb9
[ 3486.863262][T24955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3486.882876][T24955] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3486.891335][T24955] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3486.899287][T24955] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3486.907263][T24955] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3486.915746][T24955] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3486.923704][T24955] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3486.931668][T24955]
[ 3486.934879][T24955] memory: usage 176kB, limit 0kB, failcnt 18385
[ 3486.941131][T24955] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3486.947977][T24955] Memory cgroup stats for /syz1:
[ 3486.948590][T24955] anon 0
[ 3486.948590][T24955] file 118784
[ 3486.948590][T24955] kernel_stack 0
[ 3486.948590][T24955] pagetables 0
[ 3486.948590][T24955] percpu 0
[ 3486.948590][T24955] sock 0
[ 3486.948590][T24955] shmem 114688
[ 3486.948590][T24955] file_mapped 114688
[ 3486.948590][T24955] file_dirty 0
[ 3486.948590][T24955] file_writeback 0
[ 3486.948590][T24955] swapcached 0
[ 3486.948590][T24955] inactive_anon 32768
[ 3486.948590][T24955] active_anon 81920
[ 3486.948590][T24955] inactive_file 0
[ 3486.948590][T24955] active_file 4096
[ 3486.948590][T24955] unevictable 0
[ 3486.948590][T24955] slab_reclaimable 35680
[ 3486.948590][T24955] slab_unreclaimable 21528
[ 3486.948590][T24955] slab 57208
[ 3486.948590][T24955] workingset_refault_anon 0
[ 3486.948590][T24955] workingset_refault_file 0
[ 3486.948590][T24955] workingset_activate_anon 0
[ 3486.948590][T24955] workingset_activate_file 0
[ 3486.948590][T24955] workingset_restore_anon 0
[ 3486.948590][T24955] workingset_restore_file 0
09:21:20 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000540))
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f00000002c0)='-\x00')
mount(&(0x7f0000000040)=@md0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='hpfs\x00', 0x2040, &(0x7f0000000280)='##*#C\x00')
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x4, 0x5, 0x4, 0x76, 0x0, 0x40, 0x581, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x10001, 0x0, @perf_config_ext={0x9, 0x10001}, 0x8000, 0x9, 0x5, 0x7, 0x731, 0x7, 0xff, 0x0, 0xb98, 0x0, 0x183}, 0x0, 0x0, r0, 0x2)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540)) (async)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000540)) (async)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f00000002c0)='-\x00') (async)
mount(&(0x7f0000000040)=@md0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='hpfs\x00', 0x2040, &(0x7f0000000280)='##*#C\x00') (async)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x4, 0x5, 0x4, 0x76, 0x0, 0x40, 0x581, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x10001, 0x0, @perf_config_ext={0x9, 0x10001}, 0x8000, 0x9, 0x5, 0x7, 0x731, 0x7, 0xff, 0x0, 0xb98, 0x0, 0x183}, 0x0, 0x0, r0, 0x2) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r4, r4, 0x0, 0x2) (async)
09:21:20 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0xfffffffb, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x80, 0x101, 0xf}, 0x18)
sendto$inet6(r1, &(0x7f0000847fff)='&', 0x1, 0x20000000, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x25}}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:20 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:20 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000240)={&(0x7f0000000200)='./file0\x00', 0x0, 0x20}, 0x10)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
r1 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
sendfile(r0, r1, 0x0, 0xde3)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
lchown(&(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, 0xee01)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='system.posix_acl_access\x00', &(0x7f00000003c0), 0x24, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
[ 3487.044276][T24955] Out of memory and no killable processes...
[ 3487.151978][T25498] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3487.162428][T25498] CPU: 1 PID: 25498 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3487.170887][T25498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3487.180925][T25498] Call Trace:
[ 3487.184189][T25498]
[ 3487.187155][T25498] dump_stack_lvl+0xd6/0x122
[ 3487.191734][T25498] dump_stack+0x11/0x1b
[ 3487.195947][T25498] dump_header+0x98/0x410
[ 3487.200332][T25498] out_of_memory+0x62c/0x890
[ 3487.204906][T25498] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3487.210775][T25498] memory_max_write+0x32c/0x3d0
[ 3487.215617][T25498] ? memory_max_show+0x70/0x70
[ 3487.220428][T25498] cgroup_file_write+0x161/0x300
[ 3487.225409][T25498] ? __check_object_size+0x22a/0x2d0
[ 3487.230730][T25498] ? cgroup_seqfile_stop+0x70/0x70
[ 3487.235828][T25498] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3487.241193][T25498] do_iter_readv_writev+0x2de/0x380
[ 3487.246382][T25498] do_iter_write+0x192/0x5c0
[ 3487.251025][T25498] ? splice_from_pipe_next+0x34f/0x3b0
[ 3487.261338][T25498] ? kmalloc_array+0x2d/0x40
[ 3487.265922][T25498] vfs_iter_write+0x4c/0x70
[ 3487.270421][T25498] iter_file_splice_write+0x43a/0x790
[ 3487.275785][T25498] ? splice_from_pipe+0xd0/0xd0
[ 3487.280645][T25498] direct_splice_actor+0x80/0xa0
[ 3487.285569][T25498] splice_direct_to_actor+0x345/0x650
[ 3487.290973][T25498] ? do_splice_direct+0x190/0x190
[ 3487.295987][T25498] do_splice_direct+0x106/0x190
[ 3487.300826][T25498] do_sendfile+0x675/0xc40
[ 3487.305359][T25498] __x64_sys_sendfile64+0x102/0x140
[ 3487.310548][T25498] do_syscall_64+0x44/0xd0
[ 3487.314954][T25498] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3487.320837][T25498] RIP: 0033:0x7f4d3cb0beb9
[ 3487.325237][T25498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
09:21:21 executing program 1:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0x0, 0x6}, 0x89, 0x0, 0x200, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0) (async)
wait4(0x0, 0x0, 0x2, 0x0) (async)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
perf_event_open(&(0x7f0000000a40)={0x1, 0x80, 0x0, 0x6, 0xbc, 0x1, 0x0, 0x2, 0x2, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0xc5, 0x90dc}, 0x21, 0x4, 0x0, 0x3, 0x7fffffff, 0x299, 0x7ff, 0x0, 0xa16, 0x0, 0xbb}, 0x0, 0x9, r1, 0x8) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = socket$inet(0x2, 0x4000000805, 0x0)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000040)={0x0, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
flock(0xffffffffffffffff, 0x4) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
vmsplice(r3, &(0x7f0000000980)=[{&(0x7f00000000c0)="1e7c40c27b07ba90e0e9789d6f415242b8232db49451086e14a18da583f097a8b7745117d3e32e7941ef3a850356f4f11d5813a604285719fb7c0150f231e89d804b8b7ab2c39878fa443e6fb6b0df8a25e036d1b23290dafce3b63e7d63a9b43ba02eecef5e5dca212550b43b0a0815", 0x70}, {&(0x7f0000000200)="ddf1797695f2f2fc056aa3e6034a65589c6ef5716c49ba2531b9312a275d8fbdb425b88e381f34086748a8e5d47975558aaa0fcd2c07eb174a47466f55e2a38953fa1d4977c0a4041e291ed1b9d63c82e8b45a7f5db2faa15307d5b91e71abb5555633c505b2a9024018114df6124cd8b5e82983dbfa4648ed4eed7d34570e4d7ecb2adee757e36e89f47dca53fdff9b56769ad05dab3113771bdebecf762e70a08834fdc46f2470eca5f03b7f09c7f66e625e3155e1a4c1cb2a30485a46f0ad55fb2059412a5ff711fcf7043a9de921ea55ea8a9edf3bf2e7dfb21c98e5eb3d09e3", 0xe2}, {&(0x7f0000000300)="3da347fa68ff9ca74bf08d18a8c9f45766822913c77c46ecc315eb934b1e336aae427d3474e02e600044d890c6c804563a04e3db99bc430fafca7d6eb2af1cf085e542974f34942e4004c51e6f0bf753ee893a94730be26f2c31c580b5a3ce3b34a66ebfcba21794461ab5bcd454e47804f1d69a141274", 0x77}, {&(0x7f00000003c0)="a9d82e3127b4bb27a31034bce1ef9b15bbb8484c3d15c285f535c1914ed5a3ddc24777a0a42cad5efe87b99e1dbc63863dc96ef4b49a5914f69b55c6eac0833103511510459b43833ab150109a2db2537970c8fea42d1bb23f34a298cd3a16417617ecd2a8517314917d1655c646fe13261611c8ff4b77a8218fd33f2d77bdb31170dc166fdd1db5c35725ac233b1525adb8109e442361b541b73bbb4254cb79a42169b03809f8f428ad035f25fe60142cbf767a977559e9c7808a68d24cb914ebdcb91de2ffd33c54d50c815ac45a3a442f324b271735c454f9472ebeba0e76d6785000e6f336a5c7b8f71dbf1e0f5b1db5df", 0xf3}, {&(0x7f0000000840)="60855ba9cad3b8c4c728f7a6364bead66b00f6403dfa15bedafb8f17cda09e716ee1595d415ee33e7e58c9e171d7845d4acaed3edea665c74bf9686c5745ccab18c4a946cd29f4005fecd938e6b86b753f5d321fba267fc0fc051ab8ac956df895e5d64287092f0cd967a8cfa48e0457d71ef35746f08fe086eff75f406fada298bb02df6a938a1d544b91f140f0af572fe632160d9e922b76590a880aad731b0e312ddf36e37c996985c636ec0e62b348d2a2e6a8763a4b1bc2e807809b0519aeb9bf52dd4cb96cee0d6928dfd0bbc2d451fac3788ea36f35dafe41c643bcc13bc624348829193faf984428e475c2", 0xef}, {&(0x7f00000004c0)="bebdf8e3d60aaa9b8e7e4244574c765fb88f343d098334fbee69d4137c1c31ddb9d089f833b8099fb8bd6f3aa125db4fdc8ffd8109c589586a42c6ea912456b078a891d58c2443437739ec682b73e6845e6149c11692f8117a1d0f25800152868374e8e5bd3a1a15a8ad8cca30706615f846322e9b21b3a5dd48ead4", 0x7c}, {&(0x7f0000000040)="39f50bfe69f9ca219420f11ce2a3c6ddcd53b4e894c632be48366effe59b5a01", 0x20}, {&(0x7f0000000740)="7e8850eda3921400e5f58b096b258187dcf85e155d7aaa20985049b79e49e37df0d0102eede3f68f34913b7e658706447f75b1518c92d9d4da29ed782e3f36d6a8a492b87f15237bf0df1b326af6e1ce03a5056023474adb573621d977ff1d4ae1ac642e655d5055c62899241afc34fa783a38a2834fbdf82f7a4e50419e0dbcee593b699761ba65e36b88d605f95e44385b44edcdf57c72db513a75612f24e91057456400ce879c8dee01c6e8abaac0d750909b9b19bcc739d25b61", 0xbc}, {&(0x7f0000000940)="567e09e026ee16c659307d15e187ae2f4e47a0aa856211bbdff876a19c715c55354047ed751d43bdabe98845b70b79963669e2a77723eb7591c9a040", 0x3c}], 0x9, 0xd)
r4 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
09:21:21 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x1000}, 0x4)
dup3(r0, r0, 0x80000)
unshare(0x3c000400)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000040)={0x0, 'bridge0\x00', {0x1}, 0x401})
09:21:21 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0xfffffffb, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 32)
r1 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x80, 0x101, 0xf}, 0x18) (rerun: 32)
sendto$inet6(r1, &(0x7f0000847fff)='&', 0x1, 0x20000000, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x25}}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:21 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000240)={&(0x7f0000000200)='./file0\x00', 0x0, 0x20}, 0x10) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
r1 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
sendfile(r0, r1, 0x0, 0xde3) (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 32)
lchown(&(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, 0xee01) (rerun: 32)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='system.posix_acl_access\x00', &(0x7f00000003c0), 0x24, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
09:21:21 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3487.344893][T25498] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3487.353310][T25498] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3487.361267][T25498] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000014
[ 3487.369289][T25498] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3487.377243][T25498] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3487.385198][T25498] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3487.393156][T25498]
[ 3487.396246][T25498] memory: usage 176kB, limit 0kB, failcnt 18385
09:21:21 executing program 1:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0x0, 0x6}, 0x89, 0x0, 0x200, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000a40)={0x1, 0x80, 0x0, 0x6, 0xbc, 0x1, 0x0, 0x2, 0x2, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0xc5, 0x90dc}, 0x21, 0x4, 0x0, 0x3, 0x7fffffff, 0x299, 0x7ff, 0x0, 0xa16, 0x0, 0xbb}, 0x0, 0x9, r1, 0x8)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = socket$inet(0x2, 0x4000000805, 0x0)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000040)={0x0, 0x0, 0x30}, &(0x7f0000000080)=0x18)
flock(0xffffffffffffffff, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
vmsplice(r3, &(0x7f0000000980)=[{&(0x7f00000000c0)="1e7c40c27b07ba90e0e9789d6f415242b8232db49451086e14a18da583f097a8b7745117d3e32e7941ef3a850356f4f11d5813a604285719fb7c0150f231e89d804b8b7ab2c39878fa443e6fb6b0df8a25e036d1b23290dafce3b63e7d63a9b43ba02eecef5e5dca212550b43b0a0815", 0x70}, {&(0x7f0000000200)="ddf1797695f2f2fc056aa3e6034a65589c6ef5716c49ba2531b9312a275d8fbdb425b88e381f34086748a8e5d47975558aaa0fcd2c07eb174a47466f55e2a38953fa1d4977c0a4041e291ed1b9d63c82e8b45a7f5db2faa15307d5b91e71abb5555633c505b2a9024018114df6124cd8b5e82983dbfa4648ed4eed7d34570e4d7ecb2adee757e36e89f47dca53fdff9b56769ad05dab3113771bdebecf762e70a08834fdc46f2470eca5f03b7f09c7f66e625e3155e1a4c1cb2a30485a46f0ad55fb2059412a5ff711fcf7043a9de921ea55ea8a9edf3bf2e7dfb21c98e5eb3d09e3", 0xe2}, {&(0x7f0000000300)="3da347fa68ff9ca74bf08d18a8c9f45766822913c77c46ecc315eb934b1e336aae427d3474e02e600044d890c6c804563a04e3db99bc430fafca7d6eb2af1cf085e542974f34942e4004c51e6f0bf753ee893a94730be26f2c31c580b5a3ce3b34a66ebfcba21794461ab5bcd454e47804f1d69a141274", 0x77}, {&(0x7f00000003c0)="a9d82e3127b4bb27a31034bce1ef9b15bbb8484c3d15c285f535c1914ed5a3ddc24777a0a42cad5efe87b99e1dbc63863dc96ef4b49a5914f69b55c6eac0833103511510459b43833ab150109a2db2537970c8fea42d1bb23f34a298cd3a16417617ecd2a8517314917d1655c646fe13261611c8ff4b77a8218fd33f2d77bdb31170dc166fdd1db5c35725ac233b1525adb8109e442361b541b73bbb4254cb79a42169b03809f8f428ad035f25fe60142cbf767a977559e9c7808a68d24cb914ebdcb91de2ffd33c54d50c815ac45a3a442f324b271735c454f9472ebeba0e76d6785000e6f336a5c7b8f71dbf1e0f5b1db5df", 0xf3}, {&(0x7f0000000840)="60855ba9cad3b8c4c728f7a6364bead66b00f6403dfa15bedafb8f17cda09e716ee1595d415ee33e7e58c9e171d7845d4acaed3edea665c74bf9686c5745ccab18c4a946cd29f4005fecd938e6b86b753f5d321fba267fc0fc051ab8ac956df895e5d64287092f0cd967a8cfa48e0457d71ef35746f08fe086eff75f406fada298bb02df6a938a1d544b91f140f0af572fe632160d9e922b76590a880aad731b0e312ddf36e37c996985c636ec0e62b348d2a2e6a8763a4b1bc2e807809b0519aeb9bf52dd4cb96cee0d6928dfd0bbc2d451fac3788ea36f35dafe41c643bcc13bc624348829193faf984428e475c2", 0xef}, {&(0x7f00000004c0)="bebdf8e3d60aaa9b8e7e4244574c765fb88f343d098334fbee69d4137c1c31ddb9d089f833b8099fb8bd6f3aa125db4fdc8ffd8109c589586a42c6ea912456b078a891d58c2443437739ec682b73e6845e6149c11692f8117a1d0f25800152868374e8e5bd3a1a15a8ad8cca30706615f846322e9b21b3a5dd48ead4", 0x7c}, {&(0x7f0000000040)="39f50bfe69f9ca219420f11ce2a3c6ddcd53b4e894c632be48366effe59b5a01", 0x20}, {&(0x7f0000000740)="7e8850eda3921400e5f58b096b258187dcf85e155d7aaa20985049b79e49e37df0d0102eede3f68f34913b7e658706447f75b1518c92d9d4da29ed782e3f36d6a8a492b87f15237bf0df1b326af6e1ce03a5056023474adb573621d977ff1d4ae1ac642e655d5055c62899241afc34fa783a38a2834fbdf82f7a4e50419e0dbcee593b699761ba65e36b88d605f95e44385b44edcdf57c72db513a75612f24e91057456400ce879c8dee01c6e8abaac0d750909b9b19bcc739d25b61", 0xbc}, {&(0x7f0000000940)="567e09e026ee16c659307d15e187ae2f4e47a0aa856211bbdff876a19c715c55354047ed751d43bdabe98845b70b79963669e2a77723eb7591c9a040", 0x3c}], 0x9, 0xd)
r4 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0x0, 0x6}, 0x89, 0x0, 0x200, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async)
tgkill(0x0, 0x0, 0x0) (async)
wait4(0x0, 0x0, 0x2, 0x0) (async)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
perf_event_open(&(0x7f0000000a40)={0x1, 0x80, 0x0, 0x6, 0xbc, 0x1, 0x0, 0x2, 0x2, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0xc5, 0x90dc}, 0x21, 0x4, 0x0, 0x3, 0x7fffffff, 0x299, 0x7ff, 0x0, 0xa16, 0x0, 0xbb}, 0x0, 0x9, r1, 0x8) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
socket$inet(0x2, 0x4000000805, 0x0) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000040)={0x0, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
flock(0xffffffffffffffff, 0x4) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
vmsplice(r3, &(0x7f0000000980)=[{&(0x7f00000000c0)="1e7c40c27b07ba90e0e9789d6f415242b8232db49451086e14a18da583f097a8b7745117d3e32e7941ef3a850356f4f11d5813a604285719fb7c0150f231e89d804b8b7ab2c39878fa443e6fb6b0df8a25e036d1b23290dafce3b63e7d63a9b43ba02eecef5e5dca212550b43b0a0815", 0x70}, {&(0x7f0000000200)="ddf1797695f2f2fc056aa3e6034a65589c6ef5716c49ba2531b9312a275d8fbdb425b88e381f34086748a8e5d47975558aaa0fcd2c07eb174a47466f55e2a38953fa1d4977c0a4041e291ed1b9d63c82e8b45a7f5db2faa15307d5b91e71abb5555633c505b2a9024018114df6124cd8b5e82983dbfa4648ed4eed7d34570e4d7ecb2adee757e36e89f47dca53fdff9b56769ad05dab3113771bdebecf762e70a08834fdc46f2470eca5f03b7f09c7f66e625e3155e1a4c1cb2a30485a46f0ad55fb2059412a5ff711fcf7043a9de921ea55ea8a9edf3bf2e7dfb21c98e5eb3d09e3", 0xe2}, {&(0x7f0000000300)="3da347fa68ff9ca74bf08d18a8c9f45766822913c77c46ecc315eb934b1e336aae427d3474e02e600044d890c6c804563a04e3db99bc430fafca7d6eb2af1cf085e542974f34942e4004c51e6f0bf753ee893a94730be26f2c31c580b5a3ce3b34a66ebfcba21794461ab5bcd454e47804f1d69a141274", 0x77}, {&(0x7f00000003c0)="a9d82e3127b4bb27a31034bce1ef9b15bbb8484c3d15c285f535c1914ed5a3ddc24777a0a42cad5efe87b99e1dbc63863dc96ef4b49a5914f69b55c6eac0833103511510459b43833ab150109a2db2537970c8fea42d1bb23f34a298cd3a16417617ecd2a8517314917d1655c646fe13261611c8ff4b77a8218fd33f2d77bdb31170dc166fdd1db5c35725ac233b1525adb8109e442361b541b73bbb4254cb79a42169b03809f8f428ad035f25fe60142cbf767a977559e9c7808a68d24cb914ebdcb91de2ffd33c54d50c815ac45a3a442f324b271735c454f9472ebeba0e76d6785000e6f336a5c7b8f71dbf1e0f5b1db5df", 0xf3}, {&(0x7f0000000840)="60855ba9cad3b8c4c728f7a6364bead66b00f6403dfa15bedafb8f17cda09e716ee1595d415ee33e7e58c9e171d7845d4acaed3edea665c74bf9686c5745ccab18c4a946cd29f4005fecd938e6b86b753f5d321fba267fc0fc051ab8ac956df895e5d64287092f0cd967a8cfa48e0457d71ef35746f08fe086eff75f406fada298bb02df6a938a1d544b91f140f0af572fe632160d9e922b76590a880aad731b0e312ddf36e37c996985c636ec0e62b348d2a2e6a8763a4b1bc2e807809b0519aeb9bf52dd4cb96cee0d6928dfd0bbc2d451fac3788ea36f35dafe41c643bcc13bc624348829193faf984428e475c2", 0xef}, {&(0x7f00000004c0)="bebdf8e3d60aaa9b8e7e4244574c765fb88f343d098334fbee69d4137c1c31ddb9d089f833b8099fb8bd6f3aa125db4fdc8ffd8109c589586a42c6ea912456b078a891d58c2443437739ec682b73e6845e6149c11692f8117a1d0f25800152868374e8e5bd3a1a15a8ad8cca30706615f846322e9b21b3a5dd48ead4", 0x7c}, {&(0x7f0000000040)="39f50bfe69f9ca219420f11ce2a3c6ddcd53b4e894c632be48366effe59b5a01", 0x20}, {&(0x7f0000000740)="7e8850eda3921400e5f58b096b258187dcf85e155d7aaa20985049b79e49e37df0d0102eede3f68f34913b7e658706447f75b1518c92d9d4da29ed782e3f36d6a8a492b87f15237bf0df1b326af6e1ce03a5056023474adb573621d977ff1d4ae1ac642e655d5055c62899241afc34fa783a38a2834fbdf82f7a4e50419e0dbcee593b699761ba65e36b88d605f95e44385b44edcdf57c72db513a75612f24e91057456400ce879c8dee01c6e8abaac0d750909b9b19bcc739d25b61", 0xbc}, {&(0x7f0000000940)="567e09e026ee16c659307d15e187ae2f4e47a0aa856211bbdff876a19c715c55354047ed751d43bdabe98845b70b79963669e2a77723eb7591c9a040", 0x3c}], 0x9, 0xd) (async)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r5, r5, 0x0, 0x2) (async)
09:21:21 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x1000}, 0x4)
dup3(r0, r0, 0x80000)
unshare(0x3c000400)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000040)={0x0, 'bridge0\x00', {0x1}, 0x401})
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x1000}, 0x4) (async)
dup3(r0, r0, 0x80000) (async)
unshare(0x3c000400) (async)
socket$nl_rdma(0x10, 0x3, 0x14) (async)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000040)={0x0, 'bridge0\x00', {0x1}, 0x401}) (async)
[ 3487.402568][T25498] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
09:21:21 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000240)={&(0x7f0000000200)='./file0\x00', 0x0, 0x20}, 0x10)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
r1 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
sendfile(r0, r1, 0x0, 0xde3)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) (async)
lchown(&(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, 0xee01) (async)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='system.posix_acl_access\x00', &(0x7f00000003c0), 0x24, 0x0) (async)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
[ 3487.409858][T25498] Memory cgroup stats for /syz1:
[ 3487.464393][T25498] anon 0
[ 3487.464393][T25498] file 118784
[ 3487.464393][T25498] kernel_stack 0
[ 3487.464393][T25498] pagetables 0
[ 3487.464393][T25498] percpu 0
[ 3487.464393][T25498] sock 0
[ 3487.464393][T25498] shmem 114688
[ 3487.464393][T25498] file_mapped 114688
[ 3487.464393][T25498] file_dirty 0
[ 3487.464393][T25498] file_writeback 0
[ 3487.464393][T25498] swapcached 0
[ 3487.464393][T25498] inactive_anon 32768
[ 3487.464393][T25498] active_anon 81920
[ 3487.464393][T25498] inactive_file 0
[ 3487.464393][T25498] active_file 4096
[ 3487.464393][T25498] unevictable 0
[ 3487.464393][T25498] slab_reclaimable 32992
[ 3487.464393][T25498] slab_unreclaimable 19928
[ 3487.464393][T25498] slab 52920
[ 3487.464393][T25498] workingset_refault_anon 0
[ 3487.464393][T25498] workingset_refault_file 0
[ 3487.464393][T25498] workingset_activate_anon 0
[ 3487.464393][T25498] workingset_activate_file 0
[ 3487.464393][T25498] workingset_restore_anon 0
[ 3487.464393][T25498] workingset_restore_file 0
[ 3487.561366][T25498] Out of memory and no killable processes...
09:21:21 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
mount(&(0x7f0000000040)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='ocfs2\x00', 0x80, &(0x7f0000000200)='syz1\x00')
09:21:21 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0xfffffffb, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x80, 0x101, 0xf}, 0x18)
sendto$inet6(r1, &(0x7f0000847fff)='&', 0x1, 0x20000000, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x25}}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0xfffffffb, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x80, 0x101, 0xf}, 0x18) (async)
sendto$inet6(r1, &(0x7f0000847fff)='&', 0x1, 0x20000000, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x25}}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
09:21:21 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:21 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0xd2)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
pivot_root(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0\x00')
creat(&(0x7f0000000040)='./file0\x00', 0x21)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r3 = syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x9, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000200)="c08412f097274819fd8789073d9d401006e329c759d22df29e496c924f04e19fed94a48b54eb3b243e9932fd1fc64ab504e2e141b988f0fb9e0fab1d027973ee07cceb7c5e1841315148f5bdc79d6348cd46d2c6eb5d0e6db2ae1ab148b29c5a8b84bcbed96a48bc4de0c85c38384532d6f5ed5f006e83449e75f28da306511cb34ddc8dfaff641ee4c7e99b231bd8230561c0adaa259bfd3843e92ed882258dbe0776bc", 0xa4, 0x2}], 0x2000040, &(0x7f00000003c0)={[{@dots}, {@fat=@dmask={'dmask', 0x3d, 0xb9}}, {@nodots}], [{@seclabel}, {@euid_gt={'euid>', 0xee01}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfshat={'smackfshat', 0x3d, '(\\^'}}, {@func={'func', 0x3d, 'PATH_CHECK'}}, {@dont_measure}, {@dont_hash}, {@fowner_lt={'fowner<', 0xee01}}, {@subj_type={'subj_type', 0x3d, 'cgroup2\x00'}}]})
sendfile(r3, r0, 0x0, 0x2)
r4 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
sendfile(r2, r4, 0x0, 0x1)
09:21:21 executing program 3:
unshare(0x20000400) (async, rerun: 64)
r0 = socket$packet(0x11, 0x2, 0x300) (rerun: 64)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x1000}, 0x4)
dup3(r0, r0, 0x80000) (async, rerun: 32)
unshare(0x3c000400) (async, rerun: 32)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000040)={0x0, 'bridge0\x00', {0x1}, 0x401})
[ 3487.673479][T26037] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3487.683740][T26037] CPU: 1 PID: 26037 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3487.692153][T26037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3487.702204][T26037] Call Trace:
[ 3487.705473][T26037]
[ 3487.708407][T26037] dump_stack_lvl+0xd6/0x122
[ 3487.713005][T26037] dump_stack+0x11/0x1b
[ 3487.717164][T26037] dump_header+0x98/0x410
09:21:21 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x2}, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x2, 0x1}, 0x4)
r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
setsockopt$packet_int(r0, 0x107, 0xc, &(0x7f0000000180)=0xfffffffe, 0x4)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
r2 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x1, 0x2}, 0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth0\x00'})
socket$packet(0x11, 0x2, 0x300)
[ 3487.721496][T26037] out_of_memory+0x62c/0x890
[ 3487.726141][T26037] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3487.732089][T26037] memory_max_write+0x32c/0x3d0
[ 3487.737038][T26037] ? memory_max_show+0x70/0x70
[ 3487.741804][T26037] cgroup_file_write+0x161/0x300
[ 3487.746823][T26037] ? __check_object_size+0x22a/0x2d0
[ 3487.752172][T26037] ? cgroup_seqfile_stop+0x70/0x70
[ 3487.757289][T26037] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3487.762632][T26037] do_iter_readv_writev+0x2de/0x380
[ 3487.767864][T26037] do_iter_write+0x192/0x5c0
[ 3487.772458][T26037] ? splice_from_pipe_next+0x34f/0x3b0
[ 3487.777922][T26037] ? kmalloc_array+0x2d/0x40
[ 3487.782591][T26037] vfs_iter_write+0x4c/0x70
[ 3487.787174][T26037] iter_file_splice_write+0x43a/0x790
[ 3487.792552][T26037] ? splice_from_pipe+0xd0/0xd0
[ 3487.797404][T26037] direct_splice_actor+0x80/0xa0
[ 3487.802345][T26037] splice_direct_to_actor+0x345/0x650
[ 3487.807748][T26037] ? do_splice_direct+0x190/0x190
[ 3487.812780][T26037] do_splice_direct+0x106/0x190
[ 3487.817632][T26037] do_sendfile+0x675/0xc40
[ 3487.822051][T26037] __x64_sys_sendfile64+0x102/0x140
[ 3487.827249][T26037] do_syscall_64+0x44/0xd0
[ 3487.831665][T26037] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3487.837596][T26037] RIP: 0033:0x7f4d3cb0beb9
[ 3487.842015][T26037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3487.861848][T26037] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3487.870262][T26037] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3487.878232][T26037] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3487.886201][T26037] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3487.894194][T26037] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3487.902167][T26037] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3487.910146][T26037]
[ 3487.913365][T26037] memory: usage 168kB, limit 0kB, failcnt 18385
09:21:21 executing program 3:
unshare(0x20000400) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x2}, 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x2, 0x1}, 0x4) (async)
r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
setsockopt$packet_int(r0, 0x107, 0xc, &(0x7f0000000180)=0xfffffffe, 0x4) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00'}) (async)
r2 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x1, 0x2}, 0x4) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth0\x00'}) (async)
socket$packet(0x11, 0x2, 0x300)
[ 3487.919599][T26037] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3487.921964][ T24] audit: type=1400 audit(1641979281.533:978): avc: denied { ioctl } for pid=26144 comm="syz-executor.3" path="socket:[623862]" dev="sockfs" ino=623862 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 3487.926456][T26037] Memory cgroup stats for /syz1:
[ 3487.971799][T26037] anon 0
[ 3487.971799][T26037] file 118784
[ 3487.971799][T26037] kernel_stack 0
[ 3487.971799][T26037] pagetables 0
[ 3487.971799][T26037] percpu 0
[ 3487.971799][T26037] sock 0
[ 3487.971799][T26037] shmem 114688
[ 3487.971799][T26037] file_mapped 114688
[ 3487.971799][T26037] file_dirty 0
[ 3487.971799][T26037] file_writeback 0
[ 3487.971799][T26037] swapcached 0
[ 3487.971799][T26037] inactive_anon 32768
[ 3487.971799][T26037] active_anon 81920
[ 3487.971799][T26037] inactive_file 0
09:21:21 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x2}, 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x2, 0x1}, 0x4) (async)
r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) (async)
setsockopt$packet_int(r0, 0x107, 0xc, &(0x7f0000000180)=0xfffffffe, 0x4)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00'}) (async)
r2 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x1, 0x2}, 0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth0\x00'}) (async, rerun: 32)
socket$packet(0x11, 0x2, 0x300) (rerun: 32)
09:21:21 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0xd2)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
pivot_root(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0\x00')
creat(&(0x7f0000000040)='./file0\x00', 0x21)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r3 = syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x9, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000200)="c08412f097274819fd8789073d9d401006e329c759d22df29e496c924f04e19fed94a48b54eb3b243e9932fd1fc64ab504e2e141b988f0fb9e0fab1d027973ee07cceb7c5e1841315148f5bdc79d6348cd46d2c6eb5d0e6db2ae1ab148b29c5a8b84bcbed96a48bc4de0c85c38384532d6f5ed5f006e83449e75f28da306511cb34ddc8dfaff641ee4c7e99b231bd8230561c0adaa259bfd3843e92ed882258dbe0776bc", 0xa4, 0x2}], 0x2000040, &(0x7f00000003c0)={[{@dots}, {@fat=@dmask={'dmask', 0x3d, 0xb9}}, {@nodots}], [{@seclabel}, {@euid_gt={'euid>', 0xee01}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfshat={'smackfshat', 0x3d, '(\\^'}}, {@func={'func', 0x3d, 'PATH_CHECK'}}, {@dont_measure}, {@dont_hash}, {@fowner_lt={'fowner<', 0xee01}}, {@subj_type={'subj_type', 0x3d, 'cgroup2\x00'}}]})
sendfile(r3, r0, 0x0, 0x2)
r4 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
sendfile(r2, r4, 0x0, 0x1)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0xd2) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
pivot_root(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0\x00') (async)
creat(&(0x7f0000000040)='./file0\x00', 0x21) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x9, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000200)="c08412f097274819fd8789073d9d401006e329c759d22df29e496c924f04e19fed94a48b54eb3b243e9932fd1fc64ab504e2e141b988f0fb9e0fab1d027973ee07cceb7c5e1841315148f5bdc79d6348cd46d2c6eb5d0e6db2ae1ab148b29c5a8b84bcbed96a48bc4de0c85c38384532d6f5ed5f006e83449e75f28da306511cb34ddc8dfaff641ee4c7e99b231bd8230561c0adaa259bfd3843e92ed882258dbe0776bc", 0xa4, 0x2}], 0x2000040, &(0x7f00000003c0)={[{@dots}, {@fat=@dmask={'dmask', 0x3d, 0xb9}}, {@nodots}], [{@seclabel}, {@euid_gt={'euid>', 0xee01}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfshat={'smackfshat', 0x3d, '(\\^'}}, {@func={'func', 0x3d, 'PATH_CHECK'}}, {@dont_measure}, {@dont_hash}, {@fowner_lt={'fowner<', 0xee01}}, {@subj_type={'subj_type', 0x3d, 'cgroup2\x00'}}]}) (async)
sendfile(r3, r0, 0x0, 0x2) (async)
socket$inet(0x2, 0x4000000805, 0x0) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
sendfile(r2, r4, 0x0, 0x1) (async)
[ 3487.971799][T26037] active_file 4096
[ 3487.971799][T26037] unevictable 0
[ 3487.971799][T26037] slab_reclaimable 32992
[ 3487.971799][T26037] slab_unreclaimable 19928
[ 3487.971799][T26037] slab 52920
[ 3487.971799][T26037] workingset_refault_anon 0
[ 3487.971799][T26037] workingset_refault_file 0
[ 3487.971799][T26037] workingset_activate_anon 0
[ 3487.971799][T26037] workingset_activate_file 0
[ 3487.971799][T26037] workingset_restore_anon 0
[ 3487.971799][T26037] workingset_restore_file 0
[ 3488.067539][T26037] Out of memory and no killable processes...
[ 3488.431568][T11536] device hsr_slave_0 left promiscuous mode
[ 3488.440038][T11536] device hsr_slave_1 left promiscuous mode
[ 3488.452774][T11536] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3488.460199][T11536] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3488.478098][T11536] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3488.485548][T11536] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3488.496392][T11536] device bridge_slave_1 left promiscuous mode
[ 3488.502559][T11536] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3488.511570][T11536] device bridge_slave_0 left promiscuous mode
[ 3488.517779][T11536] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3488.528081][T11536] device veth1_macvtap left promiscuous mode
[ 3488.534157][T11536] device veth0_macvtap left promiscuous mode
[ 3488.540173][T11536] device veth1_vlan left promiscuous mode
[ 3488.545953][T11536] device veth0_vlan left promiscuous mode
[ 3488.642170][T11536] team0 (unregistering): Port device team_slave_1 removed
[ 3488.653204][T11536] team0 (unregistering): Port device team_slave_0 removed
[ 3488.663325][T11536] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3488.676070][T11536] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3488.708099][T11536] bond0 (unregistering): Released all slaves
[ 3489.689651][T26558] lo speed is unknown, defaulting to 1000
[ 3489.725033][T26558] chnl_net:caif_netlink_parms(): no params data found
[ 3489.753804][T26558] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3489.760842][T26558] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3489.768475][T26558] device bridge_slave_0 entered promiscuous mode
[ 3489.775588][T26558] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3489.782636][T26558] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3489.790237][T26558] device bridge_slave_1 entered promiscuous mode
[ 3489.804874][T26558] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3489.815318][T26558] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3489.833090][T26558] team0: Port device team_slave_0 added
[ 3489.839382][T26558] team0: Port device team_slave_1 added
[ 3489.853137][T26558] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3489.860111][T26558] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3489.886002][T26558] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3489.897961][T26558] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3489.904914][T26558] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3489.930870][T26558] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3489.952760][T26558] device hsr_slave_0 entered promiscuous mode
[ 3489.959044][T26558] device hsr_slave_1 entered promiscuous mode
[ 3489.965382][T26558] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3489.972938][T26558] Cannot create hsr debugfs directory
[ 3489.999454][T26558] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3490.006566][T26558] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3490.013917][T26558] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3490.020941][T26558] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3490.046997][T26558] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3490.057377][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3490.066377][ T7812] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3490.074071][ T7812] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3490.085295][T26558] 8021q: adding VLAN 0 to HW filter on device team0
[ 3490.094307][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3490.103330][T19402] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3490.110341][T19402] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3490.119597][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3490.128710][T19402] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3490.135721][T19402] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3490.149591][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3490.158145][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3490.168673][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3490.178873][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3490.189439][T26558] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 3490.200717][T26558] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3490.208346][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3490.223124][T26558] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3490.230340][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3490.237721][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3490.307392][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 3490.316212][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3490.350294][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 3490.358436][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3490.367948][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3490.375518][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3490.383348][T26558] device veth0_vlan entered promiscuous mode
[ 3490.392255][T26558] device veth1_vlan entered promiscuous mode
[ 3490.404270][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3490.412179][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3490.420469][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3490.428967][ T7812] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3490.438541][T26558] device veth0_macvtap entered promiscuous mode
[ 3490.446246][T26558] device veth1_macvtap entered promiscuous mode
[ 3490.456283][T26558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3490.466697][T26558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3490.476522][T26558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3490.486927][T26558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3490.496733][T26558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3490.507147][T26558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3490.516990][T26558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3490.527410][T26558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3490.537242][T26558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3490.547679][T26558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3490.558420][T26558] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3490.567186][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 3490.575383][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 3490.583973][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3490.592376][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3490.603243][T26558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3490.613655][T26558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3490.623456][T26558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3490.633925][T26558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3490.643804][T26558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3490.654288][T26558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3490.664198][T26558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3490.674639][T26558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3490.684533][T26558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3490.694944][T26558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3490.705650][T26558] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3490.714014][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3490.722817][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3490.766250][T26592] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3490.776574][T26592] CPU: 1 PID: 26592 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3490.785029][T26592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3490.795090][T26592] Call Trace:
[ 3490.798347][T26592]
[ 3490.801261][T26592] dump_stack_lvl+0xd6/0x122
[ 3490.805839][T26592] dump_stack+0x11/0x1b
[ 3490.809996][T26592] dump_header+0x98/0x410
[ 3490.814322][T26592] oom_kill_process+0x18e/0x3f0
[ 3490.819150][T26592] out_of_memory+0x5ed/0x890
[ 3490.823783][T26592] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3490.829639][T26592] memory_max_write+0x32c/0x3d0
[ 3490.834596][T26592] ? memory_max_show+0x70/0x70
[ 3490.839336][T26592] cgroup_file_write+0x161/0x300
[ 3490.844321][T26592] ? __check_object_size+0x22a/0x2d0
[ 3490.849702][T26592] ? cgroup_seqfile_stop+0x70/0x70
[ 3490.854832][T26592] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3490.860125][T26592] do_iter_readv_writev+0x2de/0x380
[ 3490.865380][T26592] do_iter_write+0x192/0x5c0
[ 3490.869956][T26592] ? splice_from_pipe_next+0x34f/0x3b0
[ 3490.875467][T26592] ? kmalloc_array+0x2d/0x40
[ 3490.880046][T26592] vfs_iter_write+0x4c/0x70
[ 3490.884596][T26592] iter_file_splice_write+0x43a/0x790
[ 3490.890016][T26592] ? splice_from_pipe+0xd0/0xd0
[ 3490.894879][T26592] direct_splice_actor+0x80/0xa0
[ 3490.899800][T26592] splice_direct_to_actor+0x345/0x650
[ 3490.905188][T26592] ? do_splice_direct+0x190/0x190
[ 3490.910193][T26592] do_splice_direct+0x106/0x190
[ 3490.915023][T26592] do_sendfile+0x675/0xc40
[ 3490.919542][T26592] __x64_sys_sendfile64+0x102/0x140
[ 3490.924717][T26592] do_syscall_64+0x44/0xd0
[ 3490.929135][T26592] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3490.935076][T26592] RIP: 0033:0x7f7692aa0eb9
[ 3490.939527][T26592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3490.959154][T26592] RSP: 002b:00007f7691c17168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3490.967623][T26592] RAX: ffffffffffffffda RBX: 00007f7692bb3f60 RCX: 00007f7692aa0eb9
[ 3490.975597][T26592] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000013
[ 3490.983550][T26592] RBP: 00007f7692afb08d R08: 0000000000000000 R09: 0000000000000000
[ 3490.991514][T26592] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3490.999511][T26592] R13: 00007ffc56fd265f R14: 00007f7691c17300 R15: 0000000000022000
[ 3491.007480][T26592]
[ 3491.010636][T26592] memory: usage 452kB, limit 0kB, failcnt 18404
[ 3491.016863][T26592] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3491.023735][T26592] Memory cgroup stats for /syz1:
[ 3491.024411][T26592] anon 90112
[ 3491.024411][T26592] file 118784
[ 3491.024411][T26592] kernel_stack 32768
[ 3491.024411][T26592] pagetables 90112
[ 3491.024411][T26592] percpu 0
[ 3491.024411][T26592] sock 0
[ 3491.024411][T26592] shmem 114688
[ 3491.024411][T26592] file_mapped 114688
[ 3491.024411][T26592] file_dirty 0
[ 3491.024411][T26592] file_writeback 0
[ 3491.024411][T26592] swapcached 0
[ 3491.024411][T26592] inactive_anon 122880
[ 3491.024411][T26592] active_anon 81920
[ 3491.024411][T26592] inactive_file 4096
[ 3491.024411][T26592] active_file 0
[ 3491.024411][T26592] unevictable 0
[ 3491.024411][T26592] slab_reclaimable 43792
[ 3491.024411][T26592] slab_unreclaimable 52672
[ 3491.024411][T26592] slab 96464
[ 3491.024411][T26592] workingset_refault_anon 0
[ 3491.024411][T26592] workingset_refault_file 0
[ 3491.024411][T26592] workingset_activate_anon 0
[ 3491.024411][T26592] workingset_activate_file 0
[ 3491.024411][T26592] workingset_restore_anon 0
09:21:25 executing program 3:
unshare(0x42000000)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0xfffb, 0x5}, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:25 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
mount(&(0x7f0000000040)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='ocfs2\x00', 0x80, &(0x7f0000000200)='syz1\x00')
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
mount(&(0x7f0000000040)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='ocfs2\x00', 0x80, &(0x7f0000000200)='syz1\x00') (async)
09:21:25 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0xd2)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
pivot_root(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0\x00')
creat(&(0x7f0000000040)='./file0\x00', 0x21)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r3 = syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x9, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000200)="c08412f097274819fd8789073d9d401006e329c759d22df29e496c924f04e19fed94a48b54eb3b243e9932fd1fc64ab504e2e141b988f0fb9e0fab1d027973ee07cceb7c5e1841315148f5bdc79d6348cd46d2c6eb5d0e6db2ae1ab148b29c5a8b84bcbed96a48bc4de0c85c38384532d6f5ed5f006e83449e75f28da306511cb34ddc8dfaff641ee4c7e99b231bd8230561c0adaa259bfd3843e92ed882258dbe0776bc", 0xa4, 0x2}], 0x2000040, &(0x7f00000003c0)={[{@dots}, {@fat=@dmask={'dmask', 0x3d, 0xb9}}, {@nodots}], [{@seclabel}, {@euid_gt={'euid>', 0xee01}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfshat={'smackfshat', 0x3d, '(\\^'}}, {@func={'func', 0x3d, 'PATH_CHECK'}}, {@dont_measure}, {@dont_hash}, {@fowner_lt={'fowner<', 0xee01}}, {@subj_type={'subj_type', 0x3d, 'cgroup2\x00'}}]})
sendfile(r3, r0, 0x0, 0x2)
r4 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
sendfile(r2, r4, 0x0, 0x1)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0xd2) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
pivot_root(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0\x00') (async)
creat(&(0x7f0000000040)='./file0\x00', 0x21) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x9, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000200)="c08412f097274819fd8789073d9d401006e329c759d22df29e496c924f04e19fed94a48b54eb3b243e9932fd1fc64ab504e2e141b988f0fb9e0fab1d027973ee07cceb7c5e1841315148f5bdc79d6348cd46d2c6eb5d0e6db2ae1ab148b29c5a8b84bcbed96a48bc4de0c85c38384532d6f5ed5f006e83449e75f28da306511cb34ddc8dfaff641ee4c7e99b231bd8230561c0adaa259bfd3843e92ed882258dbe0776bc", 0xa4, 0x2}], 0x2000040, &(0x7f00000003c0)={[{@dots}, {@fat=@dmask={'dmask', 0x3d, 0xb9}}, {@nodots}], [{@seclabel}, {@euid_gt={'euid>', 0xee01}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfshat={'smackfshat', 0x3d, '(\\^'}}, {@func={'func', 0x3d, 'PATH_CHECK'}}, {@dont_measure}, {@dont_hash}, {@fowner_lt={'fowner<', 0xee01}}, {@subj_type={'subj_type', 0x3d, 'cgroup2\x00'}}]}) (async)
sendfile(r3, r0, 0x0, 0x2) (async)
socket$inet(0x2, 0x4000000805, 0x0) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
sendfile(r2, r4, 0x0, 0x1) (async)
09:21:25 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:25 executing program 1:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x8)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x420a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x4}, 0x0, 0x0, r0, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
r2 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder-control\x00', 0x0, 0x0)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000100)=0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000200)={0x2, 0x4, 0x100, 0x8, r3})
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000240)=ANY=[@ANYBLOB="010001000000000018000000", @ANYRES32=r2, @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB='./file0\x00'])
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYRES32, @ANYRES32=0xee01, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'])
fchown(r2, r4, r5)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup(r6, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r8, r8, 0x0, 0x2)
09:21:25 executing program 4:
rseq(&(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x4, 0x80000000, 0xcb, 0x9}, 0x2}, 0x20, 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, 0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0xfffffffffffffffe, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004f600)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {0x0, r2}], 0x80, "ae0c2fe64f48d1"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000055000)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}], 0x7f, "31003d52d19c92"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000057e80)={0x0, ""/256, 0x0, 0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000058080)={0x0})
r6 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x85, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, 0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0xfffffffffffffffe, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {0x0, r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004f600)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r7}, {0x0, r8}], 0x80, "ae0c2fe64f48d1"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r6, 0xd000943d, &(0x7f0000055000)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}], 0x7f, "31003d52d19c92"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058280)={0x3ff, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {0x0, r4}, {r5, r8}], 0x1, "d24709c69b42c4"})
[ 3491.116700][T26592] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=26591,uid=0
[ 3491.131997][T26592] Memory cgroup out of memory: Killed process 26591 (syz-executor.1) total-vm:48744kB, anon-rss:368kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
09:21:25 executing program 4:
rseq(&(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x4, 0x80000000, 0xcb, 0x9}, 0x2}, 0x20, 0x0, 0x0) (async)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0}) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, 0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0xfffffffffffffffe, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004f600)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {0x0, r2}], 0x80, "ae0c2fe64f48d1"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000055000)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}], 0x7f, "31003d52d19c92"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000057e80)={0x0, ""/256, 0x0, 0x0}) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000058080)={0x0}) (async)
r6 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x85, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, 0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0xfffffffffffffffe, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {0x0, r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004f600)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r7}, {0x0, r8}], 0x80, "ae0c2fe64f48d1"}) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r6, 0xd000943d, &(0x7f0000055000)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}], 0x7f, "31003d52d19c92"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058280)={0x3ff, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {0x0, r4}, {r5, r8}], 0x1, "d24709c69b42c4"})
[ 3491.185009][T26597] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3491.186034][T26598] lo speed is unknown, defaulting to 1000
[ 3491.195257][T26597] CPU: 1 PID: 26597 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3491.209337][T26597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3491.219394][T26597] Call Trace:
[ 3491.222671][T26597]
[ 3491.225598][T26597] dump_stack_lvl+0xd6/0x122
[ 3491.230190][T26597] dump_stack+0x11/0x1b
09:21:25 executing program 4:
rseq(&(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x4, 0x80000000, 0xcb, 0x9}, 0x2}, 0x20, 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async, rerun: 64)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 64)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0}) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, 0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0xfffffffffffffffe, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004f600)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {0x0, r2}], 0x80, "ae0c2fe64f48d1"}) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000055000)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}], 0x7f, "31003d52d19c92"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000057e80)={0x0, ""/256, 0x0, 0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000058080)={0x0}) (async)
r6 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x85, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 64)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0}) (async, rerun: 64)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, 0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0xfffffffffffffffe, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {0x0, r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}], 0x0, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004f600)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r7}, {0x0, r8}], 0x80, "ae0c2fe64f48d1"}) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r6, 0xd000943d, &(0x7f0000055000)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}], 0x7f, "31003d52d19c92"}) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058280)={0x3ff, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {0x0, r4}, {r5, r8}], 0x1, "d24709c69b42c4"})
09:21:25 executing program 4:
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3491.234346][T26597] dump_header+0x98/0x410
[ 3491.238789][T26597] oom_kill_process+0x18e/0x3f0
[ 3491.243660][T26597] out_of_memory+0x5ed/0x890
[ 3491.248257][T26597] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3491.254074][T26597] memory_max_write+0x32c/0x3d0
[ 3491.258931][T26597] ? memory_max_show+0x70/0x70
[ 3491.263746][T26597] cgroup_file_write+0x161/0x300
[ 3491.268684][T26597] ? __check_object_size+0x22a/0x2d0
[ 3491.273978][T26597] ? cgroup_seqfile_stop+0x70/0x70
[ 3491.279117][T26597] kernfs_fop_write_iter+0x1d3/0x2d0
09:21:25 executing program 4:
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:25 executing program 3:
unshare(0x42000000) (async, rerun: 32)
r0 = socket$packet(0x11, 0x2, 0x300) (rerun: 32)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0xfffb, 0x5}, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
[ 3491.284404][T26597] do_iter_readv_writev+0x2de/0x380
[ 3491.289632][T26597] do_iter_write+0x192/0x5c0
[ 3491.294263][T26597] ? splice_from_pipe_next+0x34f/0x3b0
[ 3491.299762][T26597] ? kmalloc_array+0x2d/0x40
[ 3491.304422][T26597] vfs_iter_write+0x4c/0x70
[ 3491.308958][T26597] iter_file_splice_write+0x43a/0x790
[ 3491.314340][T26597] ? splice_from_pipe+0xd0/0xd0
[ 3491.319202][T26597] direct_splice_actor+0x80/0xa0
[ 3491.324142][T26597] splice_direct_to_actor+0x345/0x650
[ 3491.329517][T26597] ? do_splice_direct+0x190/0x190
09:21:25 executing program 4:
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3491.334593][T26597] do_splice_direct+0x106/0x190
[ 3491.339532][T26597] do_sendfile+0x675/0xc40
[ 3491.343997][T26597] __x64_sys_sendfile64+0x102/0x140
[ 3491.349200][T26597] do_syscall_64+0x44/0xd0
[ 3491.353621][T26597] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3491.359330][T26766] lo speed is unknown, defaulting to 1000
[ 3491.359601][T26597] RIP: 0033:0x7f4d3cb0beb9
09:21:25 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
socket$inet(0x2, 0x6, 0x490000)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000100)="bca26f0febfe3907fa000000ccf2a18e99b4f3301fb8d66281d4a14885c71318a2def064df730a6aa4b82b4cd10452db8e2ddc06bda8b377a3fddac193ef68975b9d7b44c843e471947c82d4bb727c2bd4ef72333ec8ecd226437d976e9cc8a72f964bacb9c3fed334103c6e0c3d632f45827db6858c040c0a9d4f1ecfcf7c622111a664b2573143c4", 0x89)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200), 0x618080, 0x0)
setsockopt$inet_opts(r3, 0x0, 0x2, &(0x7f0000000240)="6670b42e2b6e5f4049c58df20060eb021567d19a70db20cb43ee5842f23579acf71bb4e61c37bdde78a9be13f85bfd3136491583a7bf2b65441817382d0ef31ea91125d998af7505cfbe0f5fdc885a6ff6d94b9549ef9fbca2a7c045b02ed1182ed5be2471a4aedde6276e470877520f8a6d6f31d2d75e27d37e4d5e5e00ed55e834213f1b06624276c07466876f2692f8bdd5a7b69fe271f7c270ab92ba27ad220e0ace13ec79f16d1c4c2f34113164af89d5748f0a61ba2d2301a96ed0bdc2284532644f592648bb9e640a25a26cf37a590d428833d8cd2aac2fa4e7beb711fd1695604ae7603a4bc672fb0c75ac95efb8", 0xf2)
socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={0x0, 0x0, 0x30}, &(0x7f0000000080)=0xfffffffffffffe87)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000000c0)={0x81, 0x57, 0x6, 0x20, 0x9, 0x9, 0x1, 0xad, 0x8d, 0x9, 0x3f, 0x8, 0x8, 0x7f}, 0xe)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0xfffffffd, @mcast2}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000340)=0x18)
bind$inet6(r4, 0xfffffffffffffffe, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='6', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3491.359619][T26597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3491.389391][T26597] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3491.397803][T26597] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3491.405775][T26597] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3491.413750][T26597] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3491.421851][T26597] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3491.429890][T26597] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3491.437860][T26597]
[ 3491.440905][T26597] memory: usage 232kB, limit 0kB, failcnt 18430
[ 3491.447138][T26597] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3491.453995][T26597] Memory cgroup stats for /syz1:
[ 3491.459928][T26597] anon 28672
[ 3491.459928][T26597] file 118784
[ 3491.459928][T26597] kernel_stack 0
[ 3491.459928][T26597] pagetables 8192
[ 3491.459928][T26597] percpu 0
[ 3491.459928][T26597] sock 0
[ 3491.459928][T26597] shmem 114688
[ 3491.459928][T26597] file_mapped 114688
[ 3491.459928][T26597] file_dirty 0
[ 3491.459928][T26597] file_writeback 0
[ 3491.459928][T26597] swapcached 0
[ 3491.459928][T26597] inactive_anon 61440
[ 3491.459928][T26597] active_anon 81920
[ 3491.459928][T26597] inactive_file 4096
[ 3491.459928][T26597] active_file 0
[ 3491.459928][T26597] unevictable 0
[ 3491.459928][T26597] slab_reclaimable 35680
[ 3491.459928][T26597] slab_unreclaimable 21792
[ 3491.459928][T26597] slab 57472
[ 3491.459928][T26597] workingset_refault_anon 0
[ 3491.459928][T26597] workingset_refault_file 0
[ 3491.459928][T26597] workingset_activate_anon 0
[ 3491.459928][T26597] workingset_activate_file 0
[ 3491.459928][T26597] workingset_restore_anon 0
[ 3491.459928][T26597] workingset_restore_file 0
[ 3491.556173][T26597] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=26558,uid=0
09:21:25 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
mount(&(0x7f0000000040)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='ocfs2\x00', 0x80, &(0x7f0000000200)='syz1\x00')
09:21:25 executing program 3:
unshare(0x42000000)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0xfffb, 0x5}, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
[ 3491.571453][T26597] Memory cgroup out of memory: Killed process 26558 (syz-executor.1) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:0
[ 3491.589142][ T26] oom_reaper: reaped process 26558 (syz-executor.1), now anon-rss:0kB, file-rss:14336kB, shmem-rss:64kB
[ 3491.622761][T27130] lo speed is unknown, defaulting to 1000
[ 3491.635730][T27132] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3491.645927][T27132] CPU: 1 PID: 27132 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3491.654336][T27132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3491.664413][T27132] Call Trace:
[ 3491.667709][T27132]
[ 3491.670621][T27132] dump_stack_lvl+0xd6/0x122
[ 3491.675192][T27132] dump_stack+0x11/0x1b
[ 3491.679381][T27132] dump_header+0x98/0x410
[ 3491.683782][T27132] out_of_memory+0x62c/0x890
[ 3491.688426][T27132] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3491.694293][T27132] memory_max_write+0x32c/0x3d0
[ 3491.699213][T27132] ? memory_max_show+0x70/0x70
[ 3491.704025][T27132] cgroup_file_write+0x161/0x300
[ 3491.708944][T27132] ? __check_object_size+0x22a/0x2d0
[ 3491.714268][T27132] ? cgroup_seqfile_stop+0x70/0x70
[ 3491.719423][T27132] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3491.724708][T27132] do_iter_readv_writev+0x2de/0x380
[ 3491.729888][T27132] do_iter_write+0x192/0x5c0
[ 3491.734486][T27132] ? splice_from_pipe_next+0x34f/0x3b0
[ 3491.739994][T27132] ? kmalloc_array+0x2d/0x40
[ 3491.744563][T27132] vfs_iter_write+0x4c/0x70
[ 3491.749157][T27132] iter_file_splice_write+0x43a/0x790
[ 3491.754589][T27132] ? splice_from_pipe+0xd0/0xd0
[ 3491.759501][T27132] direct_splice_actor+0x80/0xa0
[ 3491.764423][T27132] splice_direct_to_actor+0x345/0x650
[ 3491.769895][T27132] ? do_splice_direct+0x190/0x190
[ 3491.774900][T27132] do_splice_direct+0x106/0x190
[ 3491.779766][T27132] do_sendfile+0x675/0xc40
[ 3491.784219][T27132] __x64_sys_sendfile64+0x102/0x140
[ 3491.789395][T27132] do_syscall_64+0x44/0xd0
[ 3491.793799][T27132] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3491.799673][T27132] RIP: 0033:0x7f4d3cb0beb9
[ 3491.804066][T27132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3491.823659][T27132] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3491.832051][T27132] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3491.840067][T27132] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3491.848058][T27132] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3491.856008][T27132] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3491.863959][T27132] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3491.871909][T27132]
[ 3491.875064][T27132] memory: usage 176kB, limit 0kB, failcnt 18457
[ 3491.881309][T27132] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3491.888144][T27132] Memory cgroup stats for /syz1:
[ 3491.910150][T27132] anon 0
[ 3491.910150][T27132] file 118784
[ 3491.910150][T27132] kernel_stack 0
[ 3491.910150][T27132] pagetables 0
[ 3491.910150][T27132] percpu 0
[ 3491.910150][T27132] sock 0
[ 3491.910150][T27132] shmem 114688
[ 3491.910150][T27132] file_mapped 114688
[ 3491.910150][T27132] file_dirty 0
[ 3491.910150][T27132] file_writeback 0
[ 3491.910150][T27132] swapcached 0
[ 3491.910150][T27132] inactive_anon 32768
[ 3491.910150][T27132] active_anon 81920
[ 3491.910150][T27132] inactive_file 4096
[ 3491.910150][T27132] active_file 0
[ 3491.910150][T27132] unevictable 0
[ 3491.910150][T27132] slab_reclaimable 35680
[ 3491.910150][T27132] slab_unreclaimable 20192
[ 3491.910150][T27132] slab 55872
[ 3491.910150][T27132] workingset_refault_anon 0
[ 3491.910150][T27132] workingset_refault_file 0
[ 3491.910150][T27132] workingset_activate_anon 0
[ 3491.910150][T27132] workingset_activate_file 0
[ 3491.910150][T27132] workingset_restore_anon 0
[ 3491.910150][T27132] workingset_restore_file 0
09:21:25 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:25 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
socket$inet(0x2, 0x6, 0x490000)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000100)="bca26f0febfe3907fa000000ccf2a18e99b4f3301fb8d66281d4a14885c71318a2def064df730a6aa4b82b4cd10452db8e2ddc06bda8b377a3fddac193ef68975b9d7b44c843e471947c82d4bb727c2bd4ef72333ec8ecd226437d976e9cc8a72f964bacb9c3fed334103c6e0c3d632f45827db6858c040c0a9d4f1ecfcf7c622111a664b2573143c4", 0x89)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200), 0x618080, 0x0)
setsockopt$inet_opts(r3, 0x0, 0x2, &(0x7f0000000240)="6670b42e2b6e5f4049c58df20060eb021567d19a70db20cb43ee5842f23579acf71bb4e61c37bdde78a9be13f85bfd3136491583a7bf2b65441817382d0ef31ea91125d998af7505cfbe0f5fdc885a6ff6d94b9549ef9fbca2a7c045b02ed1182ed5be2471a4aedde6276e470877520f8a6d6f31d2d75e27d37e4d5e5e00ed55e834213f1b06624276c07466876f2692f8bdd5a7b69fe271f7c270ab92ba27ad220e0ace13ec79f16d1c4c2f34113164af89d5748f0a61ba2d2301a96ed0bdc2284532644f592648bb9e640a25a26cf37a590d428833d8cd2aac2fa4e7beb711fd1695604ae7603a4bc672fb0c75ac95efb8", 0xf2)
socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={0x0, 0x0, 0x30}, &(0x7f0000000080)=0xfffffffffffffe87)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000000c0)={0x81, 0x57, 0x6, 0x20, 0x9, 0x9, 0x1, 0xad, 0x8d, 0x9, 0x3f, 0x8, 0x8, 0x7f}, 0xe)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0xfffffffd, @mcast2}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000340)=0x18)
bind$inet6(r4, 0xfffffffffffffffe, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='6', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
socket$inet(0x2, 0x6, 0x490000) (async)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000100)="bca26f0febfe3907fa000000ccf2a18e99b4f3301fb8d66281d4a14885c71318a2def064df730a6aa4b82b4cd10452db8e2ddc06bda8b377a3fddac193ef68975b9d7b44c843e471947c82d4bb727c2bd4ef72333ec8ecd226437d976e9cc8a72f964bacb9c3fed334103c6e0c3d632f45827db6858c040c0a9d4f1ecfcf7c622111a664b2573143c4", 0x89) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200), 0x618080, 0x0) (async)
setsockopt$inet_opts(r3, 0x0, 0x2, &(0x7f0000000240)="6670b42e2b6e5f4049c58df20060eb021567d19a70db20cb43ee5842f23579acf71bb4e61c37bdde78a9be13f85bfd3136491583a7bf2b65441817382d0ef31ea91125d998af7505cfbe0f5fdc885a6ff6d94b9549ef9fbca2a7c045b02ed1182ed5be2471a4aedde6276e470877520f8a6d6f31d2d75e27d37e4d5e5e00ed55e834213f1b06624276c07466876f2692f8bdd5a7b69fe271f7c270ab92ba27ad220e0ace13ec79f16d1c4c2f34113164af89d5748f0a61ba2d2301a96ed0bdc2284532644f592648bb9e640a25a26cf37a590d428833d8cd2aac2fa4e7beb711fd1695604ae7603a4bc672fb0c75ac95efb8", 0xf2) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={0x0, 0x0, 0x30}, &(0x7f0000000080)=0xfffffffffffffe87) (async)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000000c0)={0x81, 0x57, 0x6, 0x20, 0x9, 0x9, 0x1, 0xad, 0x8d, 0x9, 0x3f, 0x8, 0x8, 0x7f}, 0xe) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0xfffffffd, @mcast2}, 0x1c) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000340)=0x18) (async)
bind$inet6(r4, 0xfffffffffffffffe, 0x0) (async)
sendto$inet6(r0, &(0x7f0000847fff)='6', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
09:21:25 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='./file0\x00', r0, &(0x7f0000000100)='./file0\x00')
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
chdir(&(0x7f0000000200)='./file0\x00')
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
09:21:25 executing program 1:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x8)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x420a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x4}, 0x0, 0x0, r0, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async, rerun: 32)
r2 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder-control\x00', 0x0, 0x0) (async, rerun: 32)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000100)=0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000200)={0x2, 0x4, 0x100, 0x8, r3}) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x1, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000240)=ANY=[@ANYBLOB="010001000000000018000000", @ANYRES32=r2, @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB='./file0\x00'])
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYRES32, @ANYRES32=0xee01, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00']) (async)
fchown(r2, r4, r5)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup(r6, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r8, r8, 0x0, 0x2)
09:21:25 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
unshare(0x20000600)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
[ 3492.005719][T27132] Out of memory and no killable processes...
09:21:25 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
socket$inet(0x2, 0x6, 0x490000)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000100)="bca26f0febfe3907fa000000ccf2a18e99b4f3301fb8d66281d4a14885c71318a2def064df730a6aa4b82b4cd10452db8e2ddc06bda8b377a3fddac193ef68975b9d7b44c843e471947c82d4bb727c2bd4ef72333ec8ecd226437d976e9cc8a72f964bacb9c3fed334103c6e0c3d632f45827db6858c040c0a9d4f1ecfcf7c622111a664b2573143c4", 0x89)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200), 0x618080, 0x0)
setsockopt$inet_opts(r3, 0x0, 0x2, &(0x7f0000000240)="6670b42e2b6e5f4049c58df20060eb021567d19a70db20cb43ee5842f23579acf71bb4e61c37bdde78a9be13f85bfd3136491583a7bf2b65441817382d0ef31ea91125d998af7505cfbe0f5fdc885a6ff6d94b9549ef9fbca2a7c045b02ed1182ed5be2471a4aedde6276e470877520f8a6d6f31d2d75e27d37e4d5e5e00ed55e834213f1b06624276c07466876f2692f8bdd5a7b69fe271f7c270ab92ba27ad220e0ace13ec79f16d1c4c2f34113164af89d5748f0a61ba2d2301a96ed0bdc2284532644f592648bb9e640a25a26cf37a590d428833d8cd2aac2fa4e7beb711fd1695604ae7603a4bc672fb0c75ac95efb8", 0xf2)
socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={0x0, 0x0, 0x30}, &(0x7f0000000080)=0xfffffffffffffe87)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000000c0)={0x81, 0x57, 0x6, 0x20, 0x9, 0x9, 0x1, 0xad, 0x8d, 0x9, 0x3f, 0x8, 0x8, 0x7f}, 0xe)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0xfffffffd, @mcast2}, 0x1c)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000340)=0x18)
bind$inet6(r4, 0xfffffffffffffffe, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='6', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
socket$inet(0x2, 0x6, 0x490000) (async)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000100)="bca26f0febfe3907fa000000ccf2a18e99b4f3301fb8d66281d4a14885c71318a2def064df730a6aa4b82b4cd10452db8e2ddc06bda8b377a3fddac193ef68975b9d7b44c843e471947c82d4bb727c2bd4ef72333ec8ecd226437d976e9cc8a72f964bacb9c3fed334103c6e0c3d632f45827db6858c040c0a9d4f1ecfcf7c622111a664b2573143c4", 0x89) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200), 0x618080, 0x0) (async)
setsockopt$inet_opts(r3, 0x0, 0x2, &(0x7f0000000240)="6670b42e2b6e5f4049c58df20060eb021567d19a70db20cb43ee5842f23579acf71bb4e61c37bdde78a9be13f85bfd3136491583a7bf2b65441817382d0ef31ea91125d998af7505cfbe0f5fdc885a6ff6d94b9549ef9fbca2a7c045b02ed1182ed5be2471a4aedde6276e470877520f8a6d6f31d2d75e27d37e4d5e5e00ed55e834213f1b06624276c07466876f2692f8bdd5a7b69fe271f7c270ab92ba27ad220e0ace13ec79f16d1c4c2f34113164af89d5748f0a61ba2d2301a96ed0bdc2284532644f592648bb9e640a25a26cf37a590d428833d8cd2aac2fa4e7beb711fd1695604ae7603a4bc672fb0c75ac95efb8", 0xf2) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={0x0, 0x0, 0x30}, &(0x7f0000000080)=0xfffffffffffffe87) (async)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000000c0)={0x81, 0x57, 0x6, 0x20, 0x9, 0x9, 0x1, 0xad, 0x8d, 0x9, 0x3f, 0x8, 0x8, 0x7f}, 0xe) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0xfffffffd, @mcast2}, 0x1c) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000040)={r6, 0x0, 0x30}, &(0x7f0000000340)=0x18) (async)
bind$inet6(r4, 0xfffffffffffffffe, 0x0) (async)
sendto$inet6(r0, &(0x7f0000847fff)='6', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
09:21:25 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
unshare(0x20000600)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
unshare(0x20000600) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
09:21:25 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='./file0\x00', r0, &(0x7f0000000100)='./file0\x00') (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
chdir(&(0x7f0000000200)='./file0\x00') (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
09:21:25 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = signalfd4(r2, &(0x7f0000000200)={[0xffffffffffffffe0]}, 0x8, 0x0)
fsconfig$FSCONFIG_SET_PATH(r1, 0x3, &(0x7f00000000c0)='${\\\x00', &(0x7f0000000100)='./file0\x00', r3)
r4 = openat$cgroup_int(r1, &(0x7f0000000240)='cpuacct.usage\x00', 0x2, 0x0)
sendfile(r0, r4, 0x0, 0x8)
09:21:25 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0xfffffffd, @mcast2, 0x3}, 0x1c)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
r6 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r5, 0x84, 0x74, &(0x7f0000000040)={r7, 0x0, 0x30}, &(0x7f0000000080)=0x18)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x8)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:25 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='./file0\x00', r0, &(0x7f0000000100)='./file0\x00')
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 32)
chdir(&(0x7f0000000200)='./file0\x00') (async, rerun: 32)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x2)
09:21:25 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = signalfd4(r2, &(0x7f0000000200)={[0xffffffffffffffe0]}, 0x8, 0x0)
fsconfig$FSCONFIG_SET_PATH(r1, 0x3, &(0x7f00000000c0)='${\\\x00', &(0x7f0000000100)='./file0\x00', r3)
r4 = openat$cgroup_int(r1, &(0x7f0000000240)='cpuacct.usage\x00', 0x2, 0x0)
sendfile(r0, r4, 0x0, 0x8)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0) (async)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
signalfd4(r2, &(0x7f0000000200)={[0xffffffffffffffe0]}, 0x8, 0x0) (async)
fsconfig$FSCONFIG_SET_PATH(r1, 0x3, &(0x7f00000000c0)='${\\\x00', &(0x7f0000000100)='./file0\x00', r3) (async)
openat$cgroup_int(r1, &(0x7f0000000240)='cpuacct.usage\x00', 0x2, 0x0) (async)
sendfile(r0, r4, 0x0, 0x8) (async)
09:21:26 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:26 executing program 3:
unshare(0x20000400) (async, rerun: 32)
r0 = socket$packet(0x11, 0x2, 0x300) (rerun: 32)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
unshare(0x20000600) (async, rerun: 32)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (rerun: 32)
09:21:26 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0xfffffffd, @mcast2, 0x3}, 0x1c)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
r6 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r5, 0x84, 0x74, &(0x7f0000000040)={r7, 0x0, 0x30}, &(0x7f0000000080)=0x18)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x8)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0xfffffffd, @mcast2, 0x3}, 0x1c) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r5, 0x84, 0x74, &(0x7f0000000040)={r7, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x8) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
[ 3493.172311][T31801] device hsr_slave_0 left promiscuous mode
[ 3493.178603][T31801] device hsr_slave_1 left promiscuous mode
[ 3493.185211][T31801] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3493.192621][T31801] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3493.200847][T31801] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3493.208234][T31801] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3493.215855][T31801] device bridge_slave_1 left promiscuous mode
[ 3493.221954][T31801] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3493.229459][T31801] device bridge_slave_0 left promiscuous mode
[ 3493.235557][T31801] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3493.245104][T31801] device veth1_macvtap left promiscuous mode
[ 3493.251105][T31801] device veth0_macvtap left promiscuous mode
[ 3493.257083][T31801] device veth1_vlan left promiscuous mode
[ 3493.262819][T31801] device veth0_vlan left promiscuous mode
[ 3493.341637][T31801] team0 (unregistering): Port device team_slave_1 removed
[ 3493.351419][T31801] team0 (unregistering): Port device team_slave_0 removed
[ 3493.360806][T31801] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3493.371709][T31801] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3493.396759][T31801] bond0 (unregistering): Released all slaves
[ 3493.580886][ T1800] ==================================================================
[ 3493.588985][ T1800] BUG: KCSAN: data-race in do_epoll_ctl / do_epoll_wait
[ 3493.595916][ T1800]
[ 3493.598228][ T1800] write to 0xffff88810319f4d8 of 8 bytes by task 27521 on cpu 0:
[ 3493.605930][ T1800] do_epoll_ctl+0x1331/0x1880
[ 3493.610602][ T1800] __x64_sys_epoll_ctl+0xc2/0xf0
[ 3493.615532][ T1800] do_syscall_64+0x44/0xd0
[ 3493.619942][ T1800] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3493.625836][ T1800]
[ 3493.628148][ T1800] read to 0xffff88810319f4d8 of 8 bytes by task 1800 on cpu 1:
[ 3493.635686][ T1800] do_epoll_wait+0x279/0xf40
[ 3493.640272][ T1800] __se_sys_epoll_pwait+0x12b/0x240
[ 3493.645471][ T1800] __x64_sys_epoll_pwait+0x74/0x80
[ 3493.650576][ T1800] do_syscall_64+0x44/0xd0
[ 3493.654986][ T1800] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3493.660878][ T1800]
[ 3493.663187][ T1800] value changed: 0xffff88810319f4d0 -> 0xffff8881b080dd18
[ 3493.670282][ T1800]
[ 3493.672597][ T1800] Reported by Kernel Concurrency Sanitizer on:
[ 3493.678731][ T1800] CPU: 1 PID: 1800 Comm: syz-fuzzer Not tainted 5.16.0-syzkaller #0
[ 3493.686707][ T1800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3493.696753][ T1800] ==================================================================
[ 3493.766337][T27680] lo speed is unknown, defaulting to 1000
[ 3493.811281][T27680] chnl_net:caif_netlink_parms(): no params data found
[ 3493.847380][T27680] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3493.854472][T27680] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3493.863363][T27680] device bridge_slave_0 entered promiscuous mode
[ 3493.870534][T27680] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3493.877557][T27680] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3493.886276][T27680] device bridge_slave_1 entered promiscuous mode
[ 3493.903912][T27680] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3493.914178][T27680] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3493.934558][T27680] team0: Port device team_slave_0 added
[ 3493.940919][T27680] team0: Port device team_slave_1 added
[ 3493.957003][T27680] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3493.964023][T27680] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3493.990064][T27680] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3494.001297][T27680] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3494.008224][T27680] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3494.034117][T27680] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3494.058475][T27680] device hsr_slave_0 entered promiscuous mode
[ 3494.064913][T27680] device hsr_slave_1 entered promiscuous mode
[ 3494.071355][T27680] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3494.078877][T27680] Cannot create hsr debugfs directory
[ 3494.107200][T27680] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3494.114242][T27680] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3494.121480][T27680] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3494.128492][T27680] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3494.155806][T27680] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3494.166888][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3494.174934][ T5036] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3494.182714][ T5036] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3494.193342][T27680] 8021q: adding VLAN 0 to HW filter on device team0
[ 3494.203296][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3494.211755][ T9656] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3494.218759][ T9656] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3494.229092][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3494.237370][T19402] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3494.244472][T19402] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3494.259000][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3494.267435][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3494.281377][T27680] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 3494.291719][T27680] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 3494.304741][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3494.313321][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3494.321853][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3494.330137][T19402] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3494.342373][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3494.349723][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3494.359209][T27680] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3494.435725][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3494.475205][T27680] device veth0_vlan entered promiscuous mode
[ 3494.482034][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3494.490584][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3494.498208][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3494.508178][T27680] device veth1_vlan entered promiscuous mode
[ 3494.522140][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3494.530073][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3494.538116][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3494.547381][T27680] device veth0_macvtap entered promiscuous mode
[ 3494.556535][T27680] device veth1_macvtap entered promiscuous mode
[ 3494.567814][T27680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3494.578324][T27680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3494.588247][T27680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3494.598659][T27680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3494.608518][T27680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3494.619014][T27680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3494.628829][T27680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3494.639280][T27680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3494.649130][T27680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3494.659543][T27680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3494.671299][T27680] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3494.679040][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3494.687784][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3494.697260][T27680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3494.707760][T27680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3494.717577][T27680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3494.727995][T27680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3494.737816][T27680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3494.748289][T27680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3494.758099][T27680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3494.768500][T27680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
09:21:28 executing program 1:
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x8)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x420a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x4}, 0x0, 0x0, r0, 0x0) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async)
tgkill(0x0, 0x0, 0x0) (async)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000540)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
r2 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder-control\x00', 0x0, 0x0) (async)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000100)=0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000200)={0x2, 0x4, 0x100, 0x8, r3}) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x1, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000240)=ANY=[@ANYBLOB="010001000000000018000000", @ANYRES32=r2, @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB='./file0\x00'])
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYRES32, @ANYRES32=0xee01, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00']) (async)
fchown(r2, r4, r5) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup(r6, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r8, r8, 0x0, 0x2)
09:21:28 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 64)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
r3 = signalfd4(r2, &(0x7f0000000200)={[0xffffffffffffffe0]}, 0x8, 0x0)
fsconfig$FSCONFIG_SET_PATH(r1, 0x3, &(0x7f00000000c0)='${\\\x00', &(0x7f0000000100)='./file0\x00', r3) (async, rerun: 64)
r4 = openat$cgroup_int(r1, &(0x7f0000000240)='cpuacct.usage\x00', 0x2, 0x0) (rerun: 64)
sendfile(r0, r4, 0x0, 0x8)
09:21:28 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x8, 0x1)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:28 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:28 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0xfffffffd, @mcast2, 0x3}, 0x1c) (async)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r6 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r5, 0x84, 0x74, &(0x7f0000000040)={r7, 0x0, 0x30}, &(0x7f0000000080)=0x18)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x8) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:28 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3494.778318][T27680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3494.788760][T27680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3494.800049][T27680] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3494.807899][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3494.816551][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
09:21:28 executing program 3:
unshare(0x20000400) (async, rerun: 32)
r0 = socket$packet(0x11, 0x2, 0x300) (rerun: 32)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:28 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000040)="e7", 0x1, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff}, 0x0)
preadv(r1, &(0x7f0000000180)=[{&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000000080)=""/206, 0xce}], 0x2, 0x0, 0x6)
[ 3494.889244][T27680] syz-executor.1 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=0, oom_score_adj=0
[ 3494.900332][T27680] CPU: 1 PID: 27680 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3494.908816][T27680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3494.918911][T27680] Call Trace:
[ 3494.922280][T27680]
[ 3494.925208][T27680] dump_stack_lvl+0xd6/0x122
[ 3494.929880][T27680] dump_stack+0x11/0x1b
[ 3494.934057][T27680] dump_header+0x98/0x410
09:21:28 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x7, 0xf7, 0x5, 0x9, 0x0, 0x9, 0x2080, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x81, 0x0, @perf_config_ext={0x1f, 0x1000}, 0x220, 0x6, 0x7, 0x9, 0x101, 0xc1a, 0x8fc5, 0x0, 0x8, 0x0, 0x5}, 0x0, 0xd, r0, 0x3)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f00000000c0)={0x2, 0x4, 0x0, 0x0, 0x1, [{0x7, 0x5, 0x80, '\x00', 0x1}]})
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = fork()
process_vm_writev(r5, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0)
r6 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f0000000540))
perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x5, 0x2, 0x5, 0x9, 0x0, 0x5, 0x16, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x20000000000}, 0x2, 0x8, 0xfffffffc, 0x2, 0xfffffffffffffff9, 0xffff, 0x2, 0x0, 0x100, 0x0, 0x6}, r5, 0xc, r6, 0xf)
r7 = openat$cgroup(r4, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r8, r8, 0x0, 0x2)
09:21:28 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
[ 3494.938393][T27680] oom_kill_process+0x18e/0x3f0
[ 3494.943250][T27680] out_of_memory+0x5ed/0x890
[ 3494.947839][T27680] ? mem_cgroup_iter+0x29b/0x370
[ 3494.952779][T27680] mem_cgroup_oom+0x484/0x520
[ 3494.957461][T27680] try_charge_memcg+0x75c/0xa50
[ 3494.962393][T27680] ? __vunmap+0x699/0x6d0
[ 3494.966724][T27680] ? __rcu_read_unlock+0x5c/0x290
[ 3494.971787][T27680] ? avc_has_perm_noaudit+0x1c0/0x270
[ 3494.977232][T27680] obj_cgroup_charge_pages+0xac/0x140
[ 3494.982666][T27680] obj_cgroup_charge+0xe2/0x1b0
[ 3494.987574][T27680] kmem_cache_alloc_node_trace+0xb7/0x310
[ 3494.993292][T27680] ? __kmalloc_node+0x30/0x40
[ 3494.998038][T27680] __kmalloc_node+0x30/0x40
[ 3495.002546][T27680] kvmalloc_node+0x81/0x110
[ 3495.007053][T27680] xt_alloc_table_info+0x39/0x70
[ 3495.011994][T27680] do_ipt_set_ctl+0x649/0x1710
[ 3495.016775][T27680] ? ip_getsockopt+0x10ab/0x1320
[ 3495.021746][T27680] ? __rcu_read_lock+0x32/0x40
[ 3495.026564][T27680] ? debug_smp_processor_id+0x18/0x20
[ 3495.031947][T27680] ? call_rcu+0x332/0x770
09:21:28 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async, rerun: 64)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @empty}, 0x1c) (rerun: 64)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000040)="e7", 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff}, 0x0) (rerun: 32)
preadv(r1, &(0x7f0000000180)=[{&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000000080)=""/206, 0xce}], 0x2, 0x0, 0x6)
[ 3495.036285][T27680] ? kmem_cache_alloc+0x221/0x320
[ 3495.041331][T27680] nf_setsockopt+0x1a6/0x1c0
[ 3495.045921][T27680] ip_setsockopt+0x2815/0x2c80
[ 3495.050693][T27680] ? kfree+0x175/0x1c0
[ 3495.054830][T27680] ? ebitmap_destroy+0x91/0xa0
[ 3495.059671][T27680] ? __rcu_read_unlock+0x5c/0x290
[ 3495.064761][T27680] ? avc_has_perm_noaudit+0x1c0/0x270
[ 3495.070131][T27680] ? avc_has_perm+0x70/0x160
[ 3495.074719][T27680] ? avc_has_perm+0xd5/0x160
[ 3495.079325][T27680] ? selinux_netlbl_socket_setsockopt+0xd7/0x2c0
09:21:28 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000040)="e7", 0x1, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff}, 0x0)
preadv(r1, &(0x7f0000000180)=[{&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000000080)=""/206, 0xce}], 0x2, 0x0, 0x6)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @empty}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000040)="e7", 0x1, 0x0, 0x0, 0x0) (async)
pipe2$9p(&(0x7f0000000000), 0x0) (async)
preadv(r1, &(0x7f0000000180)=[{&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000000080)=""/206, 0xce}], 0x2, 0x0, 0x6) (async)
[ 3495.085655][T27680] ? selinux_socket_setsockopt+0x145/0x170
[ 3495.091940][T27680] tcp_setsockopt+0x8c/0xa0
[ 3495.096491][T27680] sock_common_setsockopt+0x5d/0x70
[ 3495.101799][T27680] ? sock_common_recvmsg+0xe0/0xe0
[ 3495.106941][T27680] __sys_setsockopt+0x209/0x2a0
[ 3495.111792][T27680] __x64_sys_setsockopt+0x62/0x70
[ 3495.116839][T27680] do_syscall_64+0x44/0xd0
[ 3495.121254][T27680] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3495.127289][T27680] RIP: 0033:0x7fdeffd5c50a
[ 3495.131697][T27680] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 36 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3495.151298][T27680] RSP: 002b:00007ffcf1600a98 EFLAGS: 00000202 ORIG_RAX: 0000000000000036
[ 3495.159760][T27680] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fdeffd5c50a
[ 3495.167723][T27680] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[ 3495.175688][T27680] RBP: 00007ffcf1600ac0 R08: 0000000000000408 R09: fefefefeff646b66
[ 3495.183662][T27680] R10: 00007fdeffe3fb00 R11: 0000000000000202 R12: 00007ffcf1600b20
[ 3495.191630][T27680] R13: 0000000000000003 R14: 00007ffcf1600abc R15: 00007fdeffe3faa0
[ 3495.199581][T27680]
[ 3495.202615][T27680] memory: usage 272kB, limit 0kB, failcnt 18476
[ 3495.208844][T27680] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3495.215747][T27680] Memory cgroup stats for /syz1:
[ 3495.221817][T27680] anon 36864
[ 3495.221817][T27680] file 118784
[ 3495.221817][T27680] kernel_stack 0
[ 3495.221817][T27680] pagetables 12288
[ 3495.221817][T27680] percpu 0
[ 3495.221817][T27680] sock 0
[ 3495.221817][T27680] shmem 114688
[ 3495.221817][T27680] file_mapped 114688
[ 3495.221817][T27680] file_dirty 0
[ 3495.221817][T27680] file_writeback 0
[ 3495.221817][T27680] swapcached 0
[ 3495.221817][T27680] inactive_anon 69632
[ 3495.221817][T27680] active_anon 81920
[ 3495.221817][T27680] inactive_file 4096
[ 3495.221817][T27680] active_file 0
[ 3495.221817][T27680] unevictable 0
[ 3495.221817][T27680] slab_reclaimable 33968
[ 3495.221817][T27680] slab_unreclaimable 22680
[ 3495.221817][T27680] slab 56648
[ 3495.221817][T27680] workingset_refault_anon 0
[ 3495.221817][T27680] workingset_refault_file 0
[ 3495.221817][T27680] workingset_activate_anon 0
[ 3495.221817][T27680] workingset_activate_file 0
[ 3495.221817][T27680] workingset_restore_anon 0
[ 3495.221817][T27680] workingset_restore_file 0
[ 3495.318027][T27680] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=27680,uid=0
[ 3495.333290][T27680] Memory cgroup out of memory: Killed process 27680 (syz-executor.1) total-vm:48480kB, anon-rss:360kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:0
[ 3495.351084][ T26] oom_reaper: reaped process 27680 (syz-executor.1), now anon-rss:0kB, file-rss:13408kB, shmem-rss:0kB
[ 3495.357925][T27721] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3495.372259][T27721] CPU: 1 PID: 27721 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3495.380754][T27721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3495.390801][T27721] Call Trace:
[ 3495.394115][T27721]
[ 3495.397025][T27721] dump_stack_lvl+0xd6/0x122
[ 3495.401643][T27721] dump_stack+0x11/0x1b
[ 3495.405804][T27721] dump_header+0x98/0x410
[ 3495.410121][T27721] out_of_memory+0x62c/0x890
[ 3495.414705][T27721] memory_max_write+0x32c/0x3d0
[ 3495.419589][T27721] ? memory_max_show+0x70/0x70
[ 3495.424331][T27721] cgroup_file_write+0x161/0x300
[ 3495.429488][T27721] ? __check_object_size+0x22a/0x2d0
[ 3495.434770][T27721] ? cgroup_seqfile_stop+0x70/0x70
[ 3495.439867][T27721] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3495.445178][T27721] do_iter_readv_writev+0x2de/0x380
[ 3495.450364][T27721] do_iter_write+0x192/0x5c0
[ 3495.454935][T27721] ? splice_from_pipe_next+0x34f/0x3b0
[ 3495.460454][T27721] ? kmalloc_array+0x2d/0x40
[ 3495.465124][T27721] vfs_iter_write+0x4c/0x70
[ 3495.469628][T27721] iter_file_splice_write+0x43a/0x790
[ 3495.474997][T27721] ? splice_from_pipe+0xd0/0xd0
[ 3495.479831][T27721] direct_splice_actor+0x80/0xa0
[ 3495.484792][T27721] splice_direct_to_actor+0x345/0x650
[ 3495.490201][T27721] ? do_splice_direct+0x190/0x190
[ 3495.495243][T27721] do_splice_direct+0x106/0x190
[ 3495.500109][T27721] do_sendfile+0x675/0xc40
[ 3495.504518][T27721] __x64_sys_sendfile64+0x102/0x140
[ 3495.509694][T27721] do_syscall_64+0x44/0xd0
[ 3495.514111][T27721] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3495.520033][T27721] RIP: 0033:0x7f0a46a70eb9
[ 3495.524439][T27721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3495.544025][T27721] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3495.552460][T27721] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3495.560413][T27721] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3495.568376][T27721] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3495.576328][T27721] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3495.584278][T27721] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3495.592280][T27721]
[ 3495.595320][T27721] memory: usage 176kB, limit 0kB, failcnt 18493
[ 3495.601597][T27721] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3495.608433][T27721] Memory cgroup stats for /syz1:
[ 3495.608868][T27721] anon 0
[ 3495.608868][T27721] file 118784
[ 3495.608868][T27721] kernel_stack 0
[ 3495.608868][T27721] pagetables 12288
[ 3495.608868][T27721] percpu 0
[ 3495.608868][T27721] sock 0
[ 3495.608868][T27721] shmem 114688
[ 3495.608868][T27721] file_mapped 114688
[ 3495.608868][T27721] file_dirty 0
[ 3495.608868][T27721] file_writeback 0
[ 3495.608868][T27721] swapcached 0
[ 3495.608868][T27721] inactive_anon 32768
[ 3495.608868][T27721] active_anon 81920
[ 3495.608868][T27721] inactive_file 0
[ 3495.608868][T27721] active_file 4096
[ 3495.608868][T27721] unevictable 0
[ 3495.608868][T27721] slab_reclaimable 33968
[ 3495.608868][T27721] slab_unreclaimable 22680
[ 3495.608868][T27721] slab 56648
[ 3495.608868][T27721] workingset_refault_anon 0
[ 3495.608868][T27721] workingset_refault_file 0
[ 3495.608868][T27721] workingset_activate_anon 0
[ 3495.608868][T27721] workingset_activate_file 0
[ 3495.608868][T27721] workingset_restore_anon 0
[ 3495.608868][T27721] workingset_restore_file 0
[ 3495.704772][T27721] Out of memory and no killable processes...
09:21:29 executing program 1:
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
r1 = fork()
process_vm_writev(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0)
tgkill(r1, r0, 0x40)
wait4(0x0, 0x0, 0x2, 0x0)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
wait4(r1, &(0x7f00000000c0), 0x4, &(0x7f0000000280))
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000000, 0x4010, 0xffffffffffffffff, 0xb5dd7000)
09:21:29 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000040)=0x40, 0x4)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x48040, 0x0)
setsockopt$inet_sctp6_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f00000000c0)=0x8, 0x4)
09:21:29 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x7, 0xf7, 0x5, 0x9, 0x0, 0x9, 0x2080, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x81, 0x0, @perf_config_ext={0x1f, 0x1000}, 0x220, 0x6, 0x7, 0x9, 0x101, 0xc1a, 0x8fc5, 0x0, 0x8, 0x0, 0x5}, 0x0, 0xd, r0, 0x3)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f00000000c0)={0x2, 0x4, 0x0, 0x0, 0x1, [{0x7, 0x5, 0x80, '\x00', 0x1}]})
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = fork()
process_vm_writev(r5, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0)
r6 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f0000000540))
perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x5, 0x2, 0x5, 0x9, 0x0, 0x5, 0x16, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x20000000000}, 0x2, 0x8, 0xfffffffc, 0x2, 0xfffffffffffffff9, 0xffff, 0x2, 0x0, 0x100, 0x0, 0x6}, r5, 0xc, r6, 0xf)
r7 = openat$cgroup(r4, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r8, r8, 0x0, 0x2)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x7, 0xf7, 0x5, 0x9, 0x0, 0x9, 0x2080, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x81, 0x0, @perf_config_ext={0x1f, 0x1000}, 0x220, 0x6, 0x7, 0x9, 0x101, 0xc1a, 0x8fc5, 0x0, 0x8, 0x0, 0x5}, 0x0, 0xd, r0, 0x3) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f00000000c0)={0x2, 0x4, 0x0, 0x0, 0x1, [{0x7, 0x5, 0x80, '\x00', 0x1}]}) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
fork() (async)
process_vm_writev(r5, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0) (async)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f0000000540)) (async)
perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x5, 0x2, 0x5, 0x9, 0x0, 0x5, 0x16, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x20000000000}, 0x2, 0x8, 0xfffffffc, 0x2, 0xfffffffffffffff9, 0xffff, 0x2, 0x0, 0x100, 0x0, 0x6}, r5, 0xc, r6, 0xf) (async)
openat$cgroup(r4, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r8, r8, 0x0, 0x2) (async)
09:21:29 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
unshare(0x12020000)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080)=0xfffffffd, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:29 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:29 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x8, 0x1)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x8, 0x1) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
09:21:29 executing program 1:
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
r1 = fork()
process_vm_writev(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0) (async)
tgkill(r1, r0, 0x40)
wait4(0x0, 0x0, 0x2, 0x0)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
wait4(r1, &(0x7f00000000c0), 0x4, &(0x7f0000000280)) (async)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000000, 0x4010, 0xffffffffffffffff, 0xb5dd7000)
[ 3495.829325][T28354] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3495.839302][T28354] CPU: 0 PID: 28354 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3495.847776][T28354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3495.857886][T28354] Call Trace:
[ 3495.861171][T28354]
[ 3495.864094][T28354] dump_stack_lvl+0xd6/0x122
[ 3495.868754][T28354] dump_stack+0x11/0x1b
[ 3495.873019][T28354] dump_header+0x98/0x410
[ 3495.877349][T28354] out_of_memory+0x62c/0x890
[ 3495.881975][T28354] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3495.887788][T28354] memory_max_write+0x32c/0x3d0
[ 3495.892730][T28354] ? memory_max_show+0x70/0x70
[ 3495.897495][T28354] cgroup_file_write+0x161/0x300
[ 3495.902508][T28354] ? __check_object_size+0x22a/0x2d0
[ 3495.907794][T28354] ? cgroup_seqfile_stop+0x70/0x70
[ 3495.912909][T28354] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3495.918241][T28354] do_iter_readv_writev+0x2de/0x380
[ 3495.923444][T28354] do_iter_write+0x192/0x5c0
[ 3495.928104][T28354] ? splice_from_pipe_next+0x34f/0x3b0
[ 3495.933564][T28354] ? kmalloc_array+0x2d/0x40
[ 3495.938157][T28354] vfs_iter_write+0x4c/0x70
[ 3495.942732][T28354] iter_file_splice_write+0x43a/0x790
[ 3495.948110][T28354] ? splice_from_pipe+0xd0/0xd0
[ 3495.952961][T28354] direct_splice_actor+0x80/0xa0
[ 3495.957993][T28354] splice_direct_to_actor+0x345/0x650
[ 3495.963366][T28354] ? do_splice_direct+0x190/0x190
[ 3495.968458][T28354] do_splice_direct+0x106/0x190
[ 3495.973309][T28354] do_sendfile+0x675/0xc40
[ 3495.977747][T28354] __x64_sys_sendfile64+0x102/0x140
[ 3495.982949][T28354] do_syscall_64+0x44/0xd0
[ 3495.987371][T28354] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3495.993278][T28354] RIP: 0033:0x7f0a46a70eb9
[ 3495.997728][T28354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3496.017415][T28354] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
09:21:29 executing program 3:
unshare(0x20000400) (async)
r0 = socket$packet(0x11, 0x2, 0x300) (async)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
unshare(0x12020000) (async)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080)=0xfffffffd, 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
[ 3496.025953][T28354] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3496.034006][T28354] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3496.042007][T28354] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3496.049975][T28354] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3496.057945][T28354] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3496.065913][T28354]
[ 3496.069099][T28354] memory: usage 168kB, limit 0kB, failcnt 18493
09:21:29 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x7, 0xf7, 0x5, 0x9, 0x0, 0x9, 0x2080, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x81, 0x0, @perf_config_ext={0x1f, 0x1000}, 0x220, 0x6, 0x7, 0x9, 0x101, 0xc1a, 0x8fc5, 0x0, 0x8, 0x0, 0x5}, 0x0, 0xd, r0, 0x3)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f00000000c0)={0x2, 0x4, 0x0, 0x0, 0x1, [{0x7, 0x5, 0x80, '\x00', 0x1}]})
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = fork()
process_vm_writev(r5, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0)
r6 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f0000000540))
perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x5, 0x2, 0x5, 0x9, 0x0, 0x5, 0x16, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x20000000000}, 0x2, 0x8, 0xfffffffc, 0x2, 0xfffffffffffffff9, 0xffff, 0x2, 0x0, 0x100, 0x0, 0x6}, r5, 0xc, r6, 0xf)
r7 = openat$cgroup(r4, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r8, r8, 0x0, 0x2)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x7, 0xf7, 0x5, 0x9, 0x0, 0x9, 0x2080, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x81, 0x0, @perf_config_ext={0x1f, 0x1000}, 0x220, 0x6, 0x7, 0x9, 0x101, 0xc1a, 0x8fc5, 0x0, 0x8, 0x0, 0x5}, 0x0, 0xd, r0, 0x3) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)={r3, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f00000000c0)={0x2, 0x4, 0x0, 0x0, 0x1, [{0x7, 0x5, 0x80, '\x00', 0x1}]}) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
fork() (async)
process_vm_writev(r5, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0) (async)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1080, 0x0, 0x0, 0x0, 0x7fffffff, 0xfffffffc, 0x13, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f0000000540)) (async)
perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x5, 0x2, 0x5, 0x9, 0x0, 0x5, 0x16, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x20000000000}, 0x2, 0x8, 0xfffffffc, 0x2, 0xfffffffffffffff9, 0xffff, 0x2, 0x0, 0x100, 0x0, 0x6}, r5, 0xc, r6, 0xf) (async)
openat$cgroup(r4, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r8, r8, 0x0, 0x2) (async)
[ 3496.075359][T28354] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3496.082314][T28354] Memory cgroup stats for /syz1:
[ 3496.093068][T28354] anon 0
[ 3496.093068][T28354] file 118784
[ 3496.093068][T28354] kernel_stack 0
[ 3496.093068][T28354] pagetables 0
[ 3496.093068][T28354] percpu 0
[ 3496.093068][T28354] sock 0
[ 3496.093068][T28354] shmem 114688
[ 3496.093068][T28354] file_mapped 114688
[ 3496.093068][T28354] file_dirty 0
[ 3496.093068][T28354] file_writeback 0
[ 3496.093068][T28354] swapcached 0
[ 3496.093068][T28354] inactive_anon 32768
[ 3496.093068][T28354] active_anon 81920
[ 3496.093068][T28354] inactive_file 0
[ 3496.093068][T28354] active_file 4096
[ 3496.093068][T28354] unevictable 0
[ 3496.093068][T28354] slab_reclaimable 32992
[ 3496.093068][T28354] slab_unreclaimable 19928
[ 3496.093068][T28354] slab 52920
[ 3496.093068][T28354] workingset_refault_anon 0
[ 3496.093068][T28354] workingset_refault_file 0
[ 3496.093068][T28354] workingset_activate_anon 0
[ 3496.093068][T28354] workingset_activate_file 0
09:21:30 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000040)=0x40, 0x4) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 32)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 32)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x48040, 0x0)
setsockopt$inet_sctp6_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f00000000c0)=0x8, 0x4)
09:21:30 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
unshare(0x12020000)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080)=0xfffffffd, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) (async)
unshare(0x12020000) (async)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080)=0xfffffffd, 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
[ 3496.093068][T28354] workingset_restore_anon 0
[ 3496.093068][T28354] workingset_restore_file 0
[ 3496.188665][T28354] Out of memory and no killable processes...
09:21:30 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000040)=0x40, 0x4) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x48040, 0x0)
setsockopt$inet_sctp6_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f00000000c0)=0x8, 0x4)
09:21:30 executing program 3:
unshare(0x20000400)
unshare(0x20000000)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
bind$packet(r1, &(0x7f0000000040)={0x11, 0xc, 0x0, 0x1, 0x6, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x1}, 0x4)
09:21:30 executing program 3:
unshare(0x20000400) (async)
unshare(0x20000000) (async)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
bind$packet(r1, &(0x7f0000000040)={0x11, 0xc, 0x0, 0x1, 0x6, 0x6, @multicast}, 0x14) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x1}, 0x4)
09:21:30 executing program 0:
perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0x3)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:30 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x1, 0x0, &(0x7f0000000740)={0xa, 0x4e2b, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
r1 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
recvmmsg(r1, &(0x7f00000006c0)=[{{&(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/138, 0x8a}, {&(0x7f0000000180)=""/29, 0x1d}, {&(0x7f0000000200)=""/8, 0x8}, {&(0x7f0000000240)=""/199, 0xc7}, {&(0x7f0000000340)=""/16, 0x10}, {&(0x7f0000000380)=""/120, 0x78}, {&(0x7f0000000400)=""/13, 0xd}, {&(0x7f0000000440)=""/7, 0x7}, {&(0x7f0000000480)=""/252, 0xfc}], 0x9, &(0x7f0000000640)=""/77, 0x4d}, 0x5}], 0x1, 0x220, &(0x7f0000000700))
[ 3496.324336][T28909] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3496.334570][T28909] CPU: 0 PID: 28909 Comm: syz-executor.0 Not tainted 5.16.0-syzkaller #0
[ 3496.343001][T28909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3496.353050][T28909] Call Trace:
[ 3496.356326][T28909]
[ 3496.359250][T28909] dump_stack_lvl+0xd6/0x122
[ 3496.363856][T28909] dump_stack+0x11/0x1b
[ 3496.368083][T28909] dump_header+0x98/0x410
[ 3496.372495][T28909] out_of_memory+0x62c/0x890
[ 3496.377082][T28909] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3496.382914][T28909] memory_max_write+0x32c/0x3d0
[ 3496.387774][T28909] ? memory_max_show+0x70/0x70
[ 3496.392539][T28909] cgroup_file_write+0x161/0x300
[ 3496.397491][T28909] ? __check_object_size+0x22a/0x2d0
[ 3496.402818][T28909] ? cgroup_seqfile_stop+0x70/0x70
[ 3496.407993][T28909] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3496.413279][T28909] do_iter_readv_writev+0x2de/0x380
[ 3496.418485][T28909] do_iter_write+0x192/0x5c0
[ 3496.423075][T28909] ? splice_from_pipe_next+0x34f/0x3b0
[ 3496.428541][T28909] ? kmalloc_array+0x2d/0x40
[ 3496.433133][T28909] vfs_iter_write+0x4c/0x70
[ 3496.437644][T28909] iter_file_splice_write+0x43a/0x790
[ 3496.443036][T28909] ? splice_from_pipe+0xd0/0xd0
[ 3496.447890][T28909] direct_splice_actor+0x80/0xa0
[ 3496.452833][T28909] splice_direct_to_actor+0x345/0x650
[ 3496.458302][T28909] ? do_splice_direct+0x190/0x190
[ 3496.463372][T28909] do_splice_direct+0x106/0x190
[ 3496.468293][T28909] do_sendfile+0x675/0xc40
[ 3496.472741][T28909] __x64_sys_sendfile64+0x102/0x140
[ 3496.478026][T28909] do_syscall_64+0x44/0xd0
[ 3496.482499][T28909] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3496.488481][T28909] RIP: 0033:0x7f4d3cb0beb9
[ 3496.492890][T28909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3496.512570][T28909] RSP: 002b:00007f4d3bc82168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3496.521059][T28909] RAX: ffffffffffffffda RBX: 00007f4d3cc1ef60 RCX: 00007f4d3cb0beb9
[ 3496.529026][T28909] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3496.536995][T28909] RBP: 00007f4d3cb6608d R08: 0000000000000000 R09: 0000000000000000
[ 3496.544964][T28909] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3496.552948][T28909] R13: 00007ffcd48e4c5f R14: 00007f4d3bc82300 R15: 0000000000022000
[ 3496.560919][T28909]
[ 3496.564085][T28909] memory: usage 168kB, limit 0kB, failcnt 18493
[ 3496.570410][T28909] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3496.577252][T28909] Memory cgroup stats for /syz1:
[ 3496.590192][T28909] anon 0
[ 3496.590192][T28909] file 118784
[ 3496.590192][T28909] kernel_stack 0
[ 3496.590192][T28909] pagetables 0
[ 3496.590192][T28909] percpu 0
[ 3496.590192][T28909] sock 0
[ 3496.590192][T28909] shmem 114688
[ 3496.590192][T28909] file_mapped 114688
[ 3496.590192][T28909] file_dirty 0
[ 3496.590192][T28909] file_writeback 0
[ 3496.590192][T28909] swapcached 0
[ 3496.590192][T28909] inactive_anon 32768
[ 3496.590192][T28909] active_anon 81920
[ 3496.590192][T28909] inactive_file 0
[ 3496.590192][T28909] active_file 4096
[ 3496.590192][T28909] unevictable 0
[ 3496.590192][T28909] slab_reclaimable 32992
[ 3496.590192][T28909] slab_unreclaimable 19928
[ 3496.590192][T28909] slab 52920
[ 3496.590192][T28909] workingset_refault_anon 0
[ 3496.590192][T28909] workingset_refault_file 0
[ 3496.590192][T28909] workingset_activate_anon 0
09:21:30 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:30 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x1, 0x0, &(0x7f0000000740)={0xa, 0x4e2b, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
r1 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
recvmmsg(r1, &(0x7f00000006c0)=[{{&(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/138, 0x8a}, {&(0x7f0000000180)=""/29, 0x1d}, {&(0x7f0000000200)=""/8, 0x8}, {&(0x7f0000000240)=""/199, 0xc7}, {&(0x7f0000000340)=""/16, 0x10}, {&(0x7f0000000380)=""/120, 0x78}, {&(0x7f0000000400)=""/13, 0xd}, {&(0x7f0000000440)=""/7, 0x7}, {&(0x7f0000000480)=""/252, 0xfc}], 0x9, &(0x7f0000000640)=""/77, 0x4d}, 0x5}], 0x1, 0x220, &(0x7f0000000700))
[ 3496.590192][T28909] workingset_activate_file 0
[ 3496.590192][T28909] workingset_restore_anon 0
[ 3496.590192][T28909] workingset_restore_file 0
[ 3496.685661][T28909] Out of memory and no killable processes...
[ 3496.912855][T26533] device hsr_slave_0 left promiscuous mode
[ 3496.918988][T26533] device hsr_slave_1 left promiscuous mode
[ 3496.925364][T26533] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3496.932806][T26533] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3496.940605][T26533] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3496.948032][T26533] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3496.955867][T26533] device bridge_slave_1 left promiscuous mode
[ 3496.962042][T26533] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3496.969450][T26533] device bridge_slave_0 left promiscuous mode
[ 3496.975571][T26533] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3496.985342][T26533] device veth1_macvtap left promiscuous mode
[ 3496.991358][T26533] device veth0_macvtap left promiscuous mode
[ 3496.997366][T26533] device veth1_vlan left promiscuous mode
[ 3497.003101][T26533] device veth0_vlan left promiscuous mode
[ 3497.078810][T26533] team0 (unregistering): Port device team_slave_1 removed
[ 3497.088224][T26533] team0 (unregistering): Port device team_slave_0 removed
[ 3497.097440][T26533] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3497.108186][T26533] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3497.136728][T26533] bond0 (unregistering): Released all slaves
[ 3497.887869][T29221] lo speed is unknown, defaulting to 1000
[ 3497.922933][T29221] chnl_net:caif_netlink_parms(): no params data found
[ 3497.951533][T29221] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3497.958547][T29221] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3497.966225][T29221] device bridge_slave_0 entered promiscuous mode
[ 3497.973901][T29221] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3497.981036][T29221] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3497.988451][T29221] device bridge_slave_1 entered promiscuous mode
[ 3498.003732][T29221] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3498.013787][T29221] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3498.030631][T29221] team0: Port device team_slave_0 added
[ 3498.037046][T29221] team0: Port device team_slave_1 added
[ 3498.051459][T29221] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3498.058415][T29221] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3498.084320][T29221] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3498.095237][T29221] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3498.102265][T29221] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3498.128137][T29221] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3498.148527][T29221] device hsr_slave_0 entered promiscuous mode
[ 3498.156519][T29221] device hsr_slave_1 entered promiscuous mode
[ 3498.163079][T29221] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3498.171978][T29221] Cannot create hsr debugfs directory
[ 3498.198918][T29221] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3498.205945][T29221] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3498.213154][T29221] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3498.220253][T29221] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3498.246387][T29221] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3498.257026][ T5036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3498.265914][ T5036] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3498.273980][ T5036] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3498.285048][T29221] 8021q: adding VLAN 0 to HW filter on device team0
[ 3498.294704][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3498.303167][T19185] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3498.310192][T19185] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3498.321248][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3498.329423][T19185] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3498.336478][T19185] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3498.351608][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3498.360699][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3498.373556][T29221] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 3498.383978][T29221] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 3498.398332][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3498.406710][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3498.415298][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3498.423588][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3498.433827][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3498.442097][T19185] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3498.452727][T29221] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3498.529028][ T5164] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3498.567632][T29221] device veth0_vlan entered promiscuous mode
[ 3498.574440][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3498.582973][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3498.590719][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3498.600902][T29221] device veth1_vlan entered promiscuous mode
[ 3498.612923][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3498.621027][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3498.628932][ T9656] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3498.638072][T29221] device veth0_macvtap entered promiscuous mode
[ 3498.646140][T29221] device veth1_macvtap entered promiscuous mode
[ 3498.656933][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3498.667350][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3498.677174][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3498.687659][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3498.697457][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3498.707868][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3498.717675][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3498.728099][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3498.737913][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 3498.748318][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3498.759538][T29221] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3498.767790][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3498.777273][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 3498.787372][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3498.797788][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3498.807715][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3498.818125][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3498.827963][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3498.838404][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3498.848208][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3498.858619][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3498.868525][T29221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 3498.879044][T29221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3498.890348][T29221] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3498.898347][T19401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
09:21:33 executing program 1:
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0)
r1 = fork()
process_vm_writev(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0)
tgkill(r1, r0, 0x40)
wait4(0x0, 0x0, 0x2, 0x0)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540))
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x2)
wait4(r1, &(0x7f00000000c0), 0x4, &(0x7f0000000280))
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000000, 0x4010, 0xffffffffffffffff, 0xb5dd7000)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async)
fork() (async)
process_vm_writev(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0) (async)
tgkill(r1, r0, 0x40) (async)
wait4(0x0, 0x0, 0x2, 0x0) (async)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540)) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r3, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r5, r5, 0x0, 0x2) (async)
wait4(r1, &(0x7f00000000c0), 0x4, &(0x7f0000000280)) (async)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000000, 0x4010, 0xffffffffffffffff, 0xb5dd7000) (async)
09:21:33 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x8, 0x1) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:33 executing program 3:
unshare(0x20000400)
unshare(0x20000000)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
bind$packet(r1, &(0x7f0000000040)={0x11, 0xc, 0x0, 0x1, 0x6, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x1}, 0x4)
unshare(0x20000400) (async)
unshare(0x20000000) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) (async)
socket(0xa, 0x3, 0x87) (async)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
bind$packet(r1, &(0x7f0000000040)={0x11, 0xc, 0x0, 0x1, 0x6, 0x6, @multicast}, 0x14) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x1}, 0x4) (async)
09:21:33 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:33 executing program 0:
perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0x3) (async, rerun: 64)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 64)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:33 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x1, 0x0, &(0x7f0000000740)={0xa, 0x4e2b, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
r1 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
recvmmsg(r1, &(0x7f00000006c0)=[{{&(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/138, 0x8a}, {&(0x7f0000000180)=""/29, 0x1d}, {&(0x7f0000000200)=""/8, 0x8}, {&(0x7f0000000240)=""/199, 0xc7}, {&(0x7f0000000340)=""/16, 0x10}, {&(0x7f0000000380)=""/120, 0x78}, {&(0x7f0000000400)=""/13, 0xd}, {&(0x7f0000000440)=""/7, 0x7}, {&(0x7f0000000480)=""/252, 0xfc}], 0x9, &(0x7f0000000640)=""/77, 0x4d}, 0x5}], 0x1, 0x220, &(0x7f0000000700))
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x1, 0x0, &(0x7f0000000740)={0xa, 0x4e2b, 0x0, @rand_addr=' \x01\x00'}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
socket$inet(0x2, 0x4000000805, 0x0) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
recvmmsg(r1, &(0x7f00000006c0)=[{{&(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/138, 0x8a}, {&(0x7f0000000180)=""/29, 0x1d}, {&(0x7f0000000200)=""/8, 0x8}, {&(0x7f0000000240)=""/199, 0xc7}, {&(0x7f0000000340)=""/16, 0x10}, {&(0x7f0000000380)=""/120, 0x78}, {&(0x7f0000000400)=""/13, 0xd}, {&(0x7f0000000440)=""/7, 0x7}, {&(0x7f0000000480)=""/252, 0xfc}], 0x9, &(0x7f0000000640)=""/77, 0x4d}, 0x5}], 0x1, 0x220, &(0x7f0000000700)) (async)
09:21:33 executing program 0:
perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0x3) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async, rerun: 32)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (rerun: 32)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
09:21:33 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:33 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
unshare(0x2000000)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0xfffd}, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x2020000)
09:21:33 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:33 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x103243, 0x0)
sendfile(r2, r3, &(0x7f00000000c0)=0x1, 0x8)
r4 = dup3(r3, r2, 0x80000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000940), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000980)={0x18, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r6, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}]}, 0x1c}}, 0x4000050)
sendfile(r2, r2, 0x0, 0x2)
09:21:33 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000000)={0x0, 0x72, 0xa, [0x6, 0x9, 0x4, 0x3, 0x5, 0x8, 0x318, 0x3, 0x9, 0x55b9]}, 0x1c)
sendto$inet6(r0, &(0x7f0000000100)="a698e1e6beb4b9e43483aa6a0c9d3e514aa3e50d316cfc8c31b914", 0x1b, 0xc080, 0x0, 0x0)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000040)={[0x5]}, 0x8)
setsockopt$inet6_buf(r1, 0x29, 0xcc, &(0x7f0000000080)="e8df1e4ae53223324c130e9295645785cce5d9af1b3f4c5991f5b6c54f29fefe79a3bb07cf91c5653ce0ba4166e3c8c6cc780c1d09529c3cb72066e0ff60e77ea67b5e8ca51d2a58cb6003bd6d7d3a5018f653", 0x53)
[ 3499.916148][T29591] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3499.926457][T29591] CPU: 0 PID: 29591 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3499.934865][T29591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3499.944924][T29591] Call Trace:
[ 3499.948277][T29591]
[ 3499.951277][T29591] dump_stack_lvl+0xd6/0x122
[ 3499.955963][T29591] dump_stack+0x11/0x1b
[ 3499.960157][T29591] dump_header+0x98/0x410
[ 3499.964602][T29591] oom_kill_process+0x18e/0x3f0
[ 3499.969460][T29591] out_of_memory+0x5ed/0x890
[ 3499.974048][T29591] ? _raw_spin_unlock_irqrestore+0x3d/0x60
[ 3499.979875][T29591] memory_max_write+0x32c/0x3d0
[ 3499.984735][T29591] ? memory_max_show+0x70/0x70
[ 3499.989530][T29591] cgroup_file_write+0x161/0x300
[ 3499.994479][T29591] ? __check_object_size+0x22a/0x2d0
[ 3499.999808][T29591] ? cgroup_seqfile_stop+0x70/0x70
[ 3500.004920][T29591] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3500.010213][T29591] do_iter_readv_writev+0x2de/0x380
[ 3500.015494][T29591] do_iter_write+0x192/0x5c0
[ 3500.020088][T29591] ? splice_from_pipe_next+0x34f/0x3b0
[ 3500.025617][T29591] ? kmalloc_array+0x2d/0x40
[ 3500.030248][T29591] vfs_iter_write+0x4c/0x70
[ 3500.034753][T29591] iter_file_splice_write+0x43a/0x790
[ 3500.040171][T29591] ? splice_from_pipe+0xd0/0xd0
[ 3500.045080][T29591] direct_splice_actor+0x80/0xa0
[ 3500.050174][T29591] splice_direct_to_actor+0x345/0x650
[ 3500.055550][T29591] ? do_splice_direct+0x190/0x190
[ 3500.060583][T29591] do_splice_direct+0x106/0x190
[ 3500.065473][T29591] do_sendfile+0x675/0xc40
[ 3500.070008][T29591] __x64_sys_sendfile64+0x102/0x140
[ 3500.075209][T29591] do_syscall_64+0x44/0xd0
[ 3500.079629][T29591] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3500.085531][T29591] RIP: 0033:0x7f1a6e8e3eb9
[ 3500.089947][T29591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3500.109553][T29591] RSP: 002b:00007f1a6da39168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3500.117965][T29591] RAX: ffffffffffffffda RBX: 00007f1a6e9f7030 RCX: 00007f1a6e8e3eb9
[ 3500.125935][T29591] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3500.133907][T29591] RBP: 00007f1a6e93e08d R08: 0000000000000000 R09: 0000000000000000
[ 3500.141976][T29591] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3500.149943][T29591] R13: 00007ffdc1fee2ef R14: 00007f1a6da39300 R15: 0000000000022000
[ 3500.157989][T29591]
[ 3500.161136][T29591] memory: usage 9048kB, limit 0kB, failcnt 18493
[ 3500.167456][T29591] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3500.174329][T29591] Memory cgroup stats for /syz1:
[ 3500.184604][T29591] anon 8622080
[ 3500.184604][T29591] file 118784
[ 3500.184604][T29591] kernel_stack 81920
[ 3500.184604][T29591] pagetables 233472
[ 3500.184604][T29591] percpu 0
[ 3500.184604][T29591] sock 0
[ 3500.184604][T29591] shmem 114688
[ 3500.184604][T29591] file_mapped 114688
[ 3500.184604][T29591] file_dirty 0
[ 3500.184604][T29591] file_writeback 0
[ 3500.184604][T29591] swapcached 0
[ 3500.184604][T29591] inactive_anon 8654848
[ 3500.184604][T29591] active_anon 81920
[ 3500.184604][T29591] inactive_file 0
[ 3500.184604][T29591] active_file 4096
[ 3500.184604][T29591] unevictable 0
[ 3500.184604][T29591] slab_reclaimable 44160
[ 3500.184604][T29591] slab_unreclaimable 94888
[ 3500.184604][T29591] slab 139048
[ 3500.184604][T29591] workingset_refault_anon 0
[ 3500.184604][T29591] workingset_refault_file 0
[ 3500.184604][T29591] workingset_activate_anon 0
[ 3500.184604][T29591] workingset_activate_file 0
[ 3500.184604][T29591] workingset_restore_anon 0
[ 3500.277544][T29591] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=29353,uid=0
[ 3500.292867][T29591] Memory cgroup out of memory: Killed process 29353 (syz-executor.1) total-vm:48612kB, anon-rss:4484kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3500.319221][ T26] oom_reaper: reaped process 29353 (syz-executor.1), now anon-rss:0kB, file-rss:14140kB, shmem-rss:0kB
[ 3500.332731][T29590] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3500.342700][T29590] CPU: 1 PID: 29590 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3500.351173][T29590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3500.361298][T29590] Call Trace:
[ 3500.364575][T29590]
[ 3500.367503][T29590] dump_stack_lvl+0xd6/0x122
[ 3500.372147][T29590] dump_stack+0x11/0x1b
[ 3500.376329][T29590] dump_header+0x98/0x410
[ 3500.380672][T29590] oom_kill_process+0x18e/0x3f0
[ 3500.385566][T29590] out_of_memory+0x5ed/0x890
[ 3500.390165][T29590] memory_max_write+0x32c/0x3d0
[ 3500.395070][T29590] ? memory_max_show+0x70/0x70
[ 3500.399959][T29590] cgroup_file_write+0x161/0x300
[ 3500.404900][T29590] ? __check_object_size+0x22a/0x2d0
[ 3500.410281][T29590] ? cgroup_seqfile_stop+0x70/0x70
[ 3500.415399][T29590] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3500.420687][T29590] do_iter_readv_writev+0x2de/0x380
[ 3500.425982][T29590] do_iter_write+0x192/0x5c0
[ 3500.430597][T29590] ? splice_from_pipe_next+0x34f/0x3b0
[ 3500.436062][T29590] ? kmalloc_array+0x2d/0x40
[ 3500.440708][T29590] vfs_iter_write+0x4c/0x70
[ 3500.445207][T29590] iter_file_splice_write+0x43a/0x790
[ 3500.450596][T29590] ? splice_from_pipe+0xd0/0xd0
[ 3500.455454][T29590] direct_splice_actor+0x80/0xa0
[ 3500.460464][T29590] splice_direct_to_actor+0x345/0x650
[ 3500.465901][T29590] ? do_splice_direct+0x190/0x190
[ 3500.471078][T29590] do_splice_direct+0x106/0x190
[ 3500.475936][T29590] do_sendfile+0x675/0xc40
[ 3500.480428][T29590] __x64_sys_sendfile64+0x102/0x140
[ 3500.485688][T29590] do_syscall_64+0x44/0xd0
[ 3500.490181][T29590] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3500.496120][T29590] RIP: 0033:0x7f0a46a70eb9
[ 3500.500529][T29590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3500.520173][T29590] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3500.528584][T29590] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3500.536549][T29590] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3500.544616][T29590] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3500.552637][T29590] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3500.560611][T29590] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3500.568586][T29590]
[ 3500.571771][T29590] memory: usage 4780kB, limit 0kB, failcnt 18529
[ 3500.578085][T29590] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3500.584948][T29590] Memory cgroup stats for /syz1:
[ 3500.591646][T29590] anon 4374528
[ 3500.591646][T29590] file 118784
[ 3500.591646][T29590] kernel_stack 81920
[ 3500.591646][T29590] pagetables 233472
[ 3500.591646][T29590] percpu 0
[ 3500.591646][T29590] sock 0
[ 3500.591646][T29590] shmem 114688
[ 3500.591646][T29590] file_mapped 114688
[ 3500.591646][T29590] file_dirty 0
[ 3500.591646][T29590] file_writeback 0
[ 3500.591646][T29590] swapcached 0
[ 3500.591646][T29590] inactive_anon 4407296
[ 3500.591646][T29590] active_anon 81920
[ 3500.591646][T29590] inactive_file 4096
[ 3500.591646][T29590] active_file 0
[ 3500.591646][T29590] unevictable 0
[ 3500.591646][T29590] slab_reclaimable 39928
[ 3500.591646][T29590] slab_unreclaimable 94888
[ 3500.591646][T29590] slab 134816
[ 3500.591646][T29590] workingset_refault_anon 0
[ 3500.591646][T29590] workingset_refault_file 0
[ 3500.591646][T29590] workingset_activate_anon 0
[ 3500.591646][T29590] workingset_activate_file 0
[ 3500.591646][T29590] workingset_restore_anon 0
[ 3500.684535][T29590] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=29256,uid=0
[ 3500.699826][T29590] Memory cgroup out of memory: Killed process 29256 (syz-executor.1) total-vm:48612kB, anon-rss:4472kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3500.722683][ T26] oom_reaper: reaped process 29256 (syz-executor.1), now anon-rss:0kB, file-rss:14336kB, shmem-rss:0kB
[ 3500.733827][T29590] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3500.743791][T29590] CPU: 1 PID: 29590 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3500.752814][T29590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3500.762864][T29590] Call Trace:
[ 3500.766135][T29590]
[ 3500.769060][T29590] dump_stack_lvl+0xd6/0x122
[ 3500.773683][T29590] dump_stack+0x11/0x1b
[ 3500.777848][T29590] dump_header+0x98/0x410
[ 3500.782177][T29590] oom_kill_process+0x18e/0x3f0
[ 3500.787026][T29590] out_of_memory+0x5ed/0x890
[ 3500.791623][T29590] memory_max_write+0x32c/0x3d0
[ 3500.796490][T29590] ? memory_max_show+0x70/0x70
[ 3500.801255][T29590] cgroup_file_write+0x161/0x300
[ 3500.806192][T29590] ? __check_object_size+0x22a/0x2d0
[ 3500.811566][T29590] ? cgroup_seqfile_stop+0x70/0x70
[ 3500.816681][T29590] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3500.822040][T29590] do_iter_readv_writev+0x2de/0x380
[ 3500.827240][T29590] do_iter_write+0x192/0x5c0
[ 3500.831831][T29590] ? splice_from_pipe_next+0x34f/0x3b0
[ 3500.837340][T29590] ? kmalloc_array+0x2d/0x40
[ 3500.841938][T29590] vfs_iter_write+0x4c/0x70
[ 3500.846441][T29590] iter_file_splice_write+0x43a/0x790
[ 3500.851823][T29590] ? splice_from_pipe+0xd0/0xd0
[ 3500.856678][T29590] direct_splice_actor+0x80/0xa0
[ 3500.861644][T29590] splice_direct_to_actor+0x345/0x650
[ 3500.867140][T29590] ? do_splice_direct+0x190/0x190
[ 3500.872169][T29590] do_splice_direct+0x106/0x190
[ 3500.877105][T29590] do_sendfile+0x675/0xc40
[ 3500.881654][T29590] __x64_sys_sendfile64+0x102/0x140
[ 3500.886845][T29590] do_syscall_64+0x44/0xd0
[ 3500.891260][T29590] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3500.897159][T29590] RIP: 0033:0x7f0a46a70eb9
[ 3500.901570][T29590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3500.921173][T29590] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3500.929599][T29590] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3500.937564][T29590] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3500.945529][T29590] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3500.953493][T29590] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3500.961456][T29590] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3500.969434][T29590]
[ 3500.972540][T29590] memory: usage 612kB, limit 0kB, failcnt 18529
[ 3500.978774][T29590] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3500.985638][T29590] Memory cgroup stats for /syz1:
[ 3500.993030][T29590] anon 110592
[ 3500.993030][T29590] file 118784
[ 3500.993030][T29590] kernel_stack 49152
[ 3500.993030][T29590] pagetables 86016
[ 3500.993030][T29590] percpu 0
[ 3500.993030][T29590] sock 0
[ 3500.993030][T29590] shmem 114688
[ 3500.993030][T29590] file_mapped 114688
[ 3500.993030][T29590] file_dirty 0
[ 3500.993030][T29590] file_writeback 0
[ 3500.993030][T29590] swapcached 0
[ 3500.993030][T29590] inactive_anon 143360
[ 3500.993030][T29590] active_anon 81920
[ 3500.993030][T29590] inactive_file 4096
[ 3500.993030][T29590] active_file 0
[ 3500.993030][T29590] unevictable 0
[ 3500.993030][T29590] slab_reclaimable 38784
[ 3500.993030][T29590] slab_unreclaimable 66288
[ 3500.993030][T29590] slab 105072
[ 3500.993030][T29590] workingset_refault_anon 0
[ 3500.993030][T29590] workingset_refault_file 0
[ 3500.993030][T29590] workingset_activate_anon 0
[ 3500.993030][T29590] workingset_activate_file 0
[ 3500.993030][T29590] workingset_restore_anon 0
[ 3501.085543][T29590] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=29288,uid=0
[ 3501.100862][T29590] Memory cgroup out of memory: Killed process 29288 (syz-executor.1) total-vm:48876kB, anon-rss:380kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000
09:21:35 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
r1 = fork()
process_vm_writev(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0)
rt_sigqueueinfo(r1, 0x41, &(0x7f00000000c0)={0x32, 0x8a})
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
09:21:35 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
unshare(0x2000000) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0xfffd}, 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x2020000)
09:21:35 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 64)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 64)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000000)={0x0, 0x72, 0xa, [0x6, 0x9, 0x4, 0x3, 0x5, 0x8, 0x318, 0x3, 0x9, 0x55b9]}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000100)="a698e1e6beb4b9e43483aa6a0c9d3e514aa3e50d316cfc8c31b914", 0x1b, 0xc080, 0x0, 0x0) (async)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000040)={[0x5]}, 0x8)
setsockopt$inet6_buf(r1, 0x29, 0xcc, &(0x7f0000000080)="e8df1e4ae53223324c130e9295645785cce5d9af1b3f4c5991f5b6c54f29fefe79a3bb07cf91c5653ce0ba4166e3c8c6cc780c1d09529c3cb72066e0ff60e77ea67b5e8ca51d2a58cb6003bd6d7d3a5018f653", 0x53)
09:21:35 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:35 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x103243, 0x0)
sendfile(r2, r3, &(0x7f00000000c0)=0x1, 0x8) (async)
r4 = dup3(r3, r2, 0x80000) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000940), 0xffffffffffffffff) (rerun: 64)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000980)={0x18, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r6, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}]}, 0x1c}}, 0x4000050) (async)
sendfile(r2, r2, 0x0, 0x2)
[ 3501.139335][T29221] syz-executor.1 invoked oom-killer: gfp_mask=0xc40(GFP_NOFS), order=0, oom_score_adj=0
[ 3501.149119][T29221] CPU: 1 PID: 29221 Comm: syz-executor.1 Not tainted 5.16.0-syzkaller #0
[ 3501.157528][T29221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3501.167625][T29221] Call Trace:
[ 3501.170982][T29221]
[ 3501.173909][T29221] dump_stack_lvl+0xd6/0x122
[ 3501.178574][T29221] dump_stack+0x11/0x1b
[ 3501.182766][T29221] dump_header+0x98/0x410
[ 3501.187093][T29221] oom_kill_process+0x18e/0x3f0
[ 3501.191951][T29221] out_of_memory+0x5ed/0x890
[ 3501.196542][T29221] ? mem_cgroup_iter+0x29b/0x370
[ 3501.201533][T29221] mem_cgroup_oom+0x484/0x520
[ 3501.206214][T29221] try_charge_memcg+0x75c/0xa50
[ 3501.211067][T29221] ? __rcu_read_unlock+0x5c/0x290
[ 3501.216203][T29221] obj_cgroup_charge_pages+0xac/0x140
[ 3501.221570][T29221] obj_cgroup_charge+0xe2/0x1b0
[ 3501.226418][T29221] ? ext4_alloc_inode+0x19/0x1b0
[ 3501.231358][T29221] kmem_cache_alloc+0x96/0x320
09:21:35 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x103243, 0x0)
sendfile(r2, r3, &(0x7f00000000c0)=0x1, 0x8)
r4 = dup3(r3, r2, 0x80000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000940), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000980)={0x18, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r6, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}]}, 0x1c}}, 0x4000050)
sendfile(r2, r2, 0x0, 0x2)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x103243, 0x0) (async)
sendfile(r2, r3, &(0x7f00000000c0)=0x1, 0x8) (async)
dup3(r3, r2, 0x80000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000940), 0xffffffffffffffff) (async)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000980)={0x18, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}}, 0x0) (async)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r6, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}]}, 0x1c}}, 0x4000050) (async)
sendfile(r2, r2, 0x0, 0x2) (async)
[ 3501.236147][T29221] ? set_qf_name+0x1c0/0x1c0
[ 3501.240742][T29221] ext4_alloc_inode+0x19/0x1b0
[ 3501.245540][T29221] ? set_qf_name+0x1c0/0x1c0
[ 3501.250131][T29221] iget_locked+0x12b/0x5c0
[ 3501.254552][T29221] __ext4_iget+0x11b/0x1c30
[ 3501.259064][T29221] ? d_alloc_parallel+0xc31/0xca0
[ 3501.264091][T29221] ext4_lookup+0x12c/0x310
[ 3501.268570][T29221] __lookup_slow+0x182/0x250
[ 3501.273167][T29221] walk_component+0x2b6/0x360
[ 3501.277958][T29221] path_lookupat+0x12d/0x3d0
[ 3501.282563][T29221] filename_lookup+0x130/0x310
[ 3501.287392][T29221] user_path_at_empty+0x3e/0x110
[ 3501.292334][T29221] __x64_sys_umount+0x84/0xe0
[ 3501.297017][T29221] do_syscall_64+0x44/0xd0
[ 3501.301468][T29221] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3501.307386][T29221] RIP: 0033:0x7f1a6e8e5327
[ 3501.311822][T29221] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3501.331431][T29221] RSP: 002b:00007ffdc1fed448 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
09:21:35 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
mount(&(0x7f0000000040)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='affs\x00', 0x40028, &(0x7f0000000200)='+\x00')
sendfile(r2, r2, 0x0, 0x2)
09:21:35 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000000)={0x0, 0x72, 0xa, [0x6, 0x9, 0x4, 0x3, 0x5, 0x8, 0x318, 0x3, 0x9, 0x55b9]}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000100)="a698e1e6beb4b9e43483aa6a0c9d3e514aa3e50d316cfc8c31b914", 0x1b, 0xc080, 0x0, 0x0) (async)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000040)={[0x5]}, 0x8)
setsockopt$inet6_buf(r1, 0x29, 0xcc, &(0x7f0000000080)="e8df1e4ae53223324c130e9295645785cce5d9af1b3f4c5991f5b6c54f29fefe79a3bb07cf91c5653ce0ba4166e3c8c6cc780c1d09529c3cb72066e0ff60e77ea67b5e8ca51d2a58cb6003bd6d7d3a5018f653", 0x53)
[ 3501.339904][T29221] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1a6e8e5327
[ 3501.347906][T29221] RDX: 00007ffdc1fed51a RSI: 000000000000000a RDI: 00007ffdc1fed510
[ 3501.355950][T29221] RBP: 00007ffdc1fed510 R08: 00000000ffffffff R09: 00007ffdc1fed2e0
[ 3501.364021][T29221] R10: 0000555555c84753 R11: 0000000000000246 R12: 00007f1a6e93d1ea
[ 3501.372068][T29221] R13: 00007ffdc1fee5d0 R14: 0000555555c846f0 R15: 00007ffdc1fee610
[ 3501.380039][T29221]
[ 3501.383222][T29221] memory: usage 264kB, limit 0kB, failcnt 18548
09:21:35 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
unshare(0x2000000)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0xfffd}, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x2020000)
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
unshare(0x2000000) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0xfffd}, 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
unshare(0x2020000) (async)
09:21:35 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x534, @empty, 0x6}, 0x1c)
[ 3501.389463][T29221] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3501.396328][T29221] Memory cgroup stats for /syz1:
[ 3501.406774][T30024] cgroup2: Unknown parameter '+'
09:21:35 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x3}, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:35 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async, rerun: 32)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 32)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x534, @empty, 0x6}, 0x1c)
[ 3501.484501][T29221] anon 45056
[ 3501.484501][T29221] file 118784
[ 3501.484501][T29221] kernel_stack 0
[ 3501.484501][T29221] pagetables 8192
[ 3501.484501][T29221] percpu 0
[ 3501.484501][T29221] sock 0
[ 3501.484501][T29221] shmem 114688
[ 3501.484501][T29221] file_mapped 114688
[ 3501.484501][T29221] file_dirty 0
[ 3501.484501][T29221] file_writeback 0
[ 3501.484501][T29221] swapcached 0
[ 3501.484501][T29221] inactive_anon 77824
[ 3501.484501][T29221] active_anon 81920
[ 3501.484501][T29221] inactive_file 0
[ 3501.484501][T29221] active_file 4096
[ 3501.484501][T29221] unevictable 0
[ 3501.484501][T29221] slab_reclaimable 35880
[ 3501.484501][T29221] slab_unreclaimable 20520
[ 3501.484501][T29221] slab 56400
[ 3501.484501][T29221] workingset_refault_anon 0
[ 3501.484501][T29221] workingset_refault_file 0
[ 3501.484501][T29221] workingset_activate_anon 0
[ 3501.484501][T29221] workingset_activate_file 0
[ 3501.484501][T29221] workingset_restore_anon 0
[ 3501.484501][T29221] workingset_restore_file 0
[ 3501.575670][T29221] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=29221,uid=0
[ 3501.590953][T29221] Memory cgroup out of memory: Killed process 29221 (syz-executor.1) total-vm:48480kB, anon-rss:364kB, file-rss:14336kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:0
[ 3501.610111][ T26] oom_reaper: reaped process 29221 (syz-executor.1), now anon-rss:0kB, file-rss:13492kB, shmem-rss:0kB
[ 3501.621195][T30024] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3501.631225][T30024] CPU: 1 PID: 30024 Comm: syz-executor.5 Not tainted 5.16.0-syzkaller #0
[ 3501.639646][T30024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3501.649708][T30024] Call Trace:
[ 3501.653000][T30024]
[ 3501.655933][T30024] dump_stack_lvl+0xd6/0x122
[ 3501.660648][T30024] dump_stack+0x11/0x1b
[ 3501.664813][T30024] dump_header+0x98/0x410
[ 3501.669186][T30024] out_of_memory+0x62c/0x890
[ 3501.673864][T30024] memory_max_write+0x32c/0x3d0
[ 3501.678751][T30024] ? memory_max_show+0x70/0x70
[ 3501.683524][T30024] cgroup_file_write+0x161/0x300
[ 3501.688471][T30024] ? __check_object_size+0x22a/0x2d0
[ 3501.693767][T30024] ? cgroup_seqfile_stop+0x70/0x70
[ 3501.698884][T30024] kernfs_fop_write_iter+0x1d3/0x2d0
[ 3501.704175][T30024] do_iter_readv_writev+0x2de/0x380
[ 3501.709383][T30024] do_iter_write+0x192/0x5c0
[ 3501.713979][T30024] ? splice_from_pipe_next+0x34f/0x3b0
[ 3501.719496][T30024] ? kmalloc_array+0x2d/0x40
[ 3501.724234][T30024] vfs_iter_write+0x4c/0x70
[ 3501.728821][T30024] iter_file_splice_write+0x43a/0x790
[ 3501.734206][T30024] ? splice_from_pipe+0xd0/0xd0
[ 3501.739066][T30024] direct_splice_actor+0x80/0xa0
[ 3501.744027][T30024] splice_direct_to_actor+0x345/0x650
[ 3501.749411][T30024] ? do_splice_direct+0x190/0x190
[ 3501.754491][T30024] do_splice_direct+0x106/0x190
[ 3501.759374][T30024] do_sendfile+0x675/0xc40
[ 3501.763864][T30024] __x64_sys_sendfile64+0x102/0x140
[ 3501.769116][T30024] do_syscall_64+0x44/0xd0
[ 3501.773543][T30024] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 3501.779449][T30024] RIP: 0033:0x7f0a46a70eb9
[ 3501.784023][T30024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3501.803635][T30024] RSP: 002b:00007f0a45be7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 3501.812125][T30024] RAX: ffffffffffffffda RBX: 00007f0a46b83f60 RCX: 00007f0a46a70eb9
[ 3501.820105][T30024] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[ 3501.828079][T30024] RBP: 00007f0a46acb08d R08: 0000000000000000 R09: 0000000000000000
[ 3501.836055][T30024] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 3501.844031][T30024] R13: 00007ffcaa90c29f R14: 00007f0a45be7300 R15: 0000000000022000
[ 3501.852062][T30024]
[ 3501.855191][T30024] memory: usage 176kB, limit 0kB, failcnt 18565
[ 3501.861463][T30024] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3501.868380][T30024] Memory cgroup stats for /syz1:
[ 3501.870555][T30024] anon 0
[ 3501.870555][T30024] file 118784
[ 3501.870555][T30024] kernel_stack 0
[ 3501.870555][T30024] pagetables 0
[ 3501.870555][T30024] percpu 0
[ 3501.870555][T30024] sock 0
[ 3501.870555][T30024] shmem 114688
[ 3501.870555][T30024] file_mapped 114688
[ 3501.870555][T30024] file_dirty 0
[ 3501.870555][T30024] file_writeback 0
[ 3501.870555][T30024] swapcached 0
[ 3501.870555][T30024] inactive_anon 32768
[ 3501.870555][T30024] active_anon 81920
[ 3501.870555][T30024] inactive_file 4096
[ 3501.870555][T30024] active_file 0
[ 3501.870555][T30024] unevictable 0
[ 3501.870555][T30024] slab_reclaimable 35880
[ 3501.870555][T30024] slab_unreclaimable 20520
09:21:35 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async)
tgkill(0x0, 0x0, 0x0) (async)
wait4(0x0, 0x0, 0x2, 0x0) (async)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540)) (async)
r1 = fork()
process_vm_writev(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0) (async)
rt_sigqueueinfo(r1, 0x41, &(0x7f00000000c0)={0x32, 0x8a}) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
09:21:35 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x534, @empty, 0x6}, 0x1c)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x534, @empty, 0x6}, 0x1c) (async)
09:21:35 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300) (async)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x3}, 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:35 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
mount(&(0x7f0000000040)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='affs\x00', 0x40028, &(0x7f0000000200)='+\x00') (async)
sendfile(r2, r2, 0x0, 0x2)
09:21:35 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x3}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
[ 3501.870555][T30024] slab 56400
[ 3501.870555][T30024] workingset_refault_anon 0
[ 3501.870555][T30024] workingset_refault_file 0
[ 3501.870555][T30024] workingset_activate_anon 0
[ 3501.870555][T30024] workingset_activate_file 0
[ 3501.870555][T30024] workingset_restore_anon 0
[ 3501.870555][T30024] workingset_restore_file 0
[ 3501.966079][T30024] Out of memory and no killable processes...
09:21:35 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800))
tgkill(0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540))
r1 = fork()
process_vm_writev(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0)
rt_sigqueueinfo(r1, 0x41, &(0x7f00000000c0)={0x32, 0x8a})
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
perf_event_open(&(0x7f000001d000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)) (async)
tgkill(0x0, 0x0, 0x0) (async)
wait4(0x0, 0x0, 0x2, 0x0) (async)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000540)) (async)
fork() (async)
process_vm_writev(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/186, 0x7ffff000}], 0x1, 0x0) (async)
rt_sigqueueinfo(r1, 0x41, &(0x7f00000000c0)={0x32, 0x8a}) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0xa4152000) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r4, r4, 0x0, 0x2) (async)
09:21:35 executing program 3:
unshare(0x20000400) (async)
r0 = socket$packet(0x11, 0x2, 0x300) (async)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x3}, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:35 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback, 0x6}, 0x1c)
r1 = dup3(r0, r0, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000040)={0x0, @in={{0x2, 0x4e24, @multicast1}}, 0x1f, 0x96e}, &(0x7f0000000100)=0x90)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
sendto$inet(r2, &(0x7f0000000180)="f4c6af351d351c46734d781faf56ce", 0xf, 0x20000000, &(0x7f0000000200)={0x2, 0x4e20, @rand_addr=0x64010101}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x74, &(0x7f0000000040)={r5, 0x0, 0x30}, &(0x7f0000000080)=0x18)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000140)={r5, 0x7}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
09:21:35 executing program 5:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async, rerun: 64)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
mount(&(0x7f0000000040)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='affs\x00', 0x40028, &(0x7f0000000200)='+\x00') (async, rerun: 64)
sendfile(r2, r2, 0x0, 0x2) (rerun: 64)
09:21:35 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
r2 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x8000)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x3}, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:36 executing program 3:
unshare(0x20000400) (async)
r0 = socket$packet(0x11, 0x2, 0x300) (async)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async, rerun: 64)
r2 = socket(0xa, 0x3, 0x87) (rerun: 64)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x8000) (async)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x3}, 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
09:21:36 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r0, 0x0)
write$vga_arbiter(r0, &(0x7f00000000c0)=@target={'target ', {'PCI:', 'c', ':', '18', ':', 'a', '.', 'e'}}, 0x14)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
copy_file_range(r1, &(0x7f0000000040)=0x1f, 0xffffffffffffffff, 0x0, 0x4, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r3, 0x84, 0x70, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e22, @multicast1}}, [0x7, 0x1, 0x100, 0x2, 0x40, 0x8001, 0x6, 0x10000, 0xff, 0x7fff, 0x5, 0x4, 0x5, 0x2, 0x3]}, &(0x7f0000000100)=0x100)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000300)={0x80, 0xc, 0x9bd6, 0x7, r5}, &(0x7f0000000340)=0x10)
09:21:36 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback, 0x6}, 0x1c)
r1 = dup3(r0, r0, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000040)={0x0, @in={{0x2, 0x4e24, @multicast1}}, 0x1f, 0x96e}, &(0x7f0000000100)=0x90)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
sendto$inet(r2, &(0x7f0000000180)="f4c6af351d351c46734d781faf56ce", 0xf, 0x20000000, &(0x7f0000000200)={0x2, 0x4e20, @rand_addr=0x64010101}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x74, &(0x7f0000000040)={r5, 0x0, 0x30}, &(0x7f0000000080)=0x18)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000140)={r5, 0x7}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x0, 0x10}, 0xc) (async)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback, 0x6}, 0x1c) (async)
dup3(r0, r0, 0x0) (async)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000040)={0x0, @in={{0x2, 0x4e24, @multicast1}}, 0x1f, 0x96e}, &(0x7f0000000100)=0x90) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
sendto$inet(r2, &(0x7f0000000180)="f4c6af351d351c46734d781faf56ce", 0xf, 0x20000000, &(0x7f0000000200)={0x2, 0x4e20, @rand_addr=0x64010101}, 0x10) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x74, &(0x7f0000000040)={r5, 0x0, 0x30}, &(0x7f0000000080)=0x18) (async)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000140)={r5, 0x7}, 0xc) (async)
sendto$inet6(r0, &(0x7f0000847fff)='4', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r0, &(0x7f0000000000)="e7", 0x1, 0x0, 0x0, 0x0) (async)
09:21:36 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r0, 0x0)
write$vga_arbiter(r0, &(0x7f00000000c0)=@target={'target ', {'PCI:', 'c', ':', '18', ':', 'a', '.', 'e'}}, 0x14)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
copy_file_range(r1, &(0x7f0000000040)=0x1f, 0xffffffffffffffff, 0x0, 0x4, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r3, 0x84, 0x70, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e22, @multicast1}}, [0x7, 0x1, 0x100, 0x2, 0x40, 0x8001, 0x6, 0x10000, 0xff, 0x7fff, 0x5, 0x4, 0x5, 0x2, 0x3]}, &(0x7f0000000100)=0x100)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000300)={0x80, 0xc, 0x9bd6, 0x7, r5}, &(0x7f0000000340)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r0, 0x0) (async)
write$vga_arbiter(r0, &(0x7f00000000c0)=@target={'target ', {'PCI:', 'c', ':', '18', ':', 'a', '.', 'e'}}, 0x14) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
socket$inet(0x2, 0x4000000805, 0x0) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
copy_file_range(r1, &(0x7f0000000040)=0x1f, 0xffffffffffffffff, 0x0, 0x4, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0) (async)
openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0) (async)
sendfile(r4, r4, 0x0, 0x2) (async)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r3, 0x84, 0x70, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e22, @multicast1}}, [0x7, 0x1, 0x100, 0x2, 0x40, 0x8001, 0x6, 0x10000, 0xff, 0x7fff, 0x5, 0x4, 0x5, 0x2, 0x3]}, &(0x7f0000000100)=0x100) (async)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000300)={0x80, 0xc, 0x9bd6, 0x7, r5}, &(0x7f0000000340)=0x10) (async)
09:21:36 executing program 3:
unshare(0x20000400)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0)
r2 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x8000)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x3}, 0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
unshare(0x20000400) (async)
socket$packet(0x11, 0x2, 0x300) (async)
socket(0xa, 0x3, 0x87) (async)
sendmmsg$unix(r1, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x0) (async)
socket(0xa, 0x3, 0x87) (async)
sendmmsg$unix(r2, &(0x7f0000007140)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000140)="8baf5a42b6f0", 0x6}], 0x1}}, {{&(0x7f0000000440)=@abs, 0x6e, 0x0}}], 0x2, 0x8000) (async)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x3}, 0x4) (async)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4) (async)
09:21:36 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r0, 0x0)
write$vga_arbiter(r0, &(0x7f00000000c0)=@target={'target ', {'PCI:', 'c', ':', '18', ':', 'a', '.', 'e'}}, 0x14)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0)
r1 = socket$inet(0x2, 0x4000000805, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
copy_file_range(r1, &(0x7f0000000040)=0x1f, 0xffffffffffffffff, 0x0, 0x4, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r3, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x2)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r3, 0x84, 0x70, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e22, @multicast1}}, [0x7, 0x1, 0x100, 0x2, 0x40, 0x8001, 0x6, 0x10000, 0xff, 0x7fff, 0x5, 0x4, 0x5, 0x2, 0x3]}, &(0x7f0000000100)=0x100)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000300)={0x80, 0xc, 0x9bd6, 0x7, r5}, &(0x7f0000000340)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800009, 0x12, r0, 0x0) (async)
write$vga_arbiter(r0, &(0x7f00000000c0)=@target={'target ', {'PCI:', 'c', ':', '18', ':', 'a', '.', 'e'}}, 0x14) (async)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) (async)
socket$inet(0x2, 0x4000000805, 0x0) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) (async)
copy_file_range(r1, &(0x7f0000000040)=0x1f, 0xffffffffffffffff, 0x0, 0x4, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup(r2, &(0x7f0000000380)='syz1\x00', 0x200002, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x80000