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", 0x1000}, {&(0x7f00000024c0)}], 0x7, &(0x7f0000002580)=[{0xd0, 0x112, 0xd256, "37eb9499cdbfc8f221471e2be3eb99d36f2271505ca47054248c5f0eac4c4c2daa9cdca37417986a683c24ac6d6de066186cc5682a1e4f6a14a1c485b89604d5392978efbcc5d65c18dc25f20d634a89c91cf51595a0dbedddfdcc6fd99f3bfdf90ba2b34dc202fda5ab83e26a1712253e3759c41cf112afe92d61b2f18a26146a31b97f626f84e7962ed41655e41fc747c13aa381ec47e84e1c5dd2653352b6850a3ca26ab39f8984577146f6a95281e734b8b05f8fad054dde25cf04"}, {0x40, 0x10d, 0x7, "fdb220469c0b389bddbe5cf750d4f38da6edc443350c8e0ab5e29410d1995de9eeb210b1939db9a360"}], 0x110}, 0xc000) (async) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) (async) 01:27:08 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000900000000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:08 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000090000000000000114000600020000001b"], 0x54}}, 0x0) [ 3270.693266][T16171] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3270.693302][T16171] [ 3270.776933][T16171] memory: usage 307192kB, limit 307200kB, failcnt 332670 [ 3270.796876][T16171] memory+swap: usage 307424kB, limit 9007199254740988kB, failcnt 0 [ 3270.813059][T16171] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3270.821931][T16171] Memory cgroup stats for /syz1: [ 3270.822089][T16171] cache 0 [ 3270.832639][T16171] rss 12288 [ 3270.835791][T16171] rss_huge 0 [ 3270.839555][T16171] shmem 0 [ 3270.842625][T16171] mapped_file 0 [ 3270.846155][T16171] dirty 0 [ 3270.852469][T16171] writeback 0 [ 3270.855798][T16171] workingset_refault_anon 113296 [ 3270.861439][T16171] workingset_refault_file 3 [ 3270.865977][T16171] swap 237568 [ 3270.869832][T16171] swapcached 8192 [ 3270.873496][T16171] pgpgin 282849 [ 3270.876980][T16171] pgpgout 282846 [ 3270.881440][T16171] pgfault 605552 [ 3270.885153][T16171] pgmajfault 106577 [ 3270.890059][T16171] inactive_anon 0 [ 3270.893872][T16171] active_anon 12288 [ 3270.898021][T16171] inactive_file 0 [ 3270.902720][T16171] active_file 0 [ 3270.907943][T16171] unevictable 0 [ 3270.912222][T16171] hierarchical_memory_limit 314572800 [ 3270.917774][T16171] hierarchical_memsw_limit 9223372036854771712 [ 3270.924668][T16171] total_cache 0 [ 3270.928301][T16171] total_rss 12288 [ 3270.934330][T16171] total_rss_huge 0 [ 3270.938235][T16171] total_shmem 0 [ 3270.942620][T16171] total_mapped_file 0 [ 3270.946791][T16171] total_dirty 0 [ 3270.950907][T16171] total_writeback 0 [ 3270.954917][T16171] total_workingset_refault_anon 113296 [ 3270.963773][T16171] total_workingset_refault_file 3 [ 3270.971540][T16171] total_swap 237568 [ 3270.975533][T16171] total_swapcached 8192 [ 3270.980403][T16171] total_pgpgin 282849 [ 3270.984584][T16171] total_pgpgout 282846 [ 3270.989347][T16171] total_pgfault 605552 [ 3270.993587][T16171] total_pgmajfault 106577 [ 3270.998068][T16171] total_inactive_anon 0 [ 3271.003381][T16171] total_active_anon 12288 [ 3271.008027][T16171] total_inactive_file 0 [ 3271.013079][T16171] total_active_file 0 [ 3271.017365][T16171] total_unevictable 0 [ 3271.023012][T16171] anon_cost 0 [ 3271.026611][T16171] file_cost 0 [ 3271.030838][T16171] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16171,uid=0 [ 3271.058178][T16171] Memory cgroup out of memory: Killed process 16171 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:09 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000fffffff00000000114000600020000001b"], 0x54}}, 0x0) [ 3271.637092][T16184] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3271.657201][T16184] CPU: 0 PID: 16184 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3271.667692][T16184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3271.677784][T16184] Call Trace: [ 3271.681098][T16184] [ 3271.684073][T16184] dump_stack_lvl+0x1e7/0x2e0 [ 3271.688803][T16184] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3271.694039][T16184] ? __pfx__printk+0x10/0x10 [ 3271.698665][T16184] ? ___ratelimit+0x4c4/0x670 [ 3271.703397][T16184] ? __pfx____ratelimit+0x10/0x10 [ 3271.708472][T16184] dump_header+0xda/0x6a0 [ 3271.712858][T16184] oom_kill_process+0x3a7/0x930 [ 3271.717814][T16184] out_of_memory+0xf67/0x1320 [ 3271.722563][T16184] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3271.728249][T16184] ? __pfx___mutex_lock+0x10/0x10 01:27:09 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000a00000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3271.733318][T16184] ? __pfx_out_of_memory+0x10/0x10 [ 3271.738488][T16184] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3271.744086][T16184] ? __pfx_lock_release+0x10/0x10 [ 3271.749160][T16184] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3271.755288][T16184] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3271.760532][T16184] ? mem_cgroup_iter+0x3e9/0x560 [ 3271.765516][T16184] try_charge_memcg+0xda2/0x18a0 [ 3271.770522][T16184] ? __pfx_try_charge_memcg+0x10/0x10 [ 3271.775938][T16184] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3271.781687][T16184] ? __pfx_lock_release+0x10/0x10 [ 3271.786751][T16184] ? memcg_account_kmem+0x1e7/0x210 [ 3271.791996][T16184] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3271.797851][T16184] __memcg_kmem_charge_page+0xe1/0x250 [ 3271.803362][T16184] memcg_charge_kernel_stack+0x210/0x550 [ 3271.809042][T16184] dup_task_struct+0x15d/0x7d0 [ 3271.813852][T16184] copy_process+0x5d5/0x3fc0 [ 3271.818497][T16184] ? __might_fault+0xa9/0x120 [ 3271.823223][T16184] ? __pfx_lock_release+0x10/0x10 [ 3271.828303][T16184] ? __pfx_copy_process+0x10/0x10 [ 3271.833362][T16184] ? __might_fault+0xc5/0x120 [ 3271.838081][T16184] ? __asan_memset+0x23/0x50 [ 3271.842750][T16184] kernel_clone+0x21d/0x8d0 [ 3271.847299][T16184] ? __pfx_kernel_clone+0x10/0x10 [ 3271.852376][T16184] __se_sys_clone3+0x2cb/0x350 [ 3271.857173][T16184] ? __pfx___se_sys_clone3+0x10/0x10 [ 3271.862506][T16184] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3271.867382][T16181] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3271.868530][T16184] ? exc_page_fault+0x587/0x870 [ 3271.868564][T16184] ? do_syscall_64+0xb4/0x240 [ 3271.868595][T16184] do_syscall_64+0xf9/0x240 [ 3271.868628][T16184] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3271.896768][T16184] RIP: 0033:0x7f02540a9b99 [ 3271.896794][T16184] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3271.920875][T16184] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3271.929337][T16184] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 01:27:10 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x3f00000000000000) [ 3271.937348][T16184] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3271.945358][T16184] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3271.953362][T16184] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3271.961371][T16184] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3271.969397][T16184] 01:27:10 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000000a0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3272.055516][T16184] memory: usage 307180kB, limit 307200kB, failcnt 333133 [ 3272.064984][T16184] memory+swap: usage 307460kB, limit 9007199254740988kB, failcnt 0 [ 3272.073760][T16184] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3272.082687][T16184] Memory cgroup stats for /syz1: [ 3272.082860][T16184] cache 0 [ 3272.092065][T16184] rss 12288 [ 3272.095351][T16184] rss_huge 0 [ 3272.100554][T16184] shmem 0 [ 3272.103699][T16184] mapped_file 0 [ 3272.109216][T16184] dirty 0 [ 3272.112381][T16184] writeback 0 [ 3272.115862][T16184] workingset_refault_anon 113442 [ 3272.121464][T16184] workingset_refault_file 3 [ 3272.126216][T16184] swap 274432 [ 3272.129979][T16184] swapcached 8192 [ 3272.133946][T16184] pgpgin 283009 [ 3272.137702][T16184] pgpgout 283006 [ 3272.141730][T16184] pgfault 605790 [ 3272.145589][T16184] pgmajfault 106712 [ 3272.150040][T16184] inactive_anon 0 [ 3272.154005][T16184] active_anon 12288 [ 3272.158113][T16184] inactive_file 0 [ 3272.163610][T16184] active_file 0 [ 3272.168056][T16184] unevictable 0 [ 3272.172164][T16184] hierarchical_memory_limit 314572800 [ 3272.177900][T16184] hierarchical_memsw_limit 9223372036854771712 [ 3272.184816][T16184] total_cache 0 [ 3272.188930][T16184] total_rss 12288 [ 3272.192960][T16184] total_rss_huge 0 [ 3272.197059][T16184] total_shmem 0 [ 3272.200930][T16184] total_mapped_file 0 [ 3272.205293][T16184] total_dirty 0 [ 3272.211086][T16184] total_writeback 0 [ 3272.215281][T16184] total_workingset_refault_anon 113442 [ 3272.221174][T16184] total_workingset_refault_file 3 [ 3272.226578][T16184] total_swap 274432 [ 3272.231235][T16184] total_swapcached 8192 [ 3272.235787][T16184] total_pgpgin 283009 [ 3272.240459][T16184] total_pgpgout 283006 [ 3272.245003][T16184] total_pgfault 605790 [ 3272.250987][T16184] total_pgmajfault 106712 [ 3272.255703][T16184] total_inactive_anon 0 [ 3272.260713][T16184] total_active_anon 12288 [ 3272.267213][T16184] total_inactive_file 0 [ 3272.272498][T16184] total_active_file 0 [ 3272.276888][T16184] total_unevictable 0 [ 3272.281794][T16184] anon_cost 0 [ 3272.285467][T16184] file_cost 0 [ 3272.289799][T16184] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16184,uid=0 [ 3272.306547][T16184] Memory cgroup out of memory: Killed process 16184 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:10 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000009a0ec0f70000000114000600020000001b"], 0x54}}, 0x0) 01:27:10 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000b00000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3272.554436][T16190] __nla_validate_parse: 5 callbacks suppressed [ 3272.554458][T16190] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 01:27:11 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000000b0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3272.813287][T16195] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3272.826720][T16191] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3272.848677][T16191] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. 01:27:11 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000c00000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3272.970738][T16198] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 01:27:11 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) (async) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) write$tun(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="024886dd03000000f5ffff02000060cc125202da2c"], 0x310) (async) write$tun(r1, &(0x7f00000000c0)={@val={0x0, 0x80f3}, @void, @llc={@snap={0xaa, 0xaa, ',', "622a9b", 0x88a2, "6bf9c648711eb85a8b30714d135c077828bb49a790d7e22dae41da2998fb86b9f1c082f486fcc6aa4f4f7d686b800c67587110d7156f6e2fa1ab2d238271965714e3b748dc2007068a756c17ce878cf922c4abe3388bb0a2e9c4973222489aa7903bbd12166413cb621959f8de40ae4ffd0014afea3fce04d81199e461c6fb17d998697c318649b03cd3e5e5676edf884d6387fcf1670e08e9bec73641ca4bc2ccd0d85fdc12fd626c8c9d570eb744e6838cbd8414c10424065d5c937be746627a15af211e7a328144877bd0d0c9bcb86180d149d6dd94e360943bc00b6a18faeb099331eca3489678"}}}, 0xf5) r2 = socket(0x10, 0x3, 0x0) (async) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000140)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x4}, {0x4}}]}]}, 0x48}}, 0x0) (async) sendmsg$kcm(r2, &(0x7f00000026c0)={&(0x7f0000000280)=@in={0x2, 0x4e23, @broadcast}, 0x80, &(0x7f0000002500)=[{&(0x7f0000000300)="7e11f5989e539a1a5e2803d1e9f3f25bbbcf4ba6d39e6b33c37e41476fd28885950d45dc5a3256a8acf05d07ecc642946b0502cf71c8c5d15da39f135d2a85172ec6944c6d577070aa390043b98ce83c3ff571f24ecb79eb349f06b50ee9bf2e9e4567e7c24e485c7cb1d5bc837cd57fe1499326d3497a015b71b3ea413b91f13148a7e84b01d195b08b3fb6cba6e1ce8f7ab365eb", 0x95}, {&(0x7f00000003c0)="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", 0x1000}, {&(0x7f00000001c0)="8462ac3d5da912f23ace6c2aface683376f0ccbeda1087b371b9e40616444fd951a40d7a5962e0377cc2f7570a", 0x2d}, {&(0x7f00000013c0)="fbf05a", 0x3}, {&(0x7f0000001400)="b2f8870498e5dffdf763edaf83a343b6422e9db80878262d7ac53d5cd1d8e0ce9ef8b6e7ed472d4d71d1e54be4e4df3fb7ff73e93636bcef982d0c947ef200818da222b916992aa0029ecd450e0c074f04a33fcf21b04b4bdf961e1672e305290f30b512da327851630fdbcc8387a5e0030c69dc11ff934fb9141b2bade82ef9e59d52e73eb39d1496e12101c0dd7fd05376", 0x92}, {&(0x7f00000014c0)="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", 0x1000}, {&(0x7f00000024c0)}], 0x7, &(0x7f0000002580)=[{0xd0, 0x112, 0xd256, "37eb9499cdbfc8f221471e2be3eb99d36f2271505ca47054248c5f0eac4c4c2daa9cdca37417986a683c24ac6d6de066186cc5682a1e4f6a14a1c485b89604d5392978efbcc5d65c18dc25f20d634a89c91cf51595a0dbedddfdcc6fd99f3bfdf90ba2b34dc202fda5ab83e26a1712253e3759c41cf112afe92d61b2f18a26146a31b97f626f84e7962ed41655e41fc747c13aa381ec47e84e1c5dd2653352b6850a3ca26ab39f8984577146f6a95281e734b8b05f8fad054dde25cf04"}, {0x40, 0x10d, 0x7, "fdb220469c0b389bddbe5cf750d4f38da6edc443350c8e0ab5e29410d1995de9eeb210b1939db9a360"}], 0x110}, 0xc000) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3273.093460][T16194] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3273.107805][T16194] CPU: 1 PID: 16194 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3273.118290][T16194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3273.128389][T16194] Call Trace: [ 3273.131727][T16194] [ 3273.134690][T16194] dump_stack_lvl+0x1e7/0x2e0 [ 3273.139421][T16194] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3273.144669][T16194] ? __pfx__printk+0x10/0x10 [ 3273.149317][T16194] ? ___ratelimit+0x4c4/0x670 [ 3273.154062][T16194] ? __pfx____ratelimit+0x10/0x10 [ 3273.159152][T16194] dump_header+0xda/0x6a0 [ 3273.163546][T16194] oom_kill_process+0x3a7/0x930 [ 3273.168440][T16194] out_of_memory+0xf67/0x1320 [ 3273.173145][T16194] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3273.178817][T16194] ? __pfx___mutex_lock+0x10/0x10 [ 3273.183897][T16194] ? __pfx_out_of_memory+0x10/0x10 [ 3273.189081][T16194] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3273.194799][T16194] ? __pfx_lock_release+0x10/0x10 [ 3273.199870][T16194] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3273.205993][T16194] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3273.211229][T16194] ? mem_cgroup_iter+0x3e9/0x560 [ 3273.216210][T16194] try_charge_memcg+0xda2/0x18a0 [ 3273.221214][T16194] ? __pfx_try_charge_memcg+0x10/0x10 [ 3273.226619][T16194] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3273.232358][T16194] ? __pfx_lock_release+0x10/0x10 [ 3273.237407][T16194] ? memcg_account_kmem+0x1e7/0x210 [ 3273.242641][T16194] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3273.248467][T16194] __memcg_kmem_charge_page+0xe1/0x250 [ 3273.253941][T16194] memcg_charge_kernel_stack+0x210/0x550 [ 3273.259606][T16194] dup_task_struct+0x40d/0x7d0 [ 3273.264404][T16194] copy_process+0x5d5/0x3fc0 [ 3273.269039][T16194] ? __might_fault+0xa9/0x120 [ 3273.273754][T16194] ? __pfx_lock_release+0x10/0x10 [ 3273.278818][T16194] ? __pfx_copy_process+0x10/0x10 [ 3273.283900][T16194] ? __might_fault+0xc5/0x120 [ 3273.288610][T16194] ? __asan_memset+0x23/0x50 [ 3273.293237][T16194] kernel_clone+0x21d/0x8d0 [ 3273.297853][T16194] ? __pfx_kernel_clone+0x10/0x10 [ 3273.302929][T16194] __se_sys_clone3+0x2cb/0x350 [ 3273.307712][T16194] ? __pfx___se_sys_clone3+0x10/0x10 [ 3273.313023][T16194] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3273.319080][T16194] ? exc_page_fault+0x587/0x870 [ 3273.323983][T16194] ? do_syscall_64+0xb4/0x240 [ 3273.328711][T16194] do_syscall_64+0xf9/0x240 [ 3273.333270][T16194] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3273.339225][T16194] RIP: 0033:0x7f02540a9b99 [ 3273.343678][T16194] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3273.363302][T16194] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3273.371752][T16194] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3273.379858][T16194] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3273.387881][T16194] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3273.395972][T16194] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3273.404005][T16194] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3273.412011][T16194] [ 3273.422731][T16194] memory: usage 307180kB, limit 307200kB, failcnt 333580 [ 3273.449508][T16194] memory+swap: usage 307460kB, limit 9007199254740988kB, failcnt 0 [ 3273.469348][T16194] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3273.488871][T16194] Memory cgroup stats for /syz1: [ 3273.489029][T16194] cache 0 [ 3273.509965][T16194] rss 16384 [ 3273.515410][T16194] rss_huge 0 [ 3273.524086][T16194] shmem 0 [ 3273.527540][T16194] mapped_file 0 [ 3273.539002][T16194] dirty 0 [ 3273.542267][T16194] writeback 0 [ 3273.545794][T16194] workingset_refault_anon 113603 [ 3273.553413][T16194] workingset_refault_file 3 [ 3273.558242][T16194] swap 270336 [ 3273.562742][T16194] swapcached 8192 [ 3273.566692][T16194] pgpgin 283180 [ 3273.571183][T16194] pgpgout 283176 [ 3273.575025][T16194] pgfault 606046 [ 3273.579382][T16194] pgmajfault 106862 [ 3273.583563][T16194] inactive_anon 8192 [ 3273.587856][T16194] active_anon 4096 [ 3273.593035][T16194] inactive_file 0 [ 3273.604984][T16194] active_file 0 [ 3273.609188][T16194] unevictable 0 [ 3273.612945][T16194] hierarchical_memory_limit 314572800 [ 3273.625858][T16194] hierarchical_memsw_limit 9223372036854771712 [ 3273.632827][T16194] total_cache 0 [ 3273.636596][T16194] total_rss 16384 [ 3273.642996][T16194] total_rss_huge 0 [ 3273.651674][T16194] total_shmem 0 [ 3273.660560][T16194] total_mapped_file 0 [ 3273.664851][T16194] total_dirty 0 [ 3273.672920][T16194] total_writeback 0 [ 3273.680732][T16194] total_workingset_refault_anon 113603 [ 3273.686471][T16194] total_workingset_refault_file 3 [ 3273.696189][T16194] total_swap 270336 [ 3273.705590][T16194] total_swapcached 8192 [ 3273.714320][T16194] total_pgpgin 283180 [ 3273.721754][T16194] total_pgpgout 283176 [ 3273.726134][T16194] total_pgfault 606046 [ 3273.734810][T16194] total_pgmajfault 106862 [ 3273.742244][T16194] total_inactive_anon 8192 [ 3273.746942][T16194] total_active_anon 4096 [ 3273.758070][T16194] total_inactive_file 0 [ 3273.763853][T16194] total_active_file 0 [ 3273.772727][T16194] total_unevictable 0 [ 3273.778441][T16194] anon_cost 0 [ 3273.783380][T16194] file_cost 0 [ 3273.786915][T16194] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16194,uid=0 [ 3273.807125][T16194] Memory cgroup out of memory: Killed process 16194 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:12 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000fc0000000114000600020000001b"], 0x54}}, 0x0) 01:27:12 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000000c0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3273.987744][T16201] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:27:12 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000f00000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3274.265244][T16204] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3274.273846][T16204] netlink: 161040 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3274.276981][T16206] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3274.307905][T16206] CPU: 1 PID: 16206 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3274.318388][T16206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3274.328658][T16206] Call Trace: [ 3274.331967][T16206] [ 3274.334927][T16206] dump_stack_lvl+0x1e7/0x2e0 [ 3274.339626][T16206] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3274.344866][T16206] ? __pfx__printk+0x10/0x10 [ 3274.349467][T16206] ? ___ratelimit+0x4c4/0x670 [ 3274.354175][T16206] ? __pfx____ratelimit+0x10/0x10 [ 3274.359227][T16206] dump_header+0xda/0x6a0 [ 3274.363593][T16206] oom_kill_process+0x3a7/0x930 [ 3274.368488][T16206] out_of_memory+0xf67/0x1320 [ 3274.373196][T16206] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3274.378852][T16206] ? __pfx___mutex_lock+0x10/0x10 [ 3274.383903][T16206] ? __pfx_out_of_memory+0x10/0x10 [ 3274.389053][T16206] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3274.394628][T16206] ? __pfx_lock_release+0x10/0x10 [ 3274.399679][T16206] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3274.405772][T16206] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3274.411022][T16206] ? mem_cgroup_iter+0x3e9/0x560 [ 3274.415996][T16206] try_charge_memcg+0xda2/0x18a0 [ 3274.420995][T16206] ? __pfx_try_charge_memcg+0x10/0x10 [ 3274.426399][T16206] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3274.432147][T16206] ? __pfx_lock_release+0x10/0x10 [ 3274.437196][T16206] ? memcg_account_kmem+0x1e7/0x210 [ 3274.442429][T16206] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3274.448288][T16206] __memcg_kmem_charge_page+0xe1/0x250 [ 3274.453766][T16206] memcg_charge_kernel_stack+0x210/0x550 [ 3274.459424][T16206] dup_task_struct+0x15d/0x7d0 [ 3274.464212][T16206] copy_process+0x5d5/0x3fc0 [ 3274.468832][T16206] ? __might_fault+0xa9/0x120 [ 3274.473536][T16206] ? __pfx_lock_release+0x10/0x10 [ 3274.478602][T16206] ? __pfx_copy_process+0x10/0x10 [ 3274.483647][T16206] ? __might_fault+0xc5/0x120 [ 3274.488452][T16206] ? __asan_memset+0x23/0x50 [ 3274.493086][T16206] kernel_clone+0x21d/0x8d0 [ 3274.497655][T16206] ? __pfx_kernel_clone+0x10/0x10 [ 3274.502723][T16206] __se_sys_clone3+0x2cb/0x350 [ 3274.507509][T16206] ? __pfx___se_sys_clone3+0x10/0x10 [ 3274.512822][T16206] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3274.518848][T16206] ? exc_page_fault+0x587/0x870 [ 3274.523732][T16206] ? do_syscall_64+0xb4/0x240 [ 3274.528425][T16206] do_syscall_64+0xf9/0x240 [ 3274.532976][T16206] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3274.538887][T16206] RIP: 0033:0x7f02540a9b99 [ 3274.543312][T16206] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3274.562939][T16206] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3274.571378][T16206] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3274.579368][T16206] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3274.587358][T16206] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3274.595429][T16206] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3274.605585][T16206] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3274.613582][T16206] 01:27:12 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x4000000000000000) [ 3274.620629][T16208] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3274.648808][T16206] memory: usage 307180kB, limit 307200kB, failcnt 333977 [ 3274.655896][T16206] memory+swap: usage 307460kB, limit 9007199254740988kB, failcnt 0 [ 3274.673707][T16206] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3274.691029][T16206] Memory cgroup stats for /syz1: [ 3274.691184][T16206] cache 0 [ 3274.717033][T16206] rss 8192 [ 3274.725247][T16206] rss_huge 0 [ 3274.730291][T16206] shmem 0 [ 3274.733476][T16206] mapped_file 0 [ 3274.737128][T16206] dirty 0 [ 3274.741839][T16206] writeback 0 [ 3274.745288][T16206] workingset_refault_anon 113736 [ 3274.753158][T16206] workingset_refault_file 3 [ 3274.757805][T16206] swap 278528 [ 3274.761760][T16206] swapcached 8192 [ 3274.767740][T16206] pgpgin 283323 [ 3274.772099][T16206] pgpgout 283321 [ 3274.775891][T16206] pgfault 606253 [ 3274.780472][T16206] pgmajfault 106983 [ 3274.784460][T16206] inactive_anon 0 [ 3274.788249][T16206] active_anon 8192 [ 3274.792906][T16206] inactive_file 0 [ 3274.796706][T16206] active_file 0 [ 3274.800849][T16206] unevictable 0 [ 3274.804523][T16206] hierarchical_memory_limit 314572800 [ 3274.811671][T16206] hierarchical_memsw_limit 9223372036854771712 [ 3274.812958][T16211] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3274.817975][T16206] total_cache 0 [ 3274.834275][T16206] total_rss 8192 [ 3274.847516][T16206] total_rss_huge 0 [ 3274.853809][T16206] total_shmem 0 [ 3274.862305][T16206] total_mapped_file 0 01:27:13 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000000f0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3274.869929][T16206] total_dirty 0 [ 3274.874318][T16206] total_writeback 0 [ 3274.881233][T16206] total_workingset_refault_anon 113736 [ 3274.886866][T16206] total_workingset_refault_file 3 [ 3274.892571][T16206] total_swap 278528 [ 3274.896552][T16206] total_swapcached 8192 [ 3274.901460][T16206] total_pgpgin 283323 [ 3274.905599][T16206] total_pgpgout 283321 [ 3274.916133][T16206] total_pgfault 606253 [ 3274.922714][T16206] total_pgmajfault 106983 [ 3274.933730][T16206] total_inactive_anon 0 [ 3274.941515][T16206] total_active_anon 8192 [ 3274.949620][T16206] total_inactive_file 0 [ 3274.954043][T16206] total_active_file 0 [ 3274.958219][T16206] total_unevictable 0 [ 3274.963131][T16206] anon_cost 0 [ 3274.966625][T16206] file_cost 0 [ 3274.974184][T16206] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16206,uid=0 [ 3274.992646][T16206] Memory cgroup out of memory: Killed process 16206 (syz-executor.1) total-vm:54508kB, anon-rss:360kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3275.017905][T16216] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 01:27:13 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000001100000000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:13 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000fffffffc0000000114000600020000001b"], 0x54}}, 0x0) 01:27:13 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000100000000000000114000600020000001b"], 0x54}}, 0x0) [ 3275.759537][T16220] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:27:14 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000801200000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3275.895056][T16218] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000 [ 3275.914841][T16218] CPU: 0 PID: 16218 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3275.925305][T16218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3275.935394][T16218] Call Trace: [ 3275.938704][T16218] [ 3275.941662][T16218] dump_stack_lvl+0x1e7/0x2e0 [ 3275.946394][T16218] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3275.951631][T16218] ? __pfx__printk+0x10/0x10 [ 3275.956253][T16218] ? ___ratelimit+0x4c4/0x670 [ 3275.960979][T16218] ? __pfx____ratelimit+0x10/0x10 [ 3275.966054][T16218] dump_header+0xda/0x6a0 [ 3275.970430][T16218] oom_kill_process+0x3a7/0x930 [ 3275.975336][T16218] out_of_memory+0xf67/0x1320 [ 3275.980062][T16218] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3275.985731][T16218] ? __pfx___mutex_lock+0x10/0x10 [ 3275.990809][T16218] ? __pfx_out_of_memory+0x10/0x10 [ 3275.995972][T16218] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3276.001561][T16218] ? __pfx_lock_release+0x10/0x10 [ 3276.006633][T16218] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3276.012749][T16218] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3276.017988][T16218] ? mem_cgroup_iter+0x3e9/0x560 [ 3276.022971][T16218] try_charge_memcg+0xda2/0x18a0 [ 3276.027981][T16218] ? __pfx_try_charge_memcg+0x10/0x10 [ 3276.033401][T16218] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3276.039164][T16218] ? __pfx_lock_release+0x10/0x10 [ 3276.044240][T16218] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3276.050278][T16218] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3276.056016][T16218] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3276.061856][T16218] obj_cgroup_charge+0x389/0x630 [ 3276.066806][T16218] ? obj_cgroup_charge+0x121/0x630 [ 3276.071927][T16218] ? __pfx_obj_cgroup_charge+0x10/0x10 [ 3276.077400][T16218] ? kmalloc_trace+0x4e/0x360 [ 3276.082091][T16218] ? __pfx___might_resched+0x10/0x10 [ 3276.087391][T16218] __memcg_slab_pre_alloc_hook+0x28d/0x2b0 [ 3276.093281][T16218] ? copy_semundo+0xb5/0x240 [ 3276.097971][T16218] kmalloc_trace+0x216/0x360 [ 3276.102578][T16218] ? __asan_memcpy+0x40/0x70 [ 3276.107186][T16218] copy_semundo+0xb5/0x240 [ 3276.111613][T16218] copy_process+0x1bc3/0x3fc0 [ 3276.116310][T16218] ? copy_process+0x9c3/0x3fc0 [ 3276.121092][T16218] ? __pfx_copy_process+0x10/0x10 [ 3276.126123][T16218] ? __might_fault+0xc5/0x120 [ 3276.130814][T16218] ? __asan_memset+0x23/0x50 [ 3276.135423][T16218] kernel_clone+0x21d/0x8d0 [ 3276.139938][T16218] ? __pfx_kernel_clone+0x10/0x10 [ 3276.144985][T16218] __se_sys_clone3+0x2cb/0x350 [ 3276.149760][T16218] ? __pfx___se_sys_clone3+0x10/0x10 [ 3276.155089][T16218] ? do_syscall_64+0x108/0x240 [ 3276.159873][T16218] ? do_syscall_64+0xb4/0x240 [ 3276.164559][T16218] do_syscall_64+0xf9/0x240 [ 3276.169079][T16218] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3276.174987][T16218] RIP: 0033:0x7f02540a9b99 [ 3276.179497][T16218] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3276.199109][T16218] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3276.207533][T16218] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3276.215511][T16218] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3276.223489][T16218] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3276.231471][T16218] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3276.239449][T16218] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3276.247444][T16218] 01:27:14 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000110000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:14 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000000)=0x3, 0x4) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000080)="8903d0540af3fd07b5bfdb3efdad5a44deed2e8f3b500e5df0f48375cbe36b20e2599771f71b59a36357ffae4913176d8cd01971091e354237b22c90b17cafab31ba7aa70e9609dd865c9ae98cae7ec6167613d18a0396e3be4fec03c9dd6a321b150938035ac147d6f38dd25a8b120173df0bcf23fa52c1dde738e9d9ea87552679d37229d872560fdf3623e459a95117d7f0c0991c3d5411d097525c671d95d450000282e864f796e5e0b3c4953ff11a80de2fb098", 0xb6}, {&(0x7f0000000180)="f302f08ec5c9d0161e101110259c4f0b39d8d7bce84956d842727389306de42aff663a64bd08e2ad4a01a070923efedafbf8c3cc7def9b70fc116b33ae130213381febd035d14cde0f9980015c44d33d2a6763c4eec066e20f46521c44f6eeacd21c5d8c835e31355529a0a20c76f36430c00e7bea8282e29ae2e68690fd2176157a7359ce97c0d8dcfda95a470e5deebea7007119aa0808576c159633dcde3ef0d96eab8482d4a499cdb3a45c9404c5fddab6da24fce59a35a414dc1d68f500bd966b90655bd595b8c300547cad8371bc54be8392", 0xd5}, {&(0x7f0000000280)="6d997b65b02c3646ca8505f80c98d5d5e3d0658109a93ffb8cc23ba7ff6b69b24b3c5d1c113ba504d5abf5e231796aeb2ae89b65bd0149c389928c75e53710bd", 0x40}, {&(0x7f0000001b80)="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", 0x92}, {&(0x7f0000001840)="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", 0x1b3}, {&(0x7f00000003c0)="37dafe1ef3d8a34291eb8712686e320ff6549107c63144df2ca657eeeb6092dbc3fec14a6068c347f89b9eb34e03809612e243564e0a119a8c3ec33d5e3dd0fb7b58608288138348ed93f2ee8559a734e1fc9c85667ac55ebb8c9712e6e9666a6eb7bf05aac514477f67c2ac58ed1deeb418b10c18f9fb3fe26cc283bb35df625073f3df629ebb4716b9bb8ddfba8bf42195d79e61b0d368a7fe83faa9c31f0160090531ae9791d8ffba3c0e85", 0xad}, {&(0x7f0000001700)="c77cd2518dd40852e99617a288980b8d078b1fd7e6c39471e1a4c335c98ccfe9ddf1169b95493f2b4a6acac9de624e6088fa41e615eaae1c7831568dd045809c7697d7f84c08cff5e9720e3e37ec8aba15000000bc555361b36d19c8e608a650fecab98aef8fb3ad321768ea31ed33df89", 0xd0}, {&(0x7f0000000500)="27a7fa0bf25836bdefd3679cb405451195d4a29eceadf079914da73a0369c785bcc3b6406de5133808384befe734fec30382936eba01ee9ab80cec461c9c346c66f360159bd8e01d0c292e0e80277467513b5b39f17b16f7ee1879de1e834cb5eed9d554b852b8f043ea0c8129fbf9318d4b9992a1b581440aa2d2ac1d544b9311daf7c72eafa47448bff867a894b7fee0d7471b0854489ed445cf35b101e3a42945788d3ee51e6a2ad7950a7864bdf38ca108fd4e0fa4ec0fd2339ff15afc533bb477d4bd7f83fab5", 0xc9}, {&(0x7f0000000600)="f6d77dfd81e865961cda59a976", 0xd}, {&(0x7f0000000640)="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", 0xff4}], 0xa}, 0x4008004) [ 3276.319034][T16214] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3276.349316][T16218] memory: usage 307200kB, limit 307200kB, failcnt 334637 [ 3276.356593][T16218] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0 [ 3276.378862][T16218] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3276.386479][T16218] Memory cgroup stats for /syz1: [ 3276.386621][T16218] cache 0 [ 3276.401344][T16218] rss 12288 [ 3276.404894][T16218] rss_huge 0 [ 3276.408672][T16218] shmem 0 [ 3276.412120][T16218] mapped_file 0 [ 3276.415723][T16218] dirty 0 [ 3276.424352][T16218] writeback 0 [ 3276.427796][T16218] workingset_refault_anon 113943 01:27:14 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000000)=0x3, 0x4) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000080)="8903d0540af3fd07b5bfdb3efdad5a44deed2e8f3b500e5df0f48375cbe36b20e2599771f71b59a36357ffae4913176d8cd01971091e354237b22c90b17cafab31ba7aa70e9609dd865c9ae98cae7ec6167613d18a0396e3be4fec03c9dd6a321b150938035ac147d6f38dd25a8b120173df0bcf23fa52c1dde738e9d9ea87552679d37229d872560fdf3623e459a95117d7f0c0991c3d5411d097525c671d95d450000282e864f796e5e0b3c4953ff11a80de2fb098", 0xb6}, {&(0x7f0000000180)="f302f08ec5c9d0161e101110259c4f0b39d8d7bce84956d842727389306de42aff663a64bd08e2ad4a01a070923efedafbf8c3cc7def9b70fc116b33ae130213381febd035d14cde0f9980015c44d33d2a6763c4eec066e20f46521c44f6eeacd21c5d8c835e31355529a0a20c76f36430c00e7bea8282e29ae2e68690fd2176157a7359ce97c0d8dcfda95a470e5deebea7007119aa0808576c159633dcde3ef0d96eab8482d4a499cdb3a45c9404c5fddab6da24fce59a35a414dc1d68f500bd966b90655bd595b8c300547cad8371bc54be8392", 0xd5}, {&(0x7f0000000280)="6d997b65b02c3646ca8505f80c98d5d5e3d0658109a93ffb8cc23ba7ff6b69b24b3c5d1c113ba504d5abf5e231796aeb2ae89b65bd0149c389928c75e53710bd", 0x40}, {&(0x7f0000001b80)="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", 0x92}, {&(0x7f0000001840)="8ffe375e9f07f89f8704ee95fef405fce1577d1a3123aa2eae4d24c136839b30cf9c4baee59f949f174c5a5663966dd62e43b492f9b03d50a57c0b53f3f74a2e7f59db96281e5efc893a5c42c51e51093e776517bc1492cb5461c06c769ccbe7adb6e959f41760371bc780701e04ecfd851abfbf0299fb3860f8758b029825387a4a6cc8582d27b245419edb301a1eac115413485508564319ae5151b9ac0c6b99251f606102eccf2f3a5141c8b3459ec01c389e4d4a269002134522a806d1387ce8100c19c1d3e5424c62a8cf8d333c39cbc2c59568dea1ecd1a52a402d9a46e9e6b2966b65386ad2bba8fede708af8f97a0fb8a44453f34bf84bd21b865ba6a6960170bc15e045d831a5be4faf621d445c94034eb7fc00abb68833318cfa16766129e9ef2ee89fd33101228804c537f64948d1f9cfb5ccf38a01f171bdbef928b1632db9e43894b7b5e81e3138d623a6f273c106b066c5a426031c0e9e8305bc6d019145c398c6f3dec8145176949d33ebbc2ac4552a4be7fe72ed63f33b5603472cee4454138e6a8924bcd187c8576adcf65e5e6ed1055cfe64b029ad9d6744d01ad201a1ad0691cac4650d5ba82bc6c5a4", 0x1b3}, {&(0x7f00000003c0)="37dafe1ef3d8a34291eb8712686e320ff6549107c63144df2ca657eeeb6092dbc3fec14a6068c347f89b9eb34e03809612e243564e0a119a8c3ec33d5e3dd0fb7b58608288138348ed93f2ee8559a734e1fc9c85667ac55ebb8c9712e6e9666a6eb7bf05aac514477f67c2ac58ed1deeb418b10c18f9fb3fe26cc283bb35df625073f3df629ebb4716b9bb8ddfba8bf42195d79e61b0d368a7fe83faa9c31f0160090531ae9791d8ffba3c0e85", 0xad}, {&(0x7f0000001700)="c77cd2518dd40852e99617a288980b8d078b1fd7e6c39471e1a4c335c98ccfe9ddf1169b95493f2b4a6acac9de624e6088fa41e615eaae1c7831568dd045809c7697d7f84c08cff5e9720e3e37ec8aba15000000bc555361b36d19c8e608a650fecab98aef8fb3ad321768ea31ed33df89", 0xd0}, {&(0x7f0000000500)="27a7fa0bf25836bdefd3679cb405451195d4a29eceadf079914da73a0369c785bcc3b6406de5133808384befe734fec30382936eba01ee9ab80cec461c9c346c66f360159bd8e01d0c292e0e80277467513b5b39f17b16f7ee1879de1e834cb5eed9d554b852b8f043ea0c8129fbf9318d4b9992a1b581440aa2d2ac1d544b9311daf7c72eafa47448bff867a894b7fee0d7471b0854489ed445cf35b101e3a42945788d3ee51e6a2ad7950a7864bdf38ca108fd4e0fa4ec0fd2339ff15afc533bb477d4bd7f83fab5", 0xc9}, {&(0x7f0000000600)="f6d77dfd81e865961cda59a976", 0xd}, {&(0x7f0000000640)="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", 0xff4}], 0xa}, 0x4008004) [ 3276.452425][T16218] workingset_refault_file 3 [ 3276.466041][T16218] swap 274432 [ 3276.473036][T16218] swapcached 8192 [ 3276.483991][T16218] pgpgin 283541 [ 3276.491430][T16218] pgpgout 283538 [ 3276.500838][T16218] pgfault 606589 [ 3276.507974][T16218] pgmajfault 107180 [ 3276.516758][T16218] inactive_anon 8192 [ 3276.524419][T16218] active_anon 4096 [ 3276.528963][T16218] inactive_file 0 [ 3276.541162][T16218] active_file 0 [ 3276.548165][T16218] unevictable 0 01:27:14 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000000)=0x3, 0x4) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000080)="8903d0540af3fd07b5bfdb3efdad5a44deed2e8f3b500e5df0f48375cbe36b20e2599771f71b59a36357ffae4913176d8cd01971091e354237b22c90b17cafab31ba7aa70e9609dd865c9ae98cae7ec6167613d18a0396e3be4fec03c9dd6a321b150938035ac147d6f38dd25a8b120173df0bcf23fa52c1dde738e9d9ea87552679d37229d872560fdf3623e459a95117d7f0c0991c3d5411d097525c671d95d450000282e864f796e5e0b3c4953ff11a80de2fb098", 0xb6}, {&(0x7f0000000180)="f302f08ec5c9d0161e101110259c4f0b39d8d7bce84956d842727389306de42aff663a64bd08e2ad4a01a070923efedafbf8c3cc7def9b70fc116b33ae130213381febd035d14cde0f9980015c44d33d2a6763c4eec066e20f46521c44f6eeacd21c5d8c835e31355529a0a20c76f36430c00e7bea8282e29ae2e68690fd2176157a7359ce97c0d8dcfda95a470e5deebea7007119aa0808576c159633dcde3ef0d96eab8482d4a499cdb3a45c9404c5fddab6da24fce59a35a414dc1d68f500bd966b90655bd595b8c300547cad8371bc54be8392", 0xd5}, {&(0x7f0000000280)="6d997b65b02c3646ca8505f80c98d5d5e3d0658109a93ffb8cc23ba7ff6b69b24b3c5d1c113ba504d5abf5e231796aeb2ae89b65bd0149c389928c75e53710bd", 0x40}, {&(0x7f0000001b80)="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", 0x92}, {&(0x7f0000001840)="8ffe375e9f07f89f8704ee95fef405fce1577d1a3123aa2eae4d24c136839b30cf9c4baee59f949f174c5a5663966dd62e43b492f9b03d50a57c0b53f3f74a2e7f59db96281e5efc893a5c42c51e51093e776517bc1492cb5461c06c769ccbe7adb6e959f41760371bc780701e04ecfd851abfbf0299fb3860f8758b029825387a4a6cc8582d27b245419edb301a1eac115413485508564319ae5151b9ac0c6b99251f606102eccf2f3a5141c8b3459ec01c389e4d4a269002134522a806d1387ce8100c19c1d3e5424c62a8cf8d333c39cbc2c59568dea1ecd1a52a402d9a46e9e6b2966b65386ad2bba8fede708af8f97a0fb8a44453f34bf84bd21b865ba6a6960170bc15e045d831a5be4faf621d445c94034eb7fc00abb68833318cfa16766129e9ef2ee89fd33101228804c537f64948d1f9cfb5ccf38a01f171bdbef928b1632db9e43894b7b5e81e3138d623a6f273c106b066c5a426031c0e9e8305bc6d019145c398c6f3dec8145176949d33ebbc2ac4552a4be7fe72ed63f33b5603472cee4454138e6a8924bcd187c8576adcf65e5e6ed1055cfe64b029ad9d6744d01ad201a1ad0691cac4650d5ba82bc6c5a4", 0x1b3}, {&(0x7f00000003c0)="37dafe1ef3d8a34291eb8712686e320ff6549107c63144df2ca657eeeb6092dbc3fec14a6068c347f89b9eb34e03809612e243564e0a119a8c3ec33d5e3dd0fb7b58608288138348ed93f2ee8559a734e1fc9c85667ac55ebb8c9712e6e9666a6eb7bf05aac514477f67c2ac58ed1deeb418b10c18f9fb3fe26cc283bb35df625073f3df629ebb4716b9bb8ddfba8bf42195d79e61b0d368a7fe83faa9c31f0160090531ae9791d8ffba3c0e85", 0xad}, {&(0x7f0000001700)="c77cd2518dd40852e99617a288980b8d078b1fd7e6c39471e1a4c335c98ccfe9ddf1169b95493f2b4a6acac9de624e6088fa41e615eaae1c7831568dd045809c7697d7f84c08cff5e9720e3e37ec8aba15000000bc555361b36d19c8e608a650fecab98aef8fb3ad321768ea31ed33df89", 0xd0}, {&(0x7f0000000500)="27a7fa0bf25836bdefd3679cb405451195d4a29eceadf079914da73a0369c785bcc3b6406de5133808384befe734fec30382936eba01ee9ab80cec461c9c346c66f360159bd8e01d0c292e0e80277467513b5b39f17b16f7ee1879de1e834cb5eed9d554b852b8f043ea0c8129fbf9318d4b9992a1b581440aa2d2ac1d544b9311daf7c72eafa47448bff867a894b7fee0d7471b0854489ed445cf35b101e3a42945788d3ee51e6a2ad7950a7864bdf38ca108fd4e0fa4ec0fd2339ff15afc533bb477d4bd7f83fab5", 0xc9}, {&(0x7f0000000600)="f6d77dfd81e865961cda59a976", 0xd}, {&(0x7f0000000640)="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", 0xff4}], 0xa}, 0x4008004) socket$kcm(0x10, 0x3, 0x10) (async) setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000000)=0x3, 0x4) (async) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000080)="8903d0540af3fd07b5bfdb3efdad5a44deed2e8f3b500e5df0f48375cbe36b20e2599771f71b59a36357ffae4913176d8cd01971091e354237b22c90b17cafab31ba7aa70e9609dd865c9ae98cae7ec6167613d18a0396e3be4fec03c9dd6a321b150938035ac147d6f38dd25a8b120173df0bcf23fa52c1dde738e9d9ea87552679d37229d872560fdf3623e459a95117d7f0c0991c3d5411d097525c671d95d450000282e864f796e5e0b3c4953ff11a80de2fb098", 0xb6}, {&(0x7f0000000180)="f302f08ec5c9d0161e101110259c4f0b39d8d7bce84956d842727389306de42aff663a64bd08e2ad4a01a070923efedafbf8c3cc7def9b70fc116b33ae130213381febd035d14cde0f9980015c44d33d2a6763c4eec066e20f46521c44f6eeacd21c5d8c835e31355529a0a20c76f36430c00e7bea8282e29ae2e68690fd2176157a7359ce97c0d8dcfda95a470e5deebea7007119aa0808576c159633dcde3ef0d96eab8482d4a499cdb3a45c9404c5fddab6da24fce59a35a414dc1d68f500bd966b90655bd595b8c300547cad8371bc54be8392", 0xd5}, {&(0x7f0000000280)="6d997b65b02c3646ca8505f80c98d5d5e3d0658109a93ffb8cc23ba7ff6b69b24b3c5d1c113ba504d5abf5e231796aeb2ae89b65bd0149c389928c75e53710bd", 0x40}, {&(0x7f0000001b80)="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", 0x92}, {&(0x7f0000001840)="8ffe375e9f07f89f8704ee95fef405fce1577d1a3123aa2eae4d24c136839b30cf9c4baee59f949f174c5a5663966dd62e43b492f9b03d50a57c0b53f3f74a2e7f59db96281e5efc893a5c42c51e51093e776517bc1492cb5461c06c769ccbe7adb6e959f41760371bc780701e04ecfd851abfbf0299fb3860f8758b029825387a4a6cc8582d27b245419edb301a1eac115413485508564319ae5151b9ac0c6b99251f606102eccf2f3a5141c8b3459ec01c389e4d4a269002134522a806d1387ce8100c19c1d3e5424c62a8cf8d333c39cbc2c59568dea1ecd1a52a402d9a46e9e6b2966b65386ad2bba8fede708af8f97a0fb8a44453f34bf84bd21b865ba6a6960170bc15e045d831a5be4faf621d445c94034eb7fc00abb68833318cfa16766129e9ef2ee89fd33101228804c537f64948d1f9cfb5ccf38a01f171bdbef928b1632db9e43894b7b5e81e3138d623a6f273c106b066c5a426031c0e9e8305bc6d019145c398c6f3dec8145176949d33ebbc2ac4552a4be7fe72ed63f33b5603472cee4454138e6a8924bcd187c8576adcf65e5e6ed1055cfe64b029ad9d6744d01ad201a1ad0691cac4650d5ba82bc6c5a4", 0x1b3}, {&(0x7f00000003c0)="37dafe1ef3d8a34291eb8712686e320ff6549107c63144df2ca657eeeb6092dbc3fec14a6068c347f89b9eb34e03809612e243564e0a119a8c3ec33d5e3dd0fb7b58608288138348ed93f2ee8559a734e1fc9c85667ac55ebb8c9712e6e9666a6eb7bf05aac514477f67c2ac58ed1deeb418b10c18f9fb3fe26cc283bb35df625073f3df629ebb4716b9bb8ddfba8bf42195d79e61b0d368a7fe83faa9c31f0160090531ae9791d8ffba3c0e85", 0xad}, {&(0x7f0000001700)="c77cd2518dd40852e99617a288980b8d078b1fd7e6c39471e1a4c335c98ccfe9ddf1169b95493f2b4a6acac9de624e6088fa41e615eaae1c7831568dd045809c7697d7f84c08cff5e9720e3e37ec8aba15000000bc555361b36d19c8e608a650fecab98aef8fb3ad321768ea31ed33df89", 0xd0}, {&(0x7f0000000500)="27a7fa0bf25836bdefd3679cb405451195d4a29eceadf079914da73a0369c785bcc3b6406de5133808384befe734fec30382936eba01ee9ab80cec461c9c346c66f360159bd8e01d0c292e0e80277467513b5b39f17b16f7ee1879de1e834cb5eed9d554b852b8f043ea0c8129fbf9318d4b9992a1b581440aa2d2ac1d544b9311daf7c72eafa47448bff867a894b7fee0d7471b0854489ed445cf35b101e3a42945788d3ee51e6a2ad7950a7864bdf38ca108fd4e0fa4ec0fd2339ff15afc533bb477d4bd7f83fab5", 0xc9}, {&(0x7f0000000600)="f6d77dfd81e865961cda59a976", 0xd}, {&(0x7f0000000640)="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", 0xff4}], 0xa}, 0x4008004) (async) [ 3276.555780][T16218] hierarchical_memory_limit 314572800 [ 3276.568858][T16218] hierarchical_memsw_limit 9223372036854771712 [ 3276.581881][T16218] total_cache 0 [ 3276.587901][T16218] total_rss 12288 [ 3276.596793][T16218] total_rss_huge 0 [ 3276.603498][T16218] total_shmem 0 [ 3276.610656][T16218] total_mapped_file 0 [ 3276.620687][T16218] total_dirty 0 [ 3276.627822][T16218] total_writeback 0 [ 3276.635108][T16218] total_workingset_refault_anon 113943 [ 3276.641640][T16218] total_workingset_refault_file 3 [ 3276.647058][T16218] total_swap 274432 [ 3276.651816][T16218] total_swapcached 8192 [ 3276.656531][T16218] total_pgpgin 283541 [ 3276.660997][T16218] total_pgpgout 283538 [ 3276.665374][T16218] total_pgfault 606589 [ 3276.671648][T16218] total_pgmajfault 107180 [ 3276.676295][T16218] total_inactive_anon 8192 [ 3276.681064][T16218] total_active_anon 4096 [ 3276.685604][T16218] total_inactive_file 0 [ 3276.690154][T16218] total_active_file 0 [ 3276.694427][T16218] total_unevictable 0 01:27:14 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) recvmsg(r0, &(0x7f00000002c0)={&(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000140)=""/114, 0x72}], 0x1, &(0x7f0000000200)=""/152, 0x98}, 0x43) setsockopt$sock_int(r0, 0x1, 0x2d, &(0x7f0000000300)=0x1, 0x4) sendmsg$NFT_BATCH(r1, &(0x7f00000007c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80801141}, 0xc, &(0x7f0000000780)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWOBJ={0x78, 0x12, 0xa, 0x801, 0x0, 0x0, {0x3, 0x0, 0x4}, @NFT_OBJECT_LIMIT=@NFTA_OBJ_DATA={0x64, 0x4, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x2}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x3}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x9}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x100000000}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0xc2}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x800}]}}, @NFT_MSG_DELTABLE={0x180, 0x2, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_TABLE_USERDATA={0xc4, 0x6, "c334487b9246510b19edb0c498cd357d0e00b5bd2e9cd91df2081879fc3ab0b7b09378fe95c93036c6c09fcc667bdadc75c850581f6f22624625b94ed8ae9c33a41fe2e8f639907874b876f0aace1bdc1ff4c3ca2e3fa3e25b0c3fc42027f730aa52a7f324f56a31bb42efdcd5fde21bf909606348135cbb0c1f850744065c4b837cece18f5fef0b8263693f4294c2f8819d8f2b95cbecf64b3abaf388b7aa1bd2c9f8db89b589c6fceebe7fb7f5af3e8b449a57080528e2e7284e3b75ffa0a8"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x6b, 0x6, "0e9526ed470ac043445772e8943e8c39bf147a7b21c602c2beb812aca5e600d07d3b8effb5c7f32062b49c05c0a0032201185232648b56f9da5f627105628a7a80c7e267850902b00e0bb85976a5015e5799c33adddf0d5429ade0e8c3852b7518769f80541ef0"}, @NFTA_TABLE_USERDATA={0x28, 0x6, "4aeb6aaf1775c61af3ec809d3febdc1cff4f61143d8809ea91c10259fb8c4f96ffb28174"}]}, @NFT_MSG_NEWFLOWTABLE={0x1d0, 0x16, 0xa, 0x284, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_FLOWTABLE_HOOK={0x6c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x68, 0x3, 0x0, 0x1, [{0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'veth0_to_team\x00'}, {0x14, 0x1, 'wg0\x00'}, {0x14, 0x1, 'geneve0\x00'}, {0x14, 0x1, 'wg0\x00'}]}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x144, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_virt_wifi\x00'}, {0x14, 0x1, 'pim6reg\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x1f}, @NFTA_FLOWTABLE_HOOK_DEVS={0x40, 0x3, 0x0, 0x1, [{0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'geneve1\x00'}, {0x14, 0x1, 'hsr0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x7fff}, @NFTA_FLOWTABLE_HOOK_DEVS={0xa4, 0x3, 0x0, 0x1, [{0x14, 0x1, 'pimreg1\x00'}, {0x14, 0x1, 'syz_tun\x00'}, {0x14, 0x1, 'wg1\x00'}, {0x14, 0x1, 'veth0_to_bond\x00'}, {0x14, 0x1, 'wg2\x00'}, {0x14, 0x1, 'macvlan0\x00'}, {0x14, 0x1, 'veth0_virt_wifi\x00'}, {0x14, 0x1, 'veth0_to_hsr\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x8}]}]}], {0x14}}, 0x3f0}, 0x1, 0x0, 0x0, 0x800}, 0x90) [ 3276.716592][T16218] anon_cost 0 [ 3276.736096][T16218] file_cost 0 [ 3276.744328][T16218] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16218,uid=0 [ 3276.782345][T16218] Memory cgroup out of memory: Killed process 16218 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:15 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000080fe0000000114000600020000001b"], 0x54}}, 0x0) [ 3277.240103][T16241] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3277.301255][T16241] CPU: 1 PID: 16241 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3277.311768][T16241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3277.321951][T16241] Call Trace: [ 3277.325275][T16241] [ 3277.328236][T16241] dump_stack_lvl+0x1e7/0x2e0 [ 3277.332970][T16241] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3277.338211][T16241] ? __pfx__printk+0x10/0x10 [ 3277.342843][T16241] ? ___ratelimit+0x4c4/0x670 [ 3277.347576][T16241] ? __pfx____ratelimit+0x10/0x10 [ 3277.352646][T16241] dump_header+0xda/0x6a0 [ 3277.357006][T16241] oom_kill_process+0x3a7/0x930 [ 3277.361877][T16241] out_of_memory+0xf67/0x1320 [ 3277.366581][T16241] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3277.372234][T16241] ? __pfx___mutex_lock+0x10/0x10 [ 3277.377291][T16241] ? __pfx_out_of_memory+0x10/0x10 [ 3277.382432][T16241] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3277.387997][T16241] ? __pfx_lock_release+0x10/0x10 [ 3277.393046][T16241] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3277.399140][T16241] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3277.404358][T16241] ? mem_cgroup_iter+0x3e9/0x560 [ 3277.409314][T16241] try_charge_memcg+0xda2/0x18a0 [ 3277.414292][T16241] ? __pfx_try_charge_memcg+0x10/0x10 [ 3277.419682][T16241] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3277.425416][T16241] ? __pfx_lock_release+0x10/0x10 [ 3277.430460][T16241] ? memcg_account_kmem+0x1e7/0x210 [ 3277.435684][T16241] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3277.441509][T16241] __memcg_kmem_charge_page+0xe1/0x250 [ 3277.446994][T16241] memcg_charge_kernel_stack+0x210/0x550 [ 3277.452645][T16241] dup_task_struct+0x15d/0x7d0 [ 3277.457420][T16241] copy_process+0x5d5/0x3fc0 [ 3277.462032][T16241] ? __might_fault+0xa9/0x120 [ 3277.466730][T16241] ? __pfx_lock_release+0x10/0x10 [ 3277.471779][T16241] ? __pfx_copy_process+0x10/0x10 [ 3277.476816][T16241] ? __might_fault+0xc5/0x120 [ 3277.481514][T16241] ? __asan_memset+0x23/0x50 [ 3277.486132][T16241] kernel_clone+0x21d/0x8d0 [ 3277.490665][T16241] ? __pfx_kernel_clone+0x10/0x10 [ 3277.495740][T16241] __se_sys_clone3+0x2cb/0x350 [ 3277.500554][T16241] ? __pfx___se_sys_clone3+0x10/0x10 [ 3277.505974][T16241] ? do_syscall_64+0x108/0x240 [ 3277.510759][T16241] ? do_syscall_64+0xb4/0x240 [ 3277.515480][T16241] do_syscall_64+0xf9/0x240 [ 3277.520019][T16241] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3277.525953][T16241] RIP: 0033:0x7f02540a9b99 [ 3277.530388][T16241] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3277.550020][T16241] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3277.558454][T16241] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3277.566435][T16241] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3277.574437][T16241] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3277.582429][T16241] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3277.590427][T16241] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3277.598438][T16241] 01:27:15 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000001400000000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:15 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000140000000000000114000600020000001b"], 0x54}}, 0x0) [ 3277.759045][T16241] memory: usage 307200kB, limit 307200kB, failcnt 334895 [ 3277.787092][T16241] memory+swap: usage 307500kB, limit 9007199254740988kB, failcnt 0 [ 3277.799756][T16241] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3277.828775][T16241] Memory cgroup stats for /syz1: [ 3277.828936][T16241] cache 0 [ 3277.841567][T16241] rss 16384 [ 3277.844925][T16241] rss_huge 0 [ 3277.848872][T16241] shmem 0 [ 3277.853732][T16241] mapped_file 0 [ 3277.857319][T16239] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3277.868379][T16239] __nla_validate_parse: 4 callbacks suppressed [ 3277.868403][T16239] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3277.884928][T16243] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3277.908736][T16241] dirty 0 [ 3277.911750][T16241] writeback 0 [ 3277.915057][T16241] workingset_refault_anon 114032 01:27:16 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x4800000000000000) [ 3277.931527][T16241] workingset_refault_file 3 [ 3277.936332][T16241] swap 307200 [ 3277.941164][T16241] swapcached 16384 [ 3277.945138][T16241] pgpgin 283643 [ 3277.948951][T16241] pgpgout 283638 [ 3277.952760][T16241] pgfault 606753 [ 3277.956604][T16241] pgmajfault 107269 [ 3277.969060][T16241] inactive_anon 12288 [ 3277.973679][T16241] active_anon 0 [ 3277.983436][T16241] inactive_file 0 [ 3277.991189][T16241] active_file 0 [ 3278.006660][T16241] unevictable 0 [ 3278.015211][T16241] hierarchical_memory_limit 314572800 [ 3278.027781][T16241] hierarchical_memsw_limit 9223372036854771712 [ 3278.041134][T16241] total_cache 0 [ 3278.045168][T16241] total_rss 16384 [ 3278.049649][T16241] total_rss_huge 0 [ 3278.053744][T16241] total_shmem 0 [ 3278.057483][T16241] total_mapped_file 0 [ 3278.062610][T16241] total_dirty 0 [ 3278.066443][T16241] total_writeback 0 [ 3278.071145][T16241] total_workingset_refault_anon 114032 [ 3278.076940][T16241] total_workingset_refault_file 3 [ 3278.085079][T16241] total_swap 307200 [ 3278.092547][T16241] total_swapcached 16384 [ 3278.097181][T16241] total_pgpgin 283643 [ 3278.103701][T16241] total_pgpgout 283638 [ 3278.108260][T16241] total_pgfault 606753 [ 3278.113242][T16241] total_pgmajfault 107269 [ 3278.117961][T16241] total_inactive_anon 12288 [ 3278.136235][T16245] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 01:27:16 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000001500000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3278.208713][T16241] total_active_anon 0 [ 3278.213043][T16241] total_inactive_file 0 [ 3278.219916][T16241] total_active_file 0 [ 3278.229150][T16241] total_unevictable 0 [ 3278.240433][T16241] anon_cost 0 [ 3278.247605][T16241] file_cost 0 [ 3278.258002][T16241] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16241,uid=0 [ 3278.280486][T16241] Memory cgroup out of memory: Killed process 16241 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8944kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:16 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000150000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:16 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000ffff80fe0000000114000600020000001b"], 0x54}}, 0x0) [ 3278.863747][T16256] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3278.874429][T16256] CPU: 0 PID: 16256 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3278.884891][T16256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3278.894978][T16256] Call Trace: [ 3278.898373][T16256] [ 3278.901331][T16256] dump_stack_lvl+0x1e7/0x2e0 [ 3278.906055][T16256] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3278.911307][T16256] ? __pfx__printk+0x10/0x10 [ 3278.915923][T16256] ? ___ratelimit+0x4c4/0x670 [ 3278.920659][T16256] ? __pfx____ratelimit+0x10/0x10 [ 3278.925747][T16256] dump_header+0xda/0x6a0 [ 3278.930221][T16256] oom_kill_process+0x3a7/0x930 [ 3278.935117][T16256] out_of_memory+0xf67/0x1320 [ 3278.939818][T16256] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3278.945469][T16256] ? __pfx___mutex_lock+0x10/0x10 [ 3278.950510][T16256] ? __pfx_out_of_memory+0x10/0x10 [ 3278.955644][T16256] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3278.961207][T16256] ? __pfx_lock_release+0x10/0x10 [ 3278.966251][T16256] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3278.972350][T16256] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3278.977561][T16256] ? mem_cgroup_iter+0x3e9/0x560 [ 3278.982517][T16256] try_charge_memcg+0xda2/0x18a0 [ 3278.987489][T16256] ? __pfx_try_charge_memcg+0x10/0x10 [ 3278.992877][T16256] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3278.998621][T16256] ? __pfx_lock_release+0x10/0x10 [ 3279.003662][T16256] ? memcg_account_kmem+0x1e7/0x210 [ 3279.008895][T16256] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3279.014715][T16256] __memcg_kmem_charge_page+0xe1/0x250 [ 3279.020186][T16256] memcg_charge_kernel_stack+0x304/0x550 [ 3279.025856][T16256] dup_task_struct+0x40d/0x7d0 [ 3279.030643][T16256] copy_process+0x5d5/0x3fc0 [ 3279.035258][T16256] ? __might_fault+0xa9/0x120 [ 3279.039958][T16256] ? __pfx_lock_release+0x10/0x10 [ 3279.045006][T16256] ? __pfx_copy_process+0x10/0x10 [ 3279.050042][T16256] ? __might_fault+0xc5/0x120 [ 3279.054750][T16256] ? __asan_memset+0x23/0x50 [ 3279.059362][T16256] kernel_clone+0x21d/0x8d0 [ 3279.063882][T16256] ? __pfx_kernel_clone+0x10/0x10 [ 3279.068937][T16256] __se_sys_clone3+0x2cb/0x350 [ 3279.073718][T16256] ? __pfx___se_sys_clone3+0x10/0x10 [ 3279.079042][T16256] ? do_syscall_64+0x108/0x240 [ 3279.083824][T16256] ? do_syscall_64+0xb4/0x240 [ 3279.088519][T16256] do_syscall_64+0xf9/0x240 [ 3279.093042][T16256] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3279.098954][T16256] RIP: 0033:0x7f02540a9b99 [ 3279.103384][T16256] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3279.123001][T16256] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3279.131434][T16256] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3279.139419][T16256] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3279.147421][T16256] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3279.155406][T16256] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3279.163385][T16256] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3279.171382][T16256] [ 3279.213484][T16256] memory: usage 307200kB, limit 307200kB, failcnt 335334 [ 3279.223435][T16256] memory+swap: usage 307468kB, limit 9007199254740988kB, failcnt 0 [ 3279.233272][T16256] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3279.240982][T16256] Memory cgroup stats for /syz1: [ 3279.241132][T16256] cache 0 [ 3279.249317][T16256] rss 12288 [ 3279.252642][T16256] rss_huge 0 [ 3279.256041][T16256] shmem 0 [ 3279.259380][T16256] mapped_file 0 [ 3279.263058][T16256] dirty 0 [ 3279.266200][T16256] writeback 0 [ 3279.269775][T16256] workingset_refault_anon 114153 [ 3279.274933][T16256] workingset_refault_file 3 [ 3279.279724][T16256] swap 274432 [ 3279.283216][T16256] swapcached 8192 [ 3279.287213][T16256] pgpgin 283779 [ 3279.290999][T16256] pgpgout 283776 [ 3279.294917][T16256] pgfault 606966 [ 3279.298766][T16256] pgmajfault 107385 [ 3279.302796][T16256] inactive_anon 0 [ 3279.306643][T16256] active_anon 12288 [ 3279.313314][T16256] inactive_file 0 [ 3279.317146][T16256] active_file 0 [ 3279.320952][T16256] unevictable 0 [ 3279.324631][T16256] hierarchical_memory_limit 314572800 [ 3279.331635][T16251] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3279.345209][T16256] hierarchical_memsw_limit 9223372036854771712 [ 3279.354640][T16256] total_cache 0 [ 3279.358275][T16256] total_rss 12288 [ 3279.365700][T16256] total_rss_huge 0 [ 3279.372374][T16256] total_shmem 0 [ 3279.375985][T16256] total_mapped_file 0 [ 3279.383814][T16256] total_dirty 0 [ 3279.387445][T16256] total_writeback 0 [ 3279.393691][T16256] total_workingset_refault_anon 114153 [ 3279.403825][T16256] total_workingset_refault_file 3 [ 3279.411618][T16256] total_swap 274432 [ 3279.415640][T16256] total_swapcached 8192 [ 3279.420503][T16256] total_pgpgin 283779 [ 3279.424918][T16256] total_pgpgout 283776 [ 3279.431410][T16256] total_pgfault 606966 [ 3279.442430][T16256] total_pgmajfault 107385 [ 3279.445254][T16254] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3279.446917][T16256] total_inactive_anon 0 01:27:17 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000001b00000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3279.467380][T16256] total_active_anon 12288 [ 3279.472838][T16256] total_inactive_file 0 [ 3279.488489][T16256] total_active_file 0 [ 3279.497503][T16256] total_unevictable 0 [ 3279.511210][T16256] anon_cost 0 01:27:17 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000ffffc0fe0000000114000600020000001b"], 0x54}}, 0x0) [ 3279.516374][T16256] file_cost 0 [ 3279.521310][T16256] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16256,uid=0 [ 3279.540847][T16256] Memory cgroup out of memory: Killed process 16256 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:17 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000001b0000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:17 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) (async) recvmsg(r0, &(0x7f00000002c0)={&(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000140)=""/114, 0x72}], 0x1, &(0x7f0000000200)=""/152, 0x98}, 0x43) setsockopt$sock_int(r0, 0x1, 0x2d, &(0x7f0000000300)=0x1, 0x4) (async) sendmsg$NFT_BATCH(r1, &(0x7f00000007c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80801141}, 0xc, &(0x7f0000000780)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWOBJ={0x78, 0x12, 0xa, 0x801, 0x0, 0x0, {0x3, 0x0, 0x4}, @NFT_OBJECT_LIMIT=@NFTA_OBJ_DATA={0x64, 0x4, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x2}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x3}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x9}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x100000000}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0xc2}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x800}]}}, @NFT_MSG_DELTABLE={0x180, 0x2, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_TABLE_USERDATA={0xc4, 0x6, "c334487b9246510b19edb0c498cd357d0e00b5bd2e9cd91df2081879fc3ab0b7b09378fe95c93036c6c09fcc667bdadc75c850581f6f22624625b94ed8ae9c33a41fe2e8f639907874b876f0aace1bdc1ff4c3ca2e3fa3e25b0c3fc42027f730aa52a7f324f56a31bb42efdcd5fde21bf909606348135cbb0c1f850744065c4b837cece18f5fef0b8263693f4294c2f8819d8f2b95cbecf64b3abaf388b7aa1bd2c9f8db89b589c6fceebe7fb7f5af3e8b449a57080528e2e7284e3b75ffa0a8"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x6b, 0x6, "0e9526ed470ac043445772e8943e8c39bf147a7b21c602c2beb812aca5e600d07d3b8effb5c7f32062b49c05c0a0032201185232648b56f9da5f627105628a7a80c7e267850902b00e0bb85976a5015e5799c33adddf0d5429ade0e8c3852b7518769f80541ef0"}, @NFTA_TABLE_USERDATA={0x28, 0x6, "4aeb6aaf1775c61af3ec809d3febdc1cff4f61143d8809ea91c10259fb8c4f96ffb28174"}]}, @NFT_MSG_NEWFLOWTABLE={0x1d0, 0x16, 0xa, 0x284, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_FLOWTABLE_HOOK={0x6c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x68, 0x3, 0x0, 0x1, [{0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'veth0_to_team\x00'}, {0x14, 0x1, 'wg0\x00'}, {0x14, 0x1, 'geneve0\x00'}, {0x14, 0x1, 'wg0\x00'}]}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x144, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_virt_wifi\x00'}, {0x14, 0x1, 'pim6reg\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x1f}, @NFTA_FLOWTABLE_HOOK_DEVS={0x40, 0x3, 0x0, 0x1, [{0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'geneve1\x00'}, {0x14, 0x1, 'hsr0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x7fff}, @NFTA_FLOWTABLE_HOOK_DEVS={0xa4, 0x3, 0x0, 0x1, [{0x14, 0x1, 'pimreg1\x00'}, {0x14, 0x1, 'syz_tun\x00'}, {0x14, 0x1, 'wg1\x00'}, {0x14, 0x1, 'veth0_to_bond\x00'}, {0x14, 0x1, 'wg2\x00'}, {0x14, 0x1, 'macvlan0\x00'}, {0x14, 0x1, 'veth0_virt_wifi\x00'}, {0x14, 0x1, 'veth0_to_hsr\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x8}]}]}], {0x14}}, 0x3f0}, 0x1, 0x0, 0x0, 0x800}, 0x90) [ 3279.700227][T16249] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3279.719999][T16258] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3279.733174][T16249] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. 01:27:18 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000002000000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3279.906839][T16263] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3280.037885][T16260] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3280.050668][T16260] CPU: 0 PID: 16260 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3280.061147][T16260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3280.071251][T16260] Call Trace: [ 3280.074570][T16260] [ 3280.077533][T16260] dump_stack_lvl+0x1e7/0x2e0 [ 3280.082253][T16260] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3280.087467][T16260] ? __pfx__printk+0x10/0x10 [ 3280.087496][T16260] ? ___ratelimit+0x4c4/0x670 [ 3280.096872][T16260] ? __pfx____ratelimit+0x10/0x10 [ 3280.102061][T16260] dump_header+0xda/0x6a0 [ 3280.106448][T16260] oom_kill_process+0x3a7/0x930 [ 3280.111353][T16260] out_of_memory+0xf67/0x1320 [ 3280.116085][T16260] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3280.121764][T16260] ? __pfx___mutex_lock+0x10/0x10 [ 3280.126835][T16260] ? __pfx_out_of_memory+0x10/0x10 [ 3280.132002][T16260] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3280.137590][T16260] ? __pfx_lock_release+0x10/0x10 [ 3280.142662][T16260] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3280.148774][T16260] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3280.154012][T16260] ? mem_cgroup_iter+0x3e9/0x560 [ 3280.159004][T16260] try_charge_memcg+0xda2/0x18a0 [ 3280.164019][T16260] ? __pfx_try_charge_memcg+0x10/0x10 [ 3280.169435][T16260] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3280.175210][T16260] ? __pfx_lock_release+0x10/0x10 [ 3280.180292][T16260] ? memcg_account_kmem+0x1e7/0x210 [ 3280.185562][T16260] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3280.191428][T16260] __memcg_kmem_charge_page+0xe1/0x250 [ 3280.196925][T16260] memcg_charge_kernel_stack+0x210/0x550 [ 3280.202604][T16260] dup_task_struct+0x40d/0x7d0 [ 3280.207412][T16260] copy_process+0x5d5/0x3fc0 [ 3280.212054][T16260] ? __might_fault+0xa9/0x120 [ 3280.216768][T16260] ? __pfx_lock_release+0x10/0x10 [ 3280.221838][T16260] ? __pfx_copy_process+0x10/0x10 [ 3280.226904][T16260] ? __might_fault+0xc5/0x120 [ 3280.231630][T16260] ? __asan_memset+0x23/0x50 [ 3280.236265][T16260] kernel_clone+0x21d/0x8d0 [ 3280.240808][T16260] ? __pfx_kernel_clone+0x10/0x10 [ 3280.245887][T16260] __se_sys_clone3+0x2cb/0x350 [ 3280.250710][T16260] ? __pfx___se_sys_clone3+0x10/0x10 [ 3280.256071][T16260] ? do_syscall_64+0x108/0x240 [ 3280.260879][T16260] ? do_syscall_64+0xb4/0x240 [ 3280.265597][T16260] do_syscall_64+0xf9/0x240 [ 3280.270152][T16260] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3280.276090][T16260] RIP: 0033:0x7f02540a9b99 [ 3280.280545][T16260] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3280.300200][T16260] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3280.308670][T16260] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3280.316695][T16260] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3280.324716][T16260] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3280.332731][T16260] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3280.340829][T16260] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3280.348868][T16260] [ 3280.364553][T16260] memory: usage 307180kB, limit 307200kB, failcnt 335649 [ 3280.371912][T16260] memory+swap: usage 307460kB, limit 9007199254740988kB, failcnt 0 [ 3280.380931][T16260] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3280.388352][T16260] Memory cgroup stats for /syz1: [ 3280.388514][T16260] cache 0 [ 3280.397336][T16260] rss 8192 [ 3280.400856][T16260] rss_huge 0 [ 3280.404170][T16260] shmem 0 [ 3280.407242][T16260] mapped_file 0 [ 3280.411888][T16260] dirty 0 [ 3280.414943][T16260] writeback 0 [ 3280.418322][T16260] workingset_refault_anon 114258 [ 3280.424063][T16260] workingset_refault_file 3 [ 3280.429031][T16260] swap 278528 [ 3280.432430][T16260] swapcached 8192 [ 3280.436159][T16260] pgpgin 283895 [ 3280.440724][T16260] pgpgout 283893 [ 3280.444393][T16260] pgfault 607154 [ 3280.448041][T16260] pgmajfault 107484 [ 3280.452681][T16260] inactive_anon 0 [ 3280.459594][T16260] active_anon 8192 [ 3280.463461][T16260] inactive_file 0 [ 3280.467203][T16260] active_file 0 [ 3280.473619][T16260] unevictable 0 [ 3280.477197][T16260] hierarchical_memory_limit 314572800 [ 3280.483314][T16260] hierarchical_memsw_limit 9223372036854771712 [ 3280.490034][T16260] total_cache 0 [ 3280.493605][T16260] total_rss 8192 [ 3280.497257][T16260] total_rss_huge 0 [ 3280.502067][T16260] total_shmem 0 [ 3280.505652][T16260] total_mapped_file 0 [ 3280.510239][T16260] total_dirty 0 [ 3280.513832][T16260] total_writeback 0 [ 3280.517740][T16260] total_workingset_refault_anon 114258 [ 3280.524002][T16260] total_workingset_refault_file 3 [ 3280.529842][T16260] total_swap 278528 [ 3280.533832][T16260] total_swapcached 8192 [ 3280.538138][T16260] total_pgpgin 283895 [ 3280.543349][T16260] total_pgpgout 283893 [ 3280.547589][T16260] total_pgfault 607154 [ 3280.552383][T16260] total_pgmajfault 107484 [ 3280.556858][T16260] total_inactive_anon 0 [ 3280.563544][T16260] total_active_anon 8192 [ 3280.568076][T16260] total_inactive_file 0 [ 3280.576737][T16260] total_active_file 0 [ 3280.583002][T16260] total_unevictable 0 [ 3280.587243][T16260] anon_cost 0 [ 3280.591703][T16260] file_cost 0 [ 3280.595242][T16260] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16260,uid=0 [ 3280.612195][T16260] Memory cgroup out of memory: Killed process 16260 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:18 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000ff0000000114000600020000001b"], 0x54}}, 0x0) 01:27:19 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000600000000000000114000600020000001b"], 0x54}}, 0x0) [ 3280.830010][T16268] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:27:19 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000003f00000000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:19 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x4c00000000000000) [ 3281.036133][T16272] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3281.047318][T16264] netlink: 'syz-executor.2': attribute type 12 has an invalid length. 01:27:19 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000fc0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3281.302752][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3281.314306][ T5105] CPU: 1 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3281.324763][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3281.334836][ T5105] Call Trace: [ 3281.334849][ T5105] [ 3281.334859][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3281.334898][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3281.334925][ T5105] ? __pfx__printk+0x10/0x10 [ 3281.355706][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3281.360439][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3281.365496][ T5105] dump_header+0xda/0x6a0 [ 3281.369854][ T5105] oom_kill_process+0x3a7/0x930 [ 3281.374732][ T5105] out_of_memory+0xf67/0x1320 [ 3281.379445][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3281.385112][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3281.390160][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3281.395297][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3281.400863][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3281.405910][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3281.412079][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3281.417292][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3281.422254][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3281.427208][ T5105] ? mark_lock+0x9a/0x350 [ 3281.431567][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3281.436983][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3281.443153][ T5105] charge_memcg+0xa2/0x160 [ 3281.447584][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3281.453667][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3281.459134][ T5105] ? mark_lock+0x9a/0x350 [ 3281.463498][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3281.469606][ T5105] swap_cluster_readahead+0x67c/0x810 [ 3281.475004][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3281.480932][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3281.485997][ T5105] ? xas_descend+0x37e/0x470 [ 3281.490626][ T5105] swapin_readahead+0x1ea/0x1070 [ 3281.495594][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3281.501021][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3281.506425][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3281.511741][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3281.517041][ T5105] do_swap_page+0x791/0x3f40 [ 3281.521656][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3281.526449][ T5105] ? do_swap_page+0x154/0x3f40 [ 3281.531256][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3281.536319][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3281.541801][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3281.547682][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3281.552860][ T5105] ? reacquire_held_locks+0x3eb/0x690 [ 3281.558262][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3281.563760][ T5105] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3281.569511][ T5105] ? mtree_range_walk+0x6fd/0x8e0 [ 3281.574555][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3281.579767][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3281.584817][ T5105] ? lock_vma_under_rcu+0x2f9/0x730 [ 3281.590061][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3281.595278][ T5105] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3281.600841][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3281.605638][ T5105] exc_page_fault+0x456/0x870 [ 3281.610335][ T5105] asm_exc_page_fault+0x26/0x30 [ 3281.615283][ T5105] RIP: 0033:0x7f025407a7a4 [ 3281.619708][ T5105] Code: 84 00 00 00 00 00 80 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00 f0 ff ff 77 5d c3 0f 1f 40 00 48 83 ec 28 <89> 54 24 14 48 89 74 24 08 89 7c 24 10 48 89 4c 24 18 e8 d5 a3 02 [ 3281.639325][ T5105] RSP: 002b:00007ffe12c8cc50 EFLAGS: 00010206 [ 3281.645407][ T5105] RAX: 00000000000001dc RBX: 0000000000004702 RCX: 0000000000000000 [ 3281.653387][ T5105] RDX: 0000000040000001 RSI: 00007ffe12c8ccdc RDI: 00000000ffffffff [ 3281.661370][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000010 R09: 00007ffe12ccd0b0 [ 3281.669353][ T5105] R10: 0000000000000000 R11: 00000000000999c6 R12: 0000000000000032 [ 3281.677337][ T5105] R13: 0000000000320f53 R14: 0000000000320f53 R15: 0000000000000000 [ 3281.685349][ T5105] [ 3281.694511][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 336106 [ 3281.701805][ T5105] memory+swap: usage 307444kB, limit 9007199254740988kB, failcnt 0 [ 3281.710655][ T5105] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3281.718090][ T5105] Memory cgroup stats for /syz1: [ 3281.718248][ T5105] cache 0 [ 3281.726349][ T5105] rss 12288 [ 3281.729755][ T5105] rss_huge 0 [ 3281.733070][ T5105] shmem 0 [ 3281.736111][ T5105] mapped_file 0 [ 3281.741331][ T5105] dirty 0 [ 3281.745897][ T5105] writeback 0 [ 3281.749887][ T5105] workingset_refault_anon 114401 [ 3281.757611][ T5105] workingset_refault_file 3 [ 3281.771495][ T5105] swap 233472 [ 3281.774964][ T5105] swapcached 12288 [ 3281.783164][ T5105] pgpgin 284049 [ 3281.786787][ T5105] pgpgout 284045 [ 3281.793859][ T5105] pgfault 607396 [ 3281.797576][ T5105] pgmajfault 107624 [ 3281.803698][ T5105] inactive_anon 0 [ 3281.807504][ T5105] active_anon 0 [ 3281.811209][ T5105] inactive_file 0 [ 3281.815255][ T5105] active_file 0 [ 3281.818969][ T5105] unevictable 0 [ 3281.822848][ T5105] hierarchical_memory_limit 314572800 [ 3281.828375][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3281.835141][ T5105] total_cache 0 [ 3281.839110][ T5105] total_rss 12288 [ 3281.842912][ T5105] total_rss_huge 0 [ 3281.846778][ T5105] total_shmem 0 [ 3281.851087][ T5105] total_mapped_file 0 [ 3281.855230][ T5105] total_dirty 0 [ 3281.859196][ T5105] total_writeback 0 [ 3281.863721][ T5105] total_workingset_refault_anon 114401 [ 3281.869721][ T5105] total_workingset_refault_file 3 [ 3281.874895][ T5105] total_swap 233472 [ 3281.879679][ T5105] total_swapcached 12288 [ 3281.884107][ T5105] total_pgpgin 284049 [ 3281.888242][ T5105] total_pgpgout 284045 [ 3281.896975][ T5105] total_pgfault 607396 [ 3281.901636][ T5105] total_pgmajfault 107624 [ 3281.906132][ T5105] total_inactive_anon 0 [ 3281.912366][ T5105] total_active_anon 0 [ 3281.916533][ T5105] total_inactive_file 0 [ 3281.921688][ T5105] total_active_file 0 [ 3281.925832][ T5105] total_unevictable 0 [ 3281.930893][ T5105] anon_cost 0 [ 3281.934342][ T5105] file_cost 0 [ 3281.939508][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16270,uid=0 [ 3281.957804][ T5105] Memory cgroup out of memory: Killed process 16270 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:20 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000fe80ffff0000000114000600020000001b"], 0x54}}, 0x0) 01:27:20 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000004000000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3282.470581][T16282] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3282.484046][T16282] CPU: 1 PID: 16282 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3282.494531][T16282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3282.504629][T16282] Call Trace: [ 3282.507951][T16282] [ 3282.510922][T16282] dump_stack_lvl+0x1e7/0x2e0 [ 3282.515727][T16282] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3282.520952][T16282] ? __pfx__printk+0x10/0x10 [ 3282.525571][T16282] ? ___ratelimit+0x4c4/0x670 [ 3282.530284][T16282] ? __pfx____ratelimit+0x10/0x10 [ 3282.535354][T16282] dump_header+0xda/0x6a0 [ 3282.539720][T16282] oom_kill_process+0x3a7/0x930 [ 3282.544612][T16282] out_of_memory+0xf67/0x1320 [ 3282.549342][T16282] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3282.555014][T16282] ? __pfx___mutex_lock+0x10/0x10 [ 3282.560068][T16282] ? __pfx_out_of_memory+0x10/0x10 [ 3282.565235][T16282] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3282.570826][T16282] ? __pfx_lock_release+0x10/0x10 [ 3282.575906][T16282] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3282.582039][T16282] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3282.587356][T16282] ? mem_cgroup_iter+0x3e9/0x560 [ 3282.592316][T16282] try_charge_memcg+0xda2/0x18a0 [ 3282.597283][T16282] ? __pfx_try_charge_memcg+0x10/0x10 [ 3282.602666][T16282] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3282.608410][T16282] ? __pfx_lock_release+0x10/0x10 [ 3282.613530][T16282] ? memcg_account_kmem+0x1e7/0x210 [ 3282.618807][T16282] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3282.624661][T16282] __memcg_kmem_charge_page+0xe1/0x250 [ 3282.630145][T16282] memcg_charge_kernel_stack+0x210/0x550 [ 3282.635906][T16282] dup_task_struct+0x15d/0x7d0 [ 3282.640702][T16282] copy_process+0x5d5/0x3fc0 [ 3282.645333][T16282] ? __might_fault+0xa9/0x120 [ 3282.650040][T16282] ? __pfx_lock_release+0x10/0x10 [ 3282.655160][T16282] ? __pfx_copy_process+0x10/0x10 [ 3282.660384][T16282] ? __might_fault+0xc5/0x120 [ 3282.665114][T16282] ? __asan_memset+0x23/0x50 [ 3282.669735][T16282] kernel_clone+0x21d/0x8d0 [ 3282.674274][T16282] ? __pfx_kernel_clone+0x10/0x10 [ 3282.679350][T16282] __se_sys_clone3+0x2cb/0x350 [ 3282.684163][T16282] ? __pfx___se_sys_clone3+0x10/0x10 [ 3282.689507][T16282] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3282.695536][T16282] ? exc_page_fault+0x587/0x870 [ 3282.700415][T16282] ? do_syscall_64+0xb4/0x240 [ 3282.705125][T16282] do_syscall_64+0xf9/0x240 [ 3282.709671][T16282] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3282.715598][T16282] RIP: 0033:0x7f02540a9b99 [ 3282.720034][T16282] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3282.739680][T16282] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3282.748129][T16282] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3282.756117][T16282] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3282.764108][T16282] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3282.772101][T16282] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3282.780100][T16282] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3282.788119][T16282] [ 3282.799086][T16282] memory: usage 307200kB, limit 307200kB, failcnt 336493 [ 3282.810398][T16282] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0 [ 3282.820864][T16282] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3282.843950][T16282] Memory cgroup stats for /syz1: [ 3282.844115][T16282] cache 0 [ 3282.853059][T16278] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3282.858169][T16282] rss 20480 01:27:21 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000300000000000114000600020000001b"], 0x54}}, 0x0) [ 3282.878709][T16282] rss_huge 0 [ 3282.882253][T16282] shmem 0 [ 3282.894086][T16282] mapped_file 0 [ 3282.899701][T16282] dirty 0 [ 3282.902794][T16282] writeback 0 [ 3282.906578][T16282] workingset_refault_anon 114539 [ 3282.920586][T16282] workingset_refault_file 3 01:27:21 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) recvmsg(r0, &(0x7f00000002c0)={&(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000140)=""/114, 0x72}], 0x1, &(0x7f0000000200)=""/152, 0x98}, 0x43) (async) recvmsg(r0, &(0x7f00000002c0)={&(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000140)=""/114, 0x72}], 0x1, &(0x7f0000000200)=""/152, 0x98}, 0x43) setsockopt$sock_int(r0, 0x1, 0x2d, &(0x7f0000000300)=0x1, 0x4) sendmsg$NFT_BATCH(r1, &(0x7f00000007c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80801141}, 0xc, &(0x7f0000000780)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWOBJ={0x78, 0x12, 0xa, 0x801, 0x0, 0x0, {0x3, 0x0, 0x4}, @NFT_OBJECT_LIMIT=@NFTA_OBJ_DATA={0x64, 0x4, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x2}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x3}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x9}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x100000000}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0xc2}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x800}]}}, @NFT_MSG_DELTABLE={0x180, 0x2, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_TABLE_USERDATA={0xc4, 0x6, "c334487b9246510b19edb0c498cd357d0e00b5bd2e9cd91df2081879fc3ab0b7b09378fe95c93036c6c09fcc667bdadc75c850581f6f22624625b94ed8ae9c33a41fe2e8f639907874b876f0aace1bdc1ff4c3ca2e3fa3e25b0c3fc42027f730aa52a7f324f56a31bb42efdcd5fde21bf909606348135cbb0c1f850744065c4b837cece18f5fef0b8263693f4294c2f8819d8f2b95cbecf64b3abaf388b7aa1bd2c9f8db89b589c6fceebe7fb7f5af3e8b449a57080528e2e7284e3b75ffa0a8"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x6b, 0x6, "0e9526ed470ac043445772e8943e8c39bf147a7b21c602c2beb812aca5e600d07d3b8effb5c7f32062b49c05c0a0032201185232648b56f9da5f627105628a7a80c7e267850902b00e0bb85976a5015e5799c33adddf0d5429ade0e8c3852b7518769f80541ef0"}, @NFTA_TABLE_USERDATA={0x28, 0x6, "4aeb6aaf1775c61af3ec809d3febdc1cff4f61143d8809ea91c10259fb8c4f96ffb28174"}]}, @NFT_MSG_NEWFLOWTABLE={0x1d0, 0x16, 0xa, 0x284, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_FLOWTABLE_HOOK={0x6c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x68, 0x3, 0x0, 0x1, [{0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'veth0_to_team\x00'}, {0x14, 0x1, 'wg0\x00'}, {0x14, 0x1, 'geneve0\x00'}, {0x14, 0x1, 'wg0\x00'}]}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x144, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_virt_wifi\x00'}, {0x14, 0x1, 'pim6reg\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x1f}, @NFTA_FLOWTABLE_HOOK_DEVS={0x40, 0x3, 0x0, 0x1, [{0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'geneve1\x00'}, {0x14, 0x1, 'hsr0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x7fff}, @NFTA_FLOWTABLE_HOOK_DEVS={0xa4, 0x3, 0x0, 0x1, [{0x14, 0x1, 'pimreg1\x00'}, {0x14, 0x1, 'syz_tun\x00'}, {0x14, 0x1, 'wg1\x00'}, {0x14, 0x1, 'veth0_to_bond\x00'}, {0x14, 0x1, 'wg2\x00'}, {0x14, 0x1, 'macvlan0\x00'}, {0x14, 0x1, 'veth0_virt_wifi\x00'}, {0x14, 0x1, 'veth0_to_hsr\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x8}]}]}], {0x14}}, 0x3f0}, 0x1, 0x0, 0x0, 0x800}, 0x90) [ 3282.927161][T16282] swap 266240 [ 3282.942967][T16282] swapcached 16384 [ 3282.947927][T16282] pgpgin 284197 [ 3282.969933][T16282] pgpgout 284192 [ 3282.986278][T16282] pgfault 607637 [ 3282.999039][T16282] pgmajfault 107758 [ 3283.002908][T16282] inactive_anon 20480 [ 3283.006916][T16282] active_anon 0 01:27:21 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000884700000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3283.035297][T16282] inactive_file 0 [ 3283.048803][T16282] active_file 0 [ 3283.052315][T16282] unevictable 0 [ 3283.055795][T16282] hierarchical_memory_limit 314572800 [ 3283.067916][T16282] hierarchical_memsw_limit 9223372036854771712 [ 3283.076121][T16282] total_cache 0 [ 3283.080272][T16282] total_rss 20480 [ 3283.088682][T16282] total_rss_huge 0 [ 3283.094578][T16282] total_shmem 0 [ 3283.098204][T16282] total_mapped_file 0 [ 3283.106578][T16282] total_dirty 0 [ 3283.113860][T16282] total_writeback 0 [ 3283.117876][T16282] total_workingset_refault_anon 114539 [ 3283.138702][T16282] total_workingset_refault_file 3 [ 3283.143918][T16282] total_swap 266240 [ 3283.151037][T16282] total_swapcached 16384 [ 3283.156075][T16282] total_pgpgin 284197 [ 3283.160970][T16282] total_pgpgout 284192 [ 3283.165295][T16282] total_pgfault 607637 [ 3283.177160][T16282] total_pgmajfault 107758 [ 3283.182005][T16282] total_inactive_anon 20480 [ 3283.186994][T16282] total_active_anon 0 [ 3283.197852][T16282] total_inactive_file 0 [ 3283.202570][T16282] total_active_file 0 [ 3283.206825][T16282] total_unevictable 0 [ 3283.213633][T16282] anon_cost 0 [ 3283.223495][T16282] file_cost 0 [ 3283.231690][T16282] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16282,uid=0 [ 3283.255003][T16282] Memory cgroup out of memory: Killed process 16282 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:21 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000088a8ffff0000000114000600020000001b"], 0x54}}, 0x0) [ 3283.668763][T16287] __nla_validate_parse: 5 callbacks suppressed [ 3283.668783][T16287] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3283.805647][T16296] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3283.825681][T16296] CPU: 1 PID: 16296 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3283.836169][T16296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3283.846264][T16296] Call Trace: [ 3283.849588][T16296] 01:27:22 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000080300000000000114000600020000001b"], 0x54}}, 0x0) [ 3283.852550][T16296] dump_stack_lvl+0x1e7/0x2e0 [ 3283.857275][T16296] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3283.862515][T16296] ? __pfx__printk+0x10/0x10 [ 3283.867142][T16296] ? ___ratelimit+0x4c4/0x670 [ 3283.871885][T16296] ? __pfx____ratelimit+0x10/0x10 [ 3283.876966][T16296] dump_header+0xda/0x6a0 [ 3283.881344][T16296] oom_kill_process+0x3a7/0x930 [ 3283.886246][T16296] out_of_memory+0xf67/0x1320 [ 3283.890982][T16296] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3283.896755][T16296] ? __pfx___mutex_lock+0x10/0x10 [ 3283.901830][T16296] ? __pfx_out_of_memory+0x10/0x10 [ 3283.906999][T16296] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3283.912608][T16296] ? __pfx_lock_release+0x10/0x10 [ 3283.917715][T16296] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3283.923842][T16296] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3283.929090][T16296] ? mem_cgroup_iter+0x3e9/0x560 [ 3283.934075][T16296] try_charge_memcg+0xda2/0x18a0 [ 3283.939090][T16296] ? __pfx_try_charge_memcg+0x10/0x10 [ 3283.944514][T16296] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3283.950368][T16296] ? __pfx_lock_release+0x10/0x10 [ 3283.955445][T16296] ? memcg_account_kmem+0x1e7/0x210 [ 3283.958032][T16298] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3283.960680][T16296] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3283.960725][T16296] __memcg_kmem_charge_page+0xe1/0x250 [ 3283.960754][T16296] memcg_charge_kernel_stack+0x210/0x550 [ 3283.960790][T16296] dup_task_struct+0x40d/0x7d0 [ 3283.991695][T16296] copy_process+0x5d5/0x3fc0 [ 3283.996351][T16296] ? __might_fault+0xa9/0x120 [ 3284.001081][T16296] ? __pfx_lock_release+0x10/0x10 [ 3284.006162][T16296] ? __pfx_copy_process+0x10/0x10 [ 3284.011226][T16296] ? __might_fault+0xc5/0x120 [ 3284.015954][T16296] ? __asan_memset+0x23/0x50 [ 3284.020598][T16296] kernel_clone+0x21d/0x8d0 [ 3284.025143][T16296] ? __pfx_kernel_clone+0x10/0x10 [ 3284.030242][T16296] __se_sys_clone3+0x2cb/0x350 [ 3284.035144][T16296] ? __pfx___se_sys_clone3+0x10/0x10 [ 3284.040471][T16296] ? rcu_is_watching+0x15/0xb0 [ 3284.045297][T16296] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3284.051338][T16296] ? exc_page_fault+0x587/0x870 [ 3284.053048][T16294] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3284.056205][T16296] ? do_syscall_64+0xb4/0x240 [ 3284.056243][T16296] do_syscall_64+0xf9/0x240 [ 3284.056276][T16296] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3284.080573][T16296] RIP: 0033:0x7f02540a9b99 [ 3284.085032][T16296] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3284.104691][T16296] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3284.113154][T16296] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3284.121182][T16296] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3284.129196][T16296] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3284.137211][T16296] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3284.145219][T16296] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3284.153330][T16296] 01:27:22 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000270300000000000114000600020000001b"], 0x54}}, 0x0) 01:27:22 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000884800000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3284.229131][T16296] memory: usage 307180kB, limit 307200kB, failcnt 336995 [ 3284.263435][T16296] memory+swap: usage 307424kB, limit 9007199254740988kB, failcnt 0 [ 3284.272471][T16296] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3284.308644][T16296] Memory cgroup stats for /syz1: [ 3284.308813][T16296] cache 0 [ 3284.316775][T16296] rss 16384 [ 3284.331518][T16296] rss_huge 0 [ 3284.335290][T16296] shmem 0 [ 3284.338659][T16296] mapped_file 0 [ 3284.346328][T16289] netlink: 'syz-executor.2': attribute type 12 has an invalid length. 01:27:22 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x6000000000000000) [ 3284.369290][T16289] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3284.379642][T16302] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3284.389139][T16296] dirty 0 [ 3284.392116][T16296] writeback 0 [ 3284.395418][T16296] workingset_refault_anon 114710 [ 3284.420310][T16296] workingset_refault_file 3 [ 3284.424885][T16296] swap 233472 [ 3284.428198][T16296] swapcached 12288 [ 3284.438786][T16296] pgpgin 284381 [ 3284.442298][T16296] pgpgout 284377 [ 3284.445873][T16296] pgfault 607920 [ 3284.463362][T16296] pgmajfault 107920 [ 3284.467325][T16296] inactive_anon 0 [ 3284.479398][T16296] active_anon 16384 [ 3284.489923][T16296] inactive_file 0 [ 3284.493755][T16296] active_file 0 [ 3284.500515][T16296] unevictable 0 [ 3284.506186][T16296] hierarchical_memory_limit 314572800 [ 3284.512369][T16296] hierarchical_memsw_limit 9223372036854771712 [ 3284.515143][T16303] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3284.522186][T16296] total_cache 0 [ 3284.532130][T16296] total_rss 16384 [ 3284.538296][T16296] total_rss_huge 0 [ 3284.543004][T16296] total_shmem 0 [ 3284.546724][T16296] total_mapped_file 0 [ 3284.551461][T16296] total_dirty 0 [ 3284.556816][T16296] total_writeback 0 [ 3284.561560][T16296] total_workingset_refault_anon 114710 [ 3284.567368][T16296] total_workingset_refault_file 3 [ 3284.573759][T16296] total_swap 233472 [ 3284.577842][T16296] total_swapcached 12288 [ 3284.582519][T16296] total_pgpgin 284381 [ 3284.586658][T16296] total_pgpgout 284377 [ 3284.593223][T16296] total_pgfault 607920 [ 3284.597624][T16296] total_pgmajfault 107920 [ 3284.605988][T16296] total_inactive_anon 0 [ 3284.612599][T16296] total_active_anon 16384 [ 3284.617104][T16296] total_inactive_file 0 [ 3284.623871][T16296] total_active_file 0 [ 3284.632894][T16296] total_unevictable 0 [ 3284.637443][T16296] anon_cost 0 [ 3284.642262][T16296] file_cost 0 [ 3284.645728][T16296] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16296,uid=0 01:27:22 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000655800000000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:22 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000d40300000000000114000600020000001b"], 0x54}}, 0x0) [ 3284.724853][T16296] Memory cgroup out of memory: Killed process 16296 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:23 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000fec0ffff0000000114000600020000001b"], 0x54}}, 0x0) [ 3285.303104][T16309] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3285.332827][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3285.344509][ T5105] CPU: 1 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3285.354890][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3285.364986][ T5105] Call Trace: [ 3285.368381][ T5105] [ 3285.371359][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3285.376091][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3285.381329][ T5105] ? __pfx__printk+0x10/0x10 [ 3285.385949][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3285.390675][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3285.395751][ T5105] dump_header+0xda/0x6a0 [ 3285.400130][ T5105] oom_kill_process+0x3a7/0x930 [ 3285.405026][ T5105] out_of_memory+0xf67/0x1320 [ 3285.408174][T16311] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3285.409738][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3285.409773][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3285.409806][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3285.409848][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3285.409878][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3285.409911][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3285.409967][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3285.409995][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3285.410030][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3285.410057][ T5105] ? mark_lock+0x9a/0x350 [ 3285.410114][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3285.410175][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3285.410203][ T5105] charge_memcg+0xa2/0x160 [ 3285.410229][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3285.410262][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3285.410284][ T5105] ? mark_lock+0x9a/0x350 [ 3285.410321][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3285.410351][ T5105] ? blk_start_plug+0x6f/0x1b0 [ 3285.410389][ T5105] swap_cluster_readahead+0x398/0x810 [ 3285.410425][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3285.410454][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3285.410489][ T5105] ? xas_descend+0x37e/0x470 [ 3285.410525][ T5105] swapin_readahead+0x1ea/0x1070 [ 3285.410547][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3285.410596][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3285.550886][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3285.556241][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3285.561654][ T5105] do_swap_page+0x791/0x3f40 [ 3285.566332][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3285.571156][ T5105] ? do_swap_page+0x154/0x3f40 [ 3285.575958][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3285.581039][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3285.586558][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3285.592413][ T5105] ? __pfx_validate_chain+0x10/0x10 [ 3285.597664][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3285.602871][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3285.608393][ T5105] ? mt_find+0x226/0x850 [ 3285.612676][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3285.617772][ T5105] ? mt_find+0x62d/0x850 [ 3285.622062][ T5105] ? mt_find+0x226/0x850 [ 3285.626380][ T5105] ? find_vma+0x142/0x1c0 [ 3285.630753][ T5105] ? __pfx_find_vma+0x10/0x10 [ 3285.635469][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3285.640289][ T5105] exc_page_fault+0x2ad/0x870 [ 3285.645016][ T5105] asm_exc_page_fault+0x26/0x30 [ 3285.651838][ T5105] RIP: 0033:0x7f02540a91b8 [ 3285.656285][ T5105] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f [ 3285.675935][ T5105] RSP: 002b:00007ffe12c8cc10 EFLAGS: 00010293 [ 3285.682054][ T5105] RAX: 0000000000000000 RBX: 0000000000004705 RCX: 00007f02540a91b5 [ 3285.690091][ T5105] RDX: 00007ffe12c8cc50 RSI: 0000000000000000 RDI: 0000000000000000 01:27:23 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f00000000c0)={'veth0_to_batadv\x00', {0x2, 0x4e20, @remote}}) r1 = socket$kcm(0x29, 0x1, 0x0) sendmsg$kcm(r1, &(0x7f00000017c0)={&(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e23, @local}, 0x0, 0x2, 0x2, 0x3}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000180)="64ad8f4d8e86a0460f32c936c50898e47bd165916dfbf0b4dec838dfd52db59bbd8a4311fd873773e5689263f09a54ac1ea2bc5fcafa066c0fe66d74234232cb15586fd0d49b0ef497d71e5dfe1d8a76d3641ceb671150619d228fd9b6ee32902e860e8184d9dab665afb0c1c8d079aa3bfa857b280819801d6951996c8b426052de88c3e2667c0883ac0bfcc880266d8ec667dd880e03e236ef5e232c181ad226f55e6a281b389e7847dfe730c1686883299bc984eaf280718977f661677b09c8f952378a6c7aaba0f7b2efb88c4065e7fc86b56c2e24", 0xd7}, {&(0x7f0000000280)="e6021e7cf185029056445d9bf6c3d45cf4a2156f847b952a3bd24f8bb8bbf29b09833270dd86d941d680409a709442a9216fcc758dabae524efddb562770dc47dfc1ee0f01a008ebbdb3a80fc87cf1a5c30633dab770462a004f542c08b5c9e5016a7ce9e40e66a4adf211fe1674671951c38f515438663ef1", 0x79}, {&(0x7f0000000300)="6951e1f8a044d9e98ffc781cbebc200fd0949338f06042ce2ed1f2b024a6ad755bd908860c881df3518c3b05f9938b49dc44fa09d5e9b065d7a1f499fc9a0cda0f95a729b57949b30ff0327129504c0284d73699a6acacddf6f46681ae1b", 0x5e}, {&(0x7f0000000380)="729b6e20fcc3a2c78c1fdeea3fad1a974d3ce408ba2d0276163919f3247606b667a12343114f22594814b2d8efd24e93961398a74a55fe82842fcfb3b1dcf8f03c89685a517f28f9d3b6fd3d20624582c26b0695ebf53987c9cd5871cc55eadc0fac6e27cfcf2407608484d6b99ca0e588e03fe6079483", 0x77}, {&(0x7f0000000400)}, {&(0x7f0000000440)="2421f8b9c17d456d70bb83610ed98eaeeb11cf42a90f8e69", 0x18}], 0x6, &(0x7f0000000500)=[{0xf8, 0x1, 0xb6f, "10db29b8e5f68c7f12dfa57983aa2e664d72cd0bceddae2bb810c4ae5ccc18c68df86aec5c36c2222de5e840419beafd23719f6f2ef764c48d91b6eb2b677df82be230ecf9646ad1361acfa66dc686b397d429e3544e5c91629d6421f9c6725c9bdf6e257b750232f525d2dd224c2fe9cd3d4d0386a4591348c69bb4b78e7d74466f62c8f4c2ddd58af30f3a13ac200c917690e80f7b8f60fed631c98571bbd46270d0a87a8d3adccc1497688368508a12e7917dfc52c7c20a55c5f44be2fcf65271424fc22090fb38d0957d065f5edf5c0f8aee5d0b3a43e7c190e801c74104838608d154"}, {0x108, 0x114, 0x172, "37198c49acdd3aa4ccc1ddb392c1d93bf8db63626c9a923c39cfe74196105a9e87d80b33f368d6394f81c0626c1d754f12d6f68b91573a808cb55420d24ca04468b0165c85164e369bb125430567e6077f0514dcea76c3a4061e047c2a0d497f1b972beaf0a9309f6bb09e0d0b609d26d1a200120a7ca03231f75aea26b52acab061d5a01bb0a850fedb642ed44ddc1fc988088037e45c240b95be8c782ed91d115762f15ce9af9a89b664c92669bfa166c25938cbdb6282ad68632c1d68b25964362928a885f8448733d7a465132dda73b05be79274dca1a302d8549c29f8c8877c69b5440602ef3837a04a70ae02b5589ea135fa"}, {0x18, 0x107, 0x0, "060a"}, {0x1010, 0x116, 0xfffffff7, "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"}, {0x68, 0x1, 0x2ac, "2f5c14d77af6a90dc9f2e76eccec21efaeb168ba4f61b1f2c6686ddb3b7cd59c9755486836ef01449ab336a8528fea03776767eb6a727d6bdd0a5a96c06bb63bf6da5062bf480a8220f40ab351a159264673852468bd88fb"}], 0x1290}, 0x40) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) write$binfmt_script(r0, &(0x7f0000000400)=ANY=[@ANYRES64=r0], 0x11) ioctl$sock_netdev_private(r0, 0x89fa, &(0x7f0000001800)="794b6749c949bebceb2c9e1e21295c825a7a532dd8c1872aa35b05aed3b433e1516311517b0cdbe2f7a8655e0c07d060f8776dad9ee6c421c06fb68acdf2e69b597eee7803eee7c9bf416629ba3d22") [ 3285.692578][T16307] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3285.698083][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000000 R09: 00007ffe12ccd0b0 [ 3285.709103][T16307] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3285.714207][ T5105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3285.731869][ T5105] R13: 0000000000321f96 R14: 0000000000321f96 R15: 0000000000000000 [ 3285.739894][ T5105] 01:27:24 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000006000000000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:24 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000d60300000000000114000600020000001b"], 0x54}}, 0x0) [ 3285.794299][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 337430 [ 3285.803627][ T5105] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0 [ 3285.814677][ T5105] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3285.822225][ T5105] Memory cgroup stats for /syz1: [ 3285.822375][ T5105] cache 0 [ 3285.889998][ T5105] rss 0 [ 3285.900225][ T5105] rss_huge 0 [ 3285.909484][ T5105] shmem 0 [ 3285.913912][ T5105] mapped_file 0 [ 3285.917691][ T5105] dirty 0 [ 3285.921069][ T5105] writeback 0 [ 3285.924624][ T5105] workingset_refault_anon 114865 [ 3285.930194][ T5105] workingset_refault_file 3 [ 3285.934970][ T5105] swap 286720 [ 3285.938521][ T5105] swapcached 0 [ 3285.942261][ T5105] pgpgin 284547 [ 3285.945988][ T5105] pgpgout 284547 [ 3285.956871][ T5105] pgfault 608168 [ 3285.973463][ T5105] pgmajfault 108056 [ 3285.981608][ T5105] inactive_anon 0 [ 3285.993112][ T5105] active_anon 0 [ 3285.996945][ T5105] inactive_file 0 [ 3286.003697][ T5105] active_file 0 [ 3286.007577][ T5105] unevictable 0 [ 3286.024421][ T5105] hierarchical_memory_limit 314572800 [ 3286.031792][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3286.038398][ T5105] total_cache 0 [ 3286.047351][ T5105] total_rss 0 [ 3286.051263][ T5105] total_rss_huge 0 [ 3286.055385][ T5105] total_shmem 0 [ 3286.059546][ T5105] total_mapped_file 0 [ 3286.063951][ T5105] total_dirty 0 [ 3286.067924][ T5105] total_writeback 0 [ 3286.073703][ T5105] total_workingset_refault_anon 114865 [ 3286.087619][ T5105] total_workingset_refault_file 3 [ 3286.106015][ T5105] total_swap 286720 [ 3286.111767][ T5105] total_swapcached 0 [ 3286.116087][ T5105] total_pgpgin 284547 [ 3286.125690][ T5105] total_pgpgout 284547 [ 3286.131899][ T5105] total_pgfault 608168 [ 3286.136369][ T5105] total_pgmajfault 108056 [ 3286.146333][ T5105] total_inactive_anon 0 [ 3286.152606][ T5105] total_active_anon 0 [ 3286.156980][ T5105] total_inactive_file 0 [ 3286.166362][ T5105] total_active_file 0 [ 3286.172452][ T5105] total_unevictable 0 [ 3286.176843][ T5105] anon_cost 0 [ 3286.194505][ T5105] file_cost 0 [ 3286.198236][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16313,uid=0 [ 3286.214684][ T5105] Memory cgroup out of memory: Killed process 16313 (syz-executor.1) total-vm:54508kB, anon-rss:340kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:24 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000007fffffff0000000114000600020000001b"], 0x54}}, 0x0) [ 3286.487750][T16321] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:27:24 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000586500000000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:24 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000e70300000000000114000600020000001b"], 0x54}}, 0x0) [ 3286.792717][T16316] netlink: 'syz-executor.2': attribute type 12 has an invalid length. 01:27:25 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x6800000000000000) [ 3286.865086][T16326] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000 [ 3286.909596][T16326] CPU: 0 PID: 16326 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3286.920082][T16326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3286.930170][T16326] Call Trace: [ 3286.933482][T16326] [ 3286.936450][T16326] dump_stack_lvl+0x1e7/0x2e0 [ 3286.941188][T16326] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3286.946430][T16326] ? __pfx__printk+0x10/0x10 [ 3286.951065][T16326] ? ___ratelimit+0x4c4/0x670 [ 3286.955803][T16326] ? __pfx____ratelimit+0x10/0x10 [ 3286.960885][T16326] dump_header+0xda/0x6a0 [ 3286.965273][T16326] oom_kill_process+0x3a7/0x930 [ 3286.970185][T16326] out_of_memory+0xf67/0x1320 [ 3286.974914][T16326] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3286.980594][T16326] ? __pfx___mutex_lock+0x10/0x10 [ 3286.985669][T16326] ? __pfx_out_of_memory+0x10/0x10 [ 3286.990847][T16326] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3286.996447][T16326] ? __pfx_lock_release+0x10/0x10 [ 3287.001531][T16326] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3287.007657][T16326] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3287.012905][T16326] ? mem_cgroup_iter+0x3e9/0x560 [ 3287.017919][T16326] try_charge_memcg+0xda2/0x18a0 [ 3287.022947][T16326] ? __pfx_try_charge_memcg+0x10/0x10 [ 3287.028374][T16326] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3287.034164][T16326] ? __pfx_lock_release+0x10/0x10 [ 3287.039268][T16326] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3287.045310][T16326] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3287.051081][T16326] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3287.056937][T16326] obj_cgroup_charge+0x389/0x630 [ 3287.061917][T16326] ? obj_cgroup_charge+0x121/0x630 [ 3287.067048][T16326] ? __pfx_obj_cgroup_charge+0x10/0x10 [ 3287.072541][T16326] ? kmalloc_trace+0x4e/0x360 [ 3287.077265][T16326] ? __pfx___might_resched+0x10/0x10 [ 3287.082586][T16326] __memcg_slab_pre_alloc_hook+0x28d/0x2b0 [ 3287.088415][T16326] ? copy_semundo+0xb5/0x240 [ 3287.093025][T16326] kmalloc_trace+0x216/0x360 [ 3287.097634][T16326] ? __asan_memcpy+0x40/0x70 [ 3287.102248][T16326] copy_semundo+0xb5/0x240 [ 3287.106681][T16326] copy_process+0x1bc3/0x3fc0 [ 3287.111384][T16326] ? copy_process+0x9c3/0x3fc0 [ 3287.116171][T16326] ? __pfx_copy_process+0x10/0x10 [ 3287.121208][T16326] ? __might_fault+0xc5/0x120 [ 3287.125907][T16326] ? __asan_memset+0x23/0x50 [ 3287.130525][T16326] kernel_clone+0x21d/0x8d0 [ 3287.135052][T16326] ? __pfx_kernel_clone+0x10/0x10 [ 3287.140107][T16326] __se_sys_clone3+0x2cb/0x350 [ 3287.144888][T16326] ? __pfx___se_sys_clone3+0x10/0x10 [ 3287.150211][T16326] ? do_syscall_64+0x108/0x240 [ 3287.154990][T16326] ? do_syscall_64+0xb4/0x240 [ 3287.159697][T16326] do_syscall_64+0xf9/0x240 [ 3287.164249][T16326] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3287.170187][T16326] RIP: 0033:0x7f02540a9b99 [ 3287.174637][T16326] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3287.194262][T16326] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3287.202699][T16326] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3287.210691][T16326] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3287.218684][T16326] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3287.226671][T16326] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3287.234667][T16326] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3287.242673][T16326] [ 3287.269220][T16326] memory: usage 307200kB, limit 307200kB, failcnt 337873 [ 3287.296746][T16326] memory+swap: usage 307444kB, limit 9007199254740988kB, failcnt 0 [ 3287.309078][T16326] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3287.319351][T16326] Memory cgroup stats for /syz1: [ 3287.319510][T16326] cache 0 [ 3287.327874][T16326] rss 8192 [ 3287.331968][T16326] rss_huge 0 [ 3287.335581][T16326] shmem 0 [ 3287.339438][T16326] mapped_file 0 [ 3287.343294][T16326] dirty 0 [ 3287.346594][T16326] writeback 0 [ 3287.351035][T16326] workingset_refault_anon 115028 [ 3287.356450][T16326] workingset_refault_file 3 [ 3287.365411][T16326] swap 241664 [ 3287.378382][T16326] swapcached 4096 [ 3287.382799][T16326] pgpgin 284720 [ 3287.386640][T16326] pgpgout 284718 [ 3287.391145][T16326] pgfault 608441 [ 3287.395068][T16326] pgmajfault 108211 [ 3287.399770][T16326] inactive_anon 8192 [ 3287.404053][T16326] active_anon 0 [ 3287.407864][T16326] inactive_file 0 [ 3287.412670][T16326] active_file 0 [ 3287.416510][T16326] unevictable 0 [ 3287.432160][T16326] hierarchical_memory_limit 314572800 [ 3287.437931][T16326] hierarchical_memsw_limit 9223372036854771712 [ 3287.450023][T16326] total_cache 0 [ 3287.453523][T16326] total_rss 8192 [ 3287.457083][T16326] total_rss_huge 0 [ 3287.467878][T16326] total_shmem 0 [ 3287.471793][T16326] total_mapped_file 0 [ 3287.476146][T16326] total_dirty 0 [ 3287.487569][T16326] total_writeback 0 [ 3287.491847][T16326] total_workingset_refault_anon 115028 [ 3287.497701][T16326] total_workingset_refault_file 3 [ 3287.503335][T16326] total_swap 241664 [ 3287.507543][T16326] total_swapcached 4096 [ 3287.512472][T16326] total_pgpgin 284720 [ 3287.516850][T16326] total_pgpgout 284718 [ 3287.523276][T16326] total_pgfault 608441 [ 3287.527760][T16326] total_pgmajfault 108211 [ 3287.533022][T16326] total_inactive_anon 8192 [ 3287.537793][T16326] total_active_anon 0 [ 3287.542574][T16326] total_inactive_file 0 [ 3287.547114][T16326] total_active_file 0 [ 3287.551560][T16326] total_unevictable 0 [ 3287.555933][T16326] anon_cost 0 [ 3287.559696][T16326] file_cost 0 [ 3287.563357][T16326] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16326,uid=0 [ 3287.580123][T16326] Memory cgroup out of memory: Killed process 16326 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:25 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000e0ffffff0000000114000600020000001b"], 0x54}}, 0x0) 01:27:26 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000128000000000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:26 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000fd0300000000000114000600020000001b"], 0x54}}, 0x0) 01:27:26 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f00000000c0)={'veth0_to_batadv\x00', {0x2, 0x4e20, @remote}}) (async) r1 = socket$kcm(0x29, 0x1, 0x0) sendmsg$kcm(r1, &(0x7f00000017c0)={&(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e23, @local}, 0x0, 0x2, 0x2, 0x3}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000180)="64ad8f4d8e86a0460f32c936c50898e47bd165916dfbf0b4dec838dfd52db59bbd8a4311fd873773e5689263f09a54ac1ea2bc5fcafa066c0fe66d74234232cb15586fd0d49b0ef497d71e5dfe1d8a76d3641ceb671150619d228fd9b6ee32902e860e8184d9dab665afb0c1c8d079aa3bfa857b280819801d6951996c8b426052de88c3e2667c0883ac0bfcc880266d8ec667dd880e03e236ef5e232c181ad226f55e6a281b389e7847dfe730c1686883299bc984eaf280718977f661677b09c8f952378a6c7aaba0f7b2efb88c4065e7fc86b56c2e24", 0xd7}, {&(0x7f0000000280)="e6021e7cf185029056445d9bf6c3d45cf4a2156f847b952a3bd24f8bb8bbf29b09833270dd86d941d680409a709442a9216fcc758dabae524efddb562770dc47dfc1ee0f01a008ebbdb3a80fc87cf1a5c30633dab770462a004f542c08b5c9e5016a7ce9e40e66a4adf211fe1674671951c38f515438663ef1", 0x79}, {&(0x7f0000000300)="6951e1f8a044d9e98ffc781cbebc200fd0949338f06042ce2ed1f2b024a6ad755bd908860c881df3518c3b05f9938b49dc44fa09d5e9b065d7a1f499fc9a0cda0f95a729b57949b30ff0327129504c0284d73699a6acacddf6f46681ae1b", 0x5e}, {&(0x7f0000000380)="729b6e20fcc3a2c78c1fdeea3fad1a974d3ce408ba2d0276163919f3247606b667a12343114f22594814b2d8efd24e93961398a74a55fe82842fcfb3b1dcf8f03c89685a517f28f9d3b6fd3d20624582c26b0695ebf53987c9cd5871cc55eadc0fac6e27cfcf2407608484d6b99ca0e588e03fe6079483", 0x77}, {&(0x7f0000000400)}, {&(0x7f0000000440)="2421f8b9c17d456d70bb83610ed98eaeeb11cf42a90f8e69", 0x18}], 0x6, &(0x7f0000000500)=[{0xf8, 0x1, 0xb6f, "10db29b8e5f68c7f12dfa57983aa2e664d72cd0bceddae2bb810c4ae5ccc18c68df86aec5c36c2222de5e840419beafd23719f6f2ef764c48d91b6eb2b677df82be230ecf9646ad1361acfa66dc686b397d429e3544e5c91629d6421f9c6725c9bdf6e257b750232f525d2dd224c2fe9cd3d4d0386a4591348c69bb4b78e7d74466f62c8f4c2ddd58af30f3a13ac200c917690e80f7b8f60fed631c98571bbd46270d0a87a8d3adccc1497688368508a12e7917dfc52c7c20a55c5f44be2fcf65271424fc22090fb38d0957d065f5edf5c0f8aee5d0b3a43e7c190e801c74104838608d154"}, {0x108, 0x114, 0x172, "37198c49acdd3aa4ccc1ddb392c1d93bf8db63626c9a923c39cfe74196105a9e87d80b33f368d6394f81c0626c1d754f12d6f68b91573a808cb55420d24ca04468b0165c85164e369bb125430567e6077f0514dcea76c3a4061e047c2a0d497f1b972beaf0a9309f6bb09e0d0b609d26d1a200120a7ca03231f75aea26b52acab061d5a01bb0a850fedb642ed44ddc1fc988088037e45c240b95be8c782ed91d115762f15ce9af9a89b664c92669bfa166c25938cbdb6282ad68632c1d68b25964362928a885f8448733d7a465132dda73b05be79274dca1a302d8549c29f8c8877c69b5440602ef3837a04a70ae02b5589ea135fa"}, {0x18, 0x107, 0x0, "060a"}, {0x1010, 0x116, 0xfffffff7, "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"}, {0x68, 0x1, 0x2ac, "2f5c14d77af6a90dc9f2e76eccec21efaeb168ba4f61b1f2c6686ddb3b7cd59c9755486836ef01449ab336a8528fea03776767eb6a727d6bdd0a5a96c06bb63bf6da5062bf480a8220f40ab351a159264673852468bd88fb"}], 0x1290}, 0x40) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) (async) write$binfmt_script(r0, &(0x7f0000000400)=ANY=[@ANYRES64=r0], 0x11) (async) ioctl$sock_netdev_private(r0, 0x89fa, &(0x7f0000001800)="794b6749c949bebceb2c9e1e21295c825a7a532dd8c1872aa35b05aed3b433e1516311517b0cdbe2f7a8655e0c07d060f8776dad9ee6c421c06fb68acdf2e69b597eee7803eee7c9bf416629ba3d22") [ 3288.010070][T16333] netlink: 'syz-executor.4': attribute type 12 has an invalid length. 01:27:26 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000fe8000000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3288.328292][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3288.348984][ T5105] CPU: 0 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3288.359389][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3288.369460][ T5105] Call Trace: [ 3288.372761][ T5105] [ 3288.375701][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3288.380400][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3288.385612][ T5105] ? __pfx__printk+0x10/0x10 [ 3288.390214][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3288.394913][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3288.399963][ T5105] dump_header+0xda/0x6a0 [ 3288.404579][ T5105] oom_kill_process+0x3a7/0x930 [ 3288.409483][ T5105] out_of_memory+0xf67/0x1320 [ 3288.414220][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3288.419895][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3288.424954][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3288.430093][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3288.435659][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3288.440716][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3288.446812][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3288.452038][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3288.456999][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3288.461997][ T5105] ? mark_lock+0x9a/0x350 [ 3288.466370][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3288.471781][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3288.477953][ T5105] charge_memcg+0xa2/0x160 [ 3288.482389][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3288.488472][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3288.493942][ T5105] ? mark_lock+0x9a/0x350 [ 3288.498293][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3288.504564][ T5105] ? blk_start_plug+0x6f/0x1b0 [ 3288.509362][ T5105] swap_cluster_readahead+0x398/0x810 [ 3288.514757][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3288.520662][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3288.525705][ T5105] ? xas_descend+0x37e/0x470 [ 3288.530319][ T5105] swapin_readahead+0x1ea/0x1070 [ 3288.535298][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3288.540443][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3288.545856][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3288.551187][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3288.556580][ T5105] do_swap_page+0x791/0x3f40 [ 3288.561190][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3288.566005][ T5105] ? do_swap_page+0x154/0x3f40 [ 3288.570785][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3288.575829][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3288.581319][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3288.587147][ T5105] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 3288.593503][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3288.598695][ T5105] ? reacquire_held_locks+0x3eb/0x690 [ 3288.604081][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3288.609571][ T5105] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3288.615418][ T5105] ? mtree_range_walk+0x6fd/0x8e0 [ 3288.620465][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3288.625686][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3288.630728][ T5105] ? lock_vma_under_rcu+0x2f9/0x730 [ 3288.635961][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3288.641178][ T5105] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3288.646757][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3288.651554][ T5105] exc_page_fault+0x456/0x870 [ 3288.656265][ T5105] asm_exc_page_fault+0x26/0x30 [ 3288.661138][ T5105] RIP: 0033:0x7f02540a91b8 [ 3288.665656][ T5105] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f [ 3288.685884][ T5105] RSP: 002b:00007ffe12c8cc10 EFLAGS: 00010293 [ 3288.691985][ T5105] RAX: 0000000000000000 RBX: 0000000000004707 RCX: 00007f02540a91b5 [ 3288.699973][ T5105] RDX: 00007ffe12c8cc50 RSI: 0000000000000000 RDI: 0000000000000000 [ 3288.707956][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000000 R09: 00007ffe12ccd0b0 [ 3288.715947][ T5105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3288.723935][ T5105] R13: 0000000000322aae R14: 0000000000322aae R15: 0000000000000000 [ 3288.731945][ T5105] 01:27:27 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000fe0300000000000114000600020000001b"], 0x54}}, 0x0) [ 3288.769265][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 338366 [ 3288.777750][ T5105] memory+swap: usage 307444kB, limit 9007199254740988kB, failcnt 0 [ 3288.800841][ T5105] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3288.808358][ T5105] Memory cgroup stats for /syz1: [ 3288.808516][ T5105] cache 0 [ 3288.825350][ T5105] rss 12288 [ 3288.829063][ T5105] rss_huge 0 [ 3288.832556][ T5105] shmem 0 [ 3288.835721][ T5105] mapped_file 0 [ 3288.846161][ T5105] dirty 0 [ 3288.851199][ T5105] writeback 0 [ 3288.856191][ T5105] workingset_refault_anon 115203 [ 3288.862785][ T5105] workingset_refault_file 3 [ 3288.869084][ T5105] swap 237568 [ 3288.872592][ T5105] swapcached 8192 [ 3288.876441][ T5105] pgpgin 284905 [ 3288.880928][ T5105] pgpgout 284902 [ 3288.884695][ T5105] pgfault 608714 [ 3288.888521][ T5105] pgmajfault 108369 [ 3288.892999][ T5105] inactive_anon 0 [ 3288.896844][ T5105] active_anon 12288 [ 3288.905584][ T5105] inactive_file 0 [ 3288.912401][ T5105] active_file 0 [ 3288.916967][ T5105] unevictable 0 [ 3288.921970][ T5105] hierarchical_memory_limit 314572800 [ 3288.927649][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3288.934660][ T5105] total_cache 0 [ 3288.938414][ T5105] total_rss 12288 [ 3288.942942][ T5105] total_rss_huge 0 [ 3288.946869][ T5105] total_shmem 0 [ 3288.951208][ T5105] total_mapped_file 0 [ 3288.957837][ T5105] total_dirty 0 [ 3288.963097][ T5105] total_writeback 0 [ 3288.967697][ T5105] total_workingset_refault_anon 115203 [ 3288.974417][ T5105] total_workingset_refault_file 3 [ 3288.979862][ T5105] total_swap 237568 [ 3288.983839][ T5105] total_swapcached 8192 [ 3288.988149][ T5105] total_pgpgin 284905 [ 3288.992742][ T5105] total_pgpgout 284902 [ 3288.998527][ T5105] total_pgfault 608714 [ 3289.003868][ T5105] total_pgmajfault 108369 [ 3289.008352][ T5105] total_inactive_anon 0 [ 3289.013145][ T5105] total_active_anon 12288 [ 3289.017639][ T5105] total_inactive_file 0 [ 3289.022358][ T5105] total_active_file 0 [ 3289.026514][ T5105] total_unevictable 0 [ 3289.031373][ T5105] anon_cost 0 [ 3289.034836][ T5105] file_cost 0 [ 3289.038271][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16335,uid=0 [ 3289.054876][ T5105] Memory cgroup out of memory: Killed process 16335 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:27 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000f0ffffff0000000114000600020000001b"], 0x54}}, 0x0) [ 3289.425271][T16349] __nla_validate_parse: 7 callbacks suppressed [ 3289.425295][T16349] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3289.546786][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3289.563824][T16352] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3289.572090][ T5105] CPU: 0 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3289.583510][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3289.593579][ T5105] Call Trace: [ 3289.596871][ T5105] [ 3289.599816][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3289.604516][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3289.609727][ T5105] ? __pfx__printk+0x10/0x10 [ 3289.614327][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3289.619040][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3289.624093][ T5105] dump_header+0xda/0x6a0 [ 3289.628478][ T5105] oom_kill_process+0x3a7/0x930 [ 3289.633351][ T5105] out_of_memory+0xf67/0x1320 [ 3289.638051][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3289.643876][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3289.648919][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3289.654057][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3289.659621][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3289.664675][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3289.670768][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3289.675991][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3289.680957][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3289.685912][ T5105] ? mark_lock+0x9a/0x350 [ 3289.690364][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3289.695776][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3289.701945][ T5105] charge_memcg+0xa2/0x160 [ 3289.706379][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3289.712464][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3289.717936][ T5105] ? mark_lock+0x9a/0x350 [ 3289.722313][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3289.728331][ T5105] ? blk_start_plug+0x6f/0x1b0 [ 3289.733145][ T5105] swap_cluster_readahead+0x398/0x810 [ 3289.738554][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3289.744472][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3289.749527][ T5105] ? xas_descend+0x37e/0x470 [ 3289.754138][ T5105] swapin_readahead+0x1ea/0x1070 [ 3289.759087][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3289.764233][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3289.769630][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3289.774956][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3289.780275][ T5105] do_swap_page+0x791/0x3f40 [ 3289.784888][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3289.789682][ T5105] ? do_swap_page+0x154/0x3f40 [ 3289.794460][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3289.799585][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3289.805065][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3289.810897][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3289.816049][ T5105] ? reacquire_held_locks+0x3eb/0x690 [ 3289.821439][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3289.826926][ T5105] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3289.832671][ T5105] ? mtree_range_walk+0x6fd/0x8e0 [ 3289.837716][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3289.842932][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3289.847987][ T5105] ? lock_vma_under_rcu+0x2f9/0x730 [ 3289.853232][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3289.858446][ T5105] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3289.864100][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3289.868908][ T5105] exc_page_fault+0x456/0x870 [ 3289.873607][ T5105] asm_exc_page_fault+0x26/0x30 [ 3289.878490][ T5105] RIP: 0033:0x7f02540a91b8 [ 3289.882920][ T5105] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f [ 3289.902539][ T5105] RSP: 002b:00007ffe12c8cc10 EFLAGS: 00010293 [ 3289.908620][ T5105] RAX: 0000000000000000 RBX: 0000000000004708 RCX: 00007f02540a91b5 [ 3289.916604][ T5105] RDX: 00007ffe12c8cc50 RSI: 0000000000000000 RDI: 0000000000000000 [ 3289.924602][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000000 R09: 00007ffe12ccd0b0 [ 3289.932591][ T5105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3289.940566][ T5105] R13: 0000000000323065 R14: 0000000000323065 R15: 0000000000000000 [ 3289.948653][ T5105] 01:27:28 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000008100000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3289.989826][ T5105] memory: usage 307180kB, limit 307200kB, failcnt 338755 [ 3289.997714][ T5105] memory+swap: usage 307456kB, limit 9007199254740988kB, failcnt 0 [ 3290.005812][ T5105] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3290.013497][ T5105] Memory cgroup stats for /syz1: [ 3290.013645][ T5105] cache 0 [ 3290.021635][ T5105] rss 20480 [ 3290.024779][ T5105] rss_huge 0 [ 3290.028012][ T5105] shmem 0 [ 3290.031067][ T5105] mapped_file 0 [ 3290.034554][ T5105] dirty 0 [ 3290.037519][ T5105] writeback 0 [ 3290.040872][ T5105] workingset_refault_anon 115325 [ 3290.045844][ T5105] workingset_refault_file 3 [ 3290.050433][ T5105] swap 262144 [ 3290.053748][ T5105] swapcached 16384 [ 3290.057498][ T5105] pgpgin 285039 [ 3290.061075][ T5105] pgpgout 285034 [ 3290.064683][ T5105] pgfault 608917 [ 3290.068253][ T5105] pgmajfault 108466 [ 3290.072185][ T5105] inactive_anon 16384 [ 3290.076196][ T5105] active_anon 4096 [ 3290.080225][ T5105] inactive_file 0 [ 3290.085521][ T5105] active_file 0 [ 3290.091186][ T5105] unevictable 0 [ 3290.094703][ T5105] hierarchical_memory_limit 314572800 [ 3290.105525][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3290.111885][ T5105] total_cache 0 [ 3290.115373][ T5105] total_rss 20480 [ 3290.119098][ T5105] total_rss_huge 0 [ 3290.122847][ T5105] total_shmem 0 [ 3290.126327][ T5105] total_mapped_file 0 [ 3290.130398][ T5105] total_dirty 0 [ 3290.133883][ T5105] total_writeback 0 [ 3290.137711][ T5105] total_workingset_refault_anon 115325 [ 3290.143289][ T5105] total_workingset_refault_file 3 [ 3290.148341][ T5105] total_swap 262144 [ 3290.152295][ T5105] total_swapcached 16384 [ 3290.156576][ T5105] total_pgpgin 285039 [ 3290.160692][ T5105] total_pgpgout 285034 [ 3290.164792][ T5105] total_pgfault 608917 [ 3290.168944][ T5105] total_pgmajfault 108466 [ 3290.173300][ T5105] total_inactive_anon 16384 [ 3290.177833][ T5105] total_active_anon 4096 [ 3290.185370][ T5105] total_inactive_file 0 [ 3290.189934][ T5105] total_active_file 0 [ 3290.194050][ T5105] total_unevictable 0 [ 3290.198152][ T5105] anon_cost 0 [ 3290.204248][ T5105] file_cost 0 [ 3290.207689][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16354,uid=0 [ 3290.224795][ T5105] Memory cgroup out of memory: Killed process 16354 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:28 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000500000000000114000600020000001b"], 0x54}}, 0x0) 01:27:28 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000fcffffff0000000114000600020000001b"], 0x54}}, 0x0) 01:27:28 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x6c00000000000000) [ 3290.320752][T16342] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3290.336414][T16356] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3290.351634][T16342] netlink: 172988 bytes leftover after parsing attributes in process `syz-executor.2'. 01:27:28 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000478800000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3290.457902][T16359] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 01:27:28 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000600000000000114000600020000001b"], 0x54}}, 0x0) [ 3290.642158][T16365] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:27:29 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000488800000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3290.838112][T16362] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3290.873335][T16362] CPU: 0 PID: 16362 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3290.883825][T16362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3290.893914][T16362] Call Trace: [ 3290.897227][T16362] [ 3290.900188][T16362] dump_stack_lvl+0x1e7/0x2e0 [ 3290.904919][T16362] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3290.910291][T16362] ? __pfx__printk+0x10/0x10 [ 3290.914918][T16362] ? ___ratelimit+0x4c4/0x670 [ 3290.919660][T16362] ? __pfx____ratelimit+0x10/0x10 [ 3290.924756][T16362] dump_header+0xda/0x6a0 [ 3290.929139][T16362] oom_kill_process+0x3a7/0x930 [ 3290.934046][T16362] out_of_memory+0xf67/0x1320 [ 3290.938804][T16362] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3290.944495][T16362] ? __pfx___mutex_lock+0x10/0x10 [ 3290.949571][T16362] ? __pfx_out_of_memory+0x10/0x10 [ 3290.954748][T16362] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3290.960348][T16362] ? __pfx_lock_release+0x10/0x10 [ 3290.965425][T16362] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3290.971543][T16362] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3290.976798][T16362] ? mem_cgroup_iter+0x3e9/0x560 [ 3290.981795][T16362] try_charge_memcg+0xda2/0x18a0 [ 3290.986827][T16362] ? __pfx_try_charge_memcg+0x10/0x10 [ 3290.992247][T16362] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3290.998011][T16362] ? __pfx_lock_release+0x10/0x10 [ 3291.003099][T16362] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3291.008956][T16362] __memcg_kmem_charge_page+0xe1/0x250 [ 3291.014462][T16362] memcg_charge_kernel_stack+0xa7/0x550 [ 3291.020057][T16362] dup_task_struct+0x40d/0x7d0 [ 3291.024866][T16362] copy_process+0x5d5/0x3fc0 [ 3291.029611][T16362] ? __might_fault+0xa9/0x120 [ 3291.034331][T16362] ? __pfx_lock_release+0x10/0x10 [ 3291.039389][T16362] ? __pfx_copy_process+0x10/0x10 [ 3291.044434][T16362] ? __might_fault+0xc5/0x120 [ 3291.049131][T16362] ? __asan_memset+0x23/0x50 [ 3291.053831][T16362] kernel_clone+0x21d/0x8d0 [ 3291.058355][T16362] ? __pfx_kernel_clone+0x10/0x10 [ 3291.063413][T16362] __se_sys_clone3+0x2cb/0x350 [ 3291.068206][T16362] ? __pfx___se_sys_clone3+0x10/0x10 [ 3291.073505][T16362] ? rcu_is_watching+0x15/0xb0 [ 3291.078301][T16362] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3291.084320][T16362] ? exc_page_fault+0x587/0x870 [ 3291.089194][T16362] ? do_syscall_64+0xb4/0x240 [ 3291.093885][T16362] do_syscall_64+0xf9/0x240 [ 3291.098411][T16362] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3291.104340][T16362] RIP: 0033:0x7f02540a9b99 [ 3291.108775][T16362] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3291.128396][T16362] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3291.136834][T16362] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3291.144820][T16362] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3291.153408][T16362] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3291.161390][T16362] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3291.169373][T16362] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3291.177461][T16362] [ 3291.238805][T16362] memory: usage 307192kB, limit 307200kB, failcnt 339091 [ 3291.246724][T16362] memory+swap: usage 307488kB, limit 9007199254740988kB, failcnt 0 [ 3291.256624][T16362] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0 [ 3291.273521][T16362] Memory cgroup stats for /syz1: [ 3291.273688][T16362] cache 0 [ 3291.283462][T16362] rss 12288 [ 3291.286953][T16362] rss_huge 0 [ 3291.295518][T16362] shmem 0 [ 3291.301762][T16362] mapped_file 0 [ 3291.305430][T16362] dirty 0 [ 3291.309212][T16362] writeback 0 [ 3291.314985][T16362] workingset_refault_anon 115439 [ 3291.321812][T16362] workingset_refault_file 3 [ 3291.326985][T16362] swap 303104 [ 3291.330615][T16362] swapcached 12288 [ 3291.334769][T16362] pgpgin 285164 [ 3291.338480][T16362] pgpgout 285161 [ 3291.342340][T16362] pgfault 609116 [ 3291.346404][T16362] pgmajfault 108575 [ 3291.350588][T16362] inactive_anon 8192 [ 3291.355362][T16362] active_anon 4096 [ 3291.359372][T16362] inactive_file 0 [ 3291.363423][T16362] active_file 0 [ 3291.367088][T16362] unevictable 0 [ 3291.371634][T16362] hierarchical_memory_limit 314572800 [ 3291.377221][T16362] hierarchical_memsw_limit 9223372036854771712 [ 3291.383680][T16362] total_cache 0 [ 3291.387820][T16362] total_rss 12288 [ 3291.391754][T16362] total_rss_huge 0 [ 3291.395892][T16362] total_shmem 0 [ 3291.399636][T16362] total_mapped_file 0 [ 3291.404030][T16362] total_dirty 0 [ 3291.407695][T16362] total_writeback 0 [ 3291.415361][T16362] total_workingset_refault_anon 115439 [ 3291.428207][T16362] total_workingset_refault_file 3 [ 3291.435064][T16362] total_swap 303104 [ 3291.446457][T16362] total_swapcached 12288 [ 3291.465965][T16362] total_pgpgin 285164 [ 3291.470277][T16362] total_pgpgout 285161 [ 3291.474560][T16362] total_pgfault 609116 [ 3291.484933][T16362] total_pgmajfault 108575 [ 3291.489659][T16362] total_inactive_anon 8192 [ 3291.494274][T16362] total_active_anon 4096 [ 3291.505219][T16368] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3291.524875][T16362] total_inactive_file 0 [ 3291.530530][T16362] total_active_file 0 [ 3291.534659][T16362] total_unevictable 0 [ 3291.544960][T16362] anon_cost 0 [ 3291.548474][T16362] file_cost 0 [ 3291.553428][T16362] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16362,uid=0 [ 3291.574493][T16362] Memory cgroup out of memory: Killed process 16362 (syz-executor.1) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:29 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000000214000600020000001b"], 0x54}}, 0x0) 01:27:29 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000700000000000114000600020000001b"], 0x54}}, 0x0) [ 3291.702989][T16371] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:27:30 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000fc00000000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:30 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f00000000c0)={'veth0_to_batadv\x00', {0x2, 0x4e20, @remote}}) socket$kcm(0x29, 0x1, 0x0) (async) r1 = socket$kcm(0x29, 0x1, 0x0) sendmsg$kcm(r1, &(0x7f00000017c0)={&(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e23, @local}, 0x0, 0x2, 0x2, 0x3}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000180)="64ad8f4d8e86a0460f32c936c50898e47bd165916dfbf0b4dec838dfd52db59bbd8a4311fd873773e5689263f09a54ac1ea2bc5fcafa066c0fe66d74234232cb15586fd0d49b0ef497d71e5dfe1d8a76d3641ceb671150619d228fd9b6ee32902e860e8184d9dab665afb0c1c8d079aa3bfa857b280819801d6951996c8b426052de88c3e2667c0883ac0bfcc880266d8ec667dd880e03e236ef5e232c181ad226f55e6a281b389e7847dfe730c1686883299bc984eaf280718977f661677b09c8f952378a6c7aaba0f7b2efb88c4065e7fc86b56c2e24", 0xd7}, {&(0x7f0000000280)="e6021e7cf185029056445d9bf6c3d45cf4a2156f847b952a3bd24f8bb8bbf29b09833270dd86d941d680409a709442a9216fcc758dabae524efddb562770dc47dfc1ee0f01a008ebbdb3a80fc87cf1a5c30633dab770462a004f542c08b5c9e5016a7ce9e40e66a4adf211fe1674671951c38f515438663ef1", 0x79}, {&(0x7f0000000300)="6951e1f8a044d9e98ffc781cbebc200fd0949338f06042ce2ed1f2b024a6ad755bd908860c881df3518c3b05f9938b49dc44fa09d5e9b065d7a1f499fc9a0cda0f95a729b57949b30ff0327129504c0284d73699a6acacddf6f46681ae1b", 0x5e}, {&(0x7f0000000380)="729b6e20fcc3a2c78c1fdeea3fad1a974d3ce408ba2d0276163919f3247606b667a12343114f22594814b2d8efd24e93961398a74a55fe82842fcfb3b1dcf8f03c89685a517f28f9d3b6fd3d20624582c26b0695ebf53987c9cd5871cc55eadc0fac6e27cfcf2407608484d6b99ca0e588e03fe6079483", 0x77}, {&(0x7f0000000400)}, {&(0x7f0000000440)="2421f8b9c17d456d70bb83610ed98eaeeb11cf42a90f8e69", 0x18}], 0x6, &(0x7f0000000500)=[{0xf8, 0x1, 0xb6f, "10db29b8e5f68c7f12dfa57983aa2e664d72cd0bceddae2bb810c4ae5ccc18c68df86aec5c36c2222de5e840419beafd23719f6f2ef764c48d91b6eb2b677df82be230ecf9646ad1361acfa66dc686b397d429e3544e5c91629d6421f9c6725c9bdf6e257b750232f525d2dd224c2fe9cd3d4d0386a4591348c69bb4b78e7d74466f62c8f4c2ddd58af30f3a13ac200c917690e80f7b8f60fed631c98571bbd46270d0a87a8d3adccc1497688368508a12e7917dfc52c7c20a55c5f44be2fcf65271424fc22090fb38d0957d065f5edf5c0f8aee5d0b3a43e7c190e801c74104838608d154"}, {0x108, 0x114, 0x172, "37198c49acdd3aa4ccc1ddb392c1d93bf8db63626c9a923c39cfe74196105a9e87d80b33f368d6394f81c0626c1d754f12d6f68b91573a808cb55420d24ca04468b0165c85164e369bb125430567e6077f0514dcea76c3a4061e047c2a0d497f1b972beaf0a9309f6bb09e0d0b609d26d1a200120a7ca03231f75aea26b52acab061d5a01bb0a850fedb642ed44ddc1fc988088037e45c240b95be8c782ed91d115762f15ce9af9a89b664c92669bfa166c25938cbdb6282ad68632c1d68b25964362928a885f8448733d7a465132dda73b05be79274dca1a302d8549c29f8c8877c69b5440602ef3837a04a70ae02b5589ea135fa"}, {0x18, 0x107, 0x0, "060a"}, {0x1010, 0x116, 0xfffffff7, "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"}, {0x68, 0x1, 0x2ac, "2f5c14d77af6a90dc9f2e76eccec21efaeb168ba4f61b1f2c6686ddb3b7cd59c9755486836ef01449ab336a8528fea03776767eb6a727d6bdd0a5a96c06bb63bf6da5062bf480a8220f40ab351a159264673852468bd88fb"}], 0x1290}, 0x40) (async) sendmsg$kcm(r1, &(0x7f00000017c0)={&(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e23, @local}, 0x0, 0x2, 0x2, 0x3}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000180)="64ad8f4d8e86a0460f32c936c50898e47bd165916dfbf0b4dec838dfd52db59bbd8a4311fd873773e5689263f09a54ac1ea2bc5fcafa066c0fe66d74234232cb15586fd0d49b0ef497d71e5dfe1d8a76d3641ceb671150619d228fd9b6ee32902e860e8184d9dab665afb0c1c8d079aa3bfa857b280819801d6951996c8b426052de88c3e2667c0883ac0bfcc880266d8ec667dd880e03e236ef5e232c181ad226f55e6a281b389e7847dfe730c1686883299bc984eaf280718977f661677b09c8f952378a6c7aaba0f7b2efb88c4065e7fc86b56c2e24", 0xd7}, {&(0x7f0000000280)="e6021e7cf185029056445d9bf6c3d45cf4a2156f847b952a3bd24f8bb8bbf29b09833270dd86d941d680409a709442a9216fcc758dabae524efddb562770dc47dfc1ee0f01a008ebbdb3a80fc87cf1a5c30633dab770462a004f542c08b5c9e5016a7ce9e40e66a4adf211fe1674671951c38f515438663ef1", 0x79}, {&(0x7f0000000300)="6951e1f8a044d9e98ffc781cbebc200fd0949338f06042ce2ed1f2b024a6ad755bd908860c881df3518c3b05f9938b49dc44fa09d5e9b065d7a1f499fc9a0cda0f95a729b57949b30ff0327129504c0284d73699a6acacddf6f46681ae1b", 0x5e}, {&(0x7f0000000380)="729b6e20fcc3a2c78c1fdeea3fad1a974d3ce408ba2d0276163919f3247606b667a12343114f22594814b2d8efd24e93961398a74a55fe82842fcfb3b1dcf8f03c89685a517f28f9d3b6fd3d20624582c26b0695ebf53987c9cd5871cc55eadc0fac6e27cfcf2407608484d6b99ca0e588e03fe6079483", 0x77}, {&(0x7f0000000400)}, {&(0x7f0000000440)="2421f8b9c17d456d70bb83610ed98eaeeb11cf42a90f8e69", 0x18}], 0x6, &(0x7f0000000500)=[{0xf8, 0x1, 0xb6f, "10db29b8e5f68c7f12dfa57983aa2e664d72cd0bceddae2bb810c4ae5ccc18c68df86aec5c36c2222de5e840419beafd23719f6f2ef764c48d91b6eb2b677df82be230ecf9646ad1361acfa66dc686b397d429e3544e5c91629d6421f9c6725c9bdf6e257b750232f525d2dd224c2fe9cd3d4d0386a4591348c69bb4b78e7d74466f62c8f4c2ddd58af30f3a13ac200c917690e80f7b8f60fed631c98571bbd46270d0a87a8d3adccc1497688368508a12e7917dfc52c7c20a55c5f44be2fcf65271424fc22090fb38d0957d065f5edf5c0f8aee5d0b3a43e7c190e801c74104838608d154"}, {0x108, 0x114, 0x172, "37198c49acdd3aa4ccc1ddb392c1d93bf8db63626c9a923c39cfe74196105a9e87d80b33f368d6394f81c0626c1d754f12d6f68b91573a808cb55420d24ca04468b0165c85164e369bb125430567e6077f0514dcea76c3a4061e047c2a0d497f1b972beaf0a9309f6bb09e0d0b609d26d1a200120a7ca03231f75aea26b52acab061d5a01bb0a850fedb642ed44ddc1fc988088037e45c240b95be8c782ed91d115762f15ce9af9a89b664c92669bfa166c25938cbdb6282ad68632c1d68b25964362928a885f8448733d7a465132dda73b05be79274dca1a302d8549c29f8c8877c69b5440602ef3837a04a70ae02b5589ea135fa"}, {0x18, 0x107, 0x0, "060a"}, {0x1010, 0x116, 0xfffffff7, "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"}, {0x68, 0x1, 0x2ac, "2f5c14d77af6a90dc9f2e76eccec21efaeb168ba4f61b1f2c6686ddb3b7cd59c9755486836ef01449ab336a8528fea03776767eb6a727d6bdd0a5a96c06bb63bf6da5062bf480a8220f40ab351a159264673852468bd88fb"}], 0x1290}, 0x40) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) write$binfmt_script(r0, &(0x7f0000000400)=ANY=[@ANYRES64=r0], 0x11) ioctl$sock_netdev_private(r0, 0x89fa, &(0x7f0000001800)="794b6749c949bebceb2c9e1e21295c825a7a532dd8c1872aa35b05aed3b433e1516311517b0cdbe2f7a8655e0c07d060f8776dad9ee6c421c06fb68acdf2e69b597eee7803eee7c9bf416629ba3d22") [ 3291.910837][T16375] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3291.927509][T16363] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3291.938896][T16363] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3292.106477][T16373] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3292.119402][T16373] CPU: 1 PID: 16373 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3292.129866][T16373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3292.139959][T16373] Call Trace: [ 3292.143281][T16373] [ 3292.146251][T16373] dump_stack_lvl+0x1e7/0x2e0 [ 3292.150988][T16373] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3292.156241][T16373] ? __pfx__printk+0x10/0x10 [ 3292.160869][T16373] ? ___ratelimit+0x4c4/0x670 [ 3292.165759][T16373] ? __pfx____ratelimit+0x10/0x10 [ 3292.170839][T16373] dump_header+0xda/0x6a0 [ 3292.175225][T16373] oom_kill_process+0x3a7/0x930 [ 3292.180138][T16373] out_of_memory+0xf67/0x1320 [ 3292.184869][T16373] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3292.190557][T16373] ? __pfx___mutex_lock+0x10/0x10 [ 3292.195640][T16373] ? __pfx_out_of_memory+0x10/0x10 [ 3292.200819][T16373] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3292.206419][T16373] ? __pfx_lock_release+0x10/0x10 [ 3292.211498][T16373] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3292.217993][T16373] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3292.223247][T16373] ? mem_cgroup_iter+0x3e9/0x560 [ 3292.228238][T16373] try_charge_memcg+0xda2/0x18a0 [ 3292.233254][T16373] ? __pfx_try_charge_memcg+0x10/0x10 [ 3292.238672][T16373] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3292.244440][T16373] ? __pfx_lock_release+0x10/0x10 [ 3292.249520][T16373] ? memcg_account_kmem+0x1e7/0x210 [ 3292.254799][T16373] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3292.260668][T16373] __memcg_kmem_charge_page+0xe1/0x250 [ 3292.268430][T16373] memcg_charge_kernel_stack+0x210/0x550 [ 3292.274112][T16373] dup_task_struct+0x40d/0x7d0 [ 3292.279013][T16373] copy_process+0x5d5/0x3fc0 [ 3292.283667][T16373] ? __might_fault+0xa9/0x120 [ 3292.288386][T16373] ? __pfx_lock_release+0x10/0x10 [ 3292.293485][T16373] ? __pfx_copy_process+0x10/0x10 [ 3292.298547][T16373] ? __might_fault+0xc5/0x120 [ 3292.303277][T16373] ? __asan_memset+0x23/0x50 [ 3292.307919][T16373] kernel_clone+0x21d/0x8d0 [ 3292.312465][T16373] ? __pfx_kernel_clone+0x10/0x10 [ 3292.317563][T16373] __se_sys_clone3+0x2cb/0x350 [ 3292.322476][T16373] ? __pfx___se_sys_clone3+0x10/0x10 [ 3292.327825][T16373] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3292.333866][T16373] ? exc_page_fault+0x587/0x870 [ 3292.338771][T16373] ? do_syscall_64+0xb4/0x240 [ 3292.343619][T16373] do_syscall_64+0xf9/0x240 [ 3292.348189][T16373] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3292.354232][T16373] RIP: 0033:0x7f02540a9b99 [ 3292.358691][T16373] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3292.378346][T16373] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3292.386822][T16373] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3292.395016][T16373] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3292.403027][T16373] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3292.411038][T16373] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3292.419046][T16373] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3292.427065][T16373] [ 3292.603963][T16373] memory: usage 307180kB, limit 307200kB, failcnt 339500 01:27:30 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000030800000000000114000600020000001b"], 0x54}}, 0x0) [ 3292.644234][T16373] memory+swap: usage 307460kB, limit 9007199254740988kB, failcnt 0 [ 3292.663602][T16373] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3292.679552][T16373] Memory cgroup stats for /syz1: [ 3292.679720][T16373] cache 0 [ 3292.696118][T16373] rss 12288 [ 3292.703411][T16373] rss_huge 0 [ 3292.706845][T16373] shmem 0 [ 3292.710533][T16373] mapped_file 0 [ 3292.714225][T16373] dirty 0 [ 3292.717365][T16373] writeback 0 [ 3292.722052][T16373] workingset_refault_anon 115574 [ 3292.727246][T16373] workingset_refault_file 3 [ 3292.732577][T16373] swap 274432 [ 3292.736090][T16373] swapcached 8192 [ 3292.742010][T16373] pgpgin 285310 [ 3292.748305][T16373] pgpgout 285307 [ 3292.753036][T16373] pgfault 609337 [ 3292.758079][T16373] pgmajfault 108697 [ 3292.762746][T16373] inactive_anon 0 [ 3292.766647][T16373] active_anon 12288 [ 3292.771508][T16373] inactive_file 0 [ 3292.775422][T16373] active_file 0 [ 3292.781010][T16373] unevictable 0 [ 3292.784742][T16373] hierarchical_memory_limit 314572800 [ 3292.790959][T16373] hierarchical_memsw_limit 9223372036854771712 [ 3292.797423][T16373] total_cache 0 [ 3292.801786][T16373] total_rss 12288 [ 3292.807118][T16373] total_rss_huge 0 [ 3292.812088][T16373] total_shmem 0 [ 3292.815780][T16373] total_mapped_file 0 [ 3292.820628][T16373] total_dirty 0 [ 3292.824323][T16373] total_writeback 0 [ 3292.828338][T16373] total_workingset_refault_anon 115574 [ 3292.834703][T16373] total_workingset_refault_file 3 [ 3292.841896][T16373] total_swap 274432 [ 3292.845933][T16373] total_swapcached 8192 [ 3292.853946][T16373] total_pgpgin 285310 [ 3292.858234][T16373] total_pgpgout 285307 [ 3292.863286][T16373] total_pgfault 609337 [ 3292.867600][T16373] total_pgmajfault 108697 [ 3292.875593][T16373] total_inactive_anon 0 [ 3292.885209][T16373] total_active_anon 12288 [ 3292.892457][T16373] total_inactive_file 0 [ 3292.896834][T16373] total_active_file 0 [ 3292.905919][T16373] total_unevictable 0 [ 3292.912011][T16373] anon_cost 0 [ 3292.915492][T16373] file_cost 0 [ 3292.924754][T16373] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16373,uid=0 [ 3292.946275][T16373] Memory cgroup out of memory: Killed process 16373 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:31 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000000314000600020000001b"], 0x54}}, 0x0) 01:27:31 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000080fe00000000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:31 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000900000000000114000600020000001b"], 0x54}}, 0x0) [ 3293.451587][T16382] netlink: 'syz-executor.2': attribute type 12 has an invalid length. 01:27:31 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x7400000000000000) 01:27:31 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000ff00000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3293.693988][T16388] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3293.719323][T16388] CPU: 1 PID: 16388 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3293.729822][T16388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3293.739925][T16388] Call Trace: [ 3293.743247][T16388] [ 3293.746214][T16388] dump_stack_lvl+0x1e7/0x2e0 [ 3293.750950][T16388] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3293.756204][T16388] ? __pfx__printk+0x10/0x10 [ 3293.760860][T16388] ? ___ratelimit+0x4c4/0x670 [ 3293.765598][T16388] ? __pfx____ratelimit+0x10/0x10 [ 3293.770666][T16388] dump_header+0xda/0x6a0 [ 3293.770711][T16388] oom_kill_process+0x3a7/0x930 [ 3293.770749][T16388] out_of_memory+0xf67/0x1320 [ 3293.770786][T16388] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3293.770819][T16388] ? __pfx___mutex_lock+0x10/0x10 [ 3293.770852][T16388] ? __pfx_out_of_memory+0x10/0x10 [ 3293.770893][T16388] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3293.770924][T16388] ? __pfx_lock_release+0x10/0x10 [ 3293.770958][T16388] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3293.770996][T16388] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3293.771026][T16388] ? mem_cgroup_iter+0x3e9/0x560 [ 3293.771058][T16388] try_charge_memcg+0xda2/0x18a0 [ 3293.771105][T16388] ? __pfx_try_charge_memcg+0x10/0x10 [ 3293.771130][T16388] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3293.771155][T16388] ? __pfx_lock_release+0x10/0x10 [ 3293.771183][T16388] ? memcg_account_kmem+0x1e7/0x210 [ 3293.771220][T16388] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3293.771246][T16388] __memcg_kmem_charge_page+0xe1/0x250 [ 3293.771273][T16388] memcg_charge_kernel_stack+0x304/0x550 [ 3293.771307][T16388] dup_task_struct+0x15d/0x7d0 [ 3293.771337][T16388] copy_process+0x5d5/0x3fc0 [ 3293.771380][T16388] ? __might_fault+0xa9/0x120 [ 3293.771414][T16388] ? __pfx_lock_release+0x10/0x10 [ 3293.771455][T16388] ? __pfx_copy_process+0x10/0x10 [ 3293.771479][T16388] ? __might_fault+0xc5/0x120 [ 3293.771518][T16388] ? __asan_memset+0x23/0x50 [ 3293.771552][T16388] kernel_clone+0x21d/0x8d0 [ 3293.771580][T16388] ? __pfx_kernel_clone+0x10/0x10 [ 3293.771620][T16388] __se_sys_clone3+0x2cb/0x350 [ 3293.771649][T16388] ? __pfx___se_sys_clone3+0x10/0x10 [ 3293.771709][T16388] ? do_syscall_64+0x108/0x240 [ 3293.771739][T16388] ? do_syscall_64+0xb4/0x240 [ 3293.771768][T16388] do_syscall_64+0xf9/0x240 [ 3293.771801][T16388] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3293.771830][T16388] RIP: 0033:0x7f02540a9b99 [ 3293.771851][T16388] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3293.771869][T16388] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3293.771891][T16388] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3293.771906][T16388] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3293.771919][T16388] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3293.771932][T16388] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3293.771945][T16388] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3293.771974][T16388] [ 3293.775787][T16388] memory: usage 307200kB, limit 307200kB, failcnt 339957 [ 3294.037769][T16388] memory+swap: usage 307472kB, limit 9007199254740988kB, failcnt 0 [ 3294.045796][T16388] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3294.053305][T16388] Memory cgroup stats for /syz1: [ 3294.053450][T16388] cache 0 [ 3294.061493][T16388] rss 8192 [ 3294.064554][T16388] rss_huge 0 [ 3294.067781][T16388] shmem 0 [ 3294.071128][T16388] mapped_file 0 [ 3294.074618][T16388] dirty 0 [ 3294.085286][T16388] writeback 0 [ 3294.088906][T16388] workingset_refault_anon 115728 [ 3294.093880][T16388] workingset_refault_file 3 [ 3294.098410][T16388] swap 278528 [ 3294.102240][T16388] swapcached 8192 [ 3294.105900][T16388] pgpgin 285480 [ 3294.110116][T16388] pgpgout 285477 [ 3294.113910][T16388] pgfault 609596 [ 3294.117701][T16388] pgmajfault 108848 [ 3294.121882][T16388] inactive_anon 0 [ 3294.125771][T16388] active_anon 0 [ 3294.129594][T16388] inactive_file 0 [ 3294.133500][T16388] active_file 0 [ 3294.137214][T16388] unevictable 0 [ 3294.144121][T16388] hierarchical_memory_limit 314572800 [ 3294.149792][T16388] hierarchical_memsw_limit 9223372036854771712 [ 3294.156194][T16388] total_cache 0 [ 3294.159972][T16388] total_rss 8192 [ 3294.163784][T16388] total_rss_huge 0 [ 3294.167740][T16388] total_shmem 0 [ 3294.172227][T16388] total_mapped_file 0 [ 3294.176476][T16388] total_dirty 0 [ 3294.186532][T16388] total_writeback 0 [ 3294.192259][T16388] total_workingset_refault_anon 115728 [ 3294.197963][T16388] total_workingset_refault_file 3 [ 3294.210747][T16388] total_swap 278528 [ 3294.214921][T16388] total_swapcached 8192 [ 3294.223272][T16388] total_pgpgin 285480 [ 3294.227593][T16388] total_pgpgout 285477 [ 3294.234802][T16388] total_pgfault 609596 [ 3294.242982][T16388] total_pgmajfault 108848 [ 3294.247565][T16388] total_inactive_anon 0 [ 3294.257935][T16388] total_active_anon 0 [ 3294.266585][T16388] total_inactive_file 0 [ 3294.273562][T16388] total_active_file 0 [ 3294.277836][T16388] total_unevictable 0 [ 3294.289540][T16388] anon_cost 0 [ 3294.293194][T16388] file_cost 0 [ 3294.296724][T16388] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16388,uid=0 [ 3294.319171][T16388] Memory cgroup out of memory: Killed process 16388 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:32 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000000414000600020000001b"], 0x54}}, 0x0) 01:27:32 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000a00000000000114000600020000001b"], 0x54}}, 0x0) [ 3294.534145][T16398] __nla_validate_parse: 5 callbacks suppressed [ 3294.534169][T16398] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:27:32 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000004003000000000000000114000600020000001b"], 0x54}}, 0x0) [ 3294.774526][T16402] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3294.775713][T16396] netlink: 'syz-executor.4': attribute type 12 has an invalid length. 01:27:33 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) recvmmsg(r0, &(0x7f0000002780)=[{{&(0x7f00000000c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000001180)=[{&(0x7f0000000140)=""/7, 0x7}, {&(0x7f0000000180)=""/4096, 0x1000}], 0x2, &(0x7f00000011c0)=""/62, 0x3e}, 0x3}, {{&(0x7f0000001200)=@x25={0x9, @remote}, 0x80, &(0x7f0000001300)=[{&(0x7f0000001280)=""/69, 0x45}], 0x1, &(0x7f0000001340)=""/130, 0x82}, 0x46}, {{&(0x7f0000001400)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x80, &(0x7f0000002680)=[{&(0x7f0000001480)=""/54, 0x36}, {&(0x7f00000014c0)=""/149, 0x95}, {&(0x7f0000001580)=""/4, 0x4}, {&(0x7f00000015c0)=""/4096, 0x1000}, {&(0x7f00000025c0)=""/161, 0xa1}], 0x5, &(0x7f0000002700)=""/72, 0x48}, 0x80}], 0x3, 0x2, &(0x7f0000002840)={0x77359400}) [ 3294.828923][T16396] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3294.976725][T16405] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3295.011285][T16400] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3295.025261][T16400] CPU: 0 PID: 16400 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3295.035740][T16400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3295.045844][T16400] Call Trace: [ 3295.049177][T16400] [ 3295.052153][T16400] dump_stack_lvl+0x1e7/0x2e0 [ 3295.056896][T16400] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3295.062149][T16400] ? __pfx__printk+0x10/0x10 [ 3295.066792][T16400] ? ___ratelimit+0x4c4/0x670 [ 3295.071537][T16400] ? __pfx____ratelimit+0x10/0x10 01:27:33 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000b00000000000114000600020000001b"], 0x54}}, 0x0) [ 3295.076630][T16400] dump_header+0xda/0x6a0 [ 3295.081019][T16400] oom_kill_process+0x3a7/0x930 [ 3295.085939][T16400] out_of_memory+0xf67/0x1320 [ 3295.090767][T16400] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3295.096451][T16400] ? __pfx___mutex_lock+0x10/0x10 [ 3295.101527][T16400] ? __pfx_out_of_memory+0x10/0x10 [ 3295.106697][T16400] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3295.112290][T16400] ? __pfx_lock_release+0x10/0x10 [ 3295.117366][T16400] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3295.123487][T16400] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3295.128831][T16400] ? mem_cgroup_iter+0x3e9/0x560 [ 3295.133839][T16400] try_charge_memcg+0xda2/0x18a0 [ 3295.138863][T16400] ? __pfx_try_charge_memcg+0x10/0x10 [ 3295.144285][T16400] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3295.150063][T16400] ? __pfx_lock_release+0x10/0x10 [ 3295.154210][T16411] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3295.155125][T16400] ? memcg_account_kmem+0x1e7/0x210 [ 3295.155179][T16400] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3295.155218][T16400] __memcg_kmem_charge_page+0xe1/0x250 [ 3295.181116][T16400] memcg_charge_kernel_stack+0x210/0x550 [ 3295.186822][T16400] dup_task_struct+0x40d/0x7d0 [ 3295.191642][T16400] copy_process+0x5d5/0x3fc0 [ 3295.196293][T16400] ? __might_fault+0xa9/0x120 [ 3295.201031][T16400] ? __pfx_lock_release+0x10/0x10 [ 3295.206121][T16400] ? __pfx_copy_process+0x10/0x10 [ 3295.211204][T16400] ? __might_fault+0xc5/0x120 [ 3295.215947][T16400] ? __asan_memset+0x23/0x50 [ 3295.220593][T16400] kernel_clone+0x21d/0x8d0 [ 3295.225176][T16400] ? __pfx_kernel_clone+0x10/0x10 [ 3295.230298][T16400] __se_sys_clone3+0x2cb/0x350 [ 3295.235116][T16400] ? __pfx___se_sys_clone3+0x10/0x10 [ 3295.240462][T16400] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3295.246515][T16400] ? exc_page_fault+0x587/0x870 [ 3295.251420][T16400] ? do_syscall_64+0xb4/0x240 [ 3295.256152][T16400] do_syscall_64+0xf9/0x240 [ 3295.260752][T16400] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3295.266695][T16400] RIP: 0033:0x7f02540a9b99 [ 3295.271146][T16400] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3295.290769][T16400] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3295.290802][T16400] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3295.290819][T16400] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3295.290834][T16400] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 01:27:33 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000340000000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:33 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000c00000000000114000600020000001b"], 0x54}}, 0x0) [ 3295.290850][T16400] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3295.290864][T16400] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3295.290898][T16400] [ 3295.299564][T16400] memory: usage 307180kB, limit 307200kB, failcnt 340359 [ 3295.367363][T16400] memory+swap: usage 307424kB, limit 9007199254740988kB, failcnt 0 [ 3295.408157][T16400] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3295.417746][T16400] Memory cgroup stats for /syz1: [ 3295.417905][T16400] cache 0 [ 3295.428121][T16400] rss 20480 [ 3295.431833][T16400] rss_huge 0 [ 3295.435266][T16400] shmem 0 [ 3295.438382][T16400] mapped_file 0 [ 3295.443254][T16400] dirty 0 [ 3295.446373][T16400] writeback 0 [ 3295.463578][T16400] workingset_refault_anon 115878 [ 3295.478679][T16400] workingset_refault_file 3 [ 3295.485062][T16400] swap 229376 [ 3295.488521][T16400] swapcached 12288 [ 3295.495519][T16400] pgpgin 285640 [ 3295.502647][T16400] pgpgout 285635 [ 3295.507624][T16400] pgfault 609849 [ 3295.515248][T16400] pgmajfault 108993 [ 3295.524572][T16400] inactive_anon 20480 [ 3295.533549][T16400] active_anon 0 [ 3295.538257][T16400] inactive_file 0 [ 3295.547478][T16400] active_file 0 [ 3295.552897][T16400] unevictable 0 [ 3295.556521][T16400] hierarchical_memory_limit 314572800 [ 3295.571915][T16400] hierarchical_memsw_limit 9223372036854771712 [ 3295.578351][T16400] total_cache 0 [ 3295.587654][T16400] total_rss 20480 [ 3295.592795][T16400] total_rss_huge 0 [ 3295.597357][T16400] total_shmem 0 [ 3295.606527][T16400] total_mapped_file 0 [ 3295.616317][T16400] total_dirty 0 [ 3295.625197][T16400] total_writeback 0 [ 3295.631375][T16400] total_workingset_refault_anon 115878 [ 3295.637055][T16400] total_workingset_refault_file 3 [ 3295.644618][T16400] total_swap 229376 [ 3295.654665][T16400] total_swapcached 12288 [ 3295.661241][T16400] total_pgpgin 285640 [ 3295.665431][T16400] total_pgpgout 285635 [ 3295.676244][T16400] total_pgfault 609849 [ 3295.684144][T16400] total_pgmajfault 108993 [ 3295.704729][T16400] total_inactive_anon 20480 [ 3295.717663][T16400] total_active_anon 0 [ 3295.727721][T16400] total_inactive_file 0 [ 3295.733131][T16400] total_active_file 0 [ 3295.737291][T16400] total_unevictable 0 [ 3295.747169][T16400] anon_cost 0 [ 3295.751076][T16400] file_cost 0 [ 3295.755930][T16400] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16400,uid=0 [ 3295.779065][T16400] Memory cgroup out of memory: Killed process 16400 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:34 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000000514000600020000001b"], 0x54}}, 0x0) [ 3295.931979][T16415] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3296.044699][T16416] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:27:34 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000010000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:34 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000f00000000000114000600020000001b"], 0x54}}, 0x0) [ 3296.288763][T16407] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3296.296997][T16407] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.2'. 01:27:34 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x7a00000000000000) [ 3296.357037][T16421] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3296.399822][T16419] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3296.416490][T16419] CPU: 1 PID: 16419 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3296.426973][T16419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3296.437093][T16419] Call Trace: [ 3296.440417][T16419] [ 3296.443434][T16419] dump_stack_lvl+0x1e7/0x2e0 [ 3296.448171][T16419] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3296.453428][T16419] ? __pfx__printk+0x10/0x10 [ 3296.458067][T16419] ? ___ratelimit+0x4c4/0x670 [ 3296.462805][T16419] ? __pfx____ratelimit+0x10/0x10 [ 3296.467874][T16419] dump_header+0xda/0x6a0 [ 3296.472251][T16419] oom_kill_process+0x3a7/0x930 [ 3296.477148][T16419] out_of_memory+0xf67/0x1320 [ 3296.481877][T16419] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3296.487565][T16419] ? __pfx___mutex_lock+0x10/0x10 [ 3296.492632][T16419] ? __pfx_out_of_memory+0x10/0x10 [ 3296.497814][T16419] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3296.503425][T16419] ? __pfx_lock_release+0x10/0x10 [ 3296.508515][T16419] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3296.514644][T16419] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3296.519944][T16419] ? mem_cgroup_iter+0x3e9/0x560 [ 3296.524934][T16419] try_charge_memcg+0xda2/0x18a0 [ 3296.529948][T16419] ? __pfx_try_charge_memcg+0x10/0x10 [ 3296.535367][T16419] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3296.541152][T16419] ? __pfx_lock_release+0x10/0x10 [ 3296.546229][T16419] ? memcg_account_kmem+0x1e7/0x210 [ 3296.551489][T16419] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3296.557436][T16419] __memcg_kmem_charge_page+0xe1/0x250 [ 3296.563028][T16419] memcg_charge_kernel_stack+0x210/0x550 [ 3296.568715][T16419] dup_task_struct+0x15d/0x7d0 [ 3296.573522][T16419] copy_process+0x5d5/0x3fc0 [ 3296.578165][T16419] ? __might_fault+0xa9/0x120 [ 3296.582908][T16419] ? __pfx_lock_release+0x10/0x10 [ 3296.587994][T16419] ? __pfx_copy_process+0x10/0x10 [ 3296.593063][T16419] ? __might_fault+0xc5/0x120 01:27:34 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000020000000000000114000600020000001b"], 0x54}}, 0x0) [ 3296.597797][T16419] ? __asan_memset+0x23/0x50 [ 3296.602447][T16419] kernel_clone+0x21d/0x8d0 [ 3296.607000][T16419] ? __pfx_kernel_clone+0x10/0x10 [ 3296.612091][T16419] __se_sys_clone3+0x2cb/0x350 [ 3296.616929][T16419] ? __pfx___se_sys_clone3+0x10/0x10 [ 3296.622280][T16419] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3296.628412][T16419] ? exc_page_fault+0x587/0x870 [ 3296.633316][T16419] ? do_syscall_64+0xb4/0x240 [ 3296.638046][T16419] do_syscall_64+0xf9/0x240 [ 3296.642612][T16419] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3296.648555][T16419] RIP: 0033:0x7f02540a9b99 [ 3296.653011][T16419] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3296.672761][T16419] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3296.681230][T16419] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3296.689248][T16419] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3296.697333][T16419] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3296.705348][T16419] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3296.713362][T16419] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3296.721401][T16419] [ 3296.757539][T16423] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3296.766120][T16419] memory: usage 307192kB, limit 307200kB, failcnt 340757 [ 3296.777112][T16419] memory+swap: usage 307460kB, limit 9007199254740988kB, failcnt 0 [ 3296.785989][T16419] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3296.793761][T16419] Memory cgroup stats for /syz1: [ 3296.793917][T16419] cache 0 [ 3296.802586][T16419] rss 8192 [ 3296.805957][T16419] rss_huge 0 [ 3296.809938][T16419] shmem 0 [ 3296.812915][T16419] mapped_file 0 [ 3296.816397][T16419] dirty 0 [ 3296.820051][T16419] writeback 0 [ 3296.823377][T16419] workingset_refault_anon 116017 [ 3296.828334][T16419] workingset_refault_file 3 [ 3296.833765][T16419] swap 274432 [ 3296.837104][T16419] swapcached 8192 [ 3296.844108][T16419] pgpgin 285789 [ 3296.847610][T16419] pgpgout 285786 [ 3296.853267][T16419] pgfault 610076 [ 3296.856854][T16419] pgmajfault 109129 [ 3296.862465][T16419] inactive_anon 0 [ 3296.866155][T16419] active_anon 0 [ 3296.870184][T16419] inactive_file 0 [ 3296.873850][T16419] active_file 0 [ 3296.877335][T16419] unevictable 0 [ 3296.881550][T16419] hierarchical_memory_limit 314572800 [ 3296.886962][T16419] hierarchical_memsw_limit 9223372036854771712 [ 3296.894009][T16419] total_cache 0 [ 3296.897511][T16419] total_rss 8192 [ 3296.902058][T16419] total_rss_huge 0 [ 3296.907399][T16419] total_shmem 0 [ 3296.911780][T16419] total_mapped_file 0 [ 3296.916220][T16419] total_dirty 0 [ 3296.920623][T16419] total_writeback 0 [ 3296.924961][T16419] total_workingset_refault_anon 116017 [ 3296.931528][T16419] total_workingset_refault_file 3 [ 3296.936991][T16419] total_swap 274432 [ 3296.941726][T16419] total_swapcached 8192 [ 3296.947758][T16419] total_pgpgin 285789 [ 3296.952756][T16419] total_pgpgout 285786 [ 3296.957186][T16419] total_pgfault 610076 [ 3296.966562][T16419] total_pgmajfault 109129 [ 3296.976345][T16419] total_inactive_anon 0 [ 3296.982161][T16419] total_active_anon 0 [ 3296.986319][T16419] total_inactive_file 0 [ 3296.995336][T16419] total_active_file 0 01:27:35 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000001100000000000114000600020000001b"], 0x54}}, 0x0) [ 3297.013282][T16419] total_unevictable 0 [ 3297.017339][T16419] anon_cost 0 [ 3297.035700][T16419] file_cost 0 [ 3297.039538][T16419] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16419,uid=0 [ 3297.066043][T16419] Memory cgroup out of memory: Killed process 16419 (syz-executor.1) total-vm:54508kB, anon-rss:508kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:35 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000000714000600020000001b"], 0x54}}, 0x0) 01:27:36 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000030000000000000114000600020000001b"], 0x54}}, 0x0) [ 3297.883236][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 3297.906263][ T5105] CPU: 0 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3297.916667][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3297.926764][ T5105] Call Trace: [ 3297.930077][ T5105] [ 3297.933040][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3297.937756][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3297.942991][ T5105] ? __pfx__printk+0x10/0x10 [ 3297.947614][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3297.952345][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3297.957423][ T5105] dump_header+0xda/0x6a0 [ 3297.961807][ T5105] oom_kill_process+0x3a7/0x930 [ 3297.966705][ T5105] out_of_memory+0xf67/0x1320 [ 3297.971439][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3297.977130][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3297.982199][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3297.987371][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3297.992965][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3297.998034][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3298.004147][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3298.009391][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3298.014376][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3298.019357][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3298.024751][ T5105] ? percpu_ref_tryget+0x14/0x180 [ 3298.029809][ T5105] charge_memcg+0xa2/0x160 [ 3298.034237][ T5105] __mem_cgroup_charge+0x27/0x80 [ 3298.039185][ T5105] __handle_mm_fault+0x5120/0x72d0 [ 3298.044337][ T5105] ? reacquire_held_locks+0x3eb/0x690 [ 3298.049723][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3298.055206][ T5105] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3298.062011][ T5105] ? mtree_range_walk+0x6fd/0x8e0 [ 3298.067072][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3298.072294][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3298.077352][ T5105] ? lock_vma_under_rcu+0x2f9/0x730 [ 3298.082589][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3298.087809][ T5105] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3298.093377][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3298.098165][ T5105] exc_page_fault+0x456/0x870 [ 3298.102859][ T5105] asm_exc_page_fault+0x26/0x30 [ 3298.107720][ T5105] RIP: 0033:0x7f02540a91b8 [ 3298.112183][ T5105] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f [ 3298.131852][ T5105] RSP: 002b:00007ffe12c8cc10 EFLAGS: 00010293 [ 3298.137950][ T5105] RAX: 0000000000000000 RBX: 000000000000470e RCX: 00007f02540a91b5 [ 3298.145927][ T5105] RDX: 00007ffe12c8cc50 RSI: 0000000000000000 RDI: 0000000000000000 [ 3298.153906][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000000 R09: 00007ffe12ccd0b0 [ 3298.161885][ T5105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3298.169867][ T5105] R13: 0000000000324fc1 R14: 0000000000324fc1 R15: 0000000000000000 [ 3298.177867][ T5105] 01:27:36 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000801200000000000114000600020000001b"], 0x54}}, 0x0) [ 3298.200695][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 341241 [ 3298.221669][ T5105] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0 [ 3298.233731][T16425] netlink: 'syz-executor.4': attribute type 12 has an invalid length. 01:27:36 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) recvmmsg(r0, &(0x7f0000002780)=[{{&(0x7f00000000c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000001180)=[{&(0x7f0000000140)=""/7, 0x7}, {&(0x7f0000000180)=""/4096, 0x1000}], 0x2, &(0x7f00000011c0)=""/62, 0x3e}, 0x3}, {{&(0x7f0000001200)=@x25={0x9, @remote}, 0x80, &(0x7f0000001300)=[{&(0x7f0000001280)=""/69, 0x45}], 0x1, &(0x7f0000001340)=""/130, 0x82}, 0x46}, {{&(0x7f0000001400)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x80, &(0x7f0000002680)=[{&(0x7f0000001480)=""/54, 0x36}, {&(0x7f00000014c0)=""/149, 0x95}, {&(0x7f0000001580)=""/4, 0x4}, {&(0x7f00000015c0)=""/4096, 0x1000}, {&(0x7f00000025c0)=""/161, 0xa1}], 0x5, &(0x7f0000002700)=""/72, 0x48}, 0x80}], 0x3, 0x2, &(0x7f0000002840)={0x77359400}) [ 3298.247199][ T5105] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3298.267297][ T5105] Memory cgroup stats for /syz1: [ 3298.267564][ T5105] cache 0 [ 3298.285229][ T5105] rss 0 [ 3298.295481][ T5105] rss_huge 0 [ 3298.301563][ T5105] shmem 0 [ 3298.304709][ T5105] mapped_file 0 [ 3298.308351][ T5105] dirty 0 [ 3298.315686][ T5105] writeback 0 [ 3298.323965][ T5105] workingset_refault_anon 116189 [ 3298.331741][ T5105] workingset_refault_file 3 [ 3298.336476][ T5105] swap 286720 [ 3298.343899][ T5105] swapcached 0 [ 3298.347481][ T5105] pgpgin 285971 [ 3298.351883][ T5105] pgpgout 285971 [ 3298.360426][ T5105] pgfault 610366 [ 3298.371074][ T5105] pgmajfault 109296 [ 3298.381927][ T5105] inactive_anon 0 [ 3298.387163][ T5105] active_anon 0 [ 3298.391191][ T5105] inactive_file 0 [ 3298.394967][ T5105] active_file 0 [ 3298.398770][ T5105] unevictable 0 [ 3298.402447][ T5105] hierarchical_memory_limit 314572800 [ 3298.407976][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3298.417091][ T5105] total_cache 0 [ 3298.425003][ T5105] total_rss 0 [ 3298.428481][ T5105] total_rss_huge 0 [ 3298.433366][ T5105] total_shmem 0 [ 3298.440722][ T5105] total_mapped_file 0 [ 3298.444947][ T5105] total_dirty 0 01:27:36 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000040000000000000114000600020000001b"], 0x54}}, 0x0) [ 3298.449494][ T5105] total_writeback 0 [ 3298.453505][ T5105] total_workingset_refault_anon 116189 [ 3298.459661][ T5105] total_workingset_refault_file 3 [ 3298.464865][ T5105] total_swap 286720 [ 3298.474869][ T5105] total_swapcached 0 [ 3298.485457][ T5105] total_pgpgin 285971 [ 3298.493895][ T5105] total_pgpgout 285971 [ 3298.498143][ T5105] total_pgfault 610366 [ 3298.504600][ T5105] total_pgmajfault 109296 [ 3298.512118][ T5105] total_inactive_anon 0 [ 3298.516398][ T5105] total_active_anon 0 [ 3298.524239][ T5105] total_inactive_file 0 [ 3298.533311][ T5105] total_active_file 0 [ 3298.537584][ T5105] total_unevictable 0 [ 3298.544272][ T5105] anon_cost 0 [ 3298.547730][ T5105] file_cost 0 01:27:36 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000001400000000000114000600020000001b"], 0x54}}, 0x0) [ 3298.551918][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16434,uid=0 [ 3298.584559][ T5105] Memory cgroup out of memory: Killed process 16434 (syz-executor.1) total-vm:54508kB, anon-rss:384kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:37 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000000814000600020000001b"], 0x54}}, 0x0) [ 3299.206970][T16451] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000 [ 3299.229692][T16451] CPU: 1 PID: 16451 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3299.240182][T16451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3299.250273][T16451] Call Trace: [ 3299.253580][T16451] [ 3299.256541][T16451] dump_stack_lvl+0x1e7/0x2e0 [ 3299.261286][T16451] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3299.266535][T16451] ? __pfx__printk+0x10/0x10 [ 3299.271160][T16451] ? ___ratelimit+0x4c4/0x670 [ 3299.275893][T16451] ? __pfx____ratelimit+0x10/0x10 [ 3299.280973][T16451] dump_header+0xda/0x6a0 [ 3299.285366][T16451] oom_kill_process+0x3a7/0x930 [ 3299.290285][T16451] out_of_memory+0xf67/0x1320 [ 3299.295102][T16451] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3299.300798][T16451] ? __pfx___mutex_lock+0x10/0x10 [ 3299.305872][T16451] ? __pfx_out_of_memory+0x10/0x10 [ 3299.311039][T16451] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3299.316631][T16451] ? __pfx_lock_release+0x10/0x10 [ 3299.321708][T16451] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3299.327841][T16451] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3299.333082][T16451] ? mem_cgroup_iter+0x3e9/0x560 [ 3299.338052][T16451] try_charge_memcg+0xda2/0x18a0 [ 3299.343028][T16451] ? __pfx_try_charge_memcg+0x10/0x10 [ 3299.348421][T16451] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3299.354177][T16451] ? __pfx_lock_release+0x10/0x10 [ 3299.359223][T16451] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3299.365230][T16451] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3299.371014][T16451] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3299.376840][T16451] obj_cgroup_charge+0x389/0x630 [ 3299.381813][T16451] ? obj_cgroup_charge+0x121/0x630 [ 3299.386948][T16451] ? __pfx_obj_cgroup_charge+0x10/0x10 [ 3299.392427][T16451] ? kmalloc_trace+0x4e/0x360 [ 3299.397125][T16451] ? __pfx___might_resched+0x10/0x10 [ 3299.402444][T16451] __memcg_slab_pre_alloc_hook+0x28d/0x2b0 [ 3299.408308][T16451] ? copy_semundo+0xb5/0x240 [ 3299.412928][T16451] kmalloc_trace+0x216/0x360 [ 3299.417549][T16451] ? __asan_memcpy+0x40/0x70 [ 3299.422167][T16451] copy_semundo+0xb5/0x240 [ 3299.426601][T16451] copy_process+0x1bc3/0x3fc0 [ 3299.431307][T16451] ? copy_process+0x9c3/0x3fc0 [ 3299.436090][T16451] ? __pfx_copy_process+0x10/0x10 [ 3299.441144][T16451] ? __might_fault+0xc5/0x120 [ 3299.445862][T16451] ? __asan_memset+0x23/0x50 [ 3299.450496][T16451] kernel_clone+0x21d/0x8d0 [ 3299.455026][T16451] ? __pfx_kernel_clone+0x10/0x10 [ 3299.460096][T16451] __se_sys_clone3+0x2cb/0x350 [ 3299.464900][T16451] ? __pfx___se_sys_clone3+0x10/0x10 [ 3299.470232][T16451] ? do_syscall_64+0x108/0x240 [ 3299.475013][T16451] ? do_syscall_64+0xb4/0x240 [ 3299.479706][T16451] do_syscall_64+0xf9/0x240 [ 3299.484319][T16451] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3299.490222][T16451] RIP: 0033:0x7f02540a9b99 [ 3299.494649][T16451] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3299.514546][T16451] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3299.522983][T16451] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3299.530967][T16451] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3299.538946][T16451] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3299.546923][T16451] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3299.554905][T16451] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3299.562900][T16451] [ 3299.571588][T16451] memory: usage 307200kB, limit 307200kB, failcnt 341798 [ 3299.579572][T16451] memory+swap: usage 307516kB, limit 9007199254740988kB, failcnt 0 [ 3299.587634][T16451] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3299.593305][T16446] __nla_validate_parse: 5 callbacks suppressed [ 3299.593327][T16446] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3299.595497][T16451] Memory cgroup stats for [ 3299.613001][T16442] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3299.637533][T16442] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3299.648145][T16451] /syz1: [ 3299.648285][T16451] cache 0 [ 3299.655232][T16451] rss 12288 01:27:37 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x8112000000000000) [ 3299.660001][T16451] rss_huge 0 [ 3299.664755][T16451] shmem 0 [ 3299.668369][T16451] mapped_file 0 [ 3299.672823][T16451] dirty 0 [ 3299.677032][T16451] writeback 0 [ 3299.682745][T16451] workingset_refault_anon 116274 [ 3299.687920][T16451] workingset_refault_file 3 [ 3299.693257][T16451] swap 311296 [ 3299.696728][T16451] swapcached 12288 [ 3299.701165][T16451] pgpgin 286068 [ 3299.704801][T16451] pgpgout 286065 [ 3299.710744][T16451] pgfault 610523 [ 3299.714495][T16451] pgmajfault 109372 [ 3299.718489][T16451] inactive_anon 12288 [ 3299.734791][T16451] active_anon 0 [ 3299.743442][T16451] inactive_file 0 [ 3299.748333][T16451] active_file 0 [ 3299.757182][T16451] unevictable 0 [ 3299.760901][T16451] hierarchical_memory_limit 314572800 [ 3299.766446][T16451] hierarchical_memsw_limit 9223372036854771712 [ 3299.773142][T16451] total_cache 0 [ 3299.776735][T16451] total_rss 12288 [ 3299.780640][T16451] total_rss_huge 0 [ 3299.784539][T16451] total_shmem 0 [ 3299.788121][T16451] total_mapped_file 0 [ 3299.794694][T16451] total_dirty 0 [ 3299.798499][T16451] total_writeback 0 [ 3299.802581][T16451] total_workingset_refault_anon 116274 [ 3299.808270][T16451] total_workingset_refault_file 3 [ 3299.822059][T16451] total_swap 311296 [ 3299.827198][T16451] total_swapcached 12288 [ 3299.831734][T16449] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3299.833918][T16451] total_pgpgin 286068 01:27:38 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000050000000000000114000600020000001b"], 0x54}}, 0x0) [ 3299.866568][T16451] total_pgpgout 286065 [ 3299.880138][T16451] total_pgfault 610523 [ 3299.886045][T16451] total_pgmajfault 109372 [ 3299.895625][T16451] total_inactive_anon 12288 [ 3299.904698][T16451] total_active_anon 0 [ 3299.909105][T16451] total_inactive_file 0 [ 3299.915102][T16451] total_active_file 0 [ 3299.925225][T16451] total_unevictable 0 [ 3299.937260][T16451] anon_cost 0 [ 3299.945778][T16451] file_cost 0 [ 3299.952517][T16451] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16451,uid=0 [ 3299.974827][T16451] Memory cgroup out of memory: Killed process 16451 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:38 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000030814000600020000001b"], 0x54}}, 0x0) 01:27:38 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000001500000000000114000600020000001b"], 0x54}}, 0x0) [ 3300.068957][T16455] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:27:38 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000060000000000000114000600020000001b"], 0x54}}, 0x0) [ 3300.647070][T16457] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3300.658270][T16457] CPU: 1 PID: 16457 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3300.668739][T16457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3300.678837][T16457] Call Trace: [ 3300.682154][T16457] [ 3300.685094][T16457] dump_stack_lvl+0x1e7/0x2e0 [ 3300.689846][T16457] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3300.695054][T16457] ? __pfx__printk+0x10/0x10 [ 3300.699652][T16457] ? ___ratelimit+0x4c4/0x670 [ 3300.704351][T16457] ? __pfx____ratelimit+0x10/0x10 [ 3300.709398][T16457] dump_header+0xda/0x6a0 [ 3300.713749][T16457] oom_kill_process+0x3a7/0x930 [ 3300.718624][T16457] out_of_memory+0xf67/0x1320 [ 3300.723325][T16457] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3300.729060][T16457] ? __pfx___mutex_lock+0x10/0x10 [ 3300.734110][T16457] ? __pfx_out_of_memory+0x10/0x10 [ 3300.739262][T16457] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3300.744930][T16457] ? __pfx_lock_release+0x10/0x10 [ 3300.749979][T16457] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3300.756073][T16457] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3300.761289][T16457] ? mem_cgroup_iter+0x3e9/0x560 [ 3300.766253][T16457] try_charge_memcg+0xda2/0x18a0 [ 3300.771234][T16457] ? __pfx_try_charge_memcg+0x10/0x10 [ 3300.776625][T16457] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3300.782363][T16457] ? __pfx_lock_release+0x10/0x10 [ 3300.787422][T16457] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3300.793254][T16457] __memcg_kmem_charge_page+0xe1/0x250 [ 3300.798738][T16457] memcg_charge_kernel_stack+0xa7/0x550 [ 3300.804311][T16457] dup_task_struct+0x40d/0x7d0 [ 3300.809093][T16457] copy_process+0x5d5/0x3fc0 [ 3300.813709][T16457] ? __might_fault+0xa9/0x120 [ 3300.818404][T16457] ? __pfx_lock_release+0x10/0x10 [ 3300.823453][T16457] ? __lock_acquire+0x1345/0x1fd0 [ 3300.828503][T16457] ? __pfx_copy_process+0x10/0x10 [ 3300.833547][T16457] ? __might_fault+0xc5/0x120 [ 3300.838257][T16457] ? __asan_memset+0x23/0x50 [ 3300.842885][T16457] kernel_clone+0x21d/0x8d0 [ 3300.847497][T16457] ? __pfx_kernel_clone+0x10/0x10 [ 3300.852550][T16457] ? __pfx_lock_release+0x10/0x10 [ 3300.857616][T16457] __se_sys_clone3+0x2cb/0x350 [ 3300.862480][T16457] ? __might_fault+0xa9/0x120 [ 3300.867175][T16457] ? __pfx___se_sys_clone3+0x10/0x10 [ 3300.872475][T16457] ? rcu_is_watching+0x15/0xb0 [ 3300.877267][T16457] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3300.883274][T16457] ? exc_page_fault+0x587/0x870 [ 3300.888138][T16457] ? do_syscall_64+0xb4/0x240 [ 3300.892830][T16457] do_syscall_64+0xf9/0x240 [ 3300.897350][T16457] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3300.903258][T16457] RIP: 0033:0x7f02540a9b99 [ 3300.907683][T16457] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3300.927295][T16457] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3300.937041][T16457] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3300.945027][T16457] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3300.953016][T16457] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3300.961001][T16457] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3300.968992][T16457] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3300.976991][T16457] [ 3301.003473][T16457] memory: usage 307180kB, limit 307200kB, failcnt 342273 [ 3301.011352][T16457] memory+swap: usage 307520kB, limit 9007199254740988kB, failcnt 0 [ 3301.019642][T16457] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0 [ 3301.027232][T16457] Memory cgroup stats for /syz1: [ 3301.027383][T16457] cache 0 [ 3301.035635][T16457] rss 12288 [ 3301.041435][T16457] rss_huge 0 [ 3301.044917][T16457] shmem 0 [ 3301.048105][T16457] mapped_file 0 [ 3301.052200][T16457] dirty 0 [ 3301.055417][T16457] writeback 0 [ 3301.059049][T16457] workingset_refault_anon 116464 [ 3301.064271][T16457] workingset_refault_file 3 [ 3301.069128][T16457] swap 348160 [ 3301.072681][T16457] swapcached 8192 [ 3301.076572][T16457] pgpgin 286270 [ 3301.080360][T16457] pgpgout 286267 [ 3301.084170][T16457] pgfault 610827 [ 3301.087962][T16457] pgmajfault 109557 [ 3301.094689][T16457] inactive_anon 4096 [ 3301.098918][T16457] active_anon 4096 [ 3301.102905][T16457] inactive_file 0 [ 3301.106786][T16457] active_file 0 [ 3301.110607][T16457] unevictable 0 [ 3301.114317][T16457] hierarchical_memory_limit 314572800 [ 3301.120036][T16457] hierarchical_memsw_limit 9223372036854771712 [ 3301.126446][T16457] total_cache 0 [ 3301.145679][T16457] total_rss 12288 [ 3301.155669][T16457] total_rss_huge 0 [ 3301.159749][T16457] total_shmem 0 [ 3301.163419][T16457] total_mapped_file 0 [ 3301.167594][T16457] total_dirty 0 [ 3301.178385][T16457] total_writeback 0 [ 3301.182749][T16457] total_workingset_refault_anon 116464 [ 3301.194990][T16457] total_workingset_refault_file 3 [ 3301.200566][T16459] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3301.205219][T16457] total_swap 348160 [ 3301.216832][T16457] total_swapcached 8192 [ 3301.221855][T16457] total_pgpgin 286270 [ 3301.226021][T16457] total_pgpgout 286267 [ 3301.232290][T16457] total_pgfault 610827 [ 3301.236551][T16457] total_pgmajfault 109557 [ 3301.241593][T16457] total_inactive_anon 4096 [ 3301.247863][T16457] total_active_anon 4096 [ 3301.253295][T16457] total_inactive_file 0 [ 3301.257665][T16457] total_active_file 0 [ 3301.262638][T16457] total_unevictable 0 [ 3301.266928][T16457] anon_cost 0 [ 3301.270936][T16457] file_cost 0 [ 3301.274392][T16457] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16457,uid=0 [ 3301.291262][T16457] Memory cgroup out of memory: Killed process 16457 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:39 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000001b00000000000114000600020000001b"], 0x54}}, 0x0) 01:27:39 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000000b14000600020000001b"], 0x54}}, 0x0) [ 3301.393769][T16462] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:27:39 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000070000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:39 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) recvmmsg(r0, &(0x7f0000002780)=[{{&(0x7f00000000c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000001180)=[{&(0x7f0000000140)=""/7, 0x7}, {&(0x7f0000000180)=""/4096, 0x1000}], 0x2, &(0x7f00000011c0)=""/62, 0x3e}, 0x3}, {{&(0x7f0000001200)=@x25={0x9, @remote}, 0x80, &(0x7f0000001300)=[{&(0x7f0000001280)=""/69, 0x45}], 0x1, &(0x7f0000001340)=""/130, 0x82}, 0x46}, {{&(0x7f0000001400)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x80, &(0x7f0000002680)=[{&(0x7f0000001480)=""/54, 0x36}, {&(0x7f00000014c0)=""/149, 0x95}, {&(0x7f0000001580)=""/4, 0x4}, {&(0x7f00000015c0)=""/4096, 0x1000}, {&(0x7f00000025c0)=""/161, 0xa1}], 0x5, &(0x7f0000002700)=""/72, 0x48}, 0x80}], 0x3, 0x2, &(0x7f0000002840)={0x77359400}) socket$kcm(0x10, 0x3, 0x10) (async) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) (async) recvmmsg(r0, &(0x7f0000002780)=[{{&(0x7f00000000c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000001180)=[{&(0x7f0000000140)=""/7, 0x7}, {&(0x7f0000000180)=""/4096, 0x1000}], 0x2, &(0x7f00000011c0)=""/62, 0x3e}, 0x3}, {{&(0x7f0000001200)=@x25={0x9, @remote}, 0x80, &(0x7f0000001300)=[{&(0x7f0000001280)=""/69, 0x45}], 0x1, &(0x7f0000001340)=""/130, 0x82}, 0x46}, {{&(0x7f0000001400)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x80, &(0x7f0000002680)=[{&(0x7f0000001480)=""/54, 0x36}, {&(0x7f00000014c0)=""/149, 0x95}, {&(0x7f0000001580)=""/4, 0x4}, {&(0x7f00000015c0)=""/4096, 0x1000}, {&(0x7f00000025c0)=""/161, 0xa1}], 0x5, &(0x7f0000002700)=""/72, 0x48}, 0x80}], 0x3, 0x2, &(0x7f0000002840)={0x77359400}) (async) [ 3301.585041][T16466] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3301.594976][T16453] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3301.624124][T16453] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. 01:27:40 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000762400000000000114000600020000001b"], 0x54}}, 0x0) [ 3301.788737][T16469] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3301.921412][T16477] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3301.924302][T16465] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3301.949409][T16465] CPU: 1 PID: 16465 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3301.959891][T16465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3301.969997][T16465] Call Trace: [ 3301.973311][T16465] [ 3301.976287][T16465] dump_stack_lvl+0x1e7/0x2e0 [ 3301.981006][T16465] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3301.986235][T16465] ? __pfx__printk+0x10/0x10 [ 3301.990857][T16465] ? ___ratelimit+0x4c4/0x670 [ 3301.995582][T16465] ? __pfx____ratelimit+0x10/0x10 [ 3302.000654][T16465] dump_header+0xda/0x6a0 [ 3302.005030][T16465] oom_kill_process+0x3a7/0x930 [ 3302.009928][T16465] out_of_memory+0xf67/0x1320 [ 3302.014653][T16465] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3302.020344][T16465] ? __pfx___mutex_lock+0x10/0x10 [ 3302.025426][T16465] ? __pfx_out_of_memory+0x10/0x10 [ 3302.030602][T16465] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3302.036194][T16465] ? __pfx_lock_release+0x10/0x10 [ 3302.041266][T16465] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3302.047367][T16465] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3302.047405][T16465] ? mem_cgroup_iter+0x3e9/0x560 [ 3302.047445][T16465] try_charge_memcg+0xda2/0x18a0 [ 3302.062586][T16465] ? __pfx_try_charge_memcg+0x10/0x10 [ 3302.068021][T16465] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3302.073809][T16465] ? __pfx_lock_release+0x10/0x10 [ 3302.078914][T16465] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3302.084780][T16465] __memcg_kmem_charge_page+0xe1/0x250 [ 3302.090291][T16465] memcg_charge_kernel_stack+0xa7/0x550 [ 3302.095975][T16465] dup_task_struct+0x15d/0x7d0 [ 3302.100789][T16465] copy_process+0x5d5/0x3fc0 [ 3302.105442][T16465] ? __might_fault+0xa9/0x120 [ 3302.110182][T16465] ? __pfx_lock_release+0x10/0x10 [ 3302.115312][T16465] ? __lock_acquire+0x1345/0x1fd0 [ 3302.120481][T16465] ? __pfx_copy_process+0x10/0x10 [ 3302.125550][T16465] ? __might_fault+0xc5/0x120 [ 3302.130284][T16465] ? __asan_memset+0x23/0x50 [ 3302.134925][T16465] kernel_clone+0x21d/0x8d0 [ 3302.139480][T16465] ? __pfx_kernel_clone+0x10/0x10 [ 3302.144569][T16465] ? __pfx_lock_release+0x10/0x10 [ 3302.149651][T16465] __se_sys_clone3+0x2cb/0x350 [ 3302.154452][T16465] ? __might_fault+0xa9/0x120 [ 3302.159178][T16465] ? __pfx___se_sys_clone3+0x10/0x10 [ 3302.164497][T16465] ? rcu_is_watching+0x15/0xb0 01:27:40 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000032700000000000114000600020000001b"], 0x54}}, 0x0) [ 3302.169325][T16465] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3302.175371][T16465] ? exc_page_fault+0x587/0x870 [ 3302.180283][T16465] ? do_syscall_64+0xb4/0x240 [ 3302.185006][T16465] do_syscall_64+0xf9/0x240 [ 3302.189562][T16465] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3302.195519][T16465] RIP: 0033:0x7f02540a9b99 [ 3302.199966][T16465] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 01:27:40 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000080000000000000114000600020000001b"], 0x54}}, 0x0) [ 3302.219640][T16465] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3302.228096][T16465] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3302.236124][T16465] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3302.244141][T16465] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3302.252153][T16465] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3302.260175][T16465] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3302.268290][T16465] [ 3302.328986][T16465] memory: usage 307180kB, limit 307200kB, failcnt 342701 [ 3302.336392][T16465] memory+swap: usage 307412kB, limit 9007199254740988kB, failcnt 0 [ 3302.354401][T16465] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0 [ 3302.366077][T16465] Memory cgroup stats for /syz1: [ 3302.366241][T16465] cache 0 [ 3302.376906][T16465] rss 12288 [ 3302.380739][T16465] rss_huge 0 [ 3302.384166][T16465] shmem 0 [ 3302.387318][T16465] mapped_file 0 [ 3302.391548][T16465] dirty 0 [ 3302.394730][T16465] writeback 0 [ 3302.398344][T16465] workingset_refault_anon 116590 [ 3302.405379][T16465] workingset_refault_file 3 [ 3302.417012][T16465] swap 237568 [ 3302.420909][T16465] swapcached 8192 [ 3302.424722][T16465] pgpgin 286407 [ 3302.428326][T16465] pgpgout 286404 [ 3302.432370][T16465] pgfault 611044 [ 3302.436707][T16465] pgmajfault 109682 [ 3302.441048][T16465] inactive_anon 4096 [ 3302.445120][T16465] active_anon 8192 [ 3302.449478][T16465] inactive_file 0 [ 3302.453283][T16465] active_file 0 [ 3302.456900][T16465] unevictable 0 [ 3302.461138][T16465] hierarchical_memory_limit 314572800 [ 3302.466672][T16465] hierarchical_memsw_limit 9223372036854771712 [ 3302.475452][T16465] total_cache 0 [ 3302.479442][T16465] total_rss 12288 [ 3302.483245][T16465] total_rss_huge 0 [ 3302.487114][T16465] total_shmem 0 [ 3302.517434][T16465] total_mapped_file 0 [ 3302.524587][T16465] total_dirty 0 [ 3302.528229][T16465] total_writeback 0 [ 3302.532734][T16465] total_workingset_refault_anon 116590 [ 3302.538355][T16465] total_workingset_refault_file 3 [ 3302.551095][T16465] total_swap 237568 [ 3302.555085][T16465] total_swapcached 8192 [ 3302.559880][T16465] total_pgpgin 286407 [ 3302.564032][T16465] total_pgpgout 286404 [ 3302.568260][T16465] total_pgfault 611044 [ 3302.573382][T16465] total_pgmajfault 109682 [ 3302.580094][T16465] total_inactive_anon 4096 [ 3302.584701][T16465] total_active_anon 8192 [ 3302.589675][T16465] total_inactive_file 0 [ 3302.594002][T16465] total_active_file 0 [ 3302.598130][T16465] total_unevictable 0 [ 3302.605578][T16465] anon_cost 0 [ 3302.611895][T16465] file_cost 0 [ 3302.615351][T16465] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16465,uid=0 [ 3302.641006][T16465] Memory cgroup out of memory: Killed process 16465 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:40 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000001414000600020000001b"], 0x54}}, 0x0) 01:27:41 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000003f00000000000114000600020000001b"], 0x54}}, 0x0) 01:27:41 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000090000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:41 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x97ffffff00000000) [ 3303.067332][T16472] netlink: 'syz-executor.2': attribute type 12 has an invalid length. 01:27:41 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000004000000000000114000600020000001b"], 0x54}}, 0x0) [ 3303.476369][T16485] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3303.492794][T16485] CPU: 0 PID: 16485 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3303.503262][T16485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3303.513347][T16485] Call Trace: [ 3303.516672][T16485] [ 3303.519634][T16485] dump_stack_lvl+0x1e7/0x2e0 [ 3303.524384][T16485] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3303.529649][T16485] ? __pfx__printk+0x10/0x10 [ 3303.534266][T16485] ? ___ratelimit+0x4c4/0x670 [ 3303.538991][T16485] ? __pfx____ratelimit+0x10/0x10 [ 3303.544085][T16485] dump_header+0xda/0x6a0 [ 3303.548484][T16485] oom_kill_process+0x3a7/0x930 [ 3303.553387][T16485] out_of_memory+0xf67/0x1320 [ 3303.558116][T16485] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3303.563796][T16485] ? __pfx___mutex_lock+0x10/0x10 [ 3303.568862][T16485] ? __pfx_out_of_memory+0x10/0x10 [ 3303.574025][T16485] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3303.579622][T16485] ? __pfx_lock_release+0x10/0x10 [ 3303.584688][T16485] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3303.590810][T16485] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3303.596047][T16485] ? mem_cgroup_iter+0x3e9/0x560 [ 3303.601042][T16485] try_charge_memcg+0xda2/0x18a0 [ 3303.606060][T16485] ? __pfx_try_charge_memcg+0x10/0x10 [ 3303.611488][T16485] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3303.617248][T16485] ? __pfx_lock_release+0x10/0x10 [ 3303.622318][T16485] ? memcg_account_kmem+0x1e7/0x210 [ 3303.627570][T16485] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3303.633439][T16485] __memcg_kmem_charge_page+0xe1/0x250 [ 3303.638934][T16485] memcg_charge_kernel_stack+0x28a/0x550 [ 3303.644609][T16485] dup_task_struct+0x40d/0x7d0 [ 3303.649413][T16485] copy_process+0x5d5/0x3fc0 [ 3303.654054][T16485] ? __might_fault+0xa9/0x120 [ 3303.658777][T16485] ? __pfx_lock_release+0x10/0x10 [ 3303.663936][T16485] ? __pfx_copy_process+0x10/0x10 [ 3303.668993][T16485] ? __might_fault+0xc5/0x120 [ 3303.673718][T16485] ? __asan_memset+0x23/0x50 [ 3303.678353][T16485] kernel_clone+0x21d/0x8d0 [ 3303.682892][T16485] ? __pfx_kernel_clone+0x10/0x10 [ 3303.687986][T16485] __se_sys_clone3+0x2cb/0x350 [ 3303.692813][T16485] ? __pfx___se_sys_clone3+0x10/0x10 [ 3303.698180][T16485] ? do_syscall_64+0x108/0x240 [ 3303.702986][T16485] ? do_syscall_64+0xb4/0x240 [ 3303.707703][T16485] do_syscall_64+0xf9/0x240 [ 3303.712341][T16485] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3303.718267][T16485] RIP: 0033:0x7f02540a9b99 [ 3303.722712][T16485] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3303.742352][T16485] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3303.750811][T16485] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3303.758811][T16485] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3303.766904][T16485] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3303.774921][T16485] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3303.782933][T16485] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3303.790969][T16485] [ 3303.806597][T16485] memory: usage 307200kB, limit 307200kB, failcnt 343207 [ 3303.818086][T16485] memory+swap: usage 307468kB, limit 9007199254740988kB, failcnt 0 01:27:42 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000000a0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3303.826313][T16485] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3303.846505][T16485] Memory cgroup stats for /syz1: [ 3303.846671][T16485] cache 4096 [ 3303.863902][T16485] rss 12288 [ 3303.871796][T16485] rss_huge 0 [ 3303.878853][T16485] shmem 0 [ 3303.885447][T16485] mapped_file 0 [ 3303.894051][T16485] dirty 4096 [ 3303.900948][T16485] writeback 0 [ 3303.905010][T16485] workingset_refault_anon 116756 [ 3303.920924][T16485] workingset_refault_file 3 [ 3303.925681][T16485] swap 274432 [ 3303.932665][T16485] swapcached 12288 [ 3303.936639][T16485] pgpgin 286585 [ 3303.942792][T16485] pgpgout 286581 [ 3303.946552][T16485] pgfault 611302 [ 3303.953708][T16485] pgmajfault 109827 [ 3303.957731][T16485] inactive_anon 0 [ 3303.964163][T16485] active_anon 12288 [ 3303.968202][T16485] inactive_file 0 [ 3303.975802][T16485] active_file 4096 [ 3303.982583][T16485] unevictable 0 [ 3303.986569][T16485] hierarchical_memory_limit 314572800 [ 3303.995728][T16485] hierarchical_memsw_limit 9223372036854771712 [ 3304.002266][T16485] total_cache 4096 [ 3304.013688][T16485] total_rss 12288 [ 3304.015147][T16492] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3304.020398][T16485] total_rss_huge 0 01:27:42 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000884700000000000114000600020000001b"], 0x54}}, 0x0) [ 3304.037240][T16485] total_shmem 0 [ 3304.054835][T16485] total_mapped_file 0 [ 3304.060482][T16485] total_dirty 4096 [ 3304.064484][T16485] total_writeback 0 [ 3304.068477][T16485] total_workingset_refault_anon 116756 [ 3304.081179][T16485] total_workingset_refault_file 3 01:27:42 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000000c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0}) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000001340), 0x8) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=@ipv4_delrule={0x2c, 0x21, 0x405, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_TABLE={0x8}, @FRA_GENERIC_POLICY=@FRA_FWMASK={0x8}]}, 0x2c}}, 0x0) epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000001380)={0x20000001}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f0000000340)={{r0}, r1, 0x2, @inherit={0x78, &(0x7f00000002c0)={0x0, 0x6, 0x62, 0xfffffffffffffffc, {0x21, 0x9, 0x100, 0x9, 0x1}, [0x5, 0x8, 0x2, 0x8000000000000000, 0x8, 0x2]}}, @name="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"}) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3304.088322][T16485] total_swap 274432 [ 3304.096003][T16485] total_swapcached 12288 [ 3304.117843][T16485] total_pgpgin 286585 [ 3304.127189][T16485] total_pgpgout 286581 [ 3304.133059][T16485] total_pgfault 611302 [ 3304.137320][T16485] total_pgmajfault 109827 [ 3304.150510][T16485] total_inactive_anon 0 [ 3304.154867][T16485] total_active_anon 12288 [ 3304.162990][T16485] total_inactive_file 0 [ 3304.167380][T16485] total_active_file 4096 [ 3304.181145][T16485] total_unevictable 0 01:27:42 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000000b0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3304.192105][T16485] anon_cost 0 [ 3304.203811][T16485] file_cost 0 [ 3304.225139][T16485] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16485,uid=0 [ 3304.255167][T16485] Memory cgroup out of memory: Killed process 16485 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:42 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000001b14000600020000001b"], 0x54}}, 0x0) [ 3304.802307][T16509] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3304.813135][T16509] CPU: 1 PID: 16509 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3304.823620][T16509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3304.833819][T16509] Call Trace: [ 3304.837138][T16509] [ 3304.840102][T16509] dump_stack_lvl+0x1e7/0x2e0 [ 3304.844842][T16509] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3304.850088][T16509] ? __pfx__printk+0x10/0x10 [ 3304.854713][T16509] ? ___ratelimit+0x4c4/0x670 [ 3304.859445][T16509] ? __pfx____ratelimit+0x10/0x10 [ 3304.864623][T16509] dump_header+0xda/0x6a0 [ 3304.869053][T16509] oom_kill_process+0x3a7/0x930 [ 3304.873962][T16509] out_of_memory+0xf67/0x1320 [ 3304.878695][T16509] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3304.884377][T16509] ? __pfx___mutex_lock+0x10/0x10 [ 3304.889473][T16509] ? __pfx_out_of_memory+0x10/0x10 [ 3304.894663][T16509] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3304.900269][T16509] ? __pfx_lock_release+0x10/0x10 [ 3304.905350][T16509] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3304.911471][T16509] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3304.916708][T16509] ? mem_cgroup_iter+0x3e9/0x560 [ 3304.921745][T16509] try_charge_memcg+0xda2/0x18a0 [ 3304.926755][T16509] ? __pfx_try_charge_memcg+0x10/0x10 [ 3304.932176][T16509] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3304.937945][T16509] ? __pfx_lock_release+0x10/0x10 [ 3304.943029][T16509] ? memcg_account_kmem+0x1e7/0x210 [ 3304.948288][T16509] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3304.954139][T16509] __memcg_kmem_charge_page+0xe1/0x250 [ 3304.959641][T16509] memcg_charge_kernel_stack+0x28a/0x550 [ 3304.965321][T16509] dup_task_struct+0x40d/0x7d0 [ 3304.970143][T16509] copy_process+0x5d5/0x3fc0 [ 3304.974790][T16509] ? __might_fault+0xa9/0x120 [ 3304.979521][T16509] ? __pfx_lock_release+0x10/0x10 [ 3304.984599][T16509] ? __pfx_copy_process+0x10/0x10 [ 3304.989679][T16509] ? __might_fault+0xc5/0x120 [ 3304.994408][T16509] ? __asan_memset+0x23/0x50 [ 3304.999366][T16509] kernel_clone+0x21d/0x8d0 [ 3305.003916][T16509] ? __pfx_kernel_clone+0x10/0x10 [ 3305.008998][T16509] __se_sys_clone3+0x2cb/0x350 [ 3305.013814][T16509] ? __pfx___se_sys_clone3+0x10/0x10 [ 3305.019193][T16509] ? do_syscall_64+0x108/0x240 [ 3305.023996][T16509] ? do_syscall_64+0xb4/0x240 [ 3305.028801][T16509] do_syscall_64+0xf9/0x240 [ 3305.033361][T16509] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3305.039299][T16509] RIP: 0033:0x7f02540a9b99 [ 3305.043747][T16509] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3305.063400][T16509] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3305.071861][T16509] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3305.079890][T16509] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3305.087891][T16509] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3305.095896][T16509] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3305.103988][T16509] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3305.112019][T16509] [ 3305.137624][T16509] memory: usage 307200kB, limit 307200kB, failcnt 343560 [ 3305.145104][T16509] memory+swap: usage 307436kB, limit 9007199254740988kB, failcnt 0 [ 3305.153727][T16507] __nla_validate_parse: 9 callbacks suppressed [ 3305.153747][T16507] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3305.175629][T16509] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3305.186807][T16509] Memory cgroup stats for /syz1: [ 3305.186983][T16509] cache 4096 01:27:43 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000884800000000000114000600020000001b"], 0x54}}, 0x0) [ 3305.202022][T16509] rss 12288 [ 3305.205274][T16509] rss_huge 0 [ 3305.210875][T16509] shmem 0 [ 3305.214093][T16509] mapped_file 0 [ 3305.217736][T16509] dirty 4096 [ 3305.222318][T16509] writeback 0 [ 3305.226462][T16509] workingset_refault_anon 116889 [ 3305.240611][T16509] workingset_refault_file 3 [ 3305.251146][T16509] swap 241664 [ 3305.258032][T16509] swapcached 8192 [ 3305.268127][T16509] pgpgin 286729 [ 3305.272969][T16509] pgpgout 286725 [ 3305.276727][T16509] pgfault 611527 [ 3305.283669][T16509] pgmajfault 109958 [ 3305.287679][T16509] inactive_anon 0 [ 3305.292150][T16509] active_anon 12288 [ 3305.298501][T16509] inactive_file 0 [ 3305.305593][T16509] active_file 4096 [ 3305.312104][T16509] unevictable 0 [ 3305.315763][T16509] hierarchical_memory_limit 314572800 [ 3305.325322][T16509] hierarchical_memsw_limit 9223372036854771712 [ 3305.334293][T16509] total_cache 4096 [ 3305.344508][T16509] total_rss 12288 [ 3305.348386][T16509] total_rss_huge 0 [ 3305.354451][T16509] total_shmem 0 [ 3305.358163][T16509] total_mapped_file 0 [ 3305.367182][T16509] total_dirty 4096 [ 3305.374149][T16509] total_writeback 0 [ 3305.382725][T16509] total_workingset_refault_anon 116889 [ 3305.392216][T16509] total_workingset_refault_file 3 [ 3305.401170][T16509] total_swap 241664 01:27:43 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000000c0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3305.412086][T16509] total_swapcached 8192 [ 3305.418175][T16509] total_pgpgin 286729 [ 3305.422636][T16509] total_pgpgout 286725 [ 3305.426909][T16509] total_pgfault 611527 [ 3305.431694][T16509] total_pgmajfault 109958 [ 3305.436190][T16509] total_inactive_anon 0 [ 3305.440959][T16509] total_active_anon 12288 [ 3305.447585][T16509] total_inactive_file 0 [ 3305.461620][T16509] total_active_file 4096 [ 3305.466123][T16509] total_unevictable 0 [ 3305.473091][T16509] anon_cost 0 [ 3305.476638][T16509] file_cost 0 [ 3305.480763][T16509] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16509,uid=0 [ 3305.496673][T16512] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 01:27:43 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0xaa11000000000000) [ 3305.506783][T16504] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3305.517699][T16504] netlink: 199764 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3305.546958][T16509] Memory cgroup out of memory: Killed process 16509 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:43 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000003f14000600020000001b"], 0x54}}, 0x0) [ 3305.717446][T16515] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:27:44 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000000f0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3306.445952][T16519] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3306.476565][T16519] CPU: 0 PID: 16519 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3306.487051][T16519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3306.497157][T16519] Call Trace: [ 3306.500471][T16519] [ 3306.503477][T16519] dump_stack_lvl+0x1e7/0x2e0 [ 3306.508225][T16519] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3306.513462][T16519] ? __pfx__printk+0x10/0x10 [ 3306.518088][T16519] ? ___ratelimit+0x4c4/0x670 [ 3306.522825][T16519] ? __pfx____ratelimit+0x10/0x10 [ 3306.527898][T16519] dump_header+0xda/0x6a0 [ 3306.532275][T16519] oom_kill_process+0x3a7/0x930 [ 3306.537184][T16519] out_of_memory+0xf67/0x1320 [ 3306.541936][T16519] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3306.547637][T16519] ? __pfx___mutex_lock+0x10/0x10 [ 3306.552726][T16519] ? __pfx_out_of_memory+0x10/0x10 [ 3306.557908][T16519] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3306.563513][T16519] ? __pfx_lock_release+0x10/0x10 [ 3306.568588][T16519] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3306.574717][T16519] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3306.579963][T16519] ? mem_cgroup_iter+0x3e9/0x560 [ 3306.584964][T16519] try_charge_memcg+0xda2/0x18a0 [ 3306.589978][T16519] ? __pfx_try_charge_memcg+0x10/0x10 [ 3306.595388][T16519] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3306.601153][T16519] ? __pfx_lock_release+0x10/0x10 [ 3306.606228][T16519] ? memcg_account_kmem+0x1e7/0x210 [ 3306.611478][T16519] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3306.617334][T16519] __memcg_kmem_charge_page+0xe1/0x250 [ 3306.622858][T16519] memcg_charge_kernel_stack+0x3f8/0x550 [ 3306.628550][T16519] dup_task_struct+0x40d/0x7d0 [ 3306.633362][T16519] copy_process+0x5d5/0x3fc0 [ 3306.638021][T16519] ? __might_fault+0xa9/0x120 [ 3306.642754][T16519] ? __pfx_lock_release+0x10/0x10 [ 3306.647841][T16519] ? __pfx_copy_process+0x10/0x10 [ 3306.652904][T16519] ? __might_fault+0xc5/0x120 [ 3306.657626][T16519] ? __asan_memset+0x23/0x50 [ 3306.662265][T16519] kernel_clone+0x21d/0x8d0 [ 3306.666811][T16519] ? __pfx_kernel_clone+0x10/0x10 [ 3306.671902][T16519] __se_sys_clone3+0x2cb/0x350 [ 3306.676713][T16519] ? __pfx___se_sys_clone3+0x10/0x10 [ 3306.682066][T16519] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3306.688125][T16519] ? exc_page_fault+0x587/0x870 [ 3306.689536][T16521] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3306.693024][T16519] ? do_syscall_64+0xb4/0x240 [ 3306.693061][T16519] do_syscall_64+0xf9/0x240 [ 3306.693094][T16519] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3306.717389][T16519] RIP: 0033:0x7f02540a9b99 [ 3306.721842][T16519] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3306.741505][T16519] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3306.749961][T16519] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3306.757988][T16519] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3306.766003][T16519] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3306.774020][T16519] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3306.782036][T16519] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3306.790072][T16519] [ 3306.815051][T16519] memory: usage 307200kB, limit 307200kB, failcnt 344116 [ 3306.826419][T16519] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0 [ 3306.845755][T16519] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3306.855384][T16519] Memory cgroup stats for /syz1: [ 3306.855543][T16519] cache 4096 [ 3306.870208][T16519] rss 0 [ 3306.873136][T16519] rss_huge 0 [ 3306.879875][T16519] shmem 0 [ 3306.882983][T16519] mapped_file 0 [ 3306.886611][T16519] dirty 4096 [ 3306.890902][T16519] writeback 0 [ 3306.894363][T16519] workingset_refault_anon 117078 [ 3306.895000][T16517] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3306.902271][T16519] workingset_refault_file 3 01:27:45 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000100000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:45 executing program 2: socket$kcm(0x10, 0x3, 0x10) (async) r0 = socket$kcm(0x10, 0x3, 0x10) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000000c0)) (async) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000000c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0}) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000001340), 0x8) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=@ipv4_delrule={0x2c, 0x21, 0x405, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_TABLE={0x8}, @FRA_GENERIC_POLICY=@FRA_FWMASK={0x8}]}, 0x2c}}, 0x0) epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000001380)={0x20000001}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f0000000340)={{r0}, r1, 0x2, @inherit={0x78, &(0x7f00000002c0)={0x0, 0x6, 0x62, 0xfffffffffffffffc, {0x21, 0x9, 0x100, 0x9, 0x1}, [0x5, 0x8, 0x2, 0x8000000000000000, 0x8, 0x2]}}, @name="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"}) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3306.913207][T16517] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3306.937046][T16519] swap 286720 [ 3306.944363][T16519] swapcached 0 [ 3306.954767][T16519] pgpgin 286928 [ 3306.961798][T16519] pgpgout 286927 [ 3306.983815][T16519] pgfault 611810 [ 3306.994030][T16519] pgmajfault 110120 [ 3307.010560][T16519] inactive_anon 0 [ 3307.018698][T16519] active_anon 0 [ 3307.024299][T16519] inactive_file 4096 [ 3307.028376][T16519] active_file 0 [ 3307.036108][T16519] unevictable 0 [ 3307.045043][T16519] hierarchical_memory_limit 314572800 [ 3307.061540][T16519] hierarchical_memsw_limit 9223372036854771712 [ 3307.072615][T16519] total_cache 4096 [ 3307.078350][T16519] total_rss 0 [ 3307.087815][T16519] total_rss_huge 0 [ 3307.096002][T16519] total_shmem 0 [ 3307.102179][T16519] total_mapped_file 0 [ 3307.106609][T16519] total_dirty 4096 [ 3307.114219][T16519] total_writeback 0 [ 3307.118201][T16519] total_workingset_refault_anon 117078 [ 3307.128223][T16519] total_workingset_refault_file 3 [ 3307.137177][T16519] total_swap 286720 [ 3307.146140][T16519] total_swapcached 0 [ 3307.154252][T16519] total_pgpgin 286928 [ 3307.158388][T16519] total_pgpgout 286927 [ 3307.162861][T16519] total_pgfault 611810 [ 3307.170686][T16519] total_pgmajfault 110120 [ 3307.179064][T16519] total_inactive_anon 0 [ 3307.186597][T16519] total_active_anon 0 [ 3307.191014][T16519] total_inactive_file 4096 [ 3307.195605][T16519] total_active_file 0 [ 3307.199891][T16519] total_unevictable 0 [ 3307.204043][T16519] anon_cost 0 [ 3307.207486][T16519] file_cost 0 [ 3307.211410][T16519] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16519,uid=0 [ 3307.227140][T16519] Memory cgroup out of memory: Killed process 16519 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:45 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000004014000600020000001b"], 0x54}}, 0x0) [ 3307.698744][T16524] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3307.795534][T16529] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3307.815040][T16529] CPU: 0 PID: 16529 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3307.825564][T16529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3307.835670][T16529] Call Trace: [ 3307.838982][T16529] [ 3307.841949][T16529] dump_stack_lvl+0x1e7/0x2e0 [ 3307.846683][T16529] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3307.851930][T16529] ? __pfx__printk+0x10/0x10 [ 3307.856568][T16529] ? ___ratelimit+0x4c4/0x670 [ 3307.861313][T16529] ? __pfx____ratelimit+0x10/0x10 [ 3307.866400][T16529] dump_header+0xda/0x6a0 [ 3307.870789][T16529] oom_kill_process+0x3a7/0x930 [ 3307.875709][T16529] out_of_memory+0xf67/0x1320 [ 3307.880450][T16529] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3307.886218][T16529] ? __pfx___mutex_lock+0x10/0x10 [ 3307.891289][T16529] ? __pfx_out_of_memory+0x10/0x10 [ 3307.896464][T16529] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3307.902071][T16529] ? __pfx_lock_release+0x10/0x10 [ 3307.907239][T16529] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3307.913366][T16529] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3307.918708][T16529] ? mem_cgroup_iter+0x3e9/0x560 [ 3307.923708][T16529] try_charge_memcg+0xda2/0x18a0 [ 3307.928734][T16529] ? __pfx_try_charge_memcg+0x10/0x10 [ 3307.934162][T16529] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3307.939935][T16529] ? __pfx_lock_release+0x10/0x10 [ 3307.945013][T16529] ? memcg_account_kmem+0x1e7/0x210 [ 3307.950364][T16529] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3307.956246][T16529] __memcg_kmem_charge_page+0xe1/0x250 [ 3307.961763][T16529] memcg_charge_kernel_stack+0x3f8/0x550 [ 3307.967470][T16529] dup_task_struct+0x40d/0x7d0 [ 3307.972820][T16529] copy_process+0x5d5/0x3fc0 [ 3307.977485][T16529] ? __might_fault+0xa9/0x120 [ 3307.982219][T16529] ? __pfx_lock_release+0x10/0x10 [ 3307.987305][T16529] ? __pfx_copy_process+0x10/0x10 [ 3307.992378][T16529] ? __might_fault+0xc5/0x120 [ 3307.997116][T16529] ? __asan_memset+0x23/0x50 [ 3308.001772][T16529] kernel_clone+0x21d/0x8d0 [ 3308.006342][T16529] ? __pfx_kernel_clone+0x10/0x10 [ 3308.011448][T16529] __se_sys_clone3+0x2cb/0x350 [ 3308.016264][T16529] ? __might_fault+0xa9/0x120 [ 3308.020999][T16529] ? __pfx___se_sys_clone3+0x10/0x10 [ 3308.026372][T16529] ? do_syscall_64+0x108/0x240 [ 3308.031189][T16529] ? do_syscall_64+0xb4/0x240 [ 3308.035922][T16529] do_syscall_64+0xf9/0x240 [ 3308.040490][T16529] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3308.046437][T16529] RIP: 0033:0x7f02540a9b99 [ 3308.050892][T16529] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3308.066944][T16527] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3308.070511][T16529] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3308.070541][T16529] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3308.070559][T16529] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3308.070576][T16529] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3308.070592][T16529] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3308.070614][T16529] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3308.096297][T16527] netlink: 199764 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3308.103187][T16529] 01:27:46 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000110000000000000114000600020000001b"], 0x54}}, 0x0) 01:27:46 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0xbb40000000000000) [ 3308.172174][T16529] memory: usage 307200kB, limit 307200kB, failcnt 344403 [ 3308.231514][T16529] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0 01:27:46 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000655800000000000114000600020000001b"], 0x54}}, 0x0) [ 3308.278388][T16529] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3308.289172][T16529] Memory cgroup stats for /syz1: [ 3308.289334][T16529] cache 4096 [ 3308.311438][T16529] rss 0 [ 3308.315493][T16529] rss_huge 0 [ 3308.339127][T16529] shmem 0 [ 3308.342139][T16529] mapped_file 0 [ 3308.345631][T16529] dirty 4096 [ 3308.366899][T16529] writeback 0 [ 3308.370829][T16529] workingset_refault_anon 117164 [ 3308.376473][T16529] workingset_refault_file 3 [ 3308.381796][T16529] swap 286720 [ 3308.385237][T16529] swapcached 0 [ 3308.389572][T16529] pgpgin 287025 [ 3308.393177][T16529] pgpgout 287024 [ 3308.397100][T16529] pgfault 611966 [ 3308.401932][T16529] pgmajfault 110198 [ 3308.405922][T16529] inactive_anon 0 [ 3308.414168][T16529] active_anon 0 [ 3308.417819][T16529] inactive_file 0 [ 3308.422251][T16529] active_file 4096 [ 3308.426165][T16529] unevictable 0 [ 3308.430914][T16529] hierarchical_memory_limit 314572800 [ 3308.436471][T16529] hierarchical_memsw_limit 9223372036854771712 [ 3308.444782][T16529] total_cache 4096 [ 3308.449166][T16529] total_rss 0 [ 3308.452644][T16529] total_rss_huge 0 [ 3308.456540][T16529] total_shmem 0 [ 3308.461162][T16529] total_mapped_file 0 [ 3308.465316][T16529] total_dirty 4096 [ 3308.469896][T16529] total_writeback 0 [ 3308.473904][T16529] total_workingset_refault_anon 117164 [ 3308.480239][T16529] total_workingset_refault_file 3 [ 3308.485453][T16529] total_swap 286720 [ 3308.506816][T16529] total_swapcached 0 [ 3308.516456][T16529] total_pgpgin 287025 [ 3308.521397][T16529] total_pgpgout 287024 [ 3308.525634][T16529] total_pgfault 611966 [ 3308.530483][T16529] total_pgmajfault 110198 [ 3308.535187][T16529] total_inactive_anon 0 [ 3308.540374][T16529] total_active_anon 0 [ 3308.544698][T16529] total_inactive_file 0 [ 3308.551157][T16529] total_active_file 4096 [ 3308.555567][T16529] total_unevictable 0 [ 3308.560329][T16529] anon_cost 0 [ 3308.563786][T16529] file_cost 0 [ 3308.574099][T16529] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16529,uid=0 [ 3308.591471][T16529] Memory cgroup out of memory: Killed process 16529 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8816kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:46 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000000000000ffffffff14000600020000001b"], 0x54}}, 0x0) [ 3308.947618][T16532] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:27:47 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000140000000000000114000600020000001b"], 0x54}}, 0x0) [ 3309.075749][T16536] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3309.356133][T16539] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3309.375145][T16539] CPU: 0 PID: 16539 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3309.385622][T16539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3309.395726][T16539] Call Trace: [ 3309.399049][T16539] [ 3309.402018][T16539] dump_stack_lvl+0x1e7/0x2e0 [ 3309.406750][T16539] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3309.412002][T16539] ? __pfx__printk+0x10/0x10 [ 3309.416634][T16539] ? ___ratelimit+0x4c4/0x670 [ 3309.421371][T16539] ? __pfx____ratelimit+0x10/0x10 [ 3309.426453][T16539] dump_header+0xda/0x6a0 [ 3309.430880][T16539] oom_kill_process+0x3a7/0x930 [ 3309.435789][T16539] out_of_memory+0xf67/0x1320 [ 3309.440533][T16539] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3309.446348][T16539] ? __pfx___mutex_lock+0x10/0x10 [ 3309.451425][T16539] ? __pfx_out_of_memory+0x10/0x10 [ 3309.456593][T16539] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3309.462187][T16539] ? __pfx_lock_release+0x10/0x10 [ 3309.467263][T16539] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3309.473380][T16539] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3309.478820][T16539] ? mem_cgroup_iter+0x3e9/0x560 [ 3309.483807][T16539] try_charge_memcg+0xda2/0x18a0 [ 3309.488834][T16539] ? __pfx_try_charge_memcg+0x10/0x10 [ 3309.494257][T16539] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3309.500029][T16539] ? __pfx_lock_release+0x10/0x10 [ 3309.505126][T16539] ? memcg_account_kmem+0x1e7/0x210 [ 3309.510397][T16539] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3309.516257][T16539] __memcg_kmem_charge_page+0xe1/0x250 [ 3309.521957][T16539] memcg_charge_kernel_stack+0x28a/0x550 [ 3309.527638][T16539] dup_task_struct+0x40d/0x7d0 [ 3309.532456][T16539] copy_process+0x5d5/0x3fc0 [ 3309.537110][T16539] ? __might_fault+0xa9/0x120 [ 3309.541841][T16539] ? __pfx_lock_release+0x10/0x10 [ 3309.546936][T16539] ? __pfx_copy_process+0x10/0x10 [ 3309.552007][T16539] ? __might_fault+0xc5/0x120 [ 3309.556736][T16539] ? __asan_memset+0x23/0x50 [ 3309.561382][T16539] kernel_clone+0x21d/0x8d0 [ 3309.565958][T16539] ? __pfx_kernel_clone+0x10/0x10 [ 3309.571046][T16539] __se_sys_clone3+0x2cb/0x350 [ 3309.575859][T16539] ? __pfx___se_sys_clone3+0x10/0x10 [ 3309.581232][T16539] ? do_syscall_64+0x108/0x240 [ 3309.586057][T16539] ? do_syscall_64+0xb4/0x240 [ 3309.590870][T16539] do_syscall_64+0xf9/0x240 [ 3309.595432][T16539] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3309.601381][T16539] RIP: 0033:0x7f02540a9b99 [ 3309.605832][T16539] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3309.625487][T16539] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3309.633957][T16539] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3309.641977][T16539] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3309.649987][T16539] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3309.657996][T16539] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3309.666009][T16539] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3309.674048][T16539] [ 3309.697720][T16539] memory: usage 307200kB, limit 307200kB, failcnt 344846 [ 3309.715201][T16539] memory+swap: usage 307432kB, limit 9007199254740988kB, failcnt 0 [ 3309.733931][T16539] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3309.747550][T16539] Memory cgroup stats for /syz1: [ 3309.747719][T16539] cache 4096 [ 3309.763729][T16539] rss 12288 [ 3309.771798][T16539] rss_huge 0 [ 3309.780080][T16539] shmem 0 [ 3309.787361][T16539] mapped_file 0 [ 3309.794524][T16539] dirty 4096 [ 3309.798019][T16539] writeback 0 [ 3309.807465][T16539] workingset_refault_anon 117321 [ 3309.815450][T16539] workingset_refault_file 3 [ 3309.824629][T16539] swap 237568 [ 3309.828247][T16539] swapcached 8192 [ 3309.833778][T16539] pgpgin 287194 [ 3309.837536][T16539] pgpgout 287190 [ 3309.849260][T16539] pgfault 612234 [ 3309.854801][T16539] pgmajfault 110353 [ 3309.863210][T16539] inactive_anon 0 [ 3309.867157][T16539] active_anon 12288 [ 3309.873983][T16539] inactive_file 0 [ 3309.877893][T16539] active_file 4096 [ 3309.886651][T16539] unevictable 0 [ 3309.893404][T16539] hierarchical_memory_limit 314572800 [ 3309.902919][T16539] hierarchical_memsw_limit 9223372036854771712 [ 3309.911350][T16539] total_cache 4096 [ 3309.915646][T16539] total_rss 12288 [ 3309.920096][T16539] total_rss_huge 0 [ 3309.924133][T16539] total_shmem 0 [ 3309.927878][T16539] total_mapped_file 0 [ 3309.932386][T16539] total_dirty 4096 [ 3309.936482][T16539] total_writeback 0 [ 3309.941029][T16539] total_workingset_refault_anon 117321 [ 3309.946770][T16539] total_workingset_refault_file 3 [ 3309.954171][T16539] total_swap 237568 [ 3309.958267][T16539] total_swapcached 8192 [ 3309.962760][T16539] total_pgpgin 287194 [ 3309.967016][T16539] total_pgpgout 287190 [ 3309.971754][T16539] total_pgfault 612234 [ 3309.976108][T16539] total_pgmajfault 110353 [ 3309.981151][T16539] total_inactive_anon 0 [ 3309.986286][T16539] total_active_anon 12288 [ 3309.991402][T16539] total_inactive_file 0 [ 3309.995873][T16539] total_active_file 4096 [ 3310.001216][T16539] total_unevictable 0 [ 3310.005488][T16539] anon_cost 0 [ 3310.009676][T16539] file_cost 0 [ 3310.013224][T16539] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16539,uid=0 [ 3310.032297][T16539] Memory cgroup out of memory: Killed process 16539 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3310.077122][T16536] syz-executor.0 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=2, oom_score_adj=1000 [ 3310.133783][T16536] CPU: 0 PID: 16536 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3310.144275][T16536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3310.154355][T16536] Call Trace: [ 3310.157645][T16536] [ 3310.160597][T16536] dump_stack_lvl+0x1e7/0x2e0 [ 3310.165298][T16536] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3310.170516][T16536] ? __pfx__printk+0x10/0x10 [ 3310.175116][T16536] ? ___ratelimit+0x4c4/0x670 [ 3310.179828][T16536] ? __pfx____ratelimit+0x10/0x10 [ 3310.184880][T16536] dump_header+0xda/0x6a0 [ 3310.189254][T16536] oom_kill_process+0x3a7/0x930 [ 3310.194145][T16536] out_of_memory+0xf67/0x1320 [ 3310.198943][T16536] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3310.204597][T16536] ? __pfx___mutex_lock+0x10/0x10 [ 3310.209653][T16536] ? __pfx_out_of_memory+0x10/0x10 [ 3310.214792][T16536] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3310.220357][T16536] ? __pfx_lock_release+0x10/0x10 [ 3310.225400][T16536] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3310.231508][T16536] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3310.236752][T16536] ? mem_cgroup_iter+0x3e9/0x560 [ 3310.241723][T16536] try_charge_memcg+0xda2/0x18a0 [ 3310.246723][T16536] ? __pfx_try_charge_memcg+0x10/0x10 [ 3310.252122][T16536] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3310.257871][T16536] ? __pfx_lock_release+0x10/0x10 [ 3310.262939][T16536] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3310.268956][T16536] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3310.274693][T16536] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3310.280518][T16536] obj_cgroup_charge+0x389/0x630 [ 3310.285471][T16536] ? obj_cgroup_charge+0x121/0x630 [ 3310.290611][T16536] ? __pfx_obj_cgroup_charge+0x10/0x10 [ 3310.296081][T16536] ? __kmalloc_node_track_caller+0xc1/0x4e0 [ 3310.301995][T16536] ? __pfx___might_resched+0x10/0x10 [ 3310.307302][T16536] __memcg_slab_pre_alloc_hook+0x28d/0x2b0 [ 3310.313132][T16536] __kmalloc_node_track_caller+0x310/0x4e0 [ 3310.318957][T16536] ? __addrconf_sysctl_register+0xb1/0x3f0 [ 3310.324812][T16536] kmemdup+0x2a/0x60 [ 3310.328763][T16536] __addrconf_sysctl_register+0xb1/0x3f0 [ 3310.334425][T16536] ? __pfx_ndisc_ifinfo_sysctl_change+0x10/0x10 [ 3310.340704][T16536] ? __pfx_neigh_sysctl_register+0x10/0x10 [ 3310.346531][T16536] ? __pfx___addrconf_sysctl_register+0x10/0x10 [ 3310.352788][T16536] ? __raw_spin_lock_init+0x45/0x100 [ 3310.358110][T16536] addrconf_sysctl_register+0x167/0x1c0 [ 3310.363693][T16536] ipv6_add_dev+0xcff/0x1220 [ 3310.368313][T16536] addrconf_notify+0x6a7/0x1020 [ 3310.373181][T16536] notifier_call_chain+0x18f/0x3b0 [ 3310.378318][T16536] register_netdevice+0x15b2/0x1a20 [ 3310.383551][T16536] ? __pfx_register_netdevice+0x10/0x10 [ 3310.389110][T16536] ? __xdp_rxq_info_reg+0x142/0x290 [ 3310.394362][T16536] br_dev_newlink+0x27/0x100 [ 3310.398979][T16536] ? __pfx_br_dev_newlink+0x10/0x10 [ 3310.404199][T16536] rtnl_newlink+0x158f/0x20a0 [ 3310.408904][T16536] ? rtnl_newlink+0x451/0x20a0 [ 3310.413689][T16536] ? __pfx_rtnl_newlink+0x10/0x10 [ 3310.418724][T16536] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3310.424033][T16536] ? __mutex_lock+0x9a4/0xd70 [ 3310.428731][T16536] ? __mutex_lock+0x526/0xd70 [ 3310.433442][T16536] ? __pfx_rtnl_newlink+0x10/0x10 [ 3310.438499][T16536] rtnetlink_rcv_msg+0x89b/0x10d0 [ 3310.443551][T16536] ? rtnetlink_rcv_msg+0x208/0x10d0 [ 3310.448772][T16536] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 3310.454258][T16536] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3310.460271][T16536] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 3310.466641][T16536] ? __local_bh_enable_ip+0x168/0x200 [ 3310.472035][T16536] ? lockdep_hardirqs_on+0x98/0x140 [ 3310.477327][T16536] ? __local_bh_enable_ip+0x168/0x200 [ 3310.482736][T16536] ? __dev_queue_xmit+0x2c4/0x3b10 [ 3310.487911][T16536] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 3310.493767][T16536] ? __dev_queue_xmit+0x2c4/0x3b10 [ 3310.498906][T16536] ? __dev_queue_xmit+0x15fd/0x3b10 [ 3310.504126][T16536] ? __dev_queue_xmit+0x2c4/0x3b10 [ 3310.509260][T16536] ? ref_tracker_free+0x643/0x7e0 [ 3310.514315][T16536] netlink_rcv_skb+0x1e3/0x430 [ 3310.519122][T16536] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 3310.524632][T16536] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 3310.529978][T16536] ? netlink_deliver_tap+0x2e/0x1b0 [ 3310.535228][T16536] netlink_unicast+0x7ea/0x980 [ 3310.540075][T16536] ? __pfx_netlink_unicast+0x10/0x10 [ 3310.545400][T16536] ? __virt_addr_valid+0x44e/0x520 [ 3310.550538][T16536] ? __phys_addr_symbol+0x2f/0x70 [ 3310.555578][T16536] ? __check_object_size+0x4bb/0xa00 [ 3310.560877][T16536] ? bpf_lsm_netlink_send+0x9/0x10 [ 3310.566017][T16536] netlink_sendmsg+0x8e0/0xcb0 [ 3310.570813][T16536] ? __pfx_netlink_sendmsg+0x10/0x10 [ 3310.576111][T16536] ? __import_iovec+0x552/0x890 [ 3310.580975][T16536] ? aa_sock_msg_perm+0x91/0x160 [ 3310.585925][T16536] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 3310.591238][T16536] ? security_socket_sendmsg+0x87/0xb0 [ 3310.596718][T16536] ? __pfx_netlink_sendmsg+0x10/0x10 [ 3310.602012][T16536] __sock_sendmsg+0x221/0x270 [ 3310.606714][T16536] ____sys_sendmsg+0x525/0x7d0 [ 3310.611500][T16536] ? __pfx_____sys_sendmsg+0x10/0x10 [ 3310.616813][T16536] __sys_sendmsg+0x2b0/0x3a0 [ 3310.621416][T16536] ? __pfx___sys_sendmsg+0x10/0x10 [ 3310.626562][T16536] ? restore_fpregs_from_fpstate+0x100/0x250 [ 3310.632565][T16536] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 3310.639004][T16536] ? do_syscall_64+0x108/0x240 [ 3310.643785][T16536] ? do_syscall_64+0xb4/0x240 [ 3310.648496][T16536] do_syscall_64+0xf9/0x240 [ 3310.653020][T16536] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3310.658939][T16536] RIP: 0033:0x7ff32d87dda9 [ 3310.663370][T16536] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 3310.683118][T16536] RSP: 002b:00007ff32e5ed0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3310.691556][T16536] RAX: ffffffffffffffda RBX: 00007ff32d9abf80 RCX: 00007ff32d87dda9 [ 3310.699544][T16536] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000005 [ 3310.707524][T16536] RBP: 00007ff32d8ca47a R08: 0000000000000000 R09: 0000000000000000 [ 3310.715510][T16536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3310.723494][T16536] R13: 000000000000000b R14: 00007ff32d9abf80 R15: 00007ffd9289bd18 [ 3310.731491][T16536] [ 3310.813286][T16536] memory: usage 307200kB, limit 307200kB, failcnt 2669 [ 3310.823684][T16536] memory+swap: usage 307428kB, limit 9007199254740988kB, failcnt 0 [ 3310.835430][T16536] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3310.845489][T16536] Memory cgroup stats for /syz0: [ 3310.845654][T16536] cache 4096 [ 3310.863549][T16536] rss 4096 [ 3310.866740][T16536] rss_huge 0 [ 3310.875724][T16536] shmem 0 [ 3310.881332][T16536] mapped_file 0 [ 3310.884973][T16536] dirty 4096 [ 3310.888388][T16536] writeback 0 [ 3310.895671][T16536] workingset_refault_anon 1315 [ 3310.903068][T16536] workingset_refault_file 1 [ 3310.907717][T16536] swap 233472 [ 3310.914869][T16536] swapcached 8192 [ 3310.921265][T16536] pgpgin 205891 [ 3310.924875][T16536] pgpgout 205888 [ 3310.932310][T16536] pgfault 541471 [ 3310.936035][T16536] pgmajfault 1187 [ 3310.942421][T16536] inactive_anon 0 [ 3310.946203][T16536] active_anon 8192 [ 3310.953765][T16536] inactive_file 0 [ 3310.957544][T16536] active_file 4096 [ 3310.964618][T16536] unevictable 0 [ 3310.968219][T16536] hierarchical_memory_limit 314572800 [ 3310.991462][T16536] hierarchical_memsw_limit 9223372036854771712 [ 3310.997794][T16536] total_cache 4096 [ 3311.007703][T16536] total_rss 4096 [ 3311.011490][T16536] total_rss_huge 0 [ 3311.015385][T16536] total_shmem 0 [ 3311.025193][T16536] total_mapped_file 0 [ 3311.029447][T16536] total_dirty 4096 [ 3311.033318][T16536] total_writeback 0 [ 3311.037263][T16536] total_workingset_refault_anon 1315 [ 3311.049018][T16536] total_workingset_refault_file 1 [ 3311.054202][T16536] total_swap 233472 [ 3311.058146][T16536] total_swapcached 8192 [ 3311.067354][T16536] total_pgpgin 205891 [ 3311.073160][T16536] total_pgpgout 205888 [ 3311.085986][T16536] total_pgfault 541471 [ 3311.091609][T16536] total_pgmajfault 1187 [ 3311.095921][T16536] total_inactive_anon 0 [ 3311.107987][T16536] total_active_anon 8192 [ 3311.113614][T16536] total_inactive_file 0 [ 3311.117908][T16536] total_active_file 4096 [ 3311.127627][T16536] total_unevictable 0 [ 3311.133085][T16536] anon_cost 0 [ 3311.136515][T16536] file_cost 0 [ 3311.144978][T16536] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16535,uid=0 01:27:49 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000000000014000600020000001b"], 0x54}}, 0x0) [ 3311.167097][T16536] Memory cgroup out of memory: Killed process 16535 (syz-executor.0) total-vm:54640kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:49 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000006000000000000114000600020000001b"], 0x54}}, 0x0) [ 3311.361926][T16541] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3311.372823][T16534] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3311.391749][T16534] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3311.403413][T16545] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3311.414087][T16545] CPU: 0 PID: 16545 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3311.424550][T16545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3311.434647][T16545] Call Trace: [ 3311.437967][T16545] [ 3311.440933][T16545] dump_stack_lvl+0x1e7/0x2e0 [ 3311.445831][T16545] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3311.451077][T16545] ? __pfx__printk+0x10/0x10 [ 3311.455715][T16545] ? ___ratelimit+0x4c4/0x670 [ 3311.460446][T16545] ? __pfx____ratelimit+0x10/0x10 [ 3311.465534][T16545] dump_header+0xda/0x6a0 [ 3311.469935][T16545] oom_kill_process+0x3a7/0x930 [ 3311.474832][T16545] out_of_memory+0xf67/0x1320 [ 3311.479554][T16545] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3311.485218][T16545] ? __pfx___mutex_lock+0x10/0x10 [ 3311.490274][T16545] ? __pfx_out_of_memory+0x10/0x10 [ 3311.495423][T16545] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3311.500994][T16545] ? __pfx_lock_release+0x10/0x10 [ 3311.506052][T16545] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3311.512150][T16545] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3311.517374][T16545] ? mem_cgroup_iter+0x3e9/0x560 [ 3311.522343][T16545] try_charge_memcg+0xda2/0x18a0 [ 3311.527323][T16545] ? __pfx_try_charge_memcg+0x10/0x10 [ 3311.532745][T16545] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3311.538545][T16545] ? __pfx_lock_release+0x10/0x10 [ 3311.543607][T16545] ? memcg_account_kmem+0x1e7/0x210 [ 3311.548845][T16545] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3311.554665][T16545] __memcg_kmem_charge_page+0xe1/0x250 [ 3311.560133][T16545] memcg_charge_kernel_stack+0x28a/0x550 [ 3311.565786][T16545] dup_task_struct+0x15d/0x7d0 [ 3311.570566][T16545] copy_process+0x5d5/0x3fc0 [ 3311.575177][T16545] ? __might_fault+0xa9/0x120 [ 3311.579869][T16545] ? __pfx_lock_release+0x10/0x10 [ 3311.584914][T16545] ? __pfx_copy_process+0x10/0x10 [ 3311.589955][T16545] ? __might_fault+0xc5/0x120 [ 3311.594652][T16545] ? __asan_memset+0x23/0x50 [ 3311.599289][T16545] kernel_clone+0x21d/0x8d0 [ 3311.603809][T16545] ? __pfx_kernel_clone+0x10/0x10 [ 3311.608868][T16545] __se_sys_clone3+0x2cb/0x350 [ 3311.613644][T16545] ? __might_fault+0xa9/0x120 [ 3311.618342][T16545] ? __pfx___se_sys_clone3+0x10/0x10 [ 3311.623671][T16545] ? do_syscall_64+0x108/0x240 [ 3311.628451][T16545] ? do_syscall_64+0xb4/0x240 [ 3311.633142][T16545] do_syscall_64+0xf9/0x240 [ 3311.637685][T16545] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3311.643593][T16545] RIP: 0033:0x7f02540a9b99 [ 3311.648028][T16545] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3311.667819][T16545] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3311.676256][T16545] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3311.684245][T16545] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3311.692241][T16545] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3311.700225][T16545] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 01:27:49 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000000c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0}) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000001340), 0x8) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=@ipv4_delrule={0x2c, 0x21, 0x405, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_TABLE={0x8}, @FRA_GENERIC_POLICY=@FRA_FWMASK={0x8}]}, 0x2c}}, 0x0) epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000001380)={0x20000001}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f0000000340)={{r0}, r1, 0x2, @inherit={0x78, &(0x7f00000002c0)={0x0, 0x6, 0x62, 0xfffffffffffffffc, {0x21, 0x9, 0x100, 0x9, 0x1}, [0x5, 0x8, 0x2, 0x8000000000000000, 0x8, 0x2]}}, @name="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"}) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) socket$kcm(0x10, 0x3, 0x10) (async) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000000c0)) (async) bpf$ITER_CREATE(0x21, &(0x7f0000001340), 0x8) (async) socket$nl_route(0x10, 0x3, 0x0) (async) sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=@ipv4_delrule={0x2c, 0x21, 0x405, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_TABLE={0x8}, @FRA_GENERIC_POLICY=@FRA_FWMASK={0x8}]}, 0x2c}}, 0x0) (async) epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000001380)={0x20000001}) (async) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f0000000340)={{r0}, r1, 0x2, @inherit={0x78, &(0x7f00000002c0)={0x0, 0x6, 0x62, 0xfffffffffffffffc, {0x21, 0x9, 0x100, 0x9, 0x1}, [0x5, 0x8, 0x2, 0x8000000000000000, 0x8, 0x2]}}, @name="eac30f1b9422153c9451d06d34bd14d9a0c5ddb008b5f7ee9cb4b3201e5a3b45e4d6cd46836e865dbe482ee0d54e7d5dd98c3bbfdaed178074c9633e2d1844efbceac5b87f937e4495ff98b9624afcfb920a9180fd4a18914bae5f949333a0f612ce403dfea465d573002c6074367ae1efcb257f932d427c0f418d390fb6b46aeb638cf032ec5f84e251cd60735041ff1dab017bfbab26e39532c7c2adea3870e704fc05f269889e2ef3e39e6501d0e9b3622a59ea6cde687b7a713a3fc24622540122ab06f990f8cfb4b3f4d62f4eb621e976150c9af3441ae687f6a93882b442b1dbf9ef211069384ff78df68b76395aa1501e76547132ce7e2ddbb9cba910c7876c848f1620806a464eeeebaa987fdbef71e3cfc803679fa6a24c7910a00c810623e9b8d815ef6509625206e27bfcb59b609a396a09dfdcadc131cfbc173c9e3fb6f5fcfc4b53378fa2b373a653632db653cbde6c8129817a252a8bf22695ca76f0abb36055415eb9c5238ccc89cd98105025add54d69350a74c87d48053e7a6e9cae40bf3dab516e5eb08ee4a64cfc056ba61546254a4520bd6f4fa5f06522d1bd2aa4de446c87da644970de9499d5e886cbce30874163597818d4ac3d6665e0666c99ef14b7094a17aa83cca24f1883c759cf9300916370dff9b4b558ef044b44c915a8bca0e775d6ea33dc876685083d1038a8ab53d10e025519c4779dacae003b42cad64f9a41afe584149c8160f3b0e4acbcae4ed6960be56645630a1fdad98f584e7f1870efc0f04a1adf752b8ee6c2f3eeb0f97b7f991b963b3bf761dbc865bcf1ed20c3ef1ccf1ef457018a01a5709422eb3d744dbac5214e263d273dd2e8edf3a9167a51e859e8a0cbc75ba727f860aa4ef1f611d9e37dc8126da36557d49333320bb163eb4a16fba5decab52d779c5740b174b5ac8cc8d3d46336c1beea3a938bbb49deda20b94ba18270b351bb75bc6f8f1ae66ef87d10d5a6671526846f3405fa4290b9ec4e4e8e2d318a60f99adc6c23f99784276038368db3a574f9452e18e3e331d15349f6b4769b06c73f753c8b51d2af3784d46b4c6f6b810d2f7ac146da46b4ac6756e9ae2b00d608eba7213352c90c7befa7cb36f083839eb6dd3db47e03898ae215b5fc84f396efe5294c939afef8e66928ccce22260688d6e30458e949720d90a60c759598b2fa3fba2e24bc9ef1cad59bc8041e89f6863486b5a25683c23ca66fb9cd022d9820a2b1f15b49bc1c9d626a89ac4ccd7e91dfd0769ab3fb5963dfc6f8c5c7090300913e9d130fb97395ba062e38431e80ab2a73e8ab784116691f321b3702198a8c9c57bcbd0c366f096513e0e16bf9605e051bcafecd49e009fbc406dd6db6b83bd359bc9d3b05b6583734548c099bce39a0b9d788be915747120c078432931e4b8a406b785d03a0a021f8395bd64759306b1dbaa9122b37f9a86268042157f14ddc600102a933becd8014934f140b6643a2dabbd93d9ce1b6febb4a1b4f744adc6e4adecf18eee3823f976da400d0375f048ee6ec7a0fd5e21946b032542a6417c07e8f5729f84bc726551daa214499ed3d0a917dbefd4dd64eea374a65113ada33f0350379ed8fa8a3ebd2c3eddc062879f03009cb397c0de87c49fed8dbb44084cd816f15339474fa1b02f026a3d269bc822cbdd7fed642b4ae5e30c245c3f03f4c5f261fc5fbdc8a6e58585e40ec727a8f01d2375d1ec8f105dea83c132059bfb06abcf4de22c486c3d67480d20e8ccf078cc84f9ff0006f33da3257bec845d6f7f989fc733ee310e5e06abaf45109851dcb27c23cddc15a6d9abccb8a9914a5288c4ac3f99a2f77b8380f6c377d75bc1065fc4439edaa1ccfa2c1819f6b60de7e47ded2d420081736f1d7cef4e944229c63c1b249c036cc354ce33f069777d4411937bf2a475ab785921f9ed637949181c5699edea5b21e0f0349aaf84c84945e3de447cb783d7e1a2028cde8b0f1b770a5b307027872bd58e757b783cbec52c584ca08c31fe635b44b6b25de638a2489266ab88840251a06909889d99d1124eaa7e85bc9c9acdd7cb37cbab9ccf877f5efb5aae202a24b443c5b86f7608e236bea4a8e53fb80337ab22b75bba40029354b1db74d42028b7f889e7d84d29fcb6c1b9b81c235ab079d6b1d51d76af2b8bfa371cb13dd5e162b1de2834481ed6141dbd85d314543d43b4e05b52ce89e3070265a93a40395f47e95a5c6257251cf79ada101fb9125df705bab5c4fd90c1ab50705702a1c33141ebb246bed4073858d15c0c453e9e12f0691232b983703948eea2c63f624efbd1f89b4778f2313f492836e9d5dab26c6b15f1754113cee5f50377a80288177f8c835709d18c51e3c953fbda2ea85b7092afce828efe3d07a38b2ffdadea6392ce6e79f9589f62309b4e14f62044f667a38b1b2dc22c6da1cb66865e5a9a0179615c7198df493ffe9acf968a33a8ba58d1e0829378c1fda7f5474b6840a60e3fc7c798a062afc29ceaba461504cc23c1d8d70af4150ee8f22f729f29a5704e95a65ce2e6315c8aa3f18e5c337c7ef68cc6f847b2270b7fb7d631412357bfa3648b3e38b18d685a84e9a2d1b38b5698a59cbf21678d4b242595b41fc41f2fb0058b9a3b26a2595b004143f0478ae0e2c19f4887518bdf7c69151b4d8fca214434ec9c25cadc4addc2b21d8ae26fd269ba8f52ef6ebf505df24598ec8a88a08c7f56973e0b6c0721a6da62e094fa13098aeeaa00464865de7bb9f57f106622151ec560e3ceec067b8119470712921385dbebf058575cd1d87a4ce1d7f2d07b66d767d815cab29a75a38599aaf305ee61e32b63d94023ee54b6f8e60006b1bac48fd7576c0ad0378729f031e7c7aa3f0969848e89e696ab421b3f4155de99172dc43ae25f988de611379c9e085bb6303e2660ee188e72f0d3f9f2fce8fa53a693bac08ca0a7283ffdb6668aea26631fc2db1fade5847bdd6afdd99b8e5697ab7f409e269709b4a747dae74f7c2be769e039ec4d7f48ad5174e6fa7850a17560c245736d70cba99aa59076c29120941e6e97e9dcf78899662dd4d527b6c5229931a193e9bf51b5e46d458d1fb90c33ab0e7375014cf308fcc8cd074ab9e336bd445b6690e0bf2a5f9e275d05f1c44f04350587d7939d525c3fc47fbc1d3684d11f67d47737d1498e1111a283cbbdcd92d7d1fd695d66de81806ab6fd41bd8b2d6dfe66727dbacc75d21e1ae4c02eaf1d2b673fa5d9eb090d3f3aa5203f95b20dc1d7c7fe77e285f8dbdd59443776139f8ec15f460021c4fb97dc9e22fc62e5b7b99f72d276f7c7b2ff6ec999771c931dff65ab5310197925e7e2fda1e32adc715f9aa2b85e58243e6a45a81fa09322bb7d5817a92aac089da9675d766921ac360f8686df23a09537f5766546abdd107bed893dbb1fa7c729428bc1c7e5f8d04782e9c6128e74f0e3eb1787a6db421bbb3ede50c5413c9cda09f3099ce3c82bf3b09a1db037ff4c63fd0a01079244d4197ee3a3fdf26c8e96b8b342aa85cbe5934911a1ada26fd8302ef1e20a9e7d18fe9b9ecac3e5f721a78056ba8f1e546e4a023e692b74c97df0285add97923bd084b85c9866b8c610aaf18c038a053650b43be0c82374c5e1748e5871ac42c1b937d9bdc82055d4b45e6328cf313717f18a66f6a97500c2bc3aaf1d764916025157aad5034c229ae61c69e854c99038c7679dd6cd075df041004fd824e5799d59d5dad4192c9ee4f376499986fdfe49aa408fa83a7731b89229c5360555d22f51da5c6064af5da6a17931f8634e410f83b436ae15ee6247e7b4dfb916abee49189322a297bba70a425be1b4a305fd62fd9afbdd04f7def5e3e4b4f13285c8db221c2d9cd78d08e540c14af78261b907a5966ef24114b9ac0734373f75e3cb29ea542b32fe99263bd60614f41998cfc1065aa02f787a159beb8eed0d76739b41ff6ccd873fb62e7db646bd3fa5878ac8e924e02eed7925d315bec25e92054e543a85c9b3c85bb0c72221490e048ee2d7a2c8afae24fff1af52d57015bc8aef04aad96c645ff6dbef443ca5561ab806912fbf4601477106ff10b83a84dd24f83f55e2cedd7ca6e256fd803af508548b3b9b2bbda2d2911f24dddf53a2edce7401d93901deee4a98f6a42a066368f1b8c7e70b79df42eba7155990e7fb81ea5ae41d7329d1f135f7db6dcfa7dd6b09d6baba682dc55af603db38bca189d45399101e6af313762f93e7938d5c1277aba765112192b47c0b3dae2d3637a03e3e4ec983832f9cbd60cc80c559c008f75bdcab717d4df1457d1e172fb11d9caae4eaeb8c4538f0f4c9a6b275e581f6aa6a3bc745aff6db3777b56ad1b340ce3737dc5ee26808841cefe5a479ce6214f917d133e773a77b517acb990741132b08a30c0bc63e676a621ae71346e33c3aa4cadf4d5ead07c59fd4b049df7c9772edbce3d725d80bde780037179a02344e1ed25b48f381d39700e16cc3db8bd8bc914b26346374d975d33865c383410812d414d6759c402fbb43ef1d453143377cac8ef40a1f81e07d1b75768d31c3794cc51213124bbb59e6d95f2648dbbda7dcc2e4973090954c46f1f9db075182563887d29d43609e033d8ab7e8260168b3516849daf94f6d920763c9a1df175f3e9afe8f4dc28dca31457b1fa8b445a502d6b4d5a4e54e941fd5acfc7750730175c0a2a857d87688223df8c3cf8a973ae6c47c73456dd3734cde58306cf63c2cbad32fe04f81f5415a49a8c68bfce8b0fdd7f8c441bb8812a6960487a6919f1c453cc3c8740256666ddfd487b6d2a233e0b2ae301cceba1c34478bbe5276809cbc3cfa7885dcfc15f6f9579dd34cd66c50c6435d2695debd45abe2c1b88ee51489ed4b8412d90d13230e65c4d7c8a8f356b4adc329815ef8a48fa22fde6181d6995224a32023c9658337fe126487457c485661bd5179051a98c68dcbb623c916a2a0314e10225c4e482ed8012ea8e6a52534070be4667c727ce18823be8c5017cc2c532101b204b94ce4e30aeefb6fff5ab07549636b35a7ac327b72eb1673ed827dd08b906f5d6c697acbb0d7b01d248b5a143bc86633799ba86d8cab5307e34d5e7013d8569f6627b8d985de8a3c63dcf9016eb9d31524ee07aa75575146b8b9e533d56fb328c603fc1312aed652bca8e021aea400578f6752a98b3a3cc8342a9b1ce9f7527eb0f76bcf31293439d16ae374d6d76834f49a13e94d425d1b487159ee14911e198628a716be5abfd0083f8290478fe907647d95195ce81eabd53e0b8f7d00782e56ce44545279adde1949870f187a460bc543fb38253a0e8979ba6728bcf644fad8a199b7fa8f91afa1c333fb5782839735b41b573dd4a1f9eeb80958ed7170a69c2dc0d09578efdf978478ab573b2143e536585a599820cee93c1fd2986bbf269f8e7591a1cbc6c41bca555267bc20f4a9a35b74a6b82932636d132cb17f290446a7265045b2bcbbcb44b5984b0d27c4317d9b727b64f5d96b0ecb785f31379d466a692753299d06598f6ecae8cabe4748aba0f89a7321d7d87d4b8879872a8889cd50166905c167aef8970e5247cac5bb8f5fac2c376550e4b48ad3c458ccb99f3e32ea753a2b0e09207a2e3fd02920b02c3d2ecd5ff9cc1535035b0459e64f6544521cd02f9a528c87dc3b9c4bca9462ae49f2a6d90a4a8a5643ff94e5766"}) (async) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) (async) [ 3311.708211][T16545] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3311.716213][T16545] [ 3311.758793][T16545] memory: usage 307200kB, limit 307200kB, failcnt 345084 [ 3311.777118][T16545] memory+swap: usage 307432kB, limit 9007199254740988kB, failcnt 0 [ 3311.786979][T16545] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3311.808944][T16545] Memory cgroup stats for /syz1: [ 3311.809105][T16545] cache 4096 [ 3311.817540][T16545] rss 12288 [ 3311.822258][T16545] rss_huge 0 [ 3311.830264][T16545] shmem 0 [ 3311.836883][T16545] mapped_file 0 [ 3311.847135][T16545] dirty 4096 [ 3311.864620][T16545] writeback 0 [ 3311.872662][T16545] workingset_refault_anon 117384 [ 3311.884675][T16545] workingset_refault_file 3 [ 3311.896442][T16545] swap 237568 [ 3311.904184][T16545] swapcached 8192 [ 3311.913876][T16545] pgpgin 287274 [ 3311.919902][T16545] pgpgout 287270 [ 3311.923698][T16545] pgfault 612364 [ 3311.927481][T16545] pgmajfault 110411 [ 3311.937507][T16545] inactive_anon 0 [ 3311.945953][T16545] active_anon 12288 [ 3311.957229][T16545] inactive_file 4096 01:27:50 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000150000000000000114000600020000001b"], 0x54}}, 0x0) [ 3311.978173][T16545] active_file 0 [ 3311.984027][T16545] unevictable 0 [ 3311.987704][T16545] hierarchical_memory_limit 314572800 [ 3312.004893][T16545] hierarchical_memsw_limit 9223372036854771712 [ 3312.030637][T16545] total_cache 4096 [ 3312.037922][T16545] total_rss 12288 [ 3312.045354][T16545] total_rss_huge 0 [ 3312.055546][T16545] total_shmem 0 [ 3312.119326][T16545] total_mapped_file 0 [ 3312.131586][T16545] total_dirty 4096 [ 3312.143875][T16545] total_writeback 0 [ 3312.156946][T16545] total_workingset_refault_anon 117384 [ 3312.169179][T16545] total_workingset_refault_file 3 [ 3312.181074][T16545] total_swap 237568 [ 3312.191640][T16545] total_swapcached 8192 [ 3312.203830][T16545] total_pgpgin 287274 [ 3312.214544][T16545] total_pgpgout 287270 [ 3312.224515][T16545] total_pgfault 612364 [ 3312.235768][T16545] total_pgmajfault 110411 [ 3312.245674][T16545] total_inactive_anon 0 [ 3312.255731][T16545] total_active_anon 12288 [ 3312.267038][T16545] total_inactive_file 4096 [ 3312.276775][T16545] total_active_file 0 [ 3312.286660][T16545] total_unevictable 0 [ 3312.296998][T16545] anon_cost 0 [ 3312.308295][T16545] file_cost 0 [ 3312.317416][T16545] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16545,uid=0 01:27:50 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000200000000000114000600020000001b"], 0x54}}, 0x0) [ 3312.376807][T16545] Memory cgroup out of memory: Killed process 16545 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3312.722583][T16560] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3312.793004][T16560] CPU: 0 PID: 16560 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3312.803503][T16560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3312.813603][T16560] Call Trace: [ 3312.816915][T16560] [ 3312.819878][T16560] dump_stack_lvl+0x1e7/0x2e0 [ 3312.823063][T16557] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3312.824585][T16560] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3312.824620][T16560] ? __pfx__printk+0x10/0x10 [ 3312.824642][T16560] ? ___ratelimit+0x4c4/0x670 [ 3312.848368][T16560] ? __pfx____ratelimit+0x10/0x10 [ 3312.853467][T16560] dump_header+0xda/0x6a0 [ 3312.857844][T16560] oom_kill_process+0x3a7/0x930 [ 3312.862750][T16560] out_of_memory+0xf67/0x1320 [ 3312.867476][T16560] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3312.873146][T16560] ? __pfx___mutex_lock+0x10/0x10 [ 3312.878216][T16560] ? __pfx_out_of_memory+0x10/0x10 [ 3312.883373][T16560] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3312.888957][T16560] ? __pfx_lock_release+0x10/0x10 [ 3312.894022][T16560] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3312.900142][T16560] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3312.905391][T16560] ? mem_cgroup_iter+0x3e9/0x560 [ 3312.910386][T16560] try_charge_memcg+0xda2/0x18a0 [ 3312.915407][T16560] ? __pfx_try_charge_memcg+0x10/0x10 [ 3312.920822][T16560] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3312.926564][T16560] ? __pfx_lock_release+0x10/0x10 [ 3312.931609][T16560] ? memcg_account_kmem+0x1e7/0x210 [ 3312.936833][T16560] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3312.942653][T16560] __memcg_kmem_charge_page+0xe1/0x250 [ 3312.948130][T16560] memcg_charge_kernel_stack+0x28a/0x550 [ 3312.953784][T16560] dup_task_struct+0x15d/0x7d0 [ 3312.958567][T16560] copy_process+0x5d5/0x3fc0 [ 3312.963185][T16560] ? __might_fault+0xa9/0x120 [ 3312.967881][T16560] ? __pfx_lock_release+0x10/0x10 [ 3312.972929][T16560] ? __pfx_copy_process+0x10/0x10 [ 3312.977961][T16560] ? __might_fault+0xc5/0x120 [ 3312.982659][T16560] ? __asan_memset+0x23/0x50 [ 3312.987274][T16560] kernel_clone+0x21d/0x8d0 [ 3312.991797][T16560] ? __pfx_kernel_clone+0x10/0x10 [ 3312.996855][T16560] __se_sys_clone3+0x2cb/0x350 [ 3313.001646][T16560] ? __pfx___se_sys_clone3+0x10/0x10 [ 3313.006986][T16560] ? do_syscall_64+0x108/0x240 [ 3313.011768][T16560] ? do_syscall_64+0xb4/0x240 [ 3313.016462][T16560] do_syscall_64+0xf9/0x240 [ 3313.020991][T16560] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3313.026901][T16560] RIP: 0033:0x7f02540a9b99 [ 3313.031328][T16560] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3313.051037][T16560] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3313.059465][T16560] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3313.067448][T16560] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3313.075439][T16560] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3313.083591][T16560] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3313.091657][T16560] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3313.099660][T16560] [ 3313.157711][T16560] memory: usage 307200kB, limit 307200kB, failcnt 345218 [ 3313.165168][T16560] memory+swap: usage 307468kB, limit 9007199254740988kB, failcnt 0 [ 3313.175816][T16560] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3313.196624][T16560] Memory cgroup stats for /syz1: [ 3313.196788][T16560] cache 4096 [ 3313.206857][T16560] rss 12288 [ 3313.210865][T16560] rss_huge 0 [ 3313.214303][T16560] shmem 0 [ 3313.217416][T16560] mapped_file 0 [ 3313.234649][T16560] dirty 4096 [ 3313.238033][T16560] writeback 0 [ 3313.245572][T16560] workingset_refault_anon 117421 [ 3313.253458][T16560] workingset_refault_file 3 01:27:51 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000001b0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3313.258213][T16560] swap 274432 [ 3313.265944][T16560] swapcached 8192 [ 3313.272330][T16560] pgpgin 287329 [ 3313.275985][T16560] pgpgout 287325 [ 3313.290053][T16560] pgfault 612460 [ 3313.303797][T16560] pgmajfault 110453 [ 3313.315772][T16560] inactive_anon 0 [ 3313.333196][T16560] active_anon 12288 [ 3313.349654][T16560] inactive_file 0 [ 3313.361375][T16560] active_file 4096 [ 3313.374962][T16560] unevictable 0 [ 3313.391488][T16550] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3313.408468][T16550] netlink: 199764 bytes leftover after parsing attributes in process `syz-executor.2'. 01:27:51 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0xbc33030000000000) [ 3313.437868][T16560] hierarchical_memory_limit 314572800 [ 3313.463023][T16560] hierarchical_memsw_limit 9223372036854771712 [ 3313.477758][T16562] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3313.501679][T16560] total_cache 4096 [ 3313.520717][T16560] total_rss 12288 [ 3313.542629][T16560] total_rss_huge 0 [ 3313.546584][T16560] total_shmem 0 [ 3313.553002][T16560] total_mapped_file 0 [ 3313.557192][T16560] total_dirty 4096 [ 3313.564590][T16560] total_writeback 0 [ 3313.570249][T16560] total_workingset_refault_anon 117421 [ 3313.577876][T16560] total_workingset_refault_file 3 [ 3313.588062][T16560] total_swap 274432 [ 3313.594443][T16560] total_swapcached 8192 [ 3313.602551][T16560] total_pgpgin 287329 [ 3313.606730][T16560] total_pgpgout 287325 [ 3313.614240][T16560] total_pgfault 612460 [ 3313.622527][T16560] total_pgmajfault 110453 [ 3313.627051][T16560] total_inactive_anon 0 [ 3313.637711][T16560] total_active_anon 12288 [ 3313.645032][T16560] total_inactive_file 0 [ 3313.655760][T16560] total_active_file 4096 [ 3313.664910][T16560] total_unevictable 0 01:27:51 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000200000000000000114000600020000001b"], 0x54}}, 0x0) [ 3313.690016][T16560] anon_cost 0 [ 3313.693532][T16560] file_cost 0 [ 3313.697650][T16560] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16560,uid=0 [ 3313.720931][T16560] Memory cgroup out of memory: Killed process 16560 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:52 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000300000000000114000600020000001b"], 0x54}}, 0x0) [ 3314.542036][T16568] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3314.553503][T16567] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3314.565432][T16568] CPU: 0 PID: 16568 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3314.575894][T16568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3314.586081][T16568] Call Trace: [ 3314.589393][T16568] [ 3314.592353][T16568] dump_stack_lvl+0x1e7/0x2e0 [ 3314.597086][T16568] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3314.602336][T16568] ? __pfx__printk+0x10/0x10 [ 3314.606989][T16568] dump_header+0xda/0x6a0 [ 3314.611372][T16568] oom_kill_process+0x3a7/0x930 [ 3314.616280][T16568] out_of_memory+0xf67/0x1320 [ 3314.621014][T16568] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3314.626717][T16568] ? __pfx___mutex_lock+0x10/0x10 [ 3314.631786][T16568] ? __pfx_out_of_memory+0x10/0x10 [ 3314.636954][T16568] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3314.642551][T16568] ? __pfx_lock_release+0x10/0x10 [ 3314.647630][T16568] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3314.653757][T16568] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3314.659014][T16568] ? mem_cgroup_iter+0x3e9/0x560 [ 3314.664008][T16568] try_charge_memcg+0xda2/0x18a0 [ 3314.669023][T16568] ? __pfx_try_charge_memcg+0x10/0x10 [ 3314.674452][T16568] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3314.680218][T16568] ? __pfx_lock_release+0x10/0x10 [ 3314.685300][T16568] ? memcg_account_kmem+0x1e7/0x210 [ 3314.690568][T16568] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3314.696429][T16568] __memcg_kmem_charge_page+0xe1/0x250 [ 3314.701973][T16568] memcg_charge_kernel_stack+0x28a/0x550 [ 3314.707668][T16568] dup_task_struct+0x40d/0x7d0 [ 3314.712480][T16568] copy_process+0x5d5/0x3fc0 [ 3314.717150][T16568] ? __might_fault+0xa9/0x120 [ 3314.721879][T16568] ? __pfx_lock_release+0x10/0x10 [ 3314.726959][T16568] ? __pfx_copy_process+0x10/0x10 [ 3314.732002][T16568] ? __might_fault+0xc5/0x120 [ 3314.736716][T16568] ? __asan_memset+0x23/0x50 [ 3314.741330][T16568] kernel_clone+0x21d/0x8d0 [ 3314.745946][T16568] ? __pfx_kernel_clone+0x10/0x10 [ 3314.750997][T16568] __se_sys_clone3+0x2cb/0x350 [ 3314.755777][T16568] ? __pfx___se_sys_clone3+0x10/0x10 [ 3314.761101][T16568] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3314.767118][T16568] ? exc_page_fault+0x587/0x870 [ 3314.771989][T16568] ? do_syscall_64+0xb4/0x240 [ 3314.776686][T16568] do_syscall_64+0xf9/0x240 [ 3314.781210][T16568] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3314.787186][T16568] RIP: 0033:0x7f02540a9b99 [ 3314.791609][T16568] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3314.811397][T16568] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3314.819826][T16568] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3314.827807][T16568] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 01:27:53 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000000000003f0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3314.835793][T16568] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3314.843774][T16568] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3314.851754][T16568] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3314.859749][T16568] [ 3314.875923][T16568] memory: usage 307200kB, limit 307200kB, failcnt 345673 01:27:53 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000586500000000000114000600020000001b"], 0x54}}, 0x0) [ 3314.922067][T16568] memory+swap: usage 307432kB, limit 9007199254740988kB, failcnt 0 [ 3314.954037][T16568] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3314.962467][T16565] netlink: 'syz-executor.4': attribute type 12 has an invalid length. 01:27:53 executing program 2: r0 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x88) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3314.978865][T16565] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3315.028680][T16568] Memory cgroup stats for /syz1: [ 3315.028845][T16568] cache 4096 [ 3315.037049][T16568] rss 12288 [ 3315.086206][T16573] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3315.087856][T16568] rss_huge 0 [ 3315.119666][T16568] shmem 0 [ 3315.122806][T16568] mapped_file 0 [ 3315.126612][T16568] dirty 4096 [ 3315.130271][T16568] writeback 0 01:27:53 executing program 2: r0 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x88) (async) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3315.133903][T16568] workingset_refault_anon 117601 [ 3315.162422][T16568] workingset_refault_file 3 [ 3315.176556][T16568] swap 237568 [ 3315.185983][T16568] swapcached 12288 [ 3315.195423][T16568] pgpgin 287519 [ 3315.203978][T16568] pgpgout 287515 [ 3315.216762][T16568] pgfault 612733 [ 3315.228503][T16568] pgmajfault 110612 [ 3315.240610][T16568] inactive_anon 0 [ 3315.255679][T16568] active_anon 12288 [ 3315.270701][T16568] inactive_file 0 [ 3315.285903][T16568] active_file 4096 [ 3315.293826][T16568] unevictable 0 [ 3315.297645][T16568] hierarchical_memory_limit 314572800 [ 3315.303957][T16568] hierarchical_memsw_limit 9223372036854771712 [ 3315.311247][T16568] total_cache 4096 [ 3315.315249][T16568] total_rss 12288 01:27:53 executing program 2: r0 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x88) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3315.319795][T16568] total_rss_huge 0 [ 3315.323801][T16568] total_shmem 0 [ 3315.327547][T16568] total_mapped_file 0 [ 3315.333677][T16568] total_dirty 4096 [ 3315.350415][T16568] total_writeback 0 [ 3315.354489][T16568] total_workingset_refault_anon 117601 [ 3315.361264][T16568] total_workingset_refault_file 3 [ 3315.366540][T16568] total_swap 237568 [ 3315.377872][T16568] total_swapcached 12288 [ 3315.388237][T16568] total_pgpgin 287519 [ 3315.407678][T16568] total_pgpgout 287515 01:27:53 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000400000000000000114000600020000001b"], 0x54}}, 0x0) [ 3315.425384][T16568] total_pgfault 612733 [ 3315.449054][T16568] total_pgmajfault 110612 [ 3315.462421][T16568] total_inactive_anon 0 [ 3315.488997][T16568] total_active_anon 12288 01:27:53 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="e03f03002a90b61d000b05d25a806c8c6f94f90424176111000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x2e}], 0x1, 0x0, 0xfe26}, 0x0) recvmmsg(r0, &(0x7f0000002ac0)=[{{&(0x7f0000000100)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000180)=""/218, 0xda}, {&(0x7f0000000040)=""/15, 0xf}], 0x2, &(0x7f00000002c0)=""/209, 0xd1}, 0x3}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f00000003c0)}, {&(0x7f0000000400)=""/147, 0x93}, {&(0x7f00000004c0)=""/215, 0xd7}, {&(0x7f00000005c0)=""/45, 0x2d}, {&(0x7f0000000600)=""/221, 0xdd}, {&(0x7f0000000700)=""/53, 0x35}, {&(0x7f0000000740)=""/198, 0xc6}, {&(0x7f0000000840)=""/152, 0x98}, {&(0x7f0000000900)=""/31, 0x1f}, {&(0x7f0000000940)=""/247, 0xf7}], 0xa}, 0x2}, {{&(0x7f0000000b00)=@in6={0xa, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000b80)=""/182, 0xb6}, {&(0x7f0000000c40)=""/87, 0x57}], 0x2, &(0x7f0000000d00)=""/161, 0xa1}, 0xfffffffb}, {{&(0x7f0000000dc0)=@phonet, 0x80, &(0x7f0000001240)=[{&(0x7f0000000e40)=""/90, 0x5a}, {&(0x7f0000000ec0)=""/247, 0xf7}, {&(0x7f0000000fc0)=""/132, 0x84}, {&(0x7f0000001080)=""/219, 0xdb}, {&(0x7f0000001180)=""/106, 0x6a}, {&(0x7f0000001200)=""/4, 0x4}], 0x6, &(0x7f00000012c0)=""/202, 0xca}, 0x9}, {{&(0x7f00000013c0)=@nfc_llcp, 0x80, &(0x7f0000001a00)=[{&(0x7f0000001440)=""/237, 0xed}, {&(0x7f0000001540)=""/206, 0xce}, {&(0x7f0000001640)=""/29, 0x1d}, {&(0x7f0000001680)=""/181, 0xb5}, {&(0x7f0000001740)=""/99, 0x63}, {&(0x7f00000017c0)=""/57, 0x39}, {&(0x7f0000001800)=""/45, 0x2d}, {&(0x7f0000001840)=""/236, 0xec}, {&(0x7f0000001940)=""/152, 0x98}], 0x9, &(0x7f0000001ac0)=""/4096, 0x1000}, 0x10001}], 0x5, 0x40000121, 0x0) [ 3315.498739][T16568] total_inactive_file 0 [ 3315.508700][T16568] total_active_file 4096 [ 3315.513327][T16568] total_unevictable 0 [ 3315.528665][T16568] anon_cost 0 [ 3315.532074][T16568] file_cost 0 [ 3315.535470][T16568] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16568,uid=0 [ 3315.572171][T16568] Memory cgroup out of memory: Killed process 16568 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:53 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="e03f03002a90b61d000b05d25a806c8c6f94f90424176111000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x2e}], 0x1, 0x0, 0xfe26}, 0x0) recvmmsg(r0, &(0x7f0000002ac0)=[{{&(0x7f0000000100)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000180)=""/218, 0xda}, {&(0x7f0000000040)=""/15, 0xf}], 0x2, &(0x7f00000002c0)=""/209, 0xd1}, 0x3}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f00000003c0)}, {&(0x7f0000000400)=""/147, 0x93}, {&(0x7f00000004c0)=""/215, 0xd7}, {&(0x7f00000005c0)=""/45, 0x2d}, {&(0x7f0000000600)=""/221, 0xdd}, {&(0x7f0000000700)=""/53, 0x35}, {&(0x7f0000000740)=""/198, 0xc6}, {&(0x7f0000000840)=""/152, 0x98}, {&(0x7f0000000900)=""/31, 0x1f}, {&(0x7f0000000940)=""/247, 0xf7}], 0xa}, 0x2}, {{&(0x7f0000000b00)=@in6={0xa, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000b80)=""/182, 0xb6}, {&(0x7f0000000c40)=""/87, 0x57}], 0x2, &(0x7f0000000d00)=""/161, 0xa1}, 0xfffffffb}, {{&(0x7f0000000dc0)=@phonet, 0x80, &(0x7f0000001240)=[{&(0x7f0000000e40)=""/90, 0x5a}, {&(0x7f0000000ec0)=""/247, 0xf7}, {&(0x7f0000000fc0)=""/132, 0x84}, {&(0x7f0000001080)=""/219, 0xdb}, {&(0x7f0000001180)=""/106, 0x6a}, {&(0x7f0000001200)=""/4, 0x4}], 0x6, &(0x7f00000012c0)=""/202, 0xca}, 0x9}, {{&(0x7f00000013c0)=@nfc_llcp, 0x80, &(0x7f0000001a00)=[{&(0x7f0000001440)=""/237, 0xed}, {&(0x7f0000001540)=""/206, 0xce}, {&(0x7f0000001640)=""/29, 0x1d}, {&(0x7f0000001680)=""/181, 0xb5}, {&(0x7f0000001740)=""/99, 0x63}, {&(0x7f00000017c0)=""/57, 0x39}, {&(0x7f0000001800)=""/45, 0x2d}, {&(0x7f0000001840)=""/236, 0xec}, {&(0x7f0000001940)=""/152, 0x98}], 0x9, &(0x7f0000001ac0)=""/4096, 0x1000}, 0x10001}], 0x5, 0x40000121, 0x0) 01:27:54 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="e03f03002a90b61d000b05d25a806c8c6f94f90424176111000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x2e}], 0x1, 0x0, 0xfe26}, 0x0) (async) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="e03f03002a90b61d000b05d25a806c8c6f94f90424176111000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x2e}], 0x1, 0x0, 0xfe26}, 0x0) recvmmsg(r0, &(0x7f0000002ac0)=[{{&(0x7f0000000100)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000180)=""/218, 0xda}, {&(0x7f0000000040)=""/15, 0xf}], 0x2, &(0x7f00000002c0)=""/209, 0xd1}, 0x3}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f00000003c0)}, {&(0x7f0000000400)=""/147, 0x93}, {&(0x7f00000004c0)=""/215, 0xd7}, {&(0x7f00000005c0)=""/45, 0x2d}, {&(0x7f0000000600)=""/221, 0xdd}, {&(0x7f0000000700)=""/53, 0x35}, {&(0x7f0000000740)=""/198, 0xc6}, {&(0x7f0000000840)=""/152, 0x98}, {&(0x7f0000000900)=""/31, 0x1f}, {&(0x7f0000000940)=""/247, 0xf7}], 0xa}, 0x2}, {{&(0x7f0000000b00)=@in6={0xa, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000b80)=""/182, 0xb6}, {&(0x7f0000000c40)=""/87, 0x57}], 0x2, &(0x7f0000000d00)=""/161, 0xa1}, 0xfffffffb}, {{&(0x7f0000000dc0)=@phonet, 0x80, &(0x7f0000001240)=[{&(0x7f0000000e40)=""/90, 0x5a}, {&(0x7f0000000ec0)=""/247, 0xf7}, {&(0x7f0000000fc0)=""/132, 0x84}, {&(0x7f0000001080)=""/219, 0xdb}, {&(0x7f0000001180)=""/106, 0x6a}, {&(0x7f0000001200)=""/4, 0x4}], 0x6, &(0x7f00000012c0)=""/202, 0xca}, 0x9}, {{&(0x7f00000013c0)=@nfc_llcp, 0x80, &(0x7f0000001a00)=[{&(0x7f0000001440)=""/237, 0xed}, {&(0x7f0000001540)=""/206, 0xce}, {&(0x7f0000001640)=""/29, 0x1d}, {&(0x7f0000001680)=""/181, 0xb5}, {&(0x7f0000001740)=""/99, 0x63}, {&(0x7f00000017c0)=""/57, 0x39}, {&(0x7f0000001800)=""/45, 0x2d}, {&(0x7f0000001840)=""/236, 0xec}, {&(0x7f0000001940)=""/152, 0x98}], 0x9, &(0x7f0000001ac0)=""/4096, 0x1000}, 0x10001}], 0x5, 0x40000121, 0x0) 01:27:54 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000400000000000114000600020000001b"], 0x54}}, 0x0) 01:27:54 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000001580)={&(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80, &(0x7f0000001380)=[{&(0x7f0000000140)="50adc3031fcc69eb768cb5483c7b781f082321dc1fc94403e8549633e9a80a1fc9b70a6cd5dd5f3c98a4dd88de87bc8ef9d7ce3e29d81665e1573f251ef52a238eb53e0e847ca1e66ded1eae53854a30fdadd8c94b48dda2892aeac92881307484fe548b4bbb6b8c163cfa04f7ae8c93130d4e63c32392e716e7a9dd26716becb812f8f120970f", 0x87}, {&(0x7f0000000200)="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", 0x1000}, {&(0x7f0000001200)="aeae4390ccd792618698d77170a1a911328e59b439587bcbb770a939606b039cb47e6ee2ffbb8178b9334d819185b1d6f3ba3d02a1eff1e5e40c8387415dfdd09c3d71a8641e253e8f0b336dc1c4edb6212e8824a2d7a50b65745f311e888cd153bec05260dc52694f48e0aef992a637c3bcd732590c1ec470c04e75f438a6ac6f3a22a4031bc67cce0a3ff6929f2644ee63e410fbb9f3a7bfc09fcacf423a128ac5fabae8f3fb9bf532dfa693c32afb8e8b5574dd74303e2e", 0xb9}, {&(0x7f00000012c0)="90e86abb78f1dbb9cd23639dd349614de0ad15a38906b32e45a05b71bfc9bf6841981b3f68fcad6379291d12eb1bde2a8615acc94b5e5ca09a7936176810d87197a6ff984a21757d22950c80cbcb4cad2dd0001590eeaf8030a1a5adc5cd29259f5c58808adf498229b732e825299c3de81ac19799642dd2afe5", 0x7a}, {&(0x7f0000001340)="1b8e7ea4a9f36eed46b507f0f5e464c4c822e1151c02929a95a4e4faf2827f883428e8509357f8", 0x27}], 0x5, &(0x7f0000001400)=[{0xf8, 0x6, 0x9, "113c0460d2e650be5636a33426bd1978b5ffff51687c35e107eb79bd2c9f30784bc3ac535b722c291abfa6227b9bc6f0010a0a766e76cf231690278dd14a6b52c278ef516528b6a944995066747c98b9b32a84713eb9ce86b2cbd1884837c99247bed283769ad4ccc04a2dfc7aef7c9e3c43c5254e9ecc993818ef019716bec7d6ccc510539fcfa235aeea8bfa16fa64463811dd6b9f4e3421056fb1b530db66b63cc01f91f5990647757e580a5cfc387c2019f98eb2758cba3310f5b544a9ec8f30a6f8fcc246101588026be944add1087777c52bbba613535fdc185aa74ad77a54"}, {0x70, 0x108, 0x65b6eb62, "efd6b041dd2571bb8c5309175fa6998af9a48a86c834145ebca7963c4741725ee6aef083cfb5e60c40cfefd682a84e9f298bf3ba8e6a1e24d3edd08640b3e18e761c60eac404d64a4e584fb156e85d8bddb82b39ff9318a6c822f59bec03"}], 0x168}, 0x8000824) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3316.104725][T16589] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3316.128049][T16589] CPU: 1 PID: 16589 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3316.138567][T16589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3316.148667][T16589] Call Trace: [ 3316.151993][T16589] [ 3316.154962][T16589] dump_stack_lvl+0x1e7/0x2e0 [ 3316.159691][T16589] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3316.164940][T16589] ? __pfx__printk+0x10/0x10 [ 3316.169577][T16589] ? ___ratelimit+0x4c4/0x670 [ 3316.174336][T16589] ? __pfx____ratelimit+0x10/0x10 [ 3316.179418][T16589] dump_header+0xda/0x6a0 [ 3316.183801][T16589] oom_kill_process+0x3a7/0x930 [ 3316.188708][T16589] out_of_memory+0xf67/0x1320 [ 3316.193439][T16589] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3316.199114][T16589] ? __pfx___mutex_lock+0x10/0x10 [ 3316.204186][T16589] ? __pfx_out_of_memory+0x10/0x10 [ 3316.209355][T16589] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3316.214944][T16589] ? __pfx_lock_release+0x10/0x10 [ 3316.220023][T16589] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3316.226139][T16589] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3316.231386][T16589] ? mem_cgroup_iter+0x3e9/0x560 [ 3316.236374][T16589] try_charge_memcg+0xda2/0x18a0 [ 3316.241468][T16589] ? __pfx_try_charge_memcg+0x10/0x10 [ 3316.246881][T16589] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3316.252641][T16589] ? __pfx_lock_release+0x10/0x10 [ 3316.257717][T16589] ? memcg_account_kmem+0x1e7/0x210 [ 3316.262981][T16589] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3316.268832][T16589] __memcg_kmem_charge_page+0xe1/0x250 [ 3316.274330][T16589] memcg_charge_kernel_stack+0x3f8/0x550 [ 3316.280003][T16589] dup_task_struct+0x15d/0x7d0 [ 3316.284790][T16589] copy_process+0x5d5/0x3fc0 [ 3316.289407][T16589] ? __might_fault+0xa9/0x120 [ 3316.294127][T16589] ? __pfx_lock_release+0x10/0x10 [ 3316.299282][T16589] ? __pfx_copy_process+0x10/0x10 [ 3316.304330][T16589] ? __might_fault+0xc5/0x120 [ 3316.309032][T16589] ? __asan_memset+0x23/0x50 [ 3316.313645][T16589] kernel_clone+0x21d/0x8d0 [ 3316.318166][T16589] ? __pfx_kernel_clone+0x10/0x10 [ 3316.323219][T16589] __se_sys_clone3+0x2cb/0x350 [ 3316.328002][T16589] ? __pfx___se_sys_clone3+0x10/0x10 [ 3316.333316][T16589] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3316.339335][T16589] ? exc_page_fault+0x587/0x870 [ 3316.344227][T16589] ? do_syscall_64+0xb4/0x240 [ 3316.348947][T16589] do_syscall_64+0xf9/0x240 [ 3316.353490][T16589] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3316.359403][T16589] RIP: 0033:0x7f02540a9b99 [ 3316.363829][T16589] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3316.383464][T16589] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3316.391897][T16589] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3316.399888][T16589] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3316.407964][T16589] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3316.415963][T16589] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3316.423953][T16589] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3316.431960][T16589] [ 3316.439518][T16589] memory: usage 307200kB, limit 307200kB, failcnt 345952 [ 3316.446808][T16589] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0 [ 3316.455043][T16589] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3316.462846][T16589] Memory cgroup stats for /syz1: [ 3316.463011][T16589] cache 4096 [ 3316.472008][T16589] rss 0 [ 3316.475125][T16589] rss_huge 0 [ 3316.478859][T16589] shmem 0 [ 3316.482092][T16589] mapped_file 0 [ 3316.485794][T16589] dirty 4096 [ 3316.489493][T16589] writeback 0 [ 3316.493124][T16589] workingset_refault_anon 117660 [ 3316.498404][T16589] workingset_refault_file 3 [ 3316.505749][T16589] swap 286720 [ 3316.512380][T16589] swapcached 0 [ 3316.516089][T16589] pgpgin 287588 [ 3316.520187][T16582] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3316.527534][T16589] pgpgout 287587 [ 3316.533590][T16589] pgfault 612844 [ 3316.537178][T16589] pgmajfault 110669 [ 3316.541597][T16589] inactive_anon 0 [ 3316.545266][T16589] active_anon 0 [ 3316.548845][T16589] inactive_file 4096 [ 3316.552770][T16589] active_file 0 [ 3316.556259][T16589] unevictable 0 [ 3316.559881][T16589] hierarchical_memory_limit 314572800 [ 3316.565285][T16589] hierarchical_memsw_limit 9223372036854771712 [ 3316.574453][T16589] total_cache 4096 [ 3316.578219][T16589] total_rss 0 [ 3316.583916][T16589] total_rss_huge 0 [ 3316.587751][T16589] total_shmem 0 [ 3316.594508][T16589] total_mapped_file 0 [ 3316.600977][T16589] total_dirty 4096 [ 3316.607630][T16589] total_writeback 0 [ 3316.612372][T16589] total_workingset_refault_anon 117660 [ 3316.617876][T16589] total_workingset_refault_file 3 [ 3316.623795][T16589] total_swap 286720 [ 3316.627638][T16589] total_swapcached 0 [ 3316.634402][T16589] total_pgpgin 287588 [ 3316.638428][T16589] total_pgpgout 287587 [ 3316.643046][T16589] total_pgfault 612844 [ 3316.647149][T16589] total_pgmajfault 110669 [ 3316.652545][T16589] total_inactive_anon 0 [ 3316.656739][T16589] total_active_anon 0 [ 3316.661458][T16589] total_inactive_file 4096 [ 3316.665915][T16589] total_active_file 0 [ 3316.670922][T16589] total_unevictable 0 [ 3316.674943][T16589] anon_cost 0 [ 3316.678250][T16589] file_cost 0 [ 3316.688244][T16589] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16589,uid=0 01:27:54 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000600000000000000114000600020000001b"], 0x54}}, 0x0) [ 3316.718151][T16589] Memory cgroup out of memory: Killed process 16589 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:55 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000500000000000114000600020000001b"], 0x54}}, 0x0) 01:27:55 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0xd958000000000000) [ 3316.790488][T16596] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3316.801594][T16594] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3316.819531][T16594] netlink: 166064 bytes leftover after parsing attributes in process `syz-executor.2'. 01:27:55 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000058650000000000000114000600020000001b"], 0x54}}, 0x0) [ 3317.759376][T16600] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3317.778880][T16600] CPU: 0 PID: 16600 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3317.789449][T16600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3317.799550][T16600] Call Trace: [ 3317.802868][T16600] [ 3317.805839][T16600] dump_stack_lvl+0x1e7/0x2e0 [ 3317.810565][T16600] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3317.815816][T16600] ? __pfx__printk+0x10/0x10 [ 3317.820452][T16600] ? ___ratelimit+0x4c4/0x670 [ 3317.825189][T16600] ? __pfx____ratelimit+0x10/0x10 [ 3317.830537][T16600] dump_header+0xda/0x6a0 [ 3317.834932][T16600] oom_kill_process+0x3a7/0x930 [ 3317.839848][T16600] out_of_memory+0xf67/0x1320 [ 3317.844614][T16600] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3317.850291][T16600] ? __pfx___mutex_lock+0x10/0x10 [ 3317.855372][T16600] ? __pfx_out_of_memory+0x10/0x10 [ 3317.860551][T16600] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3317.866323][T16600] ? __pfx_lock_release+0x10/0x10 [ 3317.871407][T16600] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3317.877538][T16600] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3317.882790][T16600] ? mem_cgroup_iter+0x3e9/0x560 [ 3317.887785][T16600] try_charge_memcg+0xda2/0x18a0 [ 3317.892816][T16600] ? __pfx_try_charge_memcg+0x10/0x10 [ 3317.898233][T16600] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3317.903996][T16600] ? __pfx_lock_release+0x10/0x10 [ 3317.909065][T16600] ? memcg_account_kmem+0x1e7/0x210 [ 3317.914320][T16600] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3317.920177][T16600] __memcg_kmem_charge_page+0xe1/0x250 [ 3317.925675][T16600] memcg_charge_kernel_stack+0x28a/0x550 [ 3317.931357][T16600] dup_task_struct+0x40d/0x7d0 [ 3317.936164][T16600] copy_process+0x5d5/0x3fc0 [ 3317.940818][T16600] ? __might_fault+0xa9/0x120 [ 3317.945556][T16600] ? __pfx_lock_release+0x10/0x10 [ 3317.950656][T16600] ? __pfx_copy_process+0x10/0x10 [ 3317.955759][T16600] ? __might_fault+0xc5/0x120 [ 3317.960486][T16600] ? __asan_memset+0x23/0x50 [ 3317.965134][T16600] kernel_clone+0x21d/0x8d0 [ 3317.969688][T16600] ? __pfx_kernel_clone+0x10/0x10 [ 3317.974775][T16600] __se_sys_clone3+0x2cb/0x350 [ 3317.979585][T16600] ? __pfx___se_sys_clone3+0x10/0x10 [ 3317.984934][T16600] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3317.990975][T16600] ? exc_page_fault+0x587/0x870 [ 3317.995870][T16600] ? do_syscall_64+0xb4/0x240 [ 3318.000602][T16600] do_syscall_64+0xf9/0x240 [ 3318.005159][T16600] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3318.011101][T16600] RIP: 0033:0x7f02540a9b99 [ 3318.015550][T16600] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3318.035198][T16600] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3318.043662][T16600] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3318.051676][T16600] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3318.059691][T16600] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3318.069794][T16600] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3318.077808][T16600] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3318.085843][T16600] [ 3318.111612][T16602] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3318.185954][T16600] memory: usage 307200kB, limit 307200kB, failcnt 346597 [ 3318.214895][T16600] memory+swap: usage 307432kB, limit 9007199254740988kB, failcnt 0 01:27:56 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000012800000000000000114000600020000001b"], 0x54}}, 0x0) [ 3318.243609][T16600] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3318.254773][T16600] Memory cgroup stats for /syz1: [ 3318.254939][T16600] cache 4096 [ 3318.270804][T16600] rss 12288 [ 3318.276552][T16600] rss_huge 0 [ 3318.292017][T16600] shmem 0 [ 3318.297534][T16600] mapped_file 0 [ 3318.306997][T16600] dirty 4096 [ 3318.314182][T16600] writeback 0 [ 3318.331867][T16600] workingset_refault_anon 117885 [ 3318.337054][T16600] workingset_refault_file 3 01:27:56 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000247600000000000114000600020000001b"], 0x54}}, 0x0) [ 3318.349343][T16600] swap 237568 [ 3318.352767][T16600] swapcached 12288 [ 3318.356623][T16600] pgpgin 287823 [ 3318.365278][T16600] pgpgout 287819 [ 3318.373889][T16599] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3318.382893][T16600] pgfault 613201 [ 3318.392664][T16600] pgmajfault 110887 01:27:56 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000001580)={&(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80, &(0x7f0000001380)=[{&(0x7f0000000140)="50adc3031fcc69eb768cb5483c7b781f082321dc1fc94403e8549633e9a80a1fc9b70a6cd5dd5f3c98a4dd88de87bc8ef9d7ce3e29d81665e1573f251ef52a238eb53e0e847ca1e66ded1eae53854a30fdadd8c94b48dda2892aeac92881307484fe548b4bbb6b8c163cfa04f7ae8c93130d4e63c32392e716e7a9dd26716becb812f8f120970f", 0x87}, {&(0x7f0000000200)="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", 0x1000}, {&(0x7f0000001200)="aeae4390ccd792618698d77170a1a911328e59b439587bcbb770a939606b039cb47e6ee2ffbb8178b9334d819185b1d6f3ba3d02a1eff1e5e40c8387415dfdd09c3d71a8641e253e8f0b336dc1c4edb6212e8824a2d7a50b65745f311e888cd153bec05260dc52694f48e0aef992a637c3bcd732590c1ec470c04e75f438a6ac6f3a22a4031bc67cce0a3ff6929f2644ee63e410fbb9f3a7bfc09fcacf423a128ac5fabae8f3fb9bf532dfa693c32afb8e8b5574dd74303e2e", 0xb9}, {&(0x7f00000012c0)="90e86abb78f1dbb9cd23639dd349614de0ad15a38906b32e45a05b71bfc9bf6841981b3f68fcad6379291d12eb1bde2a8615acc94b5e5ca09a7936176810d87197a6ff984a21757d22950c80cbcb4cad2dd0001590eeaf8030a1a5adc5cd29259f5c58808adf498229b732e825299c3de81ac19799642dd2afe5", 0x7a}, {&(0x7f0000001340)="1b8e7ea4a9f36eed46b507f0f5e464c4c822e1151c02929a95a4e4faf2827f883428e8509357f8", 0x27}], 0x5, &(0x7f0000001400)=[{0xf8, 0x6, 0x9, "113c0460d2e650be5636a33426bd1978b5ffff51687c35e107eb79bd2c9f30784bc3ac535b722c291abfa6227b9bc6f0010a0a766e76cf231690278dd14a6b52c278ef516528b6a944995066747c98b9b32a84713eb9ce86b2cbd1884837c99247bed283769ad4ccc04a2dfc7aef7c9e3c43c5254e9ecc993818ef019716bec7d6ccc510539fcfa235aeea8bfa16fa64463811dd6b9f4e3421056fb1b530db66b63cc01f91f5990647757e580a5cfc387c2019f98eb2758cba3310f5b544a9ec8f30a6f8fcc246101588026be944add1087777c52bbba613535fdc185aa74ad77a54"}, {0x70, 0x108, 0x65b6eb62, "efd6b041dd2571bb8c5309175fa6998af9a48a86c834145ebca7963c4741725ee6aef083cfb5e60c40cfefd682a84e9f298bf3ba8e6a1e24d3edd08640b3e18e761c60eac404d64a4e584fb156e85d8bddb82b39ff9318a6c822f59bec03"}], 0x168}, 0x8000824) (async) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) (async) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3318.398830][T16599] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3318.424325][T16600] inactive_anon 0 [ 3318.426036][T16605] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3318.428008][T16600] active_anon 12288 [ 3318.428023][T16600] inactive_file 0 [ 3318.428033][T16600] active_file 4096 [ 3318.428049][T16600] unevictable 0 [ 3318.428059][T16600] hierarchical_memory_limit 314572800 [ 3318.428069][T16600] hierarchical_memsw_limit 9223372036854771712 [ 3318.511434][T16600] total_cache 4096 [ 3318.521568][T16600] total_rss 12288 [ 3318.537114][T16600] total_rss_huge 0 [ 3318.557650][T16600] total_shmem 0 [ 3318.566926][T16600] total_mapped_file 0 [ 3318.579025][T16600] total_dirty 4096 [ 3318.582821][T16600] total_writeback 0 [ 3318.586668][T16600] total_workingset_refault_anon 117885 [ 3318.604826][T16600] total_workingset_refault_file 3 [ 3318.623051][T16600] total_swap 237568 [ 3318.627229][T16600] total_swapcached 12288 [ 3318.636480][T16600] total_pgpgin 287823 [ 3318.653592][T16600] total_pgpgout 287819 [ 3318.662815][T16600] total_pgfault 613201 [ 3318.672992][T16600] total_pgmajfault 110887 [ 3318.683577][T16600] total_inactive_anon 0 [ 3318.692632][T16600] total_active_anon 12288 [ 3318.702892][T16600] total_inactive_file 0 [ 3318.707370][T16600] total_active_file 4096 [ 3318.717613][T16600] total_unevictable 0 [ 3318.725939][T16600] anon_cost 0 [ 3318.731874][T16600] file_cost 0 [ 3318.736093][T16600] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16600,uid=0 [ 3318.762926][T16600] Memory cgroup out of memory: Killed process 16600 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:57 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000600000000000114000600020000001b"], 0x54}}, 0x0) [ 3319.067758][T16613] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3319.078451][T16613] CPU: 1 PID: 16613 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3319.088923][T16613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3319.099020][T16613] Call Trace: [ 3319.102335][T16613] [ 3319.105298][T16613] dump_stack_lvl+0x1e7/0x2e0 [ 3319.110025][T16613] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3319.115266][T16613] ? __pfx__printk+0x10/0x10 [ 3319.119887][T16613] ? ___ratelimit+0x4c4/0x670 [ 3319.124611][T16613] ? __pfx____ratelimit+0x10/0x10 [ 3319.129689][T16613] dump_header+0xda/0x6a0 [ 3319.134077][T16613] oom_kill_process+0x3a7/0x930 [ 3319.138997][T16613] out_of_memory+0xf67/0x1320 [ 3319.143728][T16613] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3319.149589][T16613] ? __pfx___mutex_lock+0x10/0x10 [ 3319.154694][T16613] ? __pfx_out_of_memory+0x10/0x10 [ 3319.159872][T16613] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3319.165467][T16613] ? __pfx_lock_release+0x10/0x10 [ 3319.170558][T16613] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3319.176678][T16613] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3319.181925][T16613] ? mem_cgroup_iter+0x3e9/0x560 [ 3319.186917][T16613] try_charge_memcg+0xda2/0x18a0 [ 3319.191928][T16613] ? __pfx_try_charge_memcg+0x10/0x10 [ 3319.197343][T16613] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3319.203105][T16613] ? __pfx_lock_release+0x10/0x10 [ 3319.208177][T16613] ? memcg_account_kmem+0x1e7/0x210 [ 3319.213437][T16613] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3319.219295][T16613] __memcg_kmem_charge_page+0xe1/0x250 [ 3319.224826][T16613] memcg_charge_kernel_stack+0x28a/0x550 [ 3319.230509][T16613] dup_task_struct+0x15d/0x7d0 [ 3319.235315][T16613] copy_process+0x5d5/0x3fc0 [ 3319.239959][T16613] ? __might_fault+0xa9/0x120 [ 3319.244684][T16613] ? __pfx_lock_release+0x10/0x10 [ 3319.249770][T16613] ? finish_task_switch+0x1e5/0x850 [ 3319.255023][T16613] ? lockdep_hardirqs_on+0x98/0x140 [ 3319.260260][T16613] ? __pfx_copy_process+0x10/0x10 [ 3319.265418][T16613] ? __might_fault+0xc5/0x120 [ 3319.270141][T16613] ? __asan_memset+0x23/0x50 [ 3319.274788][T16613] kernel_clone+0x21d/0x8d0 [ 3319.279362][T16613] ? __pfx_kernel_clone+0x10/0x10 [ 3319.284459][T16613] __se_sys_clone3+0x2cb/0x350 [ 3319.289268][T16613] ? __might_fault+0xa9/0x120 [ 3319.294003][T16613] ? __pfx___se_sys_clone3+0x10/0x10 [ 3319.299388][T16613] do_syscall_64+0xf9/0x240 [ 3319.303948][T16613] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3319.309919][T16613] RIP: 0033:0x7f02540a9b99 [ 3319.314372][T16613] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3319.334021][T16613] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3319.342488][T16613] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3319.350501][T16613] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3319.358703][T16613] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3319.366730][T16613] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3319.374753][T16613] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3319.382801][T16613] [ 3319.402818][T16613] memory: usage 307200kB, limit 307200kB, failcnt 346740 [ 3319.410257][T16613] memory+swap: usage 307440kB, limit 9007199254740988kB, failcnt 0 [ 3319.418196][T16613] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3319.425616][T16613] Memory cgroup stats for /syz1: [ 3319.426047][T16613] cache 4096 [ 3319.434296][T16613] rss 12288 [ 3319.437434][T16613] rss_huge 0 [ 3319.441463][T16613] shmem 0 [ 3319.444469][T16613] mapped_file 0 [ 3319.447957][T16613] dirty 4096 [ 3319.460311][T16613] writeback 0 [ 3319.463751][T16613] workingset_refault_anon 117940 [ 3319.481914][T16613] workingset_refault_file 3 [ 3319.493421][T16613] swap 245760 [ 3319.504045][T16613] swapcached 4096 [ 3319.513590][T16613] pgpgin 287888 [ 3319.522455][T16613] pgpgout 287884 [ 3319.532187][T16613] pgfault 613313 [ 3319.540813][T16613] pgmajfault 110939 [ 3319.550422][T16613] inactive_anon 0 [ 3319.560029][T16613] active_anon 12288 [ 3319.569660][T16613] inactive_file 0 [ 3319.583335][T16613] active_file 4096 [ 3319.593377][T16613] unevictable 0 [ 3319.603638][T16613] hierarchical_memory_limit 314572800 [ 3319.623317][T16613] hierarchical_memsw_limit 9223372036854771712 [ 3319.637032][T16613] total_cache 4096 [ 3319.646666][T16613] total_rss 12288 [ 3319.657876][T16613] total_rss_huge 0 [ 3319.665436][T16613] total_shmem 0 [ 3319.669481][T16613] total_mapped_file 0 [ 3319.673611][T16613] total_dirty 4096 01:27:57 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000810000000000000114000600020000001b"], 0x54}}, 0x0) [ 3319.703232][T16613] total_writeback 0 [ 3319.722475][T16613] total_workingset_refault_anon 117940 [ 3319.735815][T16613] total_workingset_refault_file 3 [ 3319.760742][T16610] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3319.798739][T16613] total_swap 245760 [ 3319.802819][T16610] netlink: 166064 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3319.826801][T16613] total_swapcached 4096 [ 3319.834758][T16613] total_pgpgin 287888 [ 3319.856057][T16613] total_pgpgout 287884 01:27:58 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0xda58000000000000) [ 3319.870190][T16616] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3319.873693][T16613] total_pgfault 613313 [ 3319.898945][T16613] total_pgmajfault 110939 [ 3319.903488][T16613] total_inactive_anon 0 [ 3319.913502][T16613] total_active_anon 12288 [ 3319.926641][T16613] total_inactive_file 0 [ 3319.933732][T16613] total_active_file 4096 [ 3319.943847][T16613] total_unevictable 0 [ 3319.950636][T16613] anon_cost 0 [ 3319.956430][T16613] file_cost 0 [ 3319.964456][T16613] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16613,uid=0 [ 3319.993439][T16613] Memory cgroup out of memory: Killed process 16613 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:27:58 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000700000000000114000600020000001b"], 0x54}}, 0x0) 01:27:58 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000047880000000000000114000600020000001b"], 0x54}}, 0x0) [ 3320.863696][T16620] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3320.895264][T16620] CPU: 1 PID: 16620 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3320.905752][T16620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3320.915842][T16620] Call Trace: [ 3320.919151][T16620] [ 3320.922110][T16620] dump_stack_lvl+0x1e7/0x2e0 [ 3320.926837][T16620] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3320.932085][T16620] ? __pfx__printk+0x10/0x10 [ 3320.936716][T16620] ? ___ratelimit+0x4c4/0x670 [ 3320.941458][T16620] ? __pfx____ratelimit+0x10/0x10 [ 3320.946542][T16620] dump_header+0xda/0x6a0 [ 3320.950933][T16620] oom_kill_process+0x3a7/0x930 [ 3320.955827][T16620] out_of_memory+0xf67/0x1320 [ 3320.960552][T16620] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3320.966315][T16620] ? __pfx___mutex_lock+0x10/0x10 [ 3320.971472][T16620] ? __pfx_out_of_memory+0x10/0x10 [ 3320.976619][T16620] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3320.982183][T16620] ? __pfx_lock_release+0x10/0x10 [ 3320.987225][T16620] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3320.993313][T16620] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3320.998551][T16620] ? mem_cgroup_iter+0x3e9/0x560 [ 3321.003525][T16620] try_charge_memcg+0xda2/0x18a0 [ 3321.008573][T16620] ? __pfx_try_charge_memcg+0x10/0x10 [ 3321.013979][T16620] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3321.019724][T16620] ? __pfx_lock_release+0x10/0x10 [ 3321.024770][T16620] ? memcg_account_kmem+0x1e7/0x210 [ 3321.029999][T16620] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3321.035824][T16620] __memcg_kmem_charge_page+0xe1/0x250 [ 3321.041301][T16620] memcg_charge_kernel_stack+0x3f8/0x550 [ 3321.046952][T16620] dup_task_struct+0x15d/0x7d0 [ 3321.051735][T16620] copy_process+0x5d5/0x3fc0 [ 3321.056349][T16620] ? __might_fault+0xa9/0x120 [ 3321.061051][T16620] ? __pfx_lock_release+0x10/0x10 [ 3321.066104][T16620] ? __pfx_copy_process+0x10/0x10 [ 3321.071145][T16620] ? __might_fault+0xc5/0x120 [ 3321.075843][T16620] ? __asan_memset+0x23/0x50 [ 3321.080460][T16620] kernel_clone+0x21d/0x8d0 [ 3321.084985][T16620] ? __pfx_kernel_clone+0x10/0x10 [ 3321.090042][T16620] __se_sys_clone3+0x2cb/0x350 [ 3321.095352][T16620] ? __pfx___se_sys_clone3+0x10/0x10 [ 3321.100680][T16620] ? do_syscall_64+0x108/0x240 [ 3321.105459][T16620] ? do_syscall_64+0xb4/0x240 [ 3321.110156][T16620] do_syscall_64+0xf9/0x240 [ 3321.114678][T16620] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3321.120764][T16620] RIP: 0033:0x7f02540a9b99 [ 3321.125191][T16620] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3321.144903][T16620] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3321.153340][T16620] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3321.161325][T16620] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3321.169305][T16620] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3321.177286][T16620] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3321.185701][T16620] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3321.193700][T16620] [ 3321.227208][T16620] memory: usage 307200kB, limit 307200kB, failcnt 347177 [ 3321.250834][T16620] memory+swap: usage 307444kB, limit 9007199254740988kB, failcnt 0 [ 3321.270527][T16620] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3321.292389][T16622] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3321.304996][T16620] Memory cgroup stats for /syz1: [ 3321.305151][T16620] cache 4096 [ 3321.354393][T16620] rss 0 [ 3321.365429][T16620] rss_huge 0 [ 3321.377047][T16620] shmem 0 [ 3321.389497][T16620] mapped_file 0 [ 3321.402388][T16620] dirty 4096 [ 3321.414177][T16620] writeback 0 [ 3321.427207][T16620] workingset_refault_anon 118068 [ 3321.434700][T16620] workingset_refault_file 3 [ 3321.444003][T16620] swap 249856 [ 3321.447524][T16620] swapcached 0 [ 3321.454715][T16620] pgpgin 288053 [ 3321.458414][T16620] pgpgout 288052 [ 3321.467374][T16620] pgfault 613572 [ 3321.474068][T16620] pgmajfault 111083 [ 3321.478103][T16620] inactive_anon 0 [ 3321.486826][T16620] active_anon 0 [ 3321.493333][T16620] inactive_file 0 [ 3321.497185][T16620] active_file 4096 01:27:59 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000128000000000000114000600020000001b"], 0x54}}, 0x0) [ 3321.502139][T16620] unevictable 0 [ 3321.505807][T16620] hierarchical_memory_limit 314572800 [ 3321.513647][T16620] hierarchical_memsw_limit 9223372036854771712 [ 3321.522557][T16620] total_cache 4096 [ 3321.526580][T16620] total_rss 0 [ 3321.532063][T16620] total_rss_huge 0 [ 3321.536006][T16620] total_shmem 0 [ 3321.540574][T16620] total_mapped_file 0 [ 3321.544786][T16620] total_dirty 4096 [ 3321.549183][T16620] total_writeback 0 [ 3321.555070][T16620] total_workingset_refault_anon 118068 [ 3321.561418][T16620] total_workingset_refault_file 3 [ 3321.566772][T16620] total_swap 249856 [ 3321.571635][T16620] total_swapcached 0 [ 3321.575789][T16620] total_pgpgin 288053 [ 3321.580599][T16620] total_pgpgout 288052 [ 3321.584916][T16620] total_pgfault 613572 01:27:59 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000048880000000000000114000600020000001b"], 0x54}}, 0x0) [ 3321.609462][T16620] total_pgmajfault 111083 [ 3321.616229][T16620] total_inactive_anon 0 [ 3321.627150][T16620] total_active_anon 0 [ 3321.636177][T16620] total_inactive_file 0 [ 3321.649792][T16620] total_active_file 4096 [ 3321.654794][T16620] total_unevictable 0 [ 3321.667516][T16620] anon_cost 0 [ 3321.674517][T16620] file_cost 0 [ 3321.682185][T16620] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16620,uid=0 [ 3321.716805][T16620] Memory cgroup out of memory: Killed process 16620 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:00 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000001580)={&(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80, &(0x7f0000001380)=[{&(0x7f0000000140)="50adc3031fcc69eb768cb5483c7b781f082321dc1fc94403e8549633e9a80a1fc9b70a6cd5dd5f3c98a4dd88de87bc8ef9d7ce3e29d81665e1573f251ef52a238eb53e0e847ca1e66ded1eae53854a30fdadd8c94b48dda2892aeac92881307484fe548b4bbb6b8c163cfa04f7ae8c93130d4e63c32392e716e7a9dd26716becb812f8f120970f", 0x87}, {&(0x7f0000000200)="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", 0x1000}, {&(0x7f0000001200)="aeae4390ccd792618698d77170a1a911328e59b439587bcbb770a939606b039cb47e6ee2ffbb8178b9334d819185b1d6f3ba3d02a1eff1e5e40c8387415dfdd09c3d71a8641e253e8f0b336dc1c4edb6212e8824a2d7a50b65745f311e888cd153bec05260dc52694f48e0aef992a637c3bcd732590c1ec470c04e75f438a6ac6f3a22a4031bc67cce0a3ff6929f2644ee63e410fbb9f3a7bfc09fcacf423a128ac5fabae8f3fb9bf532dfa693c32afb8e8b5574dd74303e2e", 0xb9}, {&(0x7f00000012c0)="90e86abb78f1dbb9cd23639dd349614de0ad15a38906b32e45a05b71bfc9bf6841981b3f68fcad6379291d12eb1bde2a8615acc94b5e5ca09a7936176810d87197a6ff984a21757d22950c80cbcb4cad2dd0001590eeaf8030a1a5adc5cd29259f5c58808adf498229b732e825299c3de81ac19799642dd2afe5", 0x7a}, {&(0x7f0000001340)="1b8e7ea4a9f36eed46b507f0f5e464c4c822e1151c02929a95a4e4faf2827f883428e8509357f8", 0x27}], 0x5, &(0x7f0000001400)=[{0xf8, 0x6, 0x9, "113c0460d2e650be5636a33426bd1978b5ffff51687c35e107eb79bd2c9f30784bc3ac535b722c291abfa6227b9bc6f0010a0a766e76cf231690278dd14a6b52c278ef516528b6a944995066747c98b9b32a84713eb9ce86b2cbd1884837c99247bed283769ad4ccc04a2dfc7aef7c9e3c43c5254e9ecc993818ef019716bec7d6ccc510539fcfa235aeea8bfa16fa64463811dd6b9f4e3421056fb1b530db66b63cc01f91f5990647757e580a5cfc387c2019f98eb2758cba3310f5b544a9ec8f30a6f8fcc246101588026be944add1087777c52bbba613535fdc185aa74ad77a54"}, {0x70, 0x108, 0x65b6eb62, "efd6b041dd2571bb8c5309175fa6998af9a48a86c834145ebca7963c4741725ee6aef083cfb5e60c40cfefd682a84e9f298bf3ba8e6a1e24d3edd08640b3e18e761c60eac404d64a4e584fb156e85d8bddb82b39ff9318a6c822f59bec03"}], 0x168}, 0x8000824) (async) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) (async) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3321.761996][T16619] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3321.775980][T16619] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3321.788079][T16627] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:28:00 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000800000000000114000600020000001b"], 0x54}}, 0x0) 01:28:00 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000ffffa8880000000000000114000600020000001b"], 0x54}}, 0x0) [ 3322.220188][T16633] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3322.249273][T16633] CPU: 0 PID: 16633 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3322.259781][T16633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3322.269983][T16633] Call Trace: [ 3322.273305][T16633] [ 3322.276268][T16633] dump_stack_lvl+0x1e7/0x2e0 [ 3322.281001][T16633] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3322.286243][T16633] ? __pfx__printk+0x10/0x10 [ 3322.290879][T16633] ? ___ratelimit+0x4c4/0x670 [ 3322.295608][T16633] ? __pfx____ratelimit+0x10/0x10 [ 3322.300692][T16633] dump_header+0xda/0x6a0 [ 3322.305084][T16633] oom_kill_process+0x3a7/0x930 [ 3322.309999][T16633] out_of_memory+0xf67/0x1320 [ 3322.314734][T16633] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3322.320413][T16633] ? __pfx___mutex_lock+0x10/0x10 [ 3322.325468][T16633] ? __pfx_out_of_memory+0x10/0x10 [ 3322.330614][T16633] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3322.336190][T16633] ? __pfx_lock_release+0x10/0x10 [ 3322.341274][T16633] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3322.347367][T16633] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3322.352580][T16633] ? mem_cgroup_iter+0x3e9/0x560 [ 3322.357536][T16633] try_charge_memcg+0xda2/0x18a0 [ 3322.362511][T16633] ? __pfx_try_charge_memcg+0x10/0x10 [ 3322.367919][T16633] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3322.373653][T16633] ? __pfx_lock_release+0x10/0x10 [ 3322.378699][T16633] ? memcg_account_kmem+0x1e7/0x210 [ 3322.383924][T16633] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3322.389745][T16633] __memcg_kmem_charge_page+0xe1/0x250 [ 3322.395215][T16633] memcg_charge_kernel_stack+0x28a/0x550 [ 3322.400862][T16633] dup_task_struct+0x40d/0x7d0 [ 3322.405739][T16633] copy_process+0x5d5/0x3fc0 [ 3322.410376][T16633] ? __might_fault+0xa9/0x120 [ 3322.415076][T16633] ? __pfx_lock_release+0x10/0x10 [ 3322.420127][T16633] ? __pfx_copy_process+0x10/0x10 [ 3322.425161][T16633] ? __might_fault+0xc5/0x120 [ 3322.429856][T16633] ? __asan_memset+0x23/0x50 [ 3322.434471][T16633] kernel_clone+0x21d/0x8d0 [ 3322.438991][T16633] ? __pfx_kernel_clone+0x10/0x10 [ 3322.444048][T16633] __se_sys_clone3+0x2cb/0x350 [ 3322.448831][T16633] ? __pfx___se_sys_clone3+0x10/0x10 [ 3322.454144][T16633] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3322.460150][T16633] ? exc_page_fault+0x587/0x870 [ 3322.465100][T16633] ? do_syscall_64+0xb4/0x240 [ 3322.469800][T16633] do_syscall_64+0xf9/0x240 [ 3322.474318][T16633] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3322.480223][T16633] RIP: 0033:0x7f02540a9b99 [ 3322.484700][T16633] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3322.504349][T16633] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3322.512782][T16633] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3322.520765][T16633] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3322.528750][T16633] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3322.536726][T16633] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3322.544711][T16633] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3322.552713][T16633] [ 3322.678704][T16633] memory: usage 307200kB, limit 307200kB, failcnt 347383 [ 3322.687382][T16633] memory+swap: usage 307468kB, limit 9007199254740988kB, failcnt 0 [ 3322.713039][T16633] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3322.722581][T16633] Memory cgroup stats for /syz1: [ 3322.722749][T16633] cache 4096 [ 3322.745631][T16633] rss 12288 [ 3322.759060][T16633] rss_huge 0 [ 3322.770648][T16633] shmem 0 [ 3322.781364][T16633] mapped_file 0 [ 3322.793119][T16633] dirty 4096 [ 3322.804493][T16633] writeback 0 [ 3322.814662][T16633] workingset_refault_anon 118121 [ 3322.834721][T16633] workingset_refault_file 3 [ 3322.849017][T16633] swap 274432 [ 3322.854204][T16633] swapcached 8192 [ 3322.858099][T16633] pgpgin 288127 [ 3322.863545][T16633] pgpgout 288123 [ 3322.871898][T16633] pgfault 613697 [ 3322.881426][T16633] pgmajfault 111143 [ 3322.891456][T16633] inactive_anon 0 [ 3322.899965][T16633] active_anon 12288 [ 3322.908129][T16633] inactive_file 0 [ 3322.919235][T16633] active_file 4096 [ 3322.929987][T16633] unevictable 0 [ 3322.940530][T16633] hierarchical_memory_limit 314572800 [ 3322.956687][T16633] hierarchical_memsw_limit 9223372036854771712 [ 3323.002602][T16633] total_cache 4096 [ 3323.011776][T16633] total_rss 12288 [ 3323.021456][T16633] total_rss_huge 0 [ 3323.031528][T16633] total_shmem 0 [ 3323.039616][T16633] total_mapped_file 0 [ 3323.049977][T16633] total_dirty 4096 [ 3323.061952][T16633] total_writeback 0 [ 3323.071723][T16633] total_workingset_refault_anon 118121 [ 3323.085335][T16633] total_workingset_refault_file 3 [ 3323.096947][T16633] total_swap 274432 [ 3323.106086][T16633] total_swapcached 8192 [ 3323.117811][T16633] total_pgpgin 288127 [ 3323.127873][T16633] total_pgpgout 288123 [ 3323.137532][T16633] total_pgfault 613697 [ 3323.147840][T16633] total_pgmajfault 111143 [ 3323.159737][T16633] total_inactive_anon 0 [ 3323.169026][T16633] total_active_anon 12288 [ 3323.178628][T16633] total_inactive_file 0 [ 3323.187213][T16633] total_active_file 4096 [ 3323.196294][T16633] total_unevictable 0 [ 3323.205274][T16633] anon_cost 0 [ 3323.212505][T16633] file_cost 0 [ 3323.221221][T16633] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16633,uid=0 01:28:01 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000900000000000114000600020000001b"], 0x54}}, 0x0) [ 3323.253511][T16633] Memory cgroup out of memory: Killed process 16633 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3323.290799][T16635] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3323.456900][T16638] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 3323.479137][T16638] CPU: 1 PID: 16638 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3323.489631][T16638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3323.499727][T16638] Call Trace: [ 3323.503037][T16638] [ 3323.505997][T16638] dump_stack_lvl+0x1e7/0x2e0 [ 3323.510727][T16638] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3323.515986][T16638] ? __pfx__printk+0x10/0x10 [ 3323.520634][T16638] ? ___ratelimit+0x4c4/0x670 [ 3323.525395][T16638] ? __pfx____ratelimit+0x10/0x10 [ 3323.530492][T16638] dump_header+0xda/0x6a0 [ 3323.534975][T16638] oom_kill_process+0x3a7/0x930 [ 3323.539908][T16638] out_of_memory+0xf67/0x1320 [ 3323.544648][T16638] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3323.550343][T16638] ? __pfx___mutex_lock+0x10/0x10 [ 3323.555440][T16638] ? __pfx_out_of_memory+0x10/0x10 [ 3323.560634][T16638] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3323.566253][T16638] ? __pfx_lock_release+0x10/0x10 [ 3323.571346][T16638] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3323.577590][T16638] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3323.582850][T16638] ? mem_cgroup_iter+0x3e9/0x560 [ 3323.587871][T16638] try_charge_memcg+0xda2/0x18a0 [ 3323.592864][T16638] ? mark_lock+0x9a/0x350 [ 3323.597272][T16638] ? __pfx_try_charge_memcg+0x10/0x10 01:28:01 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000db8a56940000000000000114000600020000001b"], 0x54}}, 0x0) [ 3323.602742][T16638] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3323.604433][T16640] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3323.608927][T16638] charge_memcg+0xa2/0x160 [ 3323.608968][T16638] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3323.609001][T16638] __read_swap_cache_async+0x480/0x8b0 [ 3323.609023][T16638] ? mark_lock+0x9a/0x350 [ 3323.609057][T16638] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3323.609086][T16638] ? blk_start_plug+0x6f/0x1b0 [ 3323.609123][T16638] swap_cluster_readahead+0x398/0x810 [ 3323.609158][T16638] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3323.609187][T16638] ? __pfx_lock_release+0x10/0x10 [ 3323.609222][T16638] ? xas_descend+0x37e/0x470 [ 3323.609255][T16638] swapin_readahead+0x1ea/0x1070 [ 3323.609275][T16638] ? filemap_get_entry+0x127/0x4e0 [ 3323.609325][T16638] ? __pfx_swapin_readahead+0x10/0x10 [ 3323.686131][T16638] ? __filemap_get_folio+0x935/0xbc0 [ 3323.691482][T16638] ? swap_cache_get_folio+0x9f/0x570 [ 3323.696818][T16638] do_swap_page+0x791/0x3f40 [ 3323.701471][T16638] ? rcu_is_watching+0x15/0xb0 [ 3323.706315][T16638] ? page_ext_get+0x20/0x2a0 [ 3323.710966][T16638] ? do_swap_page+0x154/0x3f40 [ 3323.715782][T16638] ? __pfx_do_swap_page+0x10/0x10 [ 3323.720867][T16638] ? pte_offset_map_nolock+0x137/0x1f0 [ 3323.726393][T16638] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3323.732259][T16638] ? __pfx_validate_chain+0x10/0x10 [ 3323.737530][T16638] __handle_mm_fault+0x15e8/0x72d0 [ 3323.742736][T16638] ? __pfx___handle_mm_fault+0x10/0x10 [ 3323.748261][T16638] ? mt_find+0x226/0x850 [ 3323.752556][T16638] ? __pfx_lock_release+0x10/0x10 01:28:01 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0xe03f030000000000) [ 3323.757661][T16638] ? mt_find+0x62d/0x850 [ 3323.761958][T16638] ? mt_find+0x226/0x850 [ 3323.766282][T16638] ? find_vma+0x142/0x1c0 [ 3323.770686][T16638] ? __pfx_find_vma+0x10/0x10 [ 3323.776031][T16638] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3323.782088][T16638] handle_mm_fault+0x3c1/0x8a0 [ 3323.786920][T16638] exc_page_fault+0x2ad/0x870 [ 3323.791659][T16638] asm_exc_page_fault+0x26/0x30 [ 3323.796568][T16638] RIP: 0010:__get_user_8+0x11/0x20 [ 3323.801743][T16638] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3323.809185][T16643] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3323.821375][T16638] RSP: 0018:ffffc900131ffd78 EFLAGS: 00050202 [ 3323.821406][T16638] RAX: 00005555566b1da8 RBX: ffff8881b684d0b8 RCX: ffffc900131ffc03 [ 3323.821424][T16638] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7fe0 [ 3323.821441][T16638] RBP: ffffc900131ffec0 R08: ffffffff8f85feef R09: 1ffffffff1f0bfdd [ 3323.821458][T16638] R10: dffffc0000000000 R11: fffffbfff1f0bfde R12: ffffc900131ffd80 [ 3323.821474][T16638] R13: ffffc900131fffd8 R14: dffffc0000000000 R15: ffff8881b684bb80 [ 3323.821514][T16638] __rseq_handle_notify_resume+0x158/0x1490 [ 3323.821562][T16638] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3323.821599][T16638] ? irqentry_exit_to_user_mode+0x52/0x270 [ 3323.830232][T16643] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3323.835800][T16638] irqentry_exit_to_user_mode+0xbb/0x270 [ 3323.835838][T16638] exc_page_fault+0x587/0x870 [ 3323.835870][T16638] asm_exc_page_fault+0x26/0x30 [ 3323.835900][T16638] RIP: 0033:0x7f0254036fcf [ 3323.909878][T16638] Code: 48 89 84 24 90 00 00 00 48 89 9c 24 98 00 00 00 4c 8b 35 c4 69 17 00 4d 8d ae 00 00 40 00 4d 39 ec 0f 83 91 06 00 00 4c 89 eb <4d> 8b 2c 24 4d 8d 7c 24 08 4c 89 bc 24 08 01 00 00 49 83 fd ff 0f [ 3323.909902][T16638] RSP: 002b:00007ffe12c8ca50 EFLAGS: 00010287 [ 3323.909926][T16638] RAX: 00007ffe12c8cb58 RBX: 00007f0254000000 RCX: 000000000032b478 [ 3323.909943][T16638] RDX: 0000000000000180 RSI: 00007ffe12c8ca30 RDI: 7fffffffffffffff [ 3323.909961][T16638] RBP: 0000000000000001 R08: 0000000000000010 R09: 0000000000000000 [ 3323.909976][T16638] R10: 00007ffe12ccd080 R11: 000000000009b736 R12: 00007f0253c00000 [ 3323.909993][T16638] R13: 00007f0254000000 R14: 00007f0253c00000 R15: 0000000000000001 [ 3323.910029][T16638] 01:28:02 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000fcd1bba70000000000000114000600020000001b"], 0x54}}, 0x0) [ 3324.031241][T16638] memory: usage 307168kB, limit 307200kB, failcnt 347519 [ 3324.054176][T16638] memory+swap: usage 307424kB, limit 9007199254740988kB, failcnt 0 [ 3324.091333][T16638] kmem: usage 307156kB, limit 9007199254740988kB, failcnt 0 [ 3324.112875][T16638] Memory cgroup stats for /syz1: [ 3324.113033][T16638] cache 0 [ 3324.137349][T16638] rss 12288 [ 3324.145191][T16638] rss_huge 0 [ 3324.154287][T16638] shmem 0 [ 3324.162554][T16638] mapped_file 0 [ 3324.171077][T16638] dirty 0 [ 3324.178462][T16638] writeback 0 [ 3324.191307][T16638] workingset_refault_anon 118166 [ 3324.201979][T16638] workingset_refault_file 3 [ 3324.210271][T16638] swap 262144 [ 3324.216510][T16638] swapcached 8192 [ 3324.224497][T16638] pgpgin 288181 [ 3324.233900][T16638] pgpgout 288178 [ 3324.241119][T16638] pgfault 613781 [ 3324.250199][T16638] pgmajfault 111175 [ 3324.258137][T16638] inactive_anon 8192 [ 3324.266497][T16638] active_anon 4096 [ 3324.275592][T16638] inactive_file 0 [ 3324.286455][T16638] active_file 0 [ 3324.294969][T16638] unevictable 0 [ 3324.302612][T16638] hierarchical_memory_limit 314572800 [ 3324.314366][T16638] hierarchical_memsw_limit 9223372036854771712 [ 3324.327638][T16638] total_cache 0 [ 3324.336512][T16638] total_rss 12288 [ 3324.345423][T16638] total_rss_huge 0 [ 3324.353798][T16638] total_shmem 0 [ 3324.362521][T16638] total_mapped_file 0 [ 3324.371347][T16638] total_dirty 0 [ 3324.378474][T16638] total_writeback 0 [ 3324.391087][T16638] total_workingset_refault_anon 118166 [ 3324.405003][T16638] total_workingset_refault_file 3 [ 3324.419092][T16638] total_swap 262144 [ 3324.427459][T16638] total_swapcached 8192 [ 3324.437889][T16638] total_pgpgin 288181 [ 3324.450660][T16638] total_pgpgout 288178 [ 3324.460099][T16638] total_pgfault 613781 [ 3324.469717][T16638] total_pgmajfault 111175 [ 3324.482072][T16638] total_inactive_anon 8192 [ 3324.495359][T16638] total_active_anon 4096 [ 3324.505183][T16638] total_inactive_file 0 [ 3324.515533][T16638] total_active_file 0 [ 3324.524574][T16638] total_unevictable 0 [ 3324.534856][T16638] anon_cost 0 [ 3324.544208][T16638] file_cost 0 01:28:02 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000fe8000000000000114000600020000001b"], 0x54}}, 0x0) 01:28:02 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000a00000000000114000600020000001b"], 0x54}}, 0x0) [ 3324.551305][T16638] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16638,uid=0 [ 3324.581751][T16638] Memory cgroup out of memory: Killed process 16638 (syz-executor.1) total-vm:54376kB, anon-rss:312kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000 [ 3324.811797][T16645] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:28:03 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000094568adb0000000000000114000600020000001b"], 0x54}}, 0x0) 01:28:03 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0xe4ffffff00000000) [ 3325.153579][T16649] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3325.163952][T16632] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3325.178663][T16632] netlink: 166064 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3325.381647][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3325.401677][ T5105] CPU: 1 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3325.412088][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3325.422181][ T5105] Call Trace: [ 3325.425567][ T5105] [ 3325.428518][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3325.433224][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3325.438462][ T5105] ? __pfx__printk+0x10/0x10 [ 3325.443074][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3325.447781][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3325.452835][ T5105] dump_header+0xda/0x6a0 [ 3325.457194][ T5105] oom_kill_process+0x3a7/0x930 [ 3325.462099][ T5105] out_of_memory+0xf67/0x1320 [ 3325.466795][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3325.472447][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3325.477491][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3325.482631][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3325.488194][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3325.493259][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3325.499367][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3325.504606][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3325.509596][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3325.514554][ T5105] ? mark_lock+0x9a/0x350 [ 3325.518928][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3325.524351][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3325.530525][ T5105] charge_memcg+0xa2/0x160 [ 3325.534974][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3325.541059][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3325.546532][ T5105] ? mark_lock+0x9a/0x350 [ 3325.550886][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3325.556886][ T5105] swap_cluster_readahead+0x67c/0x810 [ 3325.562280][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3325.568188][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3325.573243][ T5105] ? xas_descend+0x37e/0x470 [ 3325.577853][ T5105] swapin_readahead+0x1ea/0x1070 [ 3325.582809][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3325.587952][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3325.593342][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3325.598654][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3325.603952][ T5105] do_swap_page+0x791/0x3f40 [ 3325.608573][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3325.613466][ T5105] ? do_swap_page+0x154/0x3f40 [ 3325.618253][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3325.623304][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3325.628790][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3325.634715][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3325.639889][ T5105] ? reacquire_held_locks+0x3eb/0x690 [ 3325.645273][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3325.650768][ T5105] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3325.656533][ T5105] ? mtree_range_walk+0x6fd/0x8e0 [ 3325.661583][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3325.666797][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3325.671833][ T5105] ? lock_vma_under_rcu+0x2f9/0x730 [ 3325.677063][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3325.682282][ T5105] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3325.687849][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3325.692643][ T5105] exc_page_fault+0x456/0x870 [ 3325.697388][ T5105] asm_exc_page_fault+0x26/0x30 [ 3325.702255][ T5105] RIP: 0033:0x7f02540a9163 [ 3325.706685][ T5105] Code: 00 00 00 00 00 66 90 31 c0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 <80> 3d 8e 6d 0d 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f [ 3325.726314][ T5105] RSP: 002b:00007ffe12c8cc38 EFLAGS: 00010293 [ 3325.732404][ T5105] RAX: 00000000fffffffa RBX: 0000000000004725 RCX: 0000000000000000 [ 3325.740385][ T5105] RDX: 00007ffe12c8cc50 RSI: 0000000000000000 RDI: 0000000000000000 [ 3325.748366][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000000 R09: 00007ffe12ccd0b0 [ 3325.756442][ T5105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3325.764426][ T5105] R13: 000000000032bb13 R14: 000000000032bb13 R15: 0000000000000000 [ 3325.772434][ T5105] [ 3325.785739][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 347938 [ 3325.806031][ T5105] memory+swap: usage 307464kB, limit 9007199254740988kB, failcnt 0 [ 3325.814665][ T5105] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3325.844775][ T5105] Memory cgroup stats for /syz1: [ 3325.844937][ T5105] cache 0 [ 3325.857579][ T5105] rss 12288 [ 3325.863826][ T5105] rss_huge 0 [ 3325.867085][ T5105] shmem 0 [ 3325.874589][ T5105] mapped_file 0 [ 3325.878102][ T5105] dirty 0 [ 3325.886775][ T5105] writeback 0 [ 3325.896454][ T5105] workingset_refault_anon 118312 [ 3325.907779][ T5105] workingset_refault_file 3 [ 3325.918957][ T5105] swap 258048 [ 3325.927719][ T5105] swapcached 8192 [ 3325.935422][ T5105] pgpgin 288337 [ 3325.940955][ T5105] pgpgout 288334 [ 3325.944546][ T5105] pgfault 614036 [ 3325.948125][ T5105] pgmajfault 111310 [ 3325.960737][ T5105] inactive_anon 12288 [ 3325.964782][ T5105] active_anon 0 [ 3325.968276][ T5105] inactive_file 0 [ 3325.978931][ T5105] active_file 0 [ 3325.982442][ T5105] unevictable 0 [ 3325.985926][ T5105] hierarchical_memory_limit 314572800 [ 3325.998430][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3326.006667][ T5105] total_cache 0 [ 3326.010921][ T5105] total_rss 12288 [ 3326.014596][ T5105] total_rss_huge 0 [ 3326.018347][ T5105] total_shmem 0 [ 3326.025791][ T5105] total_mapped_file 0 [ 3326.030338][ T5105] total_dirty 0 [ 3326.033922][ T5105] total_writeback 0 [ 3326.037974][ T5105] total_workingset_refault_anon 118312 [ 3326.045482][ T5105] total_workingset_refault_file 3 [ 3326.051175][ T5105] total_swap 258048 [ 3326.055120][ T5105] total_swapcached 8192 [ 3326.060144][ T5105] total_pgpgin 288337 [ 3326.064259][ T5105] total_pgpgout 288334 [ 3326.068441][ T5105] total_pgfault 614036 [ 3326.073636][ T5105] total_pgmajfault 111310 [ 3326.078116][ T5105] total_inactive_anon 12288 [ 3326.083336][ T5105] total_active_anon 0 [ 3326.087465][ T5105] total_inactive_file 0 [ 3326.102051][ T5105] total_active_file 0 [ 3326.112739][ T5105] total_unevictable 0 [ 3326.119274][ T5105] anon_cost 0 [ 3326.122771][ T5105] file_cost 0 [ 3326.127833][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16648,uid=0 [ 3326.156046][ T5105] Memory cgroup out of memory: Killed process 16648 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:04 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000b00000000000114000600020000001b"], 0x54}}, 0x0) [ 3326.197293][T16649] syz-executor.0 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000 [ 3326.215661][T16649] CPU: 0 PID: 16649 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3326.226148][T16649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3326.236245][T16649] Call Trace: [ 3326.239563][T16649] [ 3326.242538][T16649] dump_stack_lvl+0x1e7/0x2e0 [ 3326.247329][T16649] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3326.252667][T16649] ? __pfx__printk+0x10/0x10 [ 3326.257303][T16649] ? ___ratelimit+0x4c4/0x670 [ 3326.262046][T16649] ? __pfx____ratelimit+0x10/0x10 [ 3326.267147][T16649] dump_header+0xda/0x6a0 [ 3326.271545][T16649] oom_kill_process+0x3a7/0x930 [ 3326.276480][T16649] out_of_memory+0xf67/0x1320 [ 3326.281216][T16649] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3326.286915][T16649] ? __pfx___mutex_lock+0x10/0x10 [ 3326.291991][T16649] ? __pfx_out_of_memory+0x10/0x10 [ 3326.297172][T16649] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3326.302772][T16649] ? __pfx_lock_release+0x10/0x10 [ 3326.307860][T16649] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3326.313989][T16649] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3326.319246][T16649] ? mem_cgroup_iter+0x3e9/0x560 [ 3326.324255][T16649] try_charge_memcg+0xda2/0x18a0 [ 3326.329287][T16649] ? __pfx_try_charge_memcg+0x10/0x10 [ 3326.334719][T16649] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3326.340496][T16649] ? __pfx_lock_release+0x10/0x10 [ 3326.345590][T16649] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3326.351647][T16649] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3326.357433][T16649] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3326.363306][T16649] obj_cgroup_charge+0x389/0x630 [ 3326.368324][T16649] ? obj_cgroup_charge+0x121/0x630 [ 3326.373509][T16649] ? __pfx_obj_cgroup_charge+0x10/0x10 [ 3326.379009][T16649] ? __kmalloc_node_track_caller+0xc1/0x4e0 [ 3326.384966][T16649] ? __pfx___might_resched+0x10/0x10 [ 3326.390301][T16649] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3326.396353][T16649] __memcg_slab_pre_alloc_hook+0x28d/0x2b0 [ 3326.402225][T16649] __kmalloc_node_track_caller+0x310/0x4e0 [ 3326.408098][T16649] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 3326.414484][T16649] ? neigh_sysctl_register+0xb4/0x500 [ 3326.419928][T16649] ? stack_depot_save_flags+0x29/0x860 [ 3326.425463][T16649] kmemdup+0x2a/0x60 [ 3326.429425][T16649] neigh_sysctl_register+0xb4/0x500 [ 3326.434689][T16649] ? __pfx_neigh_sysctl_register+0x10/0x10 [ 3326.440557][T16649] ? neigh_parms_alloc+0x455/0x570 [ 3326.445734][T16649] ? rtnetlink_rcv_msg+0x89b/0x10d0 [ 3326.451002][T16649] ? netlink_rcv_skb+0x1e3/0x430 [ 3326.456014][T16649] ? netlink_unicast+0x7ea/0x980 [ 3326.461026][T16649] ? netlink_sendmsg+0x8e0/0xcb0 [ 3326.466029][T16649] ? __sock_sendmsg+0x221/0x270 [ 3326.470941][T16649] ? ____sys_sendmsg+0x525/0x7d0 [ 3326.475937][T16649] ? do_syscall_64+0xf9/0x240 [ 3326.480685][T16649] ? entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3326.486812][T16649] devinet_sysctl_register+0xaf/0x1f0 [ 3326.492245][T16649] inetdev_init+0x296/0x4d0 [ 3326.496805][T16649] inetdev_event+0x338/0x15c0 [ 3326.501629][T16649] ? __pfx_inetdev_event+0x10/0x10 [ 3326.506796][T16649] ? __pfx_add_netdev_ips+0x10/0x10 [ 3326.512067][T16649] ? __pfx_is_eth_port_of_netdev_filter+0x10/0x10 [ 3326.518551][T16649] ? cfg802154_netdev_notifier_call+0xde/0x8f0 [ 3326.524831][T16649] notifier_call_chain+0x18f/0x3b0 [ 3326.530030][T16649] register_netdevice+0x15b2/0x1a20 [ 3326.535329][T16649] ? __pfx_register_netdevice+0x10/0x10 [ 3326.540937][T16649] ? __xdp_rxq_info_reg+0x142/0x290 [ 3326.546300][T16649] br_dev_newlink+0x27/0x100 [ 3326.550955][T16649] ? __pfx_br_dev_newlink+0x10/0x10 [ 3326.556240][T16649] rtnl_newlink+0x158f/0x20a0 [ 3326.560991][T16649] ? rtnl_newlink+0x451/0x20a0 [ 3326.565840][T16649] ? __pfx_rtnl_newlink+0x10/0x10 [ 3326.570924][T16649] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3326.576185][T16649] ? __mutex_lock+0x9a4/0xd70 [ 3326.580938][T16649] ? __mutex_lock+0x526/0xd70 [ 3326.585704][T16649] ? __pfx_rtnl_newlink+0x10/0x10 [ 3326.590874][T16649] rtnetlink_rcv_msg+0x89b/0x10d0 [ 3326.595967][T16649] ? rtnetlink_rcv_msg+0x208/0x10d0 [ 3326.601238][T16649] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 3326.606771][T16649] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3326.612823][T16649] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 3326.619232][T16649] ? __local_bh_enable_ip+0x168/0x200 [ 3326.624674][T16649] ? lockdep_hardirqs_on+0x98/0x140 [ 3326.629947][T16649] ? __local_bh_enable_ip+0x168/0x200 [ 3326.635386][T16649] ? __dev_queue_xmit+0x2c4/0x3b10 [ 3326.640588][T16649] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 3326.646377][T16649] ? __dev_queue_xmit+0x2c4/0x3b10 [ 3326.651541][T16649] ? __dev_queue_xmit+0x15fd/0x3b10 [ 3326.656827][T16649] ? __dev_queue_xmit+0x2c4/0x3b10 [ 3326.662079][T16649] ? ref_tracker_free+0x643/0x7e0 [ 3326.667176][T16649] netlink_rcv_skb+0x1e3/0x430 [ 3326.672004][T16649] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 3326.677525][T16649] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 3326.682907][T16649] ? netlink_deliver_tap+0x2e/0x1b0 [ 3326.688164][T16649] netlink_unicast+0x7ea/0x980 [ 3326.693001][T16649] ? __pfx_netlink_unicast+0x10/0x10 [ 3326.698340][T16649] ? __virt_addr_valid+0x44e/0x520 [ 3326.703509][T16649] ? __phys_addr_symbol+0x2f/0x70 [ 3326.708588][T16649] ? __check_object_size+0x4bb/0xa00 [ 3326.713926][T16649] ? bpf_lsm_netlink_send+0x9/0x10 [ 3326.719102][T16649] netlink_sendmsg+0x8e0/0xcb0 [ 3326.723945][T16649] ? __pfx_netlink_sendmsg+0x10/0x10 [ 3326.729282][T16649] ? __import_iovec+0x552/0x890 [ 3326.734175][T16649] ? aa_sock_msg_perm+0x91/0x160 [ 3326.739163][T16649] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 3326.744504][T16649] ? security_socket_sendmsg+0x87/0xb0 [ 3326.750021][T16649] ? __pfx_netlink_sendmsg+0x10/0x10 [ 3326.755349][T16649] __sock_sendmsg+0x221/0x270 [ 3326.760084][T16649] ____sys_sendmsg+0x525/0x7d0 [ 3326.764905][T16649] ? __pfx_____sys_sendmsg+0x10/0x10 [ 3326.770260][T16649] __sys_sendmsg+0x2b0/0x3a0 [ 3326.774901][T16649] ? __pfx___sys_sendmsg+0x10/0x10 [ 3326.780131][T16649] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3326.786187][T16649] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 3326.792580][T16649] ? exc_page_fault+0x587/0x870 [ 3326.797580][T16649] ? do_syscall_64+0xb4/0x240 [ 3326.802321][T16649] do_syscall_64+0xf9/0x240 [ 3326.806890][T16649] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3326.812846][T16649] RIP: 0033:0x7ff32d87dda9 [ 3326.817314][T16649] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 3326.836982][T16649] RSP: 002b:00007ff32e5ed0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3326.845465][T16649] RAX: ffffffffffffffda RBX: 00007ff32d9abf80 RCX: 00007ff32d87dda9 [ 3326.853495][T16649] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000005 [ 3326.861524][T16649] RBP: 00007ff32d8ca47a R08: 0000000000000000 R09: 0000000000000000 [ 3326.869548][T16649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3326.877572][T16649] R13: 000000000000000b R14: 00007ff32d9abf80 R15: 00007ffd9289bd18 [ 3326.885617][T16649] [ 3326.911595][T16649] memory: usage 307200kB, limit 307200kB, failcnt 11355 [ 3326.934091][T16649] memory+swap: usage 307432kB, limit 9007199254740988kB, failcnt 0 [ 3326.958482][T16649] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3326.976514][T16649] Memory cgroup stats for /syz0: [ 3326.976826][T16649] cache 0 [ 3327.001239][T16649] rss 4096 [ 3327.013053][T16649] rss_huge 0 [ 3327.024866][T16649] shmem 0 [ 3327.039549][T16649] mapped_file 0 [ 3327.043090][T16649] dirty 0 [ 3327.046062][T16649] writeback 0 [ 3327.057593][T16649] workingset_refault_anon 6531 [ 3327.067343][T16649] workingset_refault_file 1 [ 3327.081610][T16649] swap 237568 [ 3327.084965][T16649] swapcached 4096 [ 3327.091406][T16649] pgpgin 211296 [ 3327.094926][T16649] pgpgout 211295 [ 3327.098516][T16649] pgfault 548684 [ 3327.105881][T16649] pgmajfault 6053 [ 3327.112221][T16649] inactive_anon 0 [ 3327.115916][T16649] active_anon 4096 [ 3327.123507][T16649] inactive_file 0 [ 3327.127194][T16649] active_file 0 [ 3327.133237][T16649] unevictable 0 [ 3327.136750][T16649] hierarchical_memory_limit 314572800 [ 3327.156182][T16649] hierarchical_memsw_limit 9223372036854771712 [ 3327.163458][T16649] total_cache 0 [ 3327.169899][T16649] total_rss 4096 [ 3327.173501][T16649] total_rss_huge 0 [ 3327.177258][T16649] total_shmem 0 [ 3327.184724][T16649] total_mapped_file 0 [ 3327.188988][T16649] total_dirty 0 [ 3327.192488][T16649] total_writeback 0 [ 3327.196329][T16649] total_workingset_refault_anon 6531 [ 3327.207408][T16649] total_workingset_refault_file 1 [ 3327.214065][T16649] total_swap 237568 [ 3327.217948][T16649] total_swapcached 4096 [ 3327.228072][T16649] total_pgpgin 211296 [ 3327.232281][T16649] total_pgpgout 211295 [ 3327.236389][T16649] total_pgfault 548684 [ 3327.246809][T16649] total_pgmajfault 6053 [ 3327.255371][T16649] total_inactive_anon 0 [ 3327.265658][T16649] total_active_anon 4096 [ 3327.270693][T16649] total_inactive_file 0 [ 3327.275170][T16649] total_active_file 0 [ 3327.285172][T16649] total_unevictable 0 [ 3327.289735][T16649] anon_cost 0 [ 3327.293064][T16649] file_cost 0 [ 3327.296374][T16649] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16647,uid=0 [ 3327.312648][T16649] Memory cgroup out of memory: Killed process 16647 (syz-executor.0) total-vm:54640kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3327.344385][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3327.366037][ T5105] CPU: 1 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3327.376435][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3327.386532][ T5105] Call Trace: [ 3327.389846][ T5105] [ 3327.392811][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3327.397540][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3327.402779][ T5105] ? __pfx__printk+0x10/0x10 [ 3327.407406][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3327.412144][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3327.417224][ T5105] dump_header+0xda/0x6a0 [ 3327.421618][ T5105] oom_kill_process+0x3a7/0x930 [ 3327.426519][ T5105] out_of_memory+0xf67/0x1320 [ 3327.431246][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3327.436927][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3327.441999][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3327.447166][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3327.452756][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3327.457831][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3327.463969][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3327.469213][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3327.474204][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3327.479186][ T5105] ? mark_lock+0x9a/0x350 [ 3327.483579][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3327.489026][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3327.495223][ T5105] charge_memcg+0xa2/0x160 [ 3327.499680][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3327.505797][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3327.511287][ T5105] ? mark_lock+0x9a/0x350 [ 3327.515642][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3327.521644][ T5105] swap_cluster_readahead+0x67c/0x810 [ 3327.527034][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3327.533030][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3327.538079][ T5105] ? xas_descend+0x37e/0x470 [ 3327.542694][ T5105] swapin_readahead+0x1ea/0x1070 [ 3327.547643][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3327.552786][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3327.558187][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3327.563511][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3327.568825][ T5105] do_swap_page+0x791/0x3f40 [ 3327.573439][ T5105] ? __lock_acquire+0x1345/0x1fd0 [ 3327.578485][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3327.583284][ T5105] ? do_swap_page+0x154/0x3f40 [ 3327.588064][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3327.593107][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3327.598592][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3327.604423][ T5105] ? __pfx_validate_chain+0x10/0x10 [ 3327.609655][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3327.614819][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3327.620304][ T5105] ? mt_find+0x226/0x850 [ 3327.624558][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3327.629614][ T5105] ? mt_find+0x62d/0x850 [ 3327.633870][ T5105] ? mt_find+0x226/0x850 [ 3327.638151][ T5105] ? find_vma+0x142/0x1c0 [ 3327.642495][ T5105] ? __pfx_find_vma+0x10/0x10 [ 3327.647186][ T5105] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3327.653186][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3327.657976][ T5105] exc_page_fault+0x2ad/0x870 [ 3327.662684][ T5105] asm_exc_page_fault+0x26/0x30 [ 3327.667556][ T5105] RIP: 0010:__get_user_8+0x11/0x20 [ 3327.672689][ T5105] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3327.692395][ T5105] RSP: 0018:ffffc90004367d78 EFLAGS: 00050202 [ 3327.698477][ T5105] RAX: 00005555566b1da8 RBX: ffff88802e9bee78 RCX: ffffc90004367c03 [ 3327.706458][ T5105] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7fe0 [ 3327.714436][ T5105] RBP: ffffc90004367ec0 R08: ffffffff8f85feef R09: 1ffffffff1f0bfdd [ 3327.722415][ T5105] R10: dffffc0000000000 R11: fffffbfff1f0bfde R12: ffffc90004367d80 [ 3327.730397][ T5105] R13: ffffc90004367fd8 R14: dffffc0000000000 R15: ffff88802e9bd940 [ 3327.738401][ T5105] __rseq_handle_notify_resume+0x158/0x1490 [ 3327.744321][ T5105] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3327.750754][ T5105] ? irqentry_exit_to_user_mode+0x52/0x270 [ 3327.756575][ T5105] irqentry_exit_to_user_mode+0xbb/0x270 [ 3327.762224][ T5105] exc_page_fault+0x587/0x870 [ 3327.766939][ T5105] asm_exc_page_fault+0x26/0x30 [ 3327.771812][ T5105] RIP: 0033:0x7f025407a780 [ 3327.776243][ T5105] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00 [ 3327.795861][ T5105] RSP: 002b:00007ffe12c8cc78 EFLAGS: 00010246 [ 3327.801954][ T5105] RAX: 00000000000002aa RBX: 0000000000004726 RCX: 0000000000000000 [ 3327.809935][ T5105] RDX: 0000000040000001 RSI: 00007ffe12c8ccdc RDI: 00000000ffffffff [ 3327.817915][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000010 R09: 00007ffe12ccd0b0 [ 3327.825898][ T5105] R10: 00007ffe12ccd080 R11: 000000000009b994 R12: 0000000000000032 [ 3327.833894][ T5105] R13: 000000000032c162 R14: 000000000032c162 R15: 0000000000000000 [ 3327.841894][ T5105] [ 3327.879801][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 348305 [ 3327.888393][ T5105] memory+swap: usage 307444kB, limit 9007199254740988kB, failcnt 0 [ 3327.896588][ T5105] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3327.904197][ T5105] Memory cgroup stats for /syz1: [ 3327.904460][ T5105] cache 0 [ 3327.912714][ T5105] rss 0 [ 3327.915777][ T5105] rss_huge 0 [ 3327.920625][ T5105] shmem 0 [ 3327.923216][T16651] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3327.923774][ T5105] mapped_file 0 [ 3327.936569][ T5105] dirty 0 [ 3327.939833][ T5105] writeback 0 [ 3327.943337][ T5105] workingset_refault_anon 118438 [ 3327.948493][ T5105] workingset_refault_file 3 [ 3327.953320][ T5105] swap 249856 [ 3327.956807][ T5105] swapcached 0 [ 3327.960442][ T5105] pgpgin 288477 [ 3327.964113][ T5105] pgpgout 288477 [ 3327.967844][ T5105] pgfault 614244 [ 3327.975880][ T5105] pgmajfault 111430 [ 3327.979991][ T5105] inactive_anon 0 [ 3327.983825][ T5105] active_anon 0 [ 3327.987474][ T5105] inactive_file 0 [ 3327.995195][ T5105] active_file 0 [ 3327.999431][ T5105] unevictable 0 [ 3328.003014][ T5105] hierarchical_memory_limit 314572800 [ 3328.008403][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3328.019845][ T5105] total_cache 0 [ 3328.023429][ T5105] total_rss 0 [ 3328.026805][ T5105] total_rss_huge 0 [ 3328.035538][ T5105] total_shmem 0 [ 3328.040267][ T5105] total_mapped_file 0 [ 3328.045067][ T5105] total_dirty 0 [ 3328.049486][ T5105] total_writeback 0 [ 3328.053404][ T5105] total_workingset_refault_anon 118438 [ 3328.068933][ T5105] total_workingset_refault_file 3 [ 3328.077478][ T5105] total_swap 249856 [ 3328.105976][ T1239] ieee802154 phy0 wpan0: encryption failed: -22 [ 3328.112631][ T1239] ieee802154 phy1 wpan1: encryption failed: -22 [ 3328.128472][ T5105] total_swapcached 0 [ 3328.132615][ T5105] total_pgpgin 288477 [ 3328.147692][ T5105] total_pgpgout 288477 01:28:06 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000ffffffe00000000000000114000600020000001b"], 0x54}}, 0x0) [ 3328.158229][ T5105] total_pgfault 614244 01:28:06 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000008100000000000114000600020000001b"], 0x54}}, 0x0) [ 3328.188904][ T5105] total_pgmajfault 111430 [ 3328.193326][ T5105] total_inactive_anon 0 [ 3328.197509][ T5105] total_active_anon 0 [ 3328.227857][ T5105] total_inactive_file 0 [ 3328.254120][ T5105] total_active_file 0 [ 3328.258257][ T5105] total_unevictable 0 [ 3328.295165][ T5105] anon_cost 0 [ 3328.298517][ T5105] file_cost 0 [ 3328.306384][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16656,uid=0 01:28:06 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000c00000000000114000600020000001b"], 0x54}}, 0x0) [ 3328.344063][ T5105] Memory cgroup out of memory: Killed process 16656 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3328.626164][T16663] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3328.649162][T16663] CPU: 0 PID: 16663 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3328.659654][T16663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3328.669755][T16663] Call Trace: [ 3328.673083][T16663] [ 3328.676051][T16663] dump_stack_lvl+0x1e7/0x2e0 [ 3328.680790][T16663] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3328.686037][T16663] ? __pfx__printk+0x10/0x10 [ 3328.690664][T16663] ? ___ratelimit+0x4c4/0x670 [ 3328.695402][T16663] ? __pfx____ratelimit+0x10/0x10 [ 3328.700488][T16663] dump_header+0xda/0x6a0 [ 3328.704879][T16663] oom_kill_process+0x3a7/0x930 [ 3328.709791][T16663] out_of_memory+0xf67/0x1320 [ 3328.714509][T16663] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3328.720160][T16663] ? __pfx___mutex_lock+0x10/0x10 [ 3328.725214][T16663] ? __pfx_out_of_memory+0x10/0x10 [ 3328.730354][T16663] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3328.735917][T16663] ? __pfx_lock_release+0x10/0x10 [ 3328.740960][T16663] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3328.747049][T16663] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3328.752261][T16663] ? mem_cgroup_iter+0x3e9/0x560 [ 3328.757225][T16663] try_charge_memcg+0xda2/0x18a0 [ 3328.762211][T16663] ? __pfx_try_charge_memcg+0x10/0x10 [ 3328.767600][T16663] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3328.773337][T16663] ? __pfx_lock_release+0x10/0x10 [ 3328.778381][T16663] ? memcg_account_kmem+0x1e7/0x210 [ 3328.783630][T16663] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3328.789468][T16663] __memcg_kmem_charge_page+0xe1/0x250 [ 3328.794956][T16663] memcg_charge_kernel_stack+0x37e/0x550 [ 3328.800610][T16663] dup_task_struct+0x15d/0x7d0 [ 3328.805390][T16663] copy_process+0x5d5/0x3fc0 [ 3328.810009][T16663] ? __might_fault+0xa9/0x120 [ 3328.814706][T16663] ? __pfx_lock_release+0x10/0x10 [ 3328.819779][T16663] ? __pfx_copy_process+0x10/0x10 [ 3328.824814][T16663] ? __might_fault+0xc5/0x120 [ 3328.829509][T16663] ? __asan_memset+0x23/0x50 [ 3328.834132][T16663] kernel_clone+0x21d/0x8d0 [ 3328.838652][T16663] ? __pfx_kernel_clone+0x10/0x10 [ 3328.843705][T16663] __se_sys_clone3+0x2cb/0x350 [ 3328.848504][T16663] ? __pfx___se_sys_clone3+0x10/0x10 [ 3328.853837][T16663] ? do_syscall_64+0x108/0x240 [ 3328.858637][T16663] ? do_syscall_64+0xb4/0x240 [ 3328.863350][T16663] do_syscall_64+0xf9/0x240 [ 3328.867888][T16663] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3328.873806][T16663] RIP: 0033:0x7f02540a9b99 [ 3328.878241][T16663] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3328.897877][T16663] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3328.906310][T16663] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3328.914296][T16663] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3328.922278][T16663] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3328.930258][T16663] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3328.938237][T16663] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3328.946239][T16663] [ 3329.042143][T16663] memory: usage 307200kB, limit 307200kB, failcnt 348473 [ 3329.050382][T16663] memory+swap: usage 307436kB, limit 9007199254740988kB, failcnt 0 [ 3329.120064][T16663] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0 [ 3329.158055][T16663] Memory cgroup stats for /syz1: [ 3329.158217][T16663] cache 0 [ 3329.167610][T16658] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3329.187094][T16663] rss 8192 [ 3329.190923][T16663] rss_huge 0 [ 3329.194163][T16663] shmem 0 [ 3329.197133][T16663] mapped_file 0 [ 3329.248009][T16663] dirty 0 [ 3329.261170][T16663] writeback 0 [ 3329.264515][T16663] workingset_refault_anon 118509 [ 3329.304929][T16663] workingset_refault_file 3 [ 3329.314440][T16663] swap 241664 [ 3329.320535][T16663] swapcached 4096 [ 3329.324225][T16663] pgpgin 288559 [ 3329.327710][T16663] pgpgout 288557 [ 3329.351049][T16663] pgfault 614366 01:28:07 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000fffffff00000000000000114000600020000001b"], 0x54}}, 0x0) [ 3329.354748][T16663] pgmajfault 111497 [ 3329.391580][T16663] inactive_anon 4096 [ 3329.395543][T16663] active_anon 4096 [ 3329.408050][T16655] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3329.437666][T16663] inactive_file 0 01:28:07 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000980)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x2e}], 0x1}, 0x0) readv(r0, &(0x7f0000000480)=[{&(0x7f00000000c0)=""/97, 0x61}, {&(0x7f0000000140)=""/2, 0x2}, {&(0x7f0000000180)=""/139, 0x8b}, {&(0x7f0000000240)=""/136, 0x88}, {&(0x7f0000000300)=""/209, 0xd1}, {&(0x7f0000000400)=""/106, 0x6a}], 0x6) r1 = socket$key(0xf, 0x3, 0x2) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='freezer.self_freezing\x00', 0x275a, 0x0) ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, &(0x7f0000000540)) write$binfmt_script(r2, &(0x7f0000000940)=ANY=[@ANYRESDEC=r1], 0x208e24b) sendfile(r1, r2, 0x0, 0x6) openat$cgroup_ro(r2, &(0x7f0000000500)='cpuset.effective_cpus\x00', 0x0, 0x0) [ 3329.463128][T16655] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3329.464022][T16663] active_file 0 [ 3329.534367][T16663] unevictable 0 [ 3329.538386][T16666] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3329.561844][T16663] hierarchical_memory_limit 314572800 [ 3329.567277][T16663] hierarchical_memsw_limit 9223372036854771712 [ 3329.600347][T16663] total_cache 0 [ 3329.615516][T16663] total_rss 8192 [ 3329.629606][T16663] total_rss_huge 0 [ 3329.643958][T16663] total_shmem 0 [ 3329.655941][T16663] total_mapped_file 0 [ 3329.672260][T16663] total_dirty 0 [ 3329.683625][T16663] total_writeback 0 [ 3329.704352][T16663] total_workingset_refault_anon 118509 [ 3329.749419][T16663] total_workingset_refault_file 3 01:28:08 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000fc0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3329.773826][T16663] total_swap 241664 [ 3329.801851][T16663] total_swapcached 4096 [ 3329.826553][T16663] total_pgpgin 288559 [ 3329.852582][T16663] total_pgpgout 288557 [ 3329.874362][T16663] total_pgfault 614366 [ 3329.878504][T16663] total_pgmajfault 111497 [ 3329.895341][T16663] total_inactive_anon 4096 [ 3329.922450][T16663] total_active_anon 4096 [ 3329.926771][T16663] total_inactive_file 0 [ 3329.951239][T16663] total_active_file 0 [ 3329.970290][T16663] total_unevictable 0 [ 3329.984059][T16663] anon_cost 0 [ 3329.994187][T16663] file_cost 0 [ 3330.012732][T16663] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16663,uid=0 [ 3330.068420][T16663] Memory cgroup out of memory: Killed process 16663 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:08 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000f00000000000114000600020000001b"], 0x54}}, 0x0) 01:28:08 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000980)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x2e}], 0x1}, 0x0) readv(r0, &(0x7f0000000480)=[{&(0x7f00000000c0)=""/97, 0x61}, {&(0x7f0000000140)=""/2, 0x2}, {&(0x7f0000000180)=""/139, 0x8b}, {&(0x7f0000000240)=""/136, 0x88}, {&(0x7f0000000300)=""/209, 0xd1}, {&(0x7f0000000400)=""/106, 0x6a}], 0x6) socket$key(0xf, 0x3, 0x2) (async) r1 = socket$key(0xf, 0x3, 0x2) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='freezer.self_freezing\x00', 0x275a, 0x0) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='freezer.self_freezing\x00', 0x275a, 0x0) ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, &(0x7f0000000540)) (async) ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, &(0x7f0000000540)) write$binfmt_script(r2, &(0x7f0000000940)=ANY=[@ANYRESDEC=r1], 0x208e24b) sendfile(r1, r2, 0x0, 0x6) openat$cgroup_ro(r2, &(0x7f0000000500)='cpuset.effective_cpus\x00', 0x0, 0x0) [ 3330.616818][T16675] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 3330.674545][T16675] CPU: 0 PID: 16675 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3330.685047][T16675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3330.695255][T16675] Call Trace: [ 3330.698574][T16675] [ 3330.701547][T16675] dump_stack_lvl+0x1e7/0x2e0 [ 3330.706280][T16675] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3330.711535][T16675] ? __pfx__printk+0x10/0x10 [ 3330.716175][T16675] ? ___ratelimit+0x4c4/0x670 [ 3330.720928][T16675] ? __pfx____ratelimit+0x10/0x10 [ 3330.726020][T16675] dump_header+0xda/0x6a0 [ 3330.730413][T16675] oom_kill_process+0x3a7/0x930 [ 3330.735327][T16675] out_of_memory+0xf67/0x1320 [ 3330.740072][T16675] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3330.745776][T16675] ? __pfx___mutex_lock+0x10/0x10 [ 3330.750862][T16675] ? __pfx_out_of_memory+0x10/0x10 [ 3330.756051][T16675] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3330.761675][T16675] ? __pfx_lock_release+0x10/0x10 [ 3330.766760][T16675] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3330.772895][T16675] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3330.778156][T16675] ? mem_cgroup_iter+0x3e9/0x560 [ 3330.783172][T16675] try_charge_memcg+0xda2/0x18a0 [ 3330.788175][T16675] ? mark_lock+0x9a/0x350 [ 3330.792589][T16675] ? __pfx_try_charge_memcg+0x10/0x10 [ 3330.798059][T16675] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3330.804298][T16675] charge_memcg+0xa2/0x160 [ 3330.808780][T16675] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3330.814914][T16675] __read_swap_cache_async+0x480/0x8b0 [ 3330.820431][T16675] ? mark_lock+0x9a/0x350 [ 3330.824830][T16675] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3330.830876][T16675] swap_cluster_readahead+0x67c/0x810 [ 3330.836361][T16675] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3330.842313][T16675] ? __pfx_lock_release+0x10/0x10 [ 3330.847415][T16675] ? xas_descend+0x37e/0x470 [ 3330.852071][T16675] swapin_readahead+0x1ea/0x1070 [ 3330.857058][T16675] ? filemap_get_entry+0x127/0x4e0 [ 3330.862347][T16675] ? __pfx_swapin_readahead+0x10/0x10 [ 3330.867785][T16675] ? __filemap_get_folio+0x935/0xbc0 [ 3330.873144][T16675] ? swap_cache_get_folio+0x9f/0x570 [ 3330.878488][T16675] do_swap_page+0x791/0x3f40 [ 3330.883143][T16675] ? rcu_is_watching+0x15/0xb0 [ 3330.887981][T16675] ? do_swap_page+0x154/0x3f40 [ 3330.892796][T16675] ? __pfx_do_swap_page+0x10/0x10 [ 3330.897880][T16675] ? pte_offset_map_nolock+0x137/0x1f0 [ 3330.903405][T16675] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3330.909286][T16675] ? __pfx_validate_chain+0x10/0x10 [ 3330.914553][T16675] __handle_mm_fault+0x15e8/0x72d0 [ 3330.919774][T16675] ? __pfx___handle_mm_fault+0x10/0x10 [ 3330.925308][T16675] ? mt_find+0x226/0x850 [ 3330.929606][T16675] ? __pfx_lock_release+0x10/0x10 [ 3330.934816][T16675] ? mt_find+0x62d/0x850 [ 3330.939113][T16675] ? mt_find+0x226/0x850 [ 3330.943429][T16675] ? find_vma+0x142/0x1c0 [ 3330.947819][T16675] ? __pfx_find_vma+0x10/0x10 [ 3330.952557][T16675] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3330.958621][T16675] handle_mm_fault+0x3c1/0x8a0 [ 3330.963463][T16675] exc_page_fault+0x2ad/0x870 [ 3330.968205][T16675] asm_exc_page_fault+0x26/0x30 [ 3330.973116][T16675] RIP: 0010:__put_user_4+0x11/0x20 [ 3330.978288][T16675] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 [ 3330.997954][T16675] RSP: 0018:ffffc900135afbd8 EFLAGS: 00050206 [ 3331.004082][T16675] RAX: 000000000000472a RBX: 0000000000000000 RCX: 00007f0254e46990 [ 3331.012108][T16675] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7fe0 [ 3331.020136][T16675] RBP: ffffc900135afd10 R08: ffffffff8f85feef R09: 1ffffffff1f0bfdd [ 3331.028158][T16675] R10: dffffc0000000000 R11: fffffbfff1f0bfde R12: ffffc900135afd78 [ 3331.036180][T16675] R13: 00000000003d0f00 R14: ffffc900135afc40 R15: dffffc0000000000 [ 3331.044236][T16675] kernel_clone+0x363/0x8d0 [ 3331.048807][T16675] ? __pfx_kernel_clone+0x10/0x10 [ 3331.053911][T16675] __se_sys_clone3+0x2cb/0x350 [ 3331.058736][T16675] ? __pfx___se_sys_clone3+0x10/0x10 [ 3331.064128][T16675] ? do_syscall_64+0x108/0x240 [ 3331.068958][T16675] ? do_syscall_64+0xb4/0x240 [ 3331.073694][T16675] do_syscall_64+0xf9/0x240 [ 3331.078261][T16675] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3331.084214][T16675] RIP: 0033:0x7f02540a9b99 [ 3331.088683][T16675] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3331.108340][T16675] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3331.116813][T16675] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3331.124837][T16675] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3331.132864][T16675] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3331.140889][T16675] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3331.148913][T16675] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3331.156957][T16675] [ 3331.230179][T16673] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:28:09 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0xf0ffffff00000000) 01:28:09 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000a7bbd1fc0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3331.459513][T16683] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3331.464212][T16675] memory: usage 307200kB, limit 307200kB, failcnt 349009 [ 3331.476327][T16675] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0 [ 3331.476661][T16684] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3331.484841][T16675] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3331.502101][T16675] Memory cgroup stats for /syz1: 01:28:09 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000478800000000000114000600020000001b"], 0x54}}, 0x0) [ 3331.502271][T16675] cache 0 [ 3331.510495][T16675] rss 0 [ 3331.513470][T16675] rss_huge 0 [ 3331.518235][T16675] shmem 0 [ 3331.544602][T16675] mapped_file 0 [ 3331.548954][T16684] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3331.574721][T16675] dirty 0 [ 3331.581324][T16675] writeback 0 [ 3331.588168][T16675] workingset_refault_anon 118640 [ 3331.596977][T16675] workingset_refault_file 3 [ 3331.606580][T16675] swap 286720 [ 3331.628359][T16675] swapcached 0 [ 3331.633455][T16675] pgpgin 288700 [ 3331.647775][T16675] pgpgout 288700 [ 3331.667356][T16675] pgfault 614583 [ 3331.671838][T16675] pgmajfault 111627 [ 3331.685202][T16675] inactive_anon 0 [ 3331.691324][T16675] active_anon 0 [ 3331.695042][T16675] inactive_file 0 [ 3331.717947][T16675] active_file 0 [ 3331.727798][T16675] unevictable 0 01:28:09 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000fffffffc0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3331.734789][T16675] hierarchical_memory_limit 314572800 [ 3331.778814][T16675] hierarchical_memsw_limit 9223372036854771712 [ 3331.785032][T16675] total_cache 0 [ 3331.808890][T16675] total_rss 0 [ 3331.812258][T16675] total_rss_huge 0 [ 3331.816035][T16675] total_shmem 0 [ 3331.838406][T16675] total_mapped_file 0 [ 3331.846060][T16675] total_dirty 0 [ 3331.859290][T16675] total_writeback 0 [ 3331.864890][T16675] total_workingset_refault_anon 118640 [ 3331.871151][T16675] total_workingset_refault_file 3 [ 3331.884353][T16675] total_swap 286720 [ 3331.904213][T16675] total_swapcached 0 [ 3331.923270][T16675] total_pgpgin 288700 [ 3331.935024][T16675] total_pgpgout 288700 [ 3331.944114][T16675] total_pgfault 614583 [ 3331.953439][T16675] total_pgmajfault 111627 [ 3331.968723][T16675] total_inactive_anon 0 [ 3331.976606][T16675] total_active_anon 0 [ 3331.991373][T16675] total_inactive_file 0 [ 3332.004855][T16675] total_active_file 0 [ 3332.018318][T16675] total_unevictable 0 [ 3332.027673][T16675] anon_cost 0 [ 3332.035964][T16675] file_cost 0 [ 3332.043564][T16675] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16675,uid=0 01:28:10 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000980)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x2e}], 0x1}, 0x0) readv(r0, &(0x7f0000000480)=[{&(0x7f00000000c0)=""/97, 0x61}, {&(0x7f0000000140)=""/2, 0x2}, {&(0x7f0000000180)=""/139, 0x8b}, {&(0x7f0000000240)=""/136, 0x88}, {&(0x7f0000000300)=""/209, 0xd1}, {&(0x7f0000000400)=""/106, 0x6a}], 0x6) (async) r1 = socket$key(0xf, 0x3, 0x2) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='freezer.self_freezing\x00', 0x275a, 0x0) ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, &(0x7f0000000540)) (async) write$binfmt_script(r2, &(0x7f0000000940)=ANY=[@ANYRESDEC=r1], 0x208e24b) sendfile(r1, r2, 0x0, 0x6) (async) openat$cgroup_ro(r2, &(0x7f0000000500)='cpuset.effective_cpus\x00', 0x0, 0x0) [ 3332.092344][T16675] Memory cgroup out of memory: Killed process 16675 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:10 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000001000000000000114000600020000001b"], 0x54}}, 0x0) [ 3332.478198][T16691] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3332.501191][T16691] CPU: 1 PID: 16691 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3332.511691][T16691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3332.521796][T16691] Call Trace: [ 3332.525112][T16691] [ 3332.528071][T16691] dump_stack_lvl+0x1e7/0x2e0 [ 3332.532816][T16691] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3332.538071][T16691] ? __pfx__printk+0x10/0x10 [ 3332.542712][T16691] ? ___ratelimit+0x4c4/0x670 [ 3332.547461][T16691] ? __pfx____ratelimit+0x10/0x10 [ 3332.552557][T16691] dump_header+0xda/0x6a0 [ 3332.556940][T16691] oom_kill_process+0x3a7/0x930 [ 3332.561876][T16691] out_of_memory+0xf67/0x1320 [ 3332.566689][T16691] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3332.572375][T16691] ? __pfx___mutex_lock+0x10/0x10 [ 3332.577467][T16691] ? __pfx_out_of_memory+0x10/0x10 [ 3332.582630][T16691] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3332.588201][T16691] ? __pfx_lock_release+0x10/0x10 [ 3332.593335][T16691] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3332.599486][T16691] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3332.604705][T16691] ? mem_cgroup_iter+0x3e9/0x560 [ 3332.609666][T16691] try_charge_memcg+0xda2/0x18a0 [ 3332.614644][T16691] ? __pfx_try_charge_memcg+0x10/0x10 [ 3332.620033][T16691] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3332.625763][T16691] ? __pfx_lock_release+0x10/0x10 [ 3332.630809][T16691] ? memcg_account_kmem+0x1e7/0x210 [ 3332.636033][T16691] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3332.641857][T16691] __memcg_kmem_charge_page+0xe1/0x250 [ 3332.647331][T16691] memcg_charge_kernel_stack+0x304/0x550 [ 3332.652981][T16691] dup_task_struct+0x15d/0x7d0 [ 3332.657801][T16691] copy_process+0x5d5/0x3fc0 [ 3332.662422][T16691] ? __might_fault+0xa9/0x120 [ 3332.667121][T16691] ? __pfx_lock_release+0x10/0x10 [ 3332.672178][T16691] ? __pfx_copy_process+0x10/0x10 [ 3332.677212][T16691] ? __might_fault+0xc5/0x120 [ 3332.681930][T16691] ? __asan_memset+0x23/0x50 [ 3332.686550][T16691] kernel_clone+0x21d/0x8d0 [ 3332.691077][T16691] ? __pfx_kernel_clone+0x10/0x10 [ 3332.696129][T16691] __se_sys_clone3+0x2cb/0x350 [ 3332.700910][T16691] ? __pfx___se_sys_clone3+0x10/0x10 [ 3332.706240][T16691] ? do_syscall_64+0x108/0x240 [ 3332.711019][T16691] ? do_syscall_64+0xb4/0x240 [ 3332.715743][T16691] do_syscall_64+0xf9/0x240 [ 3332.720266][T16691] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3332.726175][T16691] RIP: 0033:0x7f02540a9b99 [ 3332.730601][T16691] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3332.750393][T16691] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3332.758826][T16691] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3332.766808][T16691] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3332.774787][T16691] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3332.782866][T16691] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3332.790855][T16691] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3332.798854][T16691] [ 3332.876607][T16691] memory: usage 307200kB, limit 307200kB, failcnt 349192 [ 3332.896728][T16691] memory+swap: usage 307432kB, limit 9007199254740988kB, failcnt 0 [ 3332.916223][T16691] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 01:28:11 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000000c0)={0x0, 0x0, {0x0, @struct}, {0x0, @struct, 0x0}, {0x0, @struct}}) ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f00000004c0)={0x2, 0x9, @start={r1, 0x0, "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", "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"}, [0x200000000000000, 0x9, 0x3, 0x200, 0x118206a0, 0x2, 0x0, 0xfff, 0x7, 0x401, 0x2, 0x8, 0x100000001, 0x7fff, 0x5, 0xa6, 0x4, 0x9b, 0x58, 0x2, 0x9, 0xfff, 0x5, 0xfffffffffffffffa, 0x1, 0x2, 0x6, 0x1f, 0x8, 0x11, 0x8ba5, 0x7, 0x400, 0x4, 0x400, 0x1, 0x81, 0xff, 0xfffffffffffffeff, 0x4, 0x2, 0xffffffff, 0x0, 0x5, 0x400, 0x7, 0x7fff, 0x1, 0x7f, 0x3f, 0x81, 0xfffffffffd955dcb, 0x10000, 0x83d, 0x4, 0x7, 0x8, 0x30c, 0x6, 0x7, 0x1, 0x7, 0x482, 0xb497]}) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3332.932951][T16691] Memory cgroup stats for /syz1: [ 3332.933110][T16691] cache 0 [ 3332.954865][T16691] rss 8192 [ 3332.966267][T16691] rss_huge 0 [ 3332.978164][T16691] shmem 0 [ 3332.998817][T16691] mapped_file 0 [ 3333.002426][T16691] dirty 0 [ 3333.005482][T16691] writeback 0 [ 3333.020838][T16691] workingset_refault_anon 118690 [ 3333.026001][T16691] workingset_refault_file 3 [ 3333.035281][T16691] swap 237568 [ 3333.043717][T16691] swapcached 8192 [ 3333.052461][T16691] pgpgin 288764 [ 3333.060826][T16691] pgpgout 288761 [ 3333.068007][T16691] pgfault 614686 [ 3333.076373][T16691] pgmajfault 111670 [ 3333.081845][T16691] inactive_anon 0 [ 3333.085711][T16691] active_anon 12288 [ 3333.092039][T16691] inactive_file 0 [ 3333.102263][T16691] active_file 0 [ 3333.105983][T16691] unevictable 0 [ 3333.135020][T16691] hierarchical_memory_limit 314572800 [ 3333.140338][T16699] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3333.147665][T16689] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3333.148958][T16699] netlink: 191448 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3333.176239][T16691] hierarchical_memsw_limit 9223372036854771712 [ 3333.195636][T16691] total_cache 0 01:28:11 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0xfdffffff00000000) [ 3333.368833][T16691] total_rss 8192 [ 3333.372669][T16691] total_rss_huge 0 [ 3333.377002][T16691] total_shmem 0 [ 3333.384462][T16691] total_mapped_file 0 [ 3333.436122][T16691] total_dirty 0 [ 3333.469359][T16691] total_writeback 0 [ 3333.480057][T16691] total_workingset_refault_anon 118690 [ 3333.485573][T16691] total_workingset_refault_file 3 01:28:11 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000080fe0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3333.522819][T16691] total_swap 237568 [ 3333.526689][T16691] total_swapcached 8192 [ 3333.558895][T16691] total_pgpgin 288764 [ 3333.576579][T16691] total_pgpgout 288761 [ 3333.598636][T16691] total_pgfault 614686 [ 3333.610124][T16687] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3333.616107][T16691] total_pgmajfault 111670 [ 3333.626064][T16691] total_inactive_anon 0 [ 3333.632097][T16691] total_active_anon 12288 [ 3333.636581][T16691] total_inactive_file 0 [ 3333.641391][T16691] total_active_file 0 [ 3333.645631][T16691] total_unevictable 0 [ 3333.650872][T16691] anon_cost 0 [ 3333.654286][T16691] file_cost 0 [ 3333.657684][T16691] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16691,uid=0 [ 3333.674114][T16691] Memory cgroup out of memory: Killed process 16691 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8912kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:11 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000001100000000000114000600020000001b"], 0x54}}, 0x0) [ 3333.864718][T16687] syz-executor.0 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000 [ 3333.903390][T16687] CPU: 1 PID: 16687 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3333.913968][T16687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3333.924057][T16687] Call Trace: [ 3333.927350][T16687] [ 3333.930298][T16687] dump_stack_lvl+0x1e7/0x2e0 [ 3333.935012][T16687] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3333.940229][T16687] ? __pfx__printk+0x10/0x10 [ 3333.944835][T16687] ? ___ratelimit+0x4c4/0x670 [ 3333.949545][T16687] ? __pfx____ratelimit+0x10/0x10 [ 3333.954596][T16687] dump_header+0xda/0x6a0 [ 3333.959040][T16687] oom_kill_process+0x3a7/0x930 [ 3333.963918][T16687] out_of_memory+0xf67/0x1320 [ 3333.968622][T16687] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3333.974273][T16687] ? __pfx___mutex_lock+0x10/0x10 [ 3333.979320][T16687] ? __pfx_out_of_memory+0x10/0x10 [ 3333.984465][T16687] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3333.990029][T16687] ? __pfx_lock_release+0x10/0x10 [ 3333.995076][T16687] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3334.001169][T16687] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3334.006389][T16687] ? mem_cgroup_iter+0x3e9/0x560 [ 3334.011360][T16687] try_charge_memcg+0xda2/0x18a0 [ 3334.016358][T16687] ? __pfx_try_charge_memcg+0x10/0x10 [ 3334.021760][T16687] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3334.027505][T16687] ? __pfx_lock_release+0x10/0x10 [ 3334.032557][T16687] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3334.038572][T16687] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3334.044319][T16687] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3334.050146][T16687] obj_cgroup_charge+0x389/0x630 [ 3334.055098][T16687] ? obj_cgroup_charge+0x121/0x630 [ 3334.060222][T16687] ? __pfx_obj_cgroup_charge+0x10/0x10 [ 3334.065699][T16687] ? __kmalloc_node_track_caller+0xc1/0x4e0 [ 3334.071613][T16687] ? __pfx___might_resched+0x10/0x10 [ 3334.076907][T16687] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3334.082914][T16687] __memcg_slab_pre_alloc_hook+0x28d/0x2b0 [ 3334.088741][T16687] __kmalloc_node_track_caller+0x310/0x4e0 [ 3334.094569][T16687] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 3334.100911][T16687] ? neigh_sysctl_register+0xb4/0x500 [ 3334.106300][T16687] ? stack_depot_save_flags+0x29/0x860 [ 3334.111783][T16687] kmemdup+0x2a/0x60 [ 3334.115705][T16687] neigh_sysctl_register+0xb4/0x500 [ 3334.120934][T16687] ? __pfx_neigh_sysctl_register+0x10/0x10 [ 3334.126767][T16687] ? neigh_parms_alloc+0x455/0x570 [ 3334.131898][T16687] ? rtnetlink_rcv_msg+0x89b/0x10d0 [ 3334.137108][T16687] ? netlink_rcv_skb+0x1e3/0x430 [ 3334.142065][T16687] ? netlink_unicast+0x7ea/0x980 [ 3334.147021][T16687] ? netlink_sendmsg+0x8e0/0xcb0 [ 3334.152009][T16687] ? __sock_sendmsg+0x221/0x270 [ 3334.156957][T16687] ? ____sys_sendmsg+0x525/0x7d0 [ 3334.161907][T16687] ? do_syscall_64+0xf9/0x240 [ 3334.166596][T16687] ? entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3334.172717][T16687] devinet_sysctl_register+0xaf/0x1f0 [ 3334.178108][T16687] inetdev_init+0x296/0x4d0 [ 3334.182629][T16687] inetdev_event+0x338/0x15c0 [ 3334.187321][T16687] ? __pfx_inetdev_event+0x10/0x10 [ 3334.192444][T16687] ? __pfx_add_netdev_ips+0x10/0x10 [ 3334.197657][T16687] ? __pfx_is_eth_port_of_netdev_filter+0x10/0x10 [ 3334.204090][T16687] ? cfg802154_netdev_notifier_call+0xde/0x8f0 [ 3334.210274][T16687] notifier_call_chain+0x18f/0x3b0 [ 3334.215416][T16687] register_netdevice+0x15b2/0x1a20 [ 3334.220654][T16687] ? __pfx_register_netdevice+0x10/0x10 [ 3334.226216][T16687] ? __xdp_rxq_info_reg+0x142/0x290 [ 3334.231473][T16687] br_dev_newlink+0x27/0x100 [ 3334.236104][T16687] ? __pfx_br_dev_newlink+0x10/0x10 [ 3334.241333][T16687] rtnl_newlink+0x158f/0x20a0 [ 3334.246047][T16687] ? rtnl_newlink+0x451/0x20a0 [ 3334.250855][T16687] ? __pfx_rtnl_newlink+0x10/0x10 [ 3334.255902][T16687] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3334.261127][T16687] ? __mutex_lock+0x9a4/0xd70 [ 3334.265823][T16687] ? __mutex_lock+0x526/0xd70 [ 3334.270534][T16687] ? __pfx_rtnl_newlink+0x10/0x10 [ 3334.275568][T16687] rtnetlink_rcv_msg+0x89b/0x10d0 [ 3334.280614][T16687] ? rtnetlink_rcv_msg+0x208/0x10d0 [ 3334.285848][T16687] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 3334.291340][T16687] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3334.297361][T16687] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 3334.303715][T16687] ? __local_bh_enable_ip+0x168/0x200 [ 3334.309107][T16687] ? lockdep_hardirqs_on+0x98/0x140 [ 3334.314318][T16687] ? __local_bh_enable_ip+0x168/0x200 [ 3334.319714][T16687] ? __dev_queue_xmit+0x2c4/0x3b10 [ 3334.324861][T16687] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 3334.330635][T16687] ? __dev_queue_xmit+0x2c4/0x3b10 [ 3334.335791][T16687] ? __dev_queue_xmit+0x15fd/0x3b10 [ 3334.341021][T16687] ? __dev_queue_xmit+0x2c4/0x3b10 [ 3334.346156][T16687] ? ref_tracker_free+0x643/0x7e0 [ 3334.351209][T16687] netlink_rcv_skb+0x1e3/0x430 [ 3334.355996][T16687] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 3334.361481][T16687] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 3334.366815][T16687] ? netlink_deliver_tap+0x2e/0x1b0 [ 3334.372041][T16687] netlink_unicast+0x7ea/0x980 [ 3334.376834][T16687] ? __pfx_netlink_unicast+0x10/0x10 [ 3334.382135][T16687] ? __virt_addr_valid+0x44e/0x520 [ 3334.387280][T16687] ? __phys_addr_symbol+0x2f/0x70 [ 3334.392323][T16687] ? __check_object_size+0x4bb/0xa00 [ 3334.397629][T16687] ? bpf_lsm_netlink_send+0x9/0x10 [ 3334.402771][T16687] netlink_sendmsg+0x8e0/0xcb0 [ 3334.407560][T16687] ? __pfx_netlink_sendmsg+0x10/0x10 [ 3334.412860][T16687] ? __import_iovec+0x552/0x890 [ 3334.417729][T16687] ? aa_sock_msg_perm+0x91/0x160 [ 3334.422695][T16687] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 3334.428007][T16687] ? security_socket_sendmsg+0x87/0xb0 [ 3334.433580][T16687] ? __pfx_netlink_sendmsg+0x10/0x10 [ 3334.438967][T16687] __sock_sendmsg+0x221/0x270 [ 3334.443666][T16687] ____sys_sendmsg+0x525/0x7d0 [ 3334.448467][T16687] ? __pfx_____sys_sendmsg+0x10/0x10 [ 3334.453786][T16687] __sys_sendmsg+0x2b0/0x3a0 [ 3334.458394][T16687] ? __pfx___sys_sendmsg+0x10/0x10 [ 3334.463545][T16687] ? restore_fpregs_from_fpstate+0x100/0x250 [ 3334.469556][T16687] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 3334.475918][T16687] ? do_syscall_64+0x108/0x240 [ 3334.480699][T16687] ? do_syscall_64+0xb4/0x240 [ 3334.485394][T16687] do_syscall_64+0xf9/0x240 [ 3334.489916][T16687] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3334.495840][T16687] RIP: 0033:0x7ff32d87dda9 [ 3334.500269][T16687] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 3334.519905][T16687] RSP: 002b:00007ff32e5ed0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3334.528348][T16687] RAX: ffffffffffffffda RBX: 00007ff32d9abf80 RCX: 00007ff32d87dda9 [ 3334.536432][T16687] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000005 [ 3334.544420][T16687] RBP: 00007ff32d8ca47a R08: 0000000000000000 R09: 0000000000000000 [ 3334.552405][T16687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3334.560387][T16687] R13: 000000000000000b R14: 00007ff32d9abf80 R15: 00007ffd9289bd18 [ 3334.568383][T16687] [ 3334.579564][T16687] memory: usage 307196kB, limit 307200kB, failcnt 15337 [ 3334.587905][T16687] memory+swap: usage 307416kB, limit 9007199254740988kB, failcnt 0 [ 3334.675929][T16687] kmem: usage 307148kB, limit 9007199254740988kB, failcnt 0 [ 3334.683577][T16687] Memory cgroup stats for /syz0: [ 3334.683742][T16687] cache 0 [ 3334.691976][T16687] rss 16384 [ 3334.695218][T16687] rss_huge 0 [ 3334.698582][T16687] shmem 0 [ 3334.701634][T16687] mapped_file 0 [ 3334.705198][T16687] dirty 0 [ 3334.708252][T16687] writeback 0 [ 3334.711829][T16687] workingset_refault_anon 9156 [ 3334.716681][T16687] workingset_refault_file 1 [ 3334.721311][T16687] swap 225280 [ 3334.724677][T16687] swapcached 12288 [ 3334.730212][T16687] pgpgin 214044 [ 3334.733736][T16687] pgpgout 214040 [ 3334.737315][T16687] pgfault 552104 [ 3334.741138][T16687] pgmajfault 8584 [ 3334.744800][T16687] inactive_anon 0 [ 3334.748446][T16687] active_anon 8192 [ 3334.752291][T16687] inactive_file 0 [ 3334.755960][T16687] active_file 0 [ 3334.759521][T16687] unevictable 0 [ 3334.762998][T16687] hierarchical_memory_limit 314572800 [ 3334.771287][T16687] hierarchical_memsw_limit 9223372036854771712 [ 3334.777490][T16687] total_cache 0 [ 3334.781101][T16687] total_rss 16384 [ 3334.784754][T16687] total_rss_huge 0 [ 3334.788478][T16687] total_shmem 0 [ 3334.792045][T16687] total_mapped_file 0 [ 3334.796047][T16687] total_dirty 0 [ 3334.799614][T16687] total_writeback 0 [ 3334.803444][T16687] total_workingset_refault_anon 9156 [ 3334.809146][T16687] total_workingset_refault_file 1 [ 3334.814209][T16687] total_swap 225280 [ 3334.818034][T16687] total_swapcached 12288 [ 3334.823154][T16687] total_pgpgin 214044 [ 3334.827171][T16687] total_pgpgout 214040 [ 3334.833757][T16687] total_pgfault 552104 [ 3334.837871][T16687] total_pgmajfault 8584 [ 3334.842726][T16687] total_inactive_anon 0 [ 3334.847005][T16687] total_active_anon 8192 [ 3334.851747][T16687] total_inactive_file 0 [ 3334.855956][T16687] total_active_file 0 [ 3334.860536][T16687] total_unevictable 0 [ 3334.864542][T16687] anon_cost 0 [ 3334.867825][T16687] file_cost 0 [ 3334.871509][T16687] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16686,uid=0 [ 3334.891293][T16687] Memory cgroup out of memory: Killed process 16687 (syz-executor.0) total-vm:54640kB, anon-rss:356kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3334.910058][T16705] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3334.920343][T16705] CPU: 1 PID: 16705 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3334.930806][T16705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3334.940897][T16705] Call Trace: [ 3334.944213][T16705] [ 3334.947197][T16705] dump_stack_lvl+0x1e7/0x2e0 [ 3334.951925][T16705] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3334.957280][T16705] ? __pfx__printk+0x10/0x10 [ 3334.961911][T16705] ? ___ratelimit+0x4c4/0x670 [ 3334.966646][T16705] ? __pfx____ratelimit+0x10/0x10 [ 3334.971731][T16705] dump_header+0xda/0x6a0 [ 3334.976117][T16705] oom_kill_process+0x3a7/0x930 [ 3334.981020][T16705] out_of_memory+0xf67/0x1320 [ 3334.985759][T16705] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3334.991444][T16705] ? __pfx___mutex_lock+0x10/0x10 [ 3334.996503][T16705] ? __pfx_out_of_memory+0x10/0x10 [ 3335.001653][T16705] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3335.007233][T16705] ? __pfx_lock_release+0x10/0x10 [ 3335.012297][T16705] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3335.018514][T16705] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3335.023776][T16705] ? mem_cgroup_iter+0x3e9/0x560 [ 3335.028777][T16705] try_charge_memcg+0xda2/0x18a0 [ 3335.033776][T16705] ? __pfx_try_charge_memcg+0x10/0x10 [ 3335.039181][T16705] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3335.044939][T16705] ? __pfx_lock_release+0x10/0x10 [ 3335.050001][T16705] ? memcg_account_kmem+0x1e7/0x210 [ 3335.055283][T16705] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3335.061122][T16705] __memcg_kmem_charge_page+0xe1/0x250 [ 3335.066619][T16705] memcg_charge_kernel_stack+0x28a/0x550 [ 3335.072304][T16705] dup_task_struct+0x15d/0x7d0 [ 3335.077123][T16705] copy_process+0x5d5/0x3fc0 [ 3335.081782][T16705] ? __might_fault+0xa9/0x120 [ 3335.086576][T16705] ? __pfx_lock_release+0x10/0x10 [ 3335.091664][T16705] ? __pfx_copy_process+0x10/0x10 [ 3335.096716][T16705] ? __might_fault+0xc5/0x120 [ 3335.101434][T16705] ? __asan_memset+0x23/0x50 [ 3335.106083][T16705] kernel_clone+0x21d/0x8d0 [ 3335.110638][T16705] ? __pfx_kernel_clone+0x10/0x10 [ 3335.115802][T16705] __se_sys_clone3+0x2cb/0x350 [ 3335.120619][T16705] ? __pfx___se_sys_clone3+0x10/0x10 [ 3335.125955][T16705] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3335.132005][T16705] ? exc_page_fault+0x587/0x870 [ 3335.136888][T16705] ? do_syscall_64+0xb4/0x240 [ 3335.141592][T16705] do_syscall_64+0xf9/0x240 [ 3335.146143][T16705] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3335.152080][T16705] RIP: 0033:0x7f02540a9b99 [ 3335.156531][T16705] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3335.176356][T16705] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3335.184813][T16705] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3335.192824][T16705] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3335.200839][T16705] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3335.208839][T16705] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3335.216839][T16705] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3335.224838][T16705] [ 3335.239108][T16705] memory: usage 307200kB, limit 307200kB, failcnt 349442 [ 3335.254569][T16705] memory+swap: usage 307468kB, limit 9007199254740988kB, failcnt 0 [ 3335.263126][T16705] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3335.270854][T16705] Memory cgroup stats for /syz1: [ 3335.271006][T16705] cache 4096 [ 3335.280252][T16705] rss 4096 [ 3335.283559][T16705] rss_huge 0 01:28:13 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000488800000000000114000600020000001b"], 0x54}}, 0x0) [ 3335.286964][T16705] shmem 0 [ 3335.299766][T16705] mapped_file 0 [ 3335.307064][T16705] dirty 0 [ 3335.311529][T16705] writeback 0 [ 3335.315486][T16705] workingset_refault_anon 118787 [ 3335.326181][T16705] workingset_refault_file 3 [ 3335.332268][T16705] swap 282624 [ 3335.338908][T16705] swapcached 0 [ 3335.344125][T16705] pgpgin 288872 [ 3335.347623][T16705] pgpgout 288870 [ 3335.359953][T16705] pgfault 614836 [ 3335.368765][T16705] pgmajfault 111755 [ 3335.373271][T16705] inactive_anon 4096 [ 3335.380478][T16705] active_anon 0 [ 3335.389015][T16705] inactive_file 0 [ 3335.398669][T16705] active_file 4096 [ 3335.402978][T16705] unevictable 0 [ 3335.409071][T16705] hierarchical_memory_limit 314572800 [ 3335.419027][T16705] hierarchical_memsw_limit 9223372036854771712 [ 3335.425310][T16705] total_cache 4096 [ 3335.429792][T16705] total_rss 4096 [ 3335.433539][T16705] total_rss_huge 0 [ 3335.437372][T16705] total_shmem 0 [ 3335.441677][T16705] total_mapped_file 0 [ 3335.447362][T16705] total_dirty 0 [ 3335.451637][T16705] total_writeback 0 [ 3335.455576][T16705] total_workingset_refault_anon 118787 [ 3335.469164][T16705] total_workingset_refault_file 3 [ 3335.478687][T16705] total_swap 282624 [ 3335.491611][T16705] total_swapcached 0 [ 3335.495838][T16705] total_pgpgin 288872 [ 3335.504390][T16705] total_pgpgout 288870 [ 3335.508932][T16705] total_pgfault 614836 [ 3335.515865][T16705] total_pgmajfault 111755 [ 3335.525148][T16705] total_inactive_anon 4096 [ 3335.532830][T16705] total_active_anon 0 [ 3335.537076][T16705] total_inactive_file 0 [ 3335.545316][T16705] total_active_file 4096 [ 3335.556075][T16705] total_unevictable 0 [ 3335.564727][T16705] anon_cost 0 [ 3335.568302][T16705] file_cost 0 [ 3335.575861][T16705] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16705,uid=0 [ 3335.597556][T16705] Memory cgroup out of memory: Killed process 16705 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:13 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000001400000000000114000600020000001b"], 0x54}}, 0x0) [ 3336.005854][T16708] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3336.022530][T16708] CPU: 0 PID: 16708 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3336.033021][T16708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3336.043116][T16708] Call Trace: [ 3336.046431][T16708] [ 3336.049397][T16708] dump_stack_lvl+0x1e7/0x2e0 [ 3336.054126][T16708] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3336.059374][T16708] ? __pfx__printk+0x10/0x10 [ 3336.063999][T16708] ? ___ratelimit+0x4c4/0x670 [ 3336.068733][T16708] ? __pfx____ratelimit+0x10/0x10 [ 3336.073830][T16708] dump_header+0xda/0x6a0 [ 3336.078221][T16708] oom_kill_process+0x3a7/0x930 [ 3336.083121][T16708] out_of_memory+0xf67/0x1320 [ 3336.087852][T16708] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3336.093537][T16708] ? __pfx___mutex_lock+0x10/0x10 [ 3336.098618][T16708] ? __pfx_out_of_memory+0x10/0x10 [ 3336.103786][T16708] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3336.109377][T16708] ? __pfx_lock_release+0x10/0x10 [ 3336.114467][T16708] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3336.120585][T16708] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3336.122093][T16703] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3336.125810][T16708] ? mem_cgroup_iter+0x3e9/0x560 [ 3336.125853][T16708] try_charge_memcg+0xda2/0x18a0 [ 3336.144985][T16708] ? __pfx_try_charge_memcg+0x10/0x10 [ 3336.150399][T16708] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3336.156168][T16708] ? __pfx_lock_release+0x10/0x10 [ 3336.161244][T16708] ? memcg_account_kmem+0x1e7/0x210 [ 3336.166505][T16708] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3336.172359][T16708] __memcg_kmem_charge_page+0xe1/0x250 [ 3336.177868][T16708] memcg_charge_kernel_stack+0x28a/0x550 [ 3336.183560][T16708] dup_task_struct+0x40d/0x7d0 [ 3336.188463][T16708] copy_process+0x5d5/0x3fc0 [ 3336.193115][T16708] ? __might_fault+0xa9/0x120 [ 3336.197841][T16708] ? __pfx_lock_release+0x10/0x10 [ 3336.202917][T16708] ? __lock_acquire+0x1345/0x1fd0 [ 3336.207992][T16708] ? __pfx_copy_process+0x10/0x10 [ 3336.213060][T16708] ? __might_fault+0xc5/0x120 [ 3336.217791][T16708] ? __asan_memset+0x23/0x50 [ 3336.222438][T16708] kernel_clone+0x21d/0x8d0 [ 3336.226997][T16708] ? __pfx_kernel_clone+0x10/0x10 [ 3336.232068][T16708] ? __pfx_lock_release+0x10/0x10 [ 3336.237173][T16708] __se_sys_clone3+0x2cb/0x350 [ 3336.241976][T16708] ? __might_fault+0xa9/0x120 [ 3336.246692][T16708] ? __pfx___se_sys_clone3+0x10/0x10 [ 3336.252011][T16708] ? rcu_is_watching+0x15/0xb0 [ 3336.256832][T16708] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3336.262878][T16708] ? exc_page_fault+0x587/0x870 [ 3336.267768][T16708] ? do_syscall_64+0xb4/0x240 [ 3336.272492][T16708] do_syscall_64+0xf9/0x240 [ 3336.277042][T16708] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3336.283008][T16708] RIP: 0033:0x7f02540a9b99 [ 3336.287457][T16708] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3336.307355][T16708] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3336.315828][T16708] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3336.323850][T16708] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3336.331859][T16708] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3336.339865][T16708] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3336.347874][T16708] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3336.355911][T16708] 01:28:14 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000ffff80fe0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3336.381718][T16708] memory: usage 307200kB, limit 307200kB, failcnt 349762 [ 3336.400722][T16708] memory+swap: usage 307432kB, limit 9007199254740988kB, failcnt 0 [ 3336.423203][T16708] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3336.452541][T16708] Memory cgroup stats for /syz1: [ 3336.452697][T16708] cache 4096 [ 3336.459491][T16701] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3336.478293][T16701] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3336.479193][T16708] rss 12288 01:28:14 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000000c0)={0x0, 0x0, {0x0, @struct}, {0x0, @struct, 0x0}, {0x0, @struct}}) ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f00000004c0)={0x2, 0x9, @start={r1, 0x0, "4c21d25e56a11c103ea530d99afe724a0840c07d37e8be1b660281241947cd2f8aaba8769bd62010e648a53d22de868b6d683b228d43c936140803a3cb6271c3d2a20ef82ed8deecfe73fc66230a19642129d5fe7c3df9d5de4bf05acfc6cad6cf1591bd9d5237f931833bcd97fec6e81bcc07edda5a562ec8939b2cfa6a779a9b14ad049185ae6c07a69aeb96bd9e76f3d0f80f43e0aa9c26946d256874d8004944a8c38b29301028bb20096db0fade7bbc1dd9293372d3fac4b9968106e22f75ed02ae13a47bffa7a0c2e91dc586862724de37150d34f1e418de2db0ba3635e0e6bc585807a39bd5cd15981c20f40275a7b681a828952bda3bf72a5fe687b7864f65b44017c9bdcfa67f2e48cd26dc8be440d93abf04d041e07dca5efb710bc69fe984d54427bc63556faa7253a33d57f8ec420aba5e1eb7098d20a9445058f60087e0770e4c211f0fc9869b15f0232486a67a3c5c990472eed4f1344f24bcd4d97eac2539df27964a556e9aa6c2b8036297def89d58adaebfd726694332caf0b8aa4e87ff6ea224ca414faebd65efa60100b68ab5f2c8296e135cf14eda25bb7dee7d4db4a2bdfb1d93cdeb5a48810a0cf38bc933803f37c545ad050d25c2346578ac692f59366f73dc53cdf8d30789ee85ac3fceeede9b06100afa0ae46090c5bc2068d9e2f6a1bdeeb5396127a381f19be7eb6f81530e49db54981f6d4e985ddf88ab356b70028ad650c28c9288a5575cecc96b20cb8ef98b8462fc6d47d0e9b58f3eeadc884d7a2a3e230504893db3b8a145f8667ab792a9d0c23456a29542717048e4e6ce2fb193512709f5dbc5efcbdcf9f5279fe98dec4fa84ce33d44f7e5fd1c586dd7aaa2c86ef0a69a2cfd9456b594e4544529176f6fb567d64c63acd932b518ae3ff653fcfa04f0cea0332bda3791503682ab286e0cb220803792b5f92f8e69a2f13c26d537660ab3fb4f907c6abb47898008eb786394b53018969cc991de012cb2c27393ddaccbf5408f3c535307c05d22ca0b9fd6bd44926e1c37f31731ee3af58535f2a6c89880d73088d500001275088b0fe25729126270e72ab526101c7faa0e2f52480492fee80bb63708bc1d096535bb205756a4bb0776a8067090446bc86c50e2a94ae983946caf21ca9c73dbc0a02ca7dbf85a3ae570fa0b11a8e8933c48cd2ac5f1b636cc494cc31999de10c10a27dcf238afc07c2b2ba40cf3c3b3f64669bc341dcf286f2184d01fbd2129afb8276c266a61b260cce7192cfabca0b89b99c2e1c259a42e4550eee3ed133765488374a53e5548c5a0ba0c5245de72569274ae0922a243a5be392f368b286d14df111709868ac787d5cd3da1a49a6e20ca5e591209576e337a2e7bc22f37aeda719a99fc20df96e6f8398ada53766282ec0b5a4d94233339701ced7dcc24b764649891e3f5a2bd3b55", "b4a2d071261edcceb272936d7cdbb57f5a915bb77054dc57562a55334e8463a138155479d9110eed4f2aac44f5fb54463e7e2306cf7c5bdcb32e49135a28cf89a37e697d7e8ee1e13c20fdbcd70be1f7802a3ca2852421c3e55e05cf2a29d46e4f054f124be0779e7fca3765d387176e77148e41efd1ee1e308a17f958d7140f0a9aa97729e2658f2c6febf01385885e246137584a4469841619fc3a70b6c136c8d4e26617dcd59bae34300eb56c9705476d7d5be47ec4575605df879ca3364c8ff9ff17b6a88007b020b7c41c2c83d185f8e0983739cd0f79dfa3d1df546030dadd76a42e6e949decee7fc912d3711b2b8af90daa5a180c6e145bc6ee6a4c7be76e15f38a39d0f8eda89e0dcbd289c16a3e22d95c9e817184e28a2909466c938087441e2a033188234c6ae46fa1d86a6195371e8479e8cc31e299c87be91385347974a83cc123247533067a9c2f29cf9b1987f58c60e60bf39f90e4e78c32f21300d44bd1d86c2655e44711866231908c596a84ce6b38ce423ad2ad0dd9f7a7b3e3ddfb91d27a3907b41f83a879a1b082e65b49a3d1bd5ee966545bea1f963147b89d8025750a5b3a4de6468634d05b14d995ed8ef3ce0d4a6fb05b3a5a788bc8fa63c4c5a0b3e1277f74010c6dc3f36db9a9b83e23ceea69628084ab35587e8e26b07b31fa1b8f691e0de922cd374e441142bf28a213d3f235b41f841e25b6f99de08b8259633bafb1ba19ff1ea0d8a35483f505a2435683b53073da08742d5bd95eed37b6b08bc8f216055884099bca2f62b6b8c3ff5167b932631df97c2ce1c418232adfc77cef651b09e56967e0aaecddd841cea518c7326e5c99a252de726c8aad14692f987d860c0dc09c0b8d846fb7449fae30c350aa179595e90369a6e0d24495dc5988f8ef7fc8a962203626d6eaac77edae2e6751c779ac7803452fec63d9d884b2fa7fe7232c67cc16165b845a23a44738f0b9401d106f5aa3206063ebe0ce05914dd882d484e352c8f0a0573b5295b3bee46c3e79cdd8217ccd8e1630d29ba4b3fb5a5453940934947cdfc57efbc09a7e31a965587ea0e404002226785a9bfe3ec2082344698b1b246d2377f9c50a46b1ba408e3857bd356a30d1a36c399d85a9f3773b794c9f5edafa263c71962605c62a6a6cc4f659b8b5e37941d490244d61ec40e78344378e15a7b6dad1c37e43ec35914a2b0a7331e44e4fc0e0681211c693c166403a2f2363bd1c9545e74b96dbb37a08b016542c308c14c88ee147d037530fbb8e86376e5464ffddff57bd7da88b6a92b7fbb1bde854af9a7f266e9a1223616ecc63a9d5489f5eb7e1f03abe90a59a0fcc0ab89abe29162fcf2cfb116e8ed40151a372a1eb2f79cbe7b94c06d3d488aa30e25edafa7bd37d52cd2510ecc6988bc1224779d1feb3e960d3a359039d62afb03eb39f65dc35"}, [0x200000000000000, 0x9, 0x3, 0x200, 0x118206a0, 0x2, 0x0, 0xfff, 0x7, 0x401, 0x2, 0x8, 0x100000001, 0x7fff, 0x5, 0xa6, 0x4, 0x9b, 0x58, 0x2, 0x9, 0xfff, 0x5, 0xfffffffffffffffa, 0x1, 0x2, 0x6, 0x1f, 0x8, 0x11, 0x8ba5, 0x7, 0x400, 0x4, 0x400, 0x1, 0x81, 0xff, 0xfffffffffffffeff, 0x4, 0x2, 0xffffffff, 0x0, 0x5, 0x400, 0x7, 0x7fff, 0x1, 0x7f, 0x3f, 0x81, 0xfffffffffd955dcb, 0x10000, 0x83d, 0x4, 0x7, 0x8, 0x30c, 0x6, 0x7, 0x1, 0x7, 0x482, 0xb497]}) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3336.512115][T16708] rss_huge 0 [ 3336.519684][T16708] shmem 0 [ 3336.526198][T16708] mapped_file 0 [ 3336.534456][T16708] dirty 4096 [ 3336.542144][T16708] writeback 0 [ 3336.550275][T16708] workingset_refault_anon 118858 [ 3336.565251][T16708] workingset_refault_file 3 [ 3336.577896][T16708] swap 237568 [ 3336.587052][T16708] swapcached 8192 [ 3336.595310][T16708] pgpgin 288962 [ 3336.603579][T16708] pgpgout 288958 [ 3336.613960][T16708] pgfault 614974 [ 3336.629005][T16708] pgmajfault 111820 [ 3336.632963][T16708] inactive_anon 4096 [ 3336.642518][T16708] active_anon 8192 [ 3336.649822][T16708] inactive_file 0 [ 3336.657816][T16708] active_file 4096 [ 3336.665453][T16708] unevictable 0 [ 3336.671949][T16708] hierarchical_memory_limit 314572800 [ 3336.684096][T16708] hierarchical_memsw_limit 9223372036854771712 [ 3336.698481][T16708] total_cache 4096 [ 3336.706363][T16708] total_rss 12288 [ 3336.713705][T16708] total_rss_huge 0 [ 3336.722531][T16708] total_shmem 0 [ 3336.729227][T16708] total_mapped_file 0 [ 3336.736748][T16708] total_dirty 4096 [ 3336.744907][T16708] total_writeback 0 [ 3336.752407][T16708] total_workingset_refault_anon 118858 [ 3336.768203][T16708] total_workingset_refault_file 3 [ 3336.785436][T16708] total_swap 237568 [ 3336.797103][T16708] total_swapcached 8192 [ 3336.811991][T16708] total_pgpgin 288962 [ 3336.825218][T16708] total_pgpgout 288958 [ 3336.845236][T16708] total_pgfault 614974 [ 3336.856328][T16708] total_pgmajfault 111820 [ 3336.872667][T16708] total_inactive_anon 4096 [ 3336.883499][T16708] total_active_anon 8192 [ 3336.893448][T16708] total_inactive_file 0 [ 3336.905234][T16708] total_active_file 4096 [ 3336.918421][T16708] total_unevictable 0 [ 3336.928957][T16708] anon_cost 0 [ 3336.937109][T16708] file_cost 0 [ 3336.946273][T16708] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16708,uid=0 [ 3336.986665][T16708] Memory cgroup out of memory: Killed process 16708 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:15 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000001500000000000114000600020000001b"], 0x54}}, 0x0) [ 3337.260067][T16710] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:28:15 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000ffffc0fe0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3337.368604][T16707] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 3337.576145][T16707] syz-executor.0 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=2, oom_score_adj=1000 [ 3337.587563][T16707] CPU: 1 PID: 16707 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3337.598018][T16707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3337.608091][T16707] Call Trace: [ 3337.611389][T16707] [ 3337.614330][T16707] dump_stack_lvl+0x1e7/0x2e0 [ 3337.619036][T16707] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3337.624251][T16707] ? __pfx__printk+0x10/0x10 [ 3337.628859][T16707] ? ___ratelimit+0x4c4/0x670 [ 3337.633568][T16707] ? __pfx____ratelimit+0x10/0x10 [ 3337.638623][T16707] dump_header+0xda/0x6a0 [ 3337.642977][T16707] oom_kill_process+0x3a7/0x930 [ 3337.647848][T16707] out_of_memory+0xf67/0x1320 [ 3337.652552][T16707] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3337.658204][T16707] ? __pfx___mutex_lock+0x10/0x10 [ 3337.663254][T16707] ? __pfx_out_of_memory+0x10/0x10 [ 3337.668394][T16707] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3337.673963][T16707] ? __pfx_lock_release+0x10/0x10 [ 3337.679012][T16707] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3337.685102][T16707] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3337.690327][T16707] ? mem_cgroup_iter+0x3e9/0x560 [ 3337.695292][T16707] try_charge_memcg+0xda2/0x18a0 [ 3337.700277][T16707] ? __pfx_try_charge_memcg+0x10/0x10 [ 3337.705672][T16707] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3337.711413][T16707] ? __pfx_lock_release+0x10/0x10 [ 3337.716463][T16707] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3337.722470][T16707] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3337.728202][T16707] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3337.734022][T16707] obj_cgroup_charge+0x389/0x630 [ 3337.738973][T16707] ? obj_cgroup_charge+0x121/0x630 [ 3337.744103][T16707] ? __pfx_obj_cgroup_charge+0x10/0x10 [ 3337.749665][T16707] ? __kmalloc_node_track_caller+0xc1/0x4e0 [ 3337.755590][T16707] ? __pfx___might_resched+0x10/0x10 [ 3337.760894][T16707] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3337.766112][T16707] __memcg_slab_pre_alloc_hook+0x28d/0x2b0 [ 3337.771977][T16707] __kmalloc_node_track_caller+0x310/0x4e0 [ 3337.777820][T16707] ? __devinet_sysctl_register+0xb0/0x2b0 [ 3337.783571][T16707] kmemdup+0x2a/0x60 [ 3337.787485][T16707] __devinet_sysctl_register+0xb0/0x2b0 [ 3337.793052][T16707] ? __pfx_neigh_sysctl_register+0x10/0x10 [ 3337.798877][T16707] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 3337.805059][T16707] ? netlink_unicast+0x7ea/0x980 [ 3337.810025][T16707] ? netlink_sendmsg+0x8e0/0xcb0 [ 3337.814986][T16707] ? __sock_sendmsg+0x221/0x270 [ 3337.819850][T16707] ? ____sys_sendmsg+0x525/0x7d0 [ 3337.824796][T16707] ? do_syscall_64+0xf9/0x240 [ 3337.829495][T16707] ? entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3337.835578][T16707] devinet_sysctl_register+0x17e/0x1f0 [ 3337.841058][T16707] inetdev_init+0x296/0x4d0 [ 3337.845593][T16707] inetdev_event+0x338/0x15c0 [ 3337.850283][T16707] ? __pfx_inetdev_event+0x10/0x10 [ 3337.855403][T16707] ? preempt_schedule_notrace_thunk+0x1a/0x30 [ 3337.861491][T16707] notifier_call_chain+0x18f/0x3b0 [ 3337.866629][T16707] register_netdevice+0x15b2/0x1a20 [ 3337.871855][T16707] ? __pfx_register_netdevice+0x10/0x10 [ 3337.877410][T16707] ? __xdp_rxq_info_reg+0x142/0x290 [ 3337.882647][T16707] br_dev_newlink+0x27/0x100 [ 3337.887270][T16707] ? __pfx_br_dev_newlink+0x10/0x10 [ 3337.892505][T16707] rtnl_newlink+0x158f/0x20a0 [ 3337.897209][T16707] ? rtnl_newlink+0x451/0x20a0 [ 3337.901997][T16707] ? __pfx_rtnl_newlink+0x10/0x10 [ 3337.907045][T16707] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3337.912274][T16707] ? __mutex_lock+0x9a4/0xd70 [ 3337.916988][T16707] ? __mutex_lock+0x526/0xd70 [ 3337.921701][T16707] ? __pfx_rtnl_newlink+0x10/0x10 [ 3337.926737][T16707] rtnetlink_rcv_msg+0x89b/0x10d0 [ 3337.931782][T16707] ? rtnetlink_rcv_msg+0x208/0x10d0 [ 3337.936999][T16707] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 3337.942566][T16707] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3337.948586][T16707] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 3337.954938][T16707] ? __local_bh_enable_ip+0x168/0x200 [ 3337.960327][T16707] ? lockdep_hardirqs_on+0x98/0x140 [ 3337.965539][T16707] ? __local_bh_enable_ip+0x168/0x200 [ 3337.970944][T16707] ? __dev_queue_xmit+0x2c4/0x3b10 [ 3337.976072][T16707] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 3337.981839][T16707] ? __dev_queue_xmit+0x2c4/0x3b10 [ 3337.986989][T16707] ? __dev_queue_xmit+0x15fd/0x3b10 [ 3337.992212][T16707] ? __dev_queue_xmit+0x2c4/0x3b10 [ 3337.997348][T16707] ? ref_tracker_free+0x643/0x7e0 [ 3338.002404][T16707] netlink_rcv_skb+0x1e3/0x430 [ 3338.007197][T16707] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 3338.012685][T16707] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 3338.018115][T16707] ? netlink_deliver_tap+0x2e/0x1b0 [ 3338.023344][T16707] netlink_unicast+0x7ea/0x980 [ 3338.028142][T16707] ? __pfx_netlink_unicast+0x10/0x10 [ 3338.033464][T16707] ? __virt_addr_valid+0x44e/0x520 [ 3338.038687][T16707] ? __phys_addr_symbol+0x2f/0x70 [ 3338.043729][T16707] ? __check_object_size+0x4bb/0xa00 [ 3338.049032][T16707] ? bpf_lsm_netlink_send+0x9/0x10 [ 3338.054176][T16707] netlink_sendmsg+0x8e0/0xcb0 [ 3338.058969][T16707] ? __pfx_netlink_sendmsg+0x10/0x10 [ 3338.064273][T16707] ? __import_iovec+0x552/0x890 [ 3338.069139][T16707] ? aa_sock_msg_perm+0x91/0x160 [ 3338.074115][T16707] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 3338.079420][T16707] ? security_socket_sendmsg+0x87/0xb0 [ 3338.084909][T16707] ? __pfx_netlink_sendmsg+0x10/0x10 [ 3338.090210][T16707] __sock_sendmsg+0x221/0x270 [ 3338.094909][T16707] ____sys_sendmsg+0x525/0x7d0 [ 3338.099697][T16707] ? __pfx_____sys_sendmsg+0x10/0x10 [ 3338.105107][T16707] __sys_sendmsg+0x2b0/0x3a0 [ 3338.109738][T16707] ? __pfx___sys_sendmsg+0x10/0x10 [ 3338.114893][T16707] ? restore_fpregs_from_fpstate+0x100/0x250 [ 3338.120900][T16707] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 3338.127336][T16707] ? do_syscall_64+0x108/0x240 [ 3338.132136][T16707] ? do_syscall_64+0xb4/0x240 [ 3338.136827][T16707] do_syscall_64+0xf9/0x240 [ 3338.141351][T16707] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3338.147259][T16707] RIP: 0033:0x7ff32d87dda9 [ 3338.151684][T16707] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 3338.171302][T16707] RSP: 002b:00007ff32e5ed0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3338.179732][T16707] RAX: ffffffffffffffda RBX: 00007ff32d9abf80 RCX: 00007ff32d87dda9 [ 3338.187722][T16707] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000005 [ 3338.195702][T16707] RBP: 00007ff32d8ca47a R08: 0000000000000000 R09: 0000000000000000 [ 3338.203681][T16707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3338.211665][T16707] R13: 000000000000000b R14: 00007ff32d9abf80 R15: 00007ffd9289bd18 [ 3338.219680][T16707] [ 3338.309602][T16707] memory: usage 307200kB, limit 307200kB, failcnt 16795 [ 3338.318733][T16707] memory+swap: usage 307520kB, limit 9007199254740988kB, failcnt 0 [ 3338.326846][T16707] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0 [ 3338.418046][T16707] Memory cgroup stats for /syz0: [ 3338.418219][T16707] cache 0 [ 3338.442265][T16707] rss 4096 [ 3338.460975][T16707] rss_huge 0 [ 3338.482947][T16707] shmem 0 [ 3338.488306][T16707] mapped_file 0 [ 3338.498222][T16707] dirty 0 [ 3338.512589][T16707] writeback 0 [ 3338.535867][T16707] workingset_refault_anon 10044 [ 3338.556697][T16707] workingset_refault_file 1 [ 3338.575549][T16707] swap 327680 [ 3338.592738][T16707] swapcached 8192 [ 3338.610577][T16707] pgpgin 215004 [ 3338.639331][T16707] pgpgout 215002 [ 3338.662214][T16707] pgfault 553366 [ 3338.677342][T16707] pgmajfault 9447 [ 3338.697385][T16707] inactive_anon 0 [ 3338.716068][T16707] active_anon 0 [ 3338.735311][T16707] inactive_file 0 [ 3338.752983][T16707] active_file 0 [ 3338.765268][T16707] unevictable 0 [ 3338.791109][T16707] hierarchical_memory_limit 314572800 [ 3338.816825][T16707] hierarchical_memsw_limit 9223372036854771712 [ 3338.848624][T16707] total_cache 0 [ 3338.868662][T16707] total_rss 4096 [ 3338.885807][T16707] total_rss_huge 0 [ 3338.904765][T16707] total_shmem 0 [ 3338.920249][T16707] total_mapped_file 0 [ 3338.936059][T16707] total_dirty 0 [ 3338.952280][T16707] total_writeback 0 [ 3338.964927][T16707] total_workingset_refault_anon 10044 [ 3339.013931][T16707] total_workingset_refault_file 1 [ 3339.027709][T16707] total_swap 327680 [ 3339.037538][T16707] total_swapcached 8192 [ 3339.042415][T16707] total_pgpgin 215004 [ 3339.046626][T16707] total_pgpgout 215002 [ 3339.058101][T16707] total_pgfault 553366 [ 3339.063084][T16707] total_pgmajfault 9447 [ 3339.067460][T16707] total_inactive_anon 0 [ 3339.072891][T16707] total_active_anon 0 [ 3339.077193][T16707] total_inactive_file 0 [ 3339.082146][T16707] total_active_file 0 [ 3339.086342][T16707] total_unevictable 0 [ 3339.093886][T16707] anon_cost 0 [ 3339.097431][T16707] file_cost 0 [ 3339.102687][T16707] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16706,uid=0 [ 3339.118961][T16707] Memory cgroup out of memory: Killed process 16707 (syz-executor.0) total-vm:54640kB, anon-rss:340kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3339.144607][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3339.172666][ T5105] CPU: 0 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3339.183086][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3339.194401][ T5105] Call Trace: [ 3339.197714][ T5105] [ 3339.200673][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3339.205406][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3339.210675][ T5105] ? __pfx__printk+0x10/0x10 [ 3339.215322][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3339.220065][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3339.225150][ T5105] dump_header+0xda/0x6a0 [ 3339.229534][ T5105] oom_kill_process+0x3a7/0x930 [ 3339.234447][ T5105] out_of_memory+0xf67/0x1320 [ 3339.239170][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3339.244826][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3339.249883][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3339.255025][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3339.260611][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3339.265655][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3339.271749][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3339.276971][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3339.281950][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3339.286900][ T5105] ? mark_lock+0x9a/0x350 [ 3339.291258][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3339.296699][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3339.302865][ T5105] charge_memcg+0xa2/0x160 [ 3339.307294][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3339.313393][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3339.318886][ T5105] ? mark_lock+0x9a/0x350 [ 3339.323262][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3339.329270][ T5105] swap_cluster_readahead+0x67c/0x810 [ 3339.334663][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3339.340578][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3339.345629][ T5105] ? xas_descend+0x37e/0x470 [ 3339.350238][ T5105] swapin_readahead+0x1ea/0x1070 [ 3339.355186][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3339.360332][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3339.365723][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3339.371035][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3339.376333][ T5105] do_swap_page+0x791/0x3f40 [ 3339.380945][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3339.385740][ T5105] ? do_swap_page+0x154/0x3f40 [ 3339.390521][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3339.395558][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3339.401041][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3339.406957][ T5105] ? __pfx_validate_chain+0x10/0x10 [ 3339.412176][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3339.417379][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3339.422864][ T5105] ? mt_find+0x226/0x850 [ 3339.427122][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3339.432190][ T5105] ? mt_find+0x62d/0x850 [ 3339.436446][ T5105] ? mt_find+0x226/0x850 [ 3339.440727][ T5105] ? find_vma+0x142/0x1c0 [ 3339.445079][ T5105] ? __pfx_find_vma+0x10/0x10 [ 3339.449863][ T5105] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3339.455880][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3339.460673][ T5105] exc_page_fault+0x2ad/0x870 [ 3339.465374][ T5105] asm_exc_page_fault+0x26/0x30 [ 3339.470243][ T5105] RIP: 0010:__get_user_8+0x11/0x20 [ 3339.475378][ T5105] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3339.495085][ T5105] RSP: 0018:ffffc90004367d98 EFLAGS: 00050202 [ 3339.501167][ T5105] RAX: 00005555566b1da8 RBX: ffff88802e9bee78 RCX: ffffc90004367c03 [ 3339.509250][ T5105] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7fe0 [ 3339.517255][ T5105] RBP: ffffc90004367ec8 R08: ffffffff8f85feef R09: 1ffffffff1f0bfdd [ 3339.525257][ T5105] R10: dffffc0000000000 R11: fffffbfff1f0bfde R12: ffffc90004367da0 [ 3339.533244][ T5105] R13: ffffc90004367fd8 R14: dffffc0000000000 R15: ffff88802e9bd940 [ 3339.541252][ T5105] __rseq_handle_notify_resume+0x158/0x1490 [ 3339.547282][ T5105] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3339.553636][ T5105] ? syscall_exit_to_user_mode+0xa2/0x360 [ 3339.559387][ T5105] syscall_exit_to_user_mode+0x113/0x360 [ 3339.565040][ T5105] do_syscall_64+0x108/0x240 [ 3339.569653][ T5105] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3339.575570][ T5105] RIP: 0033:0x7f02540a91b5 [ 3339.579996][ T5105] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 3339.599613][ T5105] RSP: 002b:00007ffe12c8cc10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 3339.608041][ T5105] RAX: 0000000000000000 RBX: 000000000000472e RCX: 00007f02540a91b5 [ 3339.616027][ T5105] RDX: 00007ffe12c8cc50 RSI: 0000000000000000 RDI: 0000000000000000 [ 3339.624021][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000000 R09: 00007ffe12ccd0b0 [ 3339.632011][ T5105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3339.639995][ T5105] R13: 000000000032ebe1 R14: 000000000032ebe1 R15: 0000000000000000 [ 3339.647994][ T5105] 01:28:17 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0xffffff7f00000000) 01:28:17 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000003d400000000000114000600020000001b"], 0x54}}, 0x0) [ 3339.711093][T16713] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3339.720789][T16717] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3339.724503][T16713] netlink: 191448 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3339.763800][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 350212 [ 3339.772724][ T5105] memory+swap: usage 307440kB, limit 9007199254740988kB, failcnt 0 [ 3339.780807][ T5105] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3339.788209][ T5105] Memory cgroup stats for /syz1: [ 3339.788375][ T5105] cache 4096 [ 3339.798304][ T5105] rss 12288 [ 3339.802014][ T5105] rss_huge 0 [ 3339.805375][ T5105] shmem 0 [ 3339.808438][ T5105] mapped_file 0 [ 3339.812828][ T5105] dirty 4096 [ 3339.816185][ T5105] writeback 0 [ 3339.820237][ T5105] workingset_refault_anon 119002 [ 3339.825304][ T5105] workingset_refault_file 3 [ 3339.830568][ T5105] swap 245760 [ 3339.833935][ T5105] swapcached 8192 [ 3339.837594][ T5105] pgpgin 289122 [ 3339.841838][ T5105] pgpgout 289118 [ 3339.852119][ T5105] pgfault 615213 [ 3339.865908][ T5105] pgmajfault 111965 [ 3339.887582][ T5105] inactive_anon 0 [ 3339.903919][ T5105] active_anon 12288 [ 3339.918770][ T5105] inactive_file 0 [ 3339.926544][ T5105] active_file 4096 [ 3339.935346][ T5105] unevictable 0 [ 3339.939727][ T5105] hierarchical_memory_limit 314572800 [ 3339.945373][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3339.972164][ T5105] total_cache 4096 01:28:18 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000ff0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3339.998722][ T5105] total_rss 12288 [ 3340.004560][ T5105] total_rss_huge 0 [ 3340.029620][ T5105] total_shmem 0 [ 3340.037778][ T5105] total_mapped_file 0 [ 3340.047270][ T5105] total_dirty 4096 [ 3340.054721][ T5105] total_writeback 0 [ 3340.059284][ T5105] total_workingset_refault_anon 119002 [ 3340.064849][ T5105] total_workingset_refault_file 3 [ 3340.070680][ T5105] total_swap 245760 [ 3340.074608][ T5105] total_swapcached 8192 [ 3340.081223][ T5105] total_pgpgin 289122 [ 3340.087576][ T5105] total_pgpgout 289118 [ 3340.094247][ T5105] total_pgfault 615213 [ 3340.102043][ T5105] total_pgmajfault 111965 [ 3340.106607][ T5105] total_inactive_anon 0 [ 3340.111932][ T5105] total_active_anon 12288 [ 3340.116520][ T5105] total_inactive_file 0 [ 3340.121536][ T5105] total_active_file 4096 [ 3340.125906][ T5105] total_unevictable 0 [ 3340.132280][ T5105] anon_cost 0 [ 3340.135709][ T5105] file_cost 0 [ 3340.139693][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16714,uid=0 [ 3340.157919][ T5105] Memory cgroup out of memory: Killed process 16714 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3340.185599][ T5100] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3340.197677][ T5100] CPU: 1 PID: 5100 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3340.208057][ T5100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3340.218150][ T5100] Call Trace: [ 3340.221479][ T5100] [ 3340.224434][ T5100] dump_stack_lvl+0x1e7/0x2e0 [ 3340.229151][ T5100] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3340.234386][ T5100] ? __pfx__printk+0x10/0x10 [ 3340.239109][ T5100] ? ___ratelimit+0x4c4/0x670 [ 3340.243852][ T5100] ? __pfx____ratelimit+0x10/0x10 [ 3340.248932][ T5100] dump_header+0xda/0x6a0 [ 3340.253344][ T5100] oom_kill_process+0x3a7/0x930 [ 3340.258257][ T5100] out_of_memory+0xf67/0x1320 [ 3340.263006][ T5100] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3340.268690][ T5100] ? __pfx___mutex_lock+0x10/0x10 [ 3340.273776][ T5100] ? __pfx_out_of_memory+0x10/0x10 [ 3340.278961][ T5100] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3340.284556][ T5100] ? __pfx_lock_release+0x10/0x10 [ 3340.289701][ T5100] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3340.295802][ T5100] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3340.301018][ T5100] ? mem_cgroup_iter+0x3e9/0x560 [ 3340.305981][ T5100] try_charge_memcg+0xda2/0x18a0 [ 3340.310938][ T5100] ? mark_lock+0x9a/0x350 [ 3340.315304][ T5100] ? __pfx_try_charge_memcg+0x10/0x10 [ 3340.320715][ T5100] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3340.326883][ T5100] charge_memcg+0xa2/0x160 [ 3340.331325][ T5100] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3340.337415][ T5100] __read_swap_cache_async+0x480/0x8b0 [ 3340.342904][ T5100] ? mark_lock+0x9a/0x350 [ 3340.347269][ T5100] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3340.353281][ T5100] swap_cluster_readahead+0x67c/0x810 [ 3340.358692][ T5100] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3340.364624][ T5100] ? __pfx_lock_release+0x10/0x10 [ 3340.369698][ T5100] ? xas_descend+0x37e/0x470 [ 3340.374318][ T5100] swapin_readahead+0x1ea/0x1070 [ 3340.379270][ T5100] ? filemap_get_entry+0x127/0x4e0 [ 3340.384411][ T5100] ? __pfx_swapin_readahead+0x10/0x10 [ 3340.389796][ T5100] ? __filemap_get_folio+0x935/0xbc0 [ 3340.395105][ T5100] ? swap_cache_get_folio+0x9f/0x570 [ 3340.400401][ T5100] do_swap_page+0x791/0x3f40 [ 3340.405010][ T5100] ? rcu_is_watching+0x15/0xb0 [ 3340.409805][ T5100] ? do_swap_page+0x154/0x3f40 [ 3340.414593][ T5100] ? __pfx_do_swap_page+0x10/0x10 [ 3340.419633][ T5100] ? pte_offset_map_nolock+0x137/0x1f0 [ 3340.425127][ T5100] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3340.431043][ T5100] ? __pfx_validate_chain+0x10/0x10 [ 3340.436262][ T5100] __handle_mm_fault+0x15e8/0x72d0 [ 3340.441424][ T5100] ? __pfx___handle_mm_fault+0x10/0x10 [ 3340.447006][ T5100] ? mt_find+0x226/0x850 [ 3340.451262][ T5100] ? __pfx_lock_release+0x10/0x10 [ 3340.456324][ T5100] ? mt_find+0x62d/0x850 [ 3340.460592][ T5100] ? mt_find+0x226/0x850 [ 3340.464880][ T5100] ? find_vma+0x142/0x1c0 [ 3340.469250][ T5100] ? __pfx_find_vma+0x10/0x10 [ 3340.473967][ T5100] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3340.479996][ T5100] handle_mm_fault+0x3c1/0x8a0 [ 3340.484812][ T5100] exc_page_fault+0x2ad/0x870 [ 3340.489608][ T5100] asm_exc_page_fault+0x26/0x30 [ 3340.494483][ T5100] RIP: 0010:__get_user_8+0x11/0x20 [ 3340.499630][ T5100] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3340.519253][ T5100] RSP: 0018:ffffc90004317d98 EFLAGS: 00050202 [ 3340.525337][ T5100] RAX: 0000555556cc4da8 RBX: ffff88801bf71538 RCX: ffffc90004317c03 [ 3340.533339][ T5100] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7fe0 [ 3340.541330][ T5100] RBP: ffffc90004317ec8 R08: ffffffff8f85feef R09: 1ffffffff1f0bfdd [ 3340.549409][ T5100] R10: dffffc0000000000 R11: fffffbfff1f0bfde R12: ffffc90004317da0 [ 3340.557398][ T5100] R13: ffffc90004317fd8 R14: dffffc0000000000 R15: ffff88801bf70000 [ 3340.565422][ T5100] __rseq_handle_notify_resume+0x158/0x1490 [ 3340.571365][ T5100] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3340.577717][ T5100] ? syscall_exit_to_user_mode+0xa2/0x360 [ 3340.583568][ T5100] syscall_exit_to_user_mode+0x113/0x360 [ 3340.589221][ T5100] do_syscall_64+0x108/0x240 [ 3340.593857][ T5100] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3340.599784][ T5100] RIP: 0033:0x7ff32d8a91b5 [ 3340.604206][ T5100] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 3340.623823][ T5100] RSP: 002b:00007ffd9289bfc0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 3340.632251][ T5100] RAX: 0000000000000000 RBX: 00000000000053ba RCX: 00007ff32d8a91b5 [ 3340.640232][ T5100] RDX: 00007ffd9289c000 RSI: 0000000000000000 RDI: 0000000000000000 [ 3340.648212][ T5100] RBP: 00007ffd9289c08c R08: 0000000000000000 R09: 00007ffd928d80b0 [ 3340.656193][ T5100] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3340.664176][ T5100] R13: 000000000032f642 R14: 000000000032f642 R15: 0000000000000000 [ 3340.672181][ T5100] [ 3340.695417][ T5100] memory: usage 307200kB, limit 307200kB, failcnt 17471 [ 3340.708390][ T5100] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0 [ 3340.716549][ T5100] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3340.724226][ T5100] Memory cgroup stats for /syz0: [ 3340.724394][ T5100] cache 0 [ 3340.734707][ T5100] rss 16384 [ 3340.737931][ T5100] rss_huge 0 [ 3340.741419][ T5100] shmem 0 01:28:19 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000001b00000000000114000600020000001b"], 0x54}}, 0x0) [ 3340.744459][ T5100] mapped_file 0 [ 3340.748141][ T5100] dirty 0 [ 3340.751378][ T5100] writeback 0 [ 3340.754789][ T5100] workingset_refault_anon 10262 [ 3340.760574][ T5100] workingset_refault_file 1 [ 3340.765211][ T5100] swap 262144 [ 3340.771326][ T5100] swapcached 8192 [ 3340.776497][ T5100] pgpgin 215245 [ 3340.780541][ T5100] pgpgout 215241 [ 3340.784286][ T5100] pgfault 553736 [ 3340.787990][ T5100] pgmajfault 9664 [ 3340.792216][ T5100] inactive_anon 0 [ 3340.796007][ T5100] active_anon 16384 [ 3340.801896][ T5100] inactive_file 0 [ 3340.805688][ T5100] active_file 0 [ 3340.810604][ T5100] unevictable 0 [ 3340.814674][ T5100] hierarchical_memory_limit 314572800 [ 3340.821091][ T5100] hierarchical_memsw_limit 9223372036854771712 [ 3340.827432][ T5100] total_cache 0 [ 3340.831540][ T5100] total_rss 16384 [ 3340.835340][ T5100] total_rss_huge 0 [ 3340.839929][ T5100] total_shmem 0 [ 3340.843575][ T5100] total_mapped_file 0 [ 3340.847728][ T5100] total_dirty 0 [ 3340.861006][ T5100] total_writeback 0 [ 3340.866774][ T5100] total_workingset_refault_anon 10262 [ 3340.882956][ T5100] total_workingset_refault_file 1 [ 3340.897511][ T5100] total_swap 262144 [ 3340.907918][ T5100] total_swapcached 8192 [ 3340.922589][ T5100] total_pgpgin 215245 [ 3340.927550][ T5100] total_pgpgout 215241 [ 3340.934772][ T5100] total_pgfault 553736 [ 3340.943147][ T5100] total_pgmajfault 9664 [ 3340.947470][ T5100] total_inactive_anon 0 [ 3340.954667][ T5100] total_active_anon 16384 [ 3340.963083][ T5100] total_inactive_file 0 [ 3340.967425][ T5100] total_active_file 0 [ 3340.978416][ T5100] total_unevictable 0 [ 3340.987027][ T5100] anon_cost 0 [ 3340.995061][ T5100] file_cost 0 [ 3341.002689][ T5100] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16722,uid=0 [ 3341.025967][ T5100] Memory cgroup out of memory: Killed process 16722 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000 [ 3341.191529][T16725] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:28:19 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000003d600000000000114000600020000001b"], 0x54}}, 0x0) [ 3341.295156][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3341.320243][ T5105] CPU: 1 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3341.330641][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3341.340736][ T5105] Call Trace: [ 3341.344046][ T5105] [ 3341.347035][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3341.351772][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3341.357038][ T5105] ? __pfx__printk+0x10/0x10 [ 3341.361663][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3341.366468][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3341.371548][ T5105] dump_header+0xda/0x6a0 [ 3341.375945][ T5105] oom_kill_process+0x3a7/0x930 [ 3341.380852][ T5105] out_of_memory+0xf67/0x1320 [ 3341.385583][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3341.391259][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3341.396327][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3341.401511][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3341.407103][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3341.412168][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3341.418281][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3341.423516][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3341.428477][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3341.433435][ T5105] ? mark_lock+0x9a/0x350 [ 3341.437849][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3341.443276][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3341.449449][ T5105] charge_memcg+0xa2/0x160 [ 3341.453889][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3341.459976][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3341.465443][ T5105] ? mark_lock+0x9a/0x350 [ 3341.469819][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3341.475827][ T5105] ? blk_start_plug+0x6f/0x1b0 [ 3341.480612][ T5105] swap_cluster_readahead+0x398/0x810 [ 3341.486001][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3341.491932][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3341.496991][ T5105] ? xas_descend+0x37e/0x470 [ 3341.501607][ T5105] swapin_readahead+0x1ea/0x1070 [ 3341.506561][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3341.511710][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3341.517107][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3341.522423][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3341.527809][ T5105] do_swap_page+0x791/0x3f40 [ 3341.532424][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3341.537223][ T5105] ? do_swap_page+0x154/0x3f40 [ 3341.542010][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3341.547048][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3341.552524][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3341.558375][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3341.563529][ T5105] ? reacquire_held_locks+0x3eb/0x690 [ 3341.568917][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3341.574411][ T5105] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3341.580175][ T5105] ? mtree_range_walk+0x6fd/0x8e0 [ 3341.585219][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3341.590440][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3341.595478][ T5105] ? lock_vma_under_rcu+0x2f9/0x730 [ 3341.600716][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3341.605945][ T5105] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3341.611593][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3341.616374][ T5105] exc_page_fault+0x456/0x870 [ 3341.621066][ T5105] asm_exc_page_fault+0x26/0x30 [ 3341.625932][ T5105] RIP: 0033:0x7f02540a91b8 [ 3341.630364][ T5105] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f [ 3341.649996][ T5105] RSP: 002b:00007ffe12c8cc10 EFLAGS: 00010293 [ 3341.656086][ T5105] RAX: 0000000000000000 RBX: 0000000000004730 RCX: 00007f02540a91b5 [ 3341.664068][ T5105] RDX: 00007ffe12c8cc50 RSI: 0000000000000000 RDI: 0000000000000000 [ 3341.672050][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000000 R09: 00007ffe12ccd0b0 [ 3341.680117][ T5105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3341.688093][ T5105] R13: 000000000032fa3b R14: 000000000032fa3b R15: 0000000000000000 [ 3341.696094][ T5105] 01:28:19 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000000c0)={0x0, 0x0, {0x0, @struct}, {0x0, @struct}, {0x0, @struct}}) (async) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000000c0)={0x0, 0x0, {0x0, @struct}, {0x0, @struct, 0x0}, {0x0, @struct}}) ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f00000004c0)={0x2, 0x9, @start={r1, 0x0, "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", "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"}, [0x200000000000000, 0x9, 0x3, 0x200, 0x118206a0, 0x2, 0x0, 0xfff, 0x7, 0x401, 0x2, 0x8, 0x100000001, 0x7fff, 0x5, 0xa6, 0x4, 0x9b, 0x58, 0x2, 0x9, 0xfff, 0x5, 0xfffffffffffffffa, 0x1, 0x2, 0x6, 0x1f, 0x8, 0x11, 0x8ba5, 0x7, 0x400, 0x4, 0x400, 0x1, 0x81, 0xff, 0xfffffffffffffeff, 0x4, 0x2, 0xffffffff, 0x0, 0x5, 0x400, 0x7, 0x7fff, 0x1, 0x7f, 0x3f, 0x81, 0xfffffffffd955dcb, 0x10000, 0x83d, 0x4, 0x7, 0x8, 0x30c, 0x6, 0x7, 0x1, 0x7, 0x482, 0xb497]}) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) 01:28:20 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000fe80ffff0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3341.723505][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 350495 [ 3341.732343][ T5105] memory+swap: usage 307472kB, limit 9007199254740988kB, failcnt 0 [ 3341.743727][T16721] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3341.752132][T16721] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3341.816734][ T5105] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3341.845777][ T5105] Memory cgroup stats for /syz1: [ 3341.845933][ T5105] cache 4096 [ 3341.854633][ T5105] rss 0 [ 3341.857611][ T5105] rss_huge 0 [ 3341.861319][ T5105] shmem 0 [ 3341.864297][ T5105] mapped_file 0 [ 3341.867778][ T5105] dirty 4096 [ 3341.879253][ T5105] writeback 0 [ 3341.886023][ T5105] workingset_refault_anon 119102 [ 3341.898225][ T5105] workingset_refault_file 3 [ 3341.908925][ T5105] swap 278528 [ 3341.915666][ T5105] swapcached 0 [ 3341.922618][ T5105] pgpgin 289232 [ 3341.929542][ T5105] pgpgout 289231 [ 3341.937683][ T5105] pgfault 615373 [ 3341.946874][ T5105] pgmajfault 112045 [ 3341.953393][ T5105] inactive_anon 0 [ 3341.957145][ T5105] active_anon 0 [ 3341.964482][ T5105] inactive_file 0 [ 3341.968231][ T5105] active_file 4096 [ 3341.974868][ T5105] unevictable 0 [ 3341.978445][ T5105] hierarchical_memory_limit 314572800 [ 3341.987695][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3341.995297][ T5105] total_cache 4096 [ 3342.005944][ T5105] total_rss 0 [ 3342.009923][ T5105] total_rss_huge 0 [ 3342.013782][ T5105] total_shmem 0 [ 3342.017365][ T5105] total_mapped_file 0 [ 3342.026466][ T5105] total_dirty 4096 [ 3342.031828][ T5105] total_writeback 0 [ 3342.035889][ T5105] total_workingset_refault_anon 119102 [ 3342.046219][ T5105] total_workingset_refault_file 3 [ 3342.055108][ T5105] total_swap 278528 [ 3342.064215][ T5105] total_swapcached 0 [ 3342.068226][ T5105] total_pgpgin 289232 [ 3342.072482][ T5105] total_pgpgout 289231 [ 3342.077916][ T5105] total_pgfault 615373 [ 3342.086909][ T5105] total_pgmajfault 112045 [ 3342.093029][ T5105] total_inactive_anon 0 [ 3342.097302][ T5105] total_active_anon 0 [ 3342.111063][ T5105] total_inactive_file 0 [ 3342.115344][ T5105] total_active_file 4096 [ 3342.120283][ T5105] total_unevictable 0 [ 3342.124414][ T5105] anon_cost 0 [ 3342.127800][ T5105] file_cost 0 [ 3342.131388][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16727,uid=0 [ 3342.147195][ T5105] Memory cgroup out of memory: Killed process 16727 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:20 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000004b00000000000114000600020000001b"], 0x54}}, 0x0) [ 3342.456187][T16734] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3342.476818][T16732] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3342.478758][T16734] CPU: 0 PID: 16734 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3342.496512][T16734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3342.506625][T16734] Call Trace: [ 3342.509936][T16734] [ 3342.512905][T16734] dump_stack_lvl+0x1e7/0x2e0 [ 3342.517645][T16734] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3342.522895][T16734] ? __pfx__printk+0x10/0x10 [ 3342.527525][T16734] ? ___ratelimit+0x4c4/0x670 [ 3342.532263][T16734] ? __pfx____ratelimit+0x10/0x10 [ 3342.537349][T16734] dump_header+0xda/0x6a0 [ 3342.541734][T16734] oom_kill_process+0x3a7/0x930 [ 3342.546642][T16734] out_of_memory+0xf67/0x1320 [ 3342.551371][T16734] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3342.557044][T16734] ? __pfx___mutex_lock+0x10/0x10 [ 3342.562119][T16734] ? __pfx_out_of_memory+0x10/0x10 [ 3342.567288][T16734] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3342.572881][T16734] ? __pfx_lock_release+0x10/0x10 [ 3342.577944][T16734] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3342.584060][T16734] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3342.589308][T16734] ? mem_cgroup_iter+0x3e9/0x560 [ 3342.594324][T16734] try_charge_memcg+0xda2/0x18a0 [ 3342.599340][T16734] ? __pfx_try_charge_memcg+0x10/0x10 [ 3342.604762][T16734] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3342.610528][T16734] ? __pfx_lock_release+0x10/0x10 [ 3342.615609][T16734] ? memcg_account_kmem+0x1e7/0x210 [ 3342.620868][T16734] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3342.626728][T16734] __memcg_kmem_charge_page+0xe1/0x250 [ 3342.632235][T16734] memcg_charge_kernel_stack+0x28a/0x550 [ 3342.637927][T16734] dup_task_struct+0x15d/0x7d0 [ 3342.642740][T16734] copy_process+0x5d5/0x3fc0 [ 3342.647390][T16734] ? __might_fault+0xa9/0x120 [ 3342.652118][T16734] ? __pfx_lock_release+0x10/0x10 [ 3342.657234][T16734] ? __pfx_copy_process+0x10/0x10 [ 3342.662317][T16734] ? __might_fault+0xc5/0x120 [ 3342.667053][T16734] ? __asan_memset+0x23/0x50 [ 3342.671697][T16734] kernel_clone+0x21d/0x8d0 [ 3342.676244][T16734] ? __pfx_kernel_clone+0x10/0x10 [ 3342.681353][T16734] __se_sys_clone3+0x2cb/0x350 [ 3342.686168][T16734] ? __pfx___se_sys_clone3+0x10/0x10 [ 3342.691522][T16734] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3342.697573][T16734] ? exc_page_fault+0x587/0x870 [ 3342.702469][T16734] ? do_syscall_64+0xb4/0x240 01:28:20 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000088a8ffff0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3342.707189][T16734] do_syscall_64+0xf9/0x240 [ 3342.711736][T16734] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3342.717691][T16734] RIP: 0033:0x7ff32d8a9b99 [ 3342.722155][T16734] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3342.741819][T16734] RSP: 002b:00007ffd9289bbe8 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3342.742773][T16729] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3342.750253][T16734] RAX: ffffffffffffffda RBX: 00007ff32d852270 RCX: 00007ff32d8a9b99 [ 3342.750275][T16734] RDX: 00007ff32d852270 RSI: 0000000000000058 RDI: 00007ffd9289bc30 [ 3342.750297][T16734] RBP: 00007ff32e5ed6c0 R08: 00007ff32e5ed6c0 R09: 00007ffd9289bd17 [ 3342.750311][T16734] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3342.750326][T16734] R13: 000000000000000b R14: 00007ffd9289bc30 R15: 00007ffd9289bd18 [ 3342.750380][T16734] [ 3342.825758][T16734] memory: usage 307200kB, limit 307200kB, failcnt 17902 [ 3342.833004][T16734] memory+swap: usage 307400kB, limit 9007199254740988kB, failcnt 0 [ 3342.839232][T16729] netlink: 191448 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3342.841548][T16734] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 01:28:21 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0xffffffff00000000) [ 3342.877906][T16734] Memory cgroup stats for /syz0: [ 3342.878056][T16734] cache 0 [ 3342.881784][T16737] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3342.898793][T16734] rss 16384 [ 3342.902115][T16734] rss_huge 0 [ 3342.910700][T16734] shmem 0 [ 3342.923197][T16734] mapped_file 0 [ 3342.926822][T16734] dirty 0 [ 3342.937402][T16734] writeback 0 [ 3342.947437][T16734] workingset_refault_anon 10327 [ 3342.953726][T16734] workingset_refault_file 1 [ 3342.960671][T16734] swap 204800 [ 3342.964176][T16734] swapcached 8192 [ 3342.967954][T16734] pgpgin 215333 [ 3342.971796][T16734] pgpgout 215329 [ 3342.976184][T16734] pgfault 553881 [ 3342.980321][T16734] pgmajfault 9722 [ 3342.984194][T16734] inactive_anon 0 [ 3342.988498][T16734] active_anon 16384 [ 3342.993248][T16734] inactive_file 0 [ 3342.997046][T16734] active_file 0 [ 3343.001175][T16734] unevictable 0 [ 3343.004841][T16734] hierarchical_memory_limit 314572800 [ 3343.011038][T16734] hierarchical_memsw_limit 9223372036854771712 [ 3343.017425][T16734] total_cache 0 [ 3343.025786][T16734] total_rss 16384 [ 3343.031173][T16734] total_rss_huge 0 [ 3343.036691][T16734] total_shmem 0 [ 3343.041091][T16734] total_mapped_file 0 [ 3343.045291][T16734] total_dirty 0 [ 3343.049445][T16734] total_writeback 0 [ 3343.055925][T16734] total_workingset_refault_anon 10327 [ 3343.065563][T16734] total_workingset_refault_file 1 [ 3343.071275][T16734] total_swap 204800 01:28:21 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000fec0ffff0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3343.075290][T16734] total_swapcached 8192 [ 3343.080306][T16734] total_pgpgin 215333 [ 3343.084502][T16734] total_pgpgout 215329 [ 3343.093094][T16734] total_pgfault 553881 [ 3343.102196][T16734] total_pgmajfault 9722 [ 3343.106580][T16734] total_inactive_anon 0 [ 3343.115096][T16734] total_active_anon 16384 [ 3343.122443][T16734] total_inactive_file 0 [ 3343.132180][T16734] total_active_file 0 [ 3343.136401][T16734] total_unevictable 0 [ 3343.142515][T16734] anon_cost 0 [ 3343.146018][T16734] file_cost 0 [ 3343.149979][T16734] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16734,uid=0 [ 3343.172258][T16734] Memory cgroup out of memory: Killed process 16734 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000 [ 3343.192554][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3343.212146][ T5105] CPU: 1 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3343.222532][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3343.232635][ T5105] Call Trace: [ 3343.235950][ T5105] [ 3343.238913][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3343.243654][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3343.248896][ T5105] ? __pfx__printk+0x10/0x10 [ 3343.253530][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3343.258256][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3343.263335][ T5105] dump_header+0xda/0x6a0 [ 3343.267727][ T5105] oom_kill_process+0x3a7/0x930 [ 3343.272640][ T5105] out_of_memory+0xf67/0x1320 [ 3343.277360][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3343.283026][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3343.288087][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3343.293234][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3343.298808][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3343.303870][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3343.309994][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3343.315227][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3343.320196][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3343.325156][ T5105] ? mark_lock+0x9a/0x350 [ 3343.329531][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3343.335047][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3343.341238][ T5105] charge_memcg+0xa2/0x160 [ 3343.345712][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3343.351839][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3343.357345][ T5105] ? mark_lock+0x9a/0x350 [ 3343.361711][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3343.367732][ T5105] swap_cluster_readahead+0x67c/0x810 [ 3343.373138][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3343.379058][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3343.384103][ T5105] ? xas_descend+0x37e/0x470 [ 3343.388712][ T5105] swapin_readahead+0x1ea/0x1070 [ 3343.393660][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3343.398808][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3343.404207][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3343.409518][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3343.414816][ T5105] do_swap_page+0x791/0x3f40 [ 3343.419428][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3343.424220][ T5105] ? do_swap_page+0x154/0x3f40 [ 3343.428998][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3343.434050][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3343.439540][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3343.445374][ T5105] ? __pfx_validate_chain+0x10/0x10 [ 3343.450609][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3343.455814][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3343.461331][ T5105] ? mt_find+0x226/0x850 [ 3343.465614][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3343.470696][ T5105] ? mt_find+0x62d/0x850 [ 3343.474957][ T5105] ? mt_find+0x226/0x850 [ 3343.479232][ T5105] ? find_vma+0x142/0x1c0 [ 3343.483579][ T5105] ? __pfx_find_vma+0x10/0x10 [ 3343.488274][ T5105] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3343.494274][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3343.499073][ T5105] exc_page_fault+0x2ad/0x870 [ 3343.503775][ T5105] asm_exc_page_fault+0x26/0x30 [ 3343.508640][ T5105] RIP: 0010:__get_user_8+0x11/0x20 [ 3343.513771][ T5105] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3343.533474][ T5105] RSP: 0018:ffffc90004367d98 EFLAGS: 00050202 [ 3343.539560][ T5105] RAX: 00005555566b1da8 RBX: ffff88802e9bee78 RCX: ffffc90004367c03 [ 3343.547647][ T5105] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7fe0 [ 3343.555627][ T5105] RBP: ffffc90004367ec8 R08: ffffffff8f85feef R09: 1ffffffff1f0bfdd [ 3343.563607][ T5105] R10: dffffc0000000000 R11: fffffbfff1f0bfde R12: ffffc90004367da0 [ 3343.571590][ T5105] R13: ffffc90004367fd8 R14: dffffc0000000000 R15: ffff88802e9bd940 [ 3343.579591][ T5105] __rseq_handle_notify_resume+0x158/0x1490 [ 3343.585531][ T5105] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3343.591876][ T5105] ? syscall_exit_to_user_mode+0xa2/0x360 [ 3343.597621][ T5105] syscall_exit_to_user_mode+0x113/0x360 [ 3343.603269][ T5105] do_syscall_64+0x108/0x240 [ 3343.607883][ T5105] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3343.613792][ T5105] RIP: 0033:0x7f02540a91b5 [ 3343.618220][ T5105] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 3343.637930][ T5105] RSP: 002b:00007ffe12c8cc10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 3343.646362][ T5105] RAX: 0000000000000000 RBX: 0000000000004731 RCX: 00007f02540a91b5 [ 3343.654345][ T5105] RDX: 00007ffe12c8cc50 RSI: 0000000000000000 RDI: 0000000000000000 [ 3343.662447][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000000 R09: 00007ffe12ccd0b0 [ 3343.670426][ T5105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3343.678407][ T5105] R13: 000000000032ffa9 R14: 000000000032ffa9 R15: 0000000000000000 [ 3343.686403][ T5105] 01:28:21 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000003e700000000000114000600020000001b"], 0x54}}, 0x0) [ 3343.770058][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 350700 [ 3343.777905][ T5105] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0 [ 3343.787075][ T5105] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3343.795009][ T5105] Memory cgroup stats for /syz1: [ 3343.795185][ T5105] cache 4096 [ 3343.804077][ T5105] rss 0 [ 3343.807159][ T5105] rss_huge 0 [ 3343.810699][ T5105] shmem 0 [ 3343.813874][ T5105] mapped_file 0 [ 3343.818472][ T5105] dirty 4096 [ 3343.825009][ T5105] writeback 0 [ 3343.829012][ T5105] workingset_refault_anon 119148 [ 3343.834289][ T5105] workingset_refault_file 3 [ 3343.839655][ T5105] swap 286720 [ 3343.845611][ T5105] swapcached 0 [ 3343.877681][ T5105] pgpgin 289300 [ 3343.885704][ T5105] pgpgout 289299 [ 3343.896084][ T5105] pgfault 615484 [ 3343.900247][ T5105] pgmajfault 112092 [ 3343.904254][ T5105] inactive_anon 0 [ 3343.908071][ T5105] active_anon 0 [ 3343.917703][ T5105] inactive_file 0 [ 3343.923693][ T5105] active_file 4096 [ 3343.927598][ T5105] unevictable 0 [ 3343.938388][ T5105] hierarchical_memory_limit 314572800 [ 3343.956653][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3343.969344][ T5105] total_cache 4096 [ 3343.973248][ T5105] total_rss 0 [ 3343.976691][ T5105] total_rss_huge 0 [ 3343.986194][ T5105] total_shmem 0 [ 3343.991528][ T5105] total_mapped_file 0 [ 3343.995668][ T5105] total_dirty 4096 [ 3344.006907][ T5105] total_writeback 0 [ 3344.011287][ T5105] total_workingset_refault_anon 119148 [ 3344.021332][ T5105] total_workingset_refault_file 3 [ 3344.033284][ T5105] total_swap 286720 [ 3344.044808][ T5105] total_swapcached 0 [ 3344.057324][ T5105] total_pgpgin 289300 [ 3344.062109][ T5105] total_pgpgout 289299 [ 3344.066508][ T5105] total_pgfault 615484 [ 3344.070959][ T5105] total_pgmajfault 112092 [ 3344.075606][ T5105] total_inactive_anon 0 [ 3344.080152][ T5105] total_active_anon 0 [ 3344.084247][ T5105] total_inactive_file 0 [ 3344.088517][ T5105] total_active_file 4096 [ 3344.094776][ T5105] total_unevictable 0 [ 3344.098997][ T5105] anon_cost 0 [ 3344.102636][ T5105] file_cost 0 [ 3344.106047][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16735,uid=0 [ 3344.121880][ T5105] Memory cgroup out of memory: Killed process 16735 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3344.193039][T16745] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3344.208786][T16742] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3344.218221][T16745] CPU: 0 PID: 16745 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3344.228689][T16745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3344.238791][T16745] Call Trace: 01:28:22 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000006000000000000114000600020000001b"], 0x54}}, 0x0) [ 3344.242196][T16745] [ 3344.245165][T16745] dump_stack_lvl+0x1e7/0x2e0 [ 3344.249898][T16745] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3344.255152][T16745] ? __pfx__printk+0x10/0x10 [ 3344.259789][T16745] ? ___ratelimit+0x4c4/0x670 [ 3344.264534][T16745] ? __pfx____ratelimit+0x10/0x10 [ 3344.269613][T16745] dump_header+0xda/0x6a0 [ 3344.274034][T16745] oom_kill_process+0x3a7/0x930 [ 3344.278969][T16745] out_of_memory+0xf67/0x1320 [ 3344.283707][T16745] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3344.289392][T16745] ? __pfx___mutex_lock+0x10/0x10 [ 3344.294484][T16745] ? __pfx_out_of_memory+0x10/0x10 [ 3344.299684][T16745] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3344.305284][T16745] ? __pfx_lock_release+0x10/0x10 [ 3344.310364][T16745] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3344.316527][T16745] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3344.321787][T16745] ? mem_cgroup_iter+0x3e9/0x560 [ 3344.326779][T16745] try_charge_memcg+0xda2/0x18a0 [ 3344.331792][T16745] ? __pfx_try_charge_memcg+0x10/0x10 [ 3344.337228][T16745] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3344.343005][T16745] ? __pfx_lock_release+0x10/0x10 [ 3344.348093][T16745] ? memcg_account_kmem+0x1e7/0x210 [ 3344.353525][T16745] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3344.359390][T16745] __memcg_kmem_charge_page+0xe1/0x250 [ 3344.364895][T16745] memcg_charge_kernel_stack+0x28a/0x550 [ 3344.370583][T16745] dup_task_struct+0x15d/0x7d0 [ 3344.375399][T16745] copy_process+0x5d5/0x3fc0 [ 3344.380049][T16745] ? __might_fault+0xa9/0x120 [ 3344.384778][T16745] ? __pfx_lock_release+0x10/0x10 [ 3344.389873][T16745] ? __pfx_copy_process+0x10/0x10 [ 3344.394943][T16745] ? __might_fault+0xc5/0x120 [ 3344.399706][T16745] ? __asan_memset+0x23/0x50 [ 3344.404363][T16745] kernel_clone+0x21d/0x8d0 [ 3344.408915][T16745] ? __pfx_kernel_clone+0x10/0x10 [ 3344.414017][T16745] __se_sys_clone3+0x2cb/0x350 [ 3344.418853][T16745] ? __pfx___se_sys_clone3+0x10/0x10 [ 3344.424202][T16745] ? do_syscall_64+0x108/0x240 [ 3344.429008][T16745] ? do_syscall_64+0xb4/0x240 [ 3344.433753][T16745] do_syscall_64+0xf9/0x240 [ 3344.438303][T16745] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3344.444241][T16745] RIP: 0033:0x7ff32d8a9b99 [ 3344.448691][T16745] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3344.468607][T16745] RSP: 002b:00007ffd9289bbe8 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3344.477072][T16745] RAX: ffffffffffffffda RBX: 00007ff32d852270 RCX: 00007ff32d8a9b99 [ 3344.485098][T16745] RDX: 00007ff32d852270 RSI: 0000000000000058 RDI: 00007ffd9289bc30 01:28:22 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff000000001400010000000000007fffffff0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3344.493118][T16745] RBP: 00007ff32e5ed6c0 R08: 00007ff32e5ed6c0 R09: 00007ffd9289bd17 [ 3344.501129][T16745] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3344.509141][T16745] R13: 000000000000000b R14: 00007ffd9289bc30 R15: 00007ffd9289bd18 [ 3344.517172][T16745] [ 3344.584004][T16739] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3344.593156][T16739] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3344.606814][T16745] memory: usage 307200kB, limit 307200kB, failcnt 18057 01:28:22 executing program 2: r0 = socket$kcm(0x10, 0x5, 0x10) sendmsg$kcm(r0, &(0x7f0000001840)={&(0x7f0000000100)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'sha1-ce\x00'}, 0x80, &(0x7f0000001300)=[{&(0x7f0000000180)="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", 0x1000}, {&(0x7f0000001180)="9ac76347449227279ed976ebf5ddda3793b9f1f293a31af201bf315346346b3a3822f5895a704b53217645a7f1e8ecdb3036d6314730496866400ee1d60c11be0b63d9d820d560e4a1ca512c7ea2b304edda9135408f9ad96ea6f7fb68165ca615e5e988c8f26155b8f6fa911057230dc17e5ff48c28f16c1f03d33ac9565e1fc54b6f2056c610433dece745b95014376a2b6c6369fc9f96c8e6090a7260183936378425d7f408e68362223315c624c269346782749caea2cd631ca0220960eff4d4a723746d3f9a35", 0xc9}, {&(0x7f0000001280)="c3473a36448891330d75ec62e1c3bb811da649c165d46c7e68ab324fba16c71154940634315ba1db8035397a8f8e3d9713017668dd484463647276a4dd685ca134c8234d98c31c446c98b94be86a52df4f9be302037bd5cfe8c5f5ddf87ce37ec619dc62ba602ef47529009f6d8b11439ffd9b245f890fbce50cea", 0x7b}], 0x3, &(0x7f0000001340)=[{0xb0, 0x1, 0x3ff, "0d0ffb071b6bbc30356582ae6b03b1ab094e02530510eeaacbb2a96735194b287e532e6342eaa6d58e3d0aa43916f23bdaa69adfd340f13a32ec0e98221ded87117f2783b4667377138eac04333ac88c2677f82bc774fce9f3bca681db0b8b28e7a71b2c52c5bfc14949a70470e60a5ad5429fbf6c497bdc46376ead74bb5af4be5c28e69f14a2999199940acc9f2d3b12b8adad00e33586de978233f5"}, {0x40, 0x111, 0x3b80000, "74f0e66249135bced6c579435043351f1a9ba77451993a7c74d121c5cedd23821339372a96b790651e0c20"}, {0xc8, 0x10e, 0xdfaa, "23f42382a0a66413e6787642bf55a8000dce7f23e94ecc421b5885270612685baa8b27e669c4f69f3ca5e2c4abe872f211489768c91e73a1ffa7cc9e0b0e34a74b4559e504d59ff08f89977b9fc9740a34d392b1be73e1d680463ca341e7a9c0a94d03f93d4fe87042f34e6cb24978af3308267b01683d3973ca6366941ef026308b598f08a18f0aa4feec7d9f9d16be631de2ce0ac806f9fd0ffbc7f54573fa35a0d9fc0c83ddceca826b38fc49102c5864b6"}, {0xc8, 0x88, 0xee9, "72434ec014cf0658cc0215dcf95551d3fd1cb8ce89a6f1ade98c94041677786ef8cfda324518dc428f08e60f86f957f838195cfc1365b5b520ae248c777a4be63cb36ab638c5ffbfe47326a26ded903607b7fb58b4fb4740931cb1f1d24e923f140e44e70132922fa78ecf2a056e6f0a8f73af757f2de13a0cd55e2ead163b5242ac2b9a6b45f44289c49ca99688f1b26e6421bba064039466b88936e92bdbb7a9316eb71148829dbb8d317194acd87f1fc71cff8c9647"}, {0x50, 0xff, 0x401, "8bfeb0d441eb1fd3b169e8230115db570b396fd7a956cd7c3fac02e0016538ab20d9af011cec38e9a261d419b4eb70d3c60ba4a5fbbc5294ea5f7ffd769f"}, {0xd8, 0x114, 0x3, "44ca05662cb35c360a6696ab11e4f5e9bcf726a71692bf6502768e17d8b84461d7a4d6e3c2ead51512a1f28c989d83c743386d996b9ad2aaf6901e3254e35bc0dc3a247b2e1cc29101386bba0dccd9e919d10cd5e6cb14d86ee2e0703727f665c54da02558b9575f871d204c2dd71cdf696582e3402b55428c9901401a71366b15bf13344872377f1d2cacc0bc37dc767472bb3b15a792e7c2620478ea0cdcfb498c912be88628545805dd8b9df641b53784fd07830a47ae85c4823584a00fa4ac"}, {0x88, 0x119, 0x0, "51d3e8b8bddfc09d8f6f466ec05be0d8606733ed491c09200d14d4f8ea6993ba85816328dc2a890a94c302ee691116f315e8ee0bbe4733d72e317fc54b79adbb396b059a285563bb2c97b70ceb3eacf6a14f0fd172895a0ee50a33758e70ca7d8714e8b30b571d18d01962c4d222957ec1"}, {0xb8, 0x3a, 0x83f, "bb918b67efb02d9a7bf2dcee726b83a6d13fc48610e1b5e36e22dfd30383e36114d48e5ac4bcfb7c3cc50f1e27948aa4a0f963dc36be2b6662bc7a1c5a885155f24eb760c896c3e3900afa70fbdcedb7e22c6ba4305e7ee36102f143cda3ea9cbdaa450b06becdcd981fd140f7ca10568a970c322cc56bbba6f30797f6babc2eb2a5bc425afe3e52c2822dee22589e374d9eb3db9885615367b250fed4682a60bfe46dc71fbd"}], 0x4e8}, 0x20004011) getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f00000000c0), 0x4) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3344.633424][T16745] memory+swap: usage 307368kB, limit 9007199254740988kB, failcnt 0 [ 3344.658686][T16745] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3344.686564][T16745] Memory cgroup stats for /syz0: [ 3344.686728][T16745] cache 0 [ 3344.708119][T16745] rss 16384 [ 3344.718778][T16745] rss_huge 0 01:28:23 executing program 2: r0 = socket$kcm(0x10, 0x5, 0x10) sendmsg$kcm(r0, &(0x7f0000001840)={&(0x7f0000000100)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'sha1-ce\x00'}, 0x80, &(0x7f0000001300)=[{&(0x7f0000000180)="bba6743f960afa8969b9d04f50d0b18b351dd115dcbe71b9d7503b0b27afbb3f127fe47ac772ce55e1da0a6e10a3ccfb3f31f95e7b0224962cd3c0bbd2e49964cdf7a0c3e4c3af43e2e91db8cc07fcf7e8fbee92508f94b1c9f3cdf030bd9cfc5a3690b14a4012bb25850a6a647fe5e8dfb4408e3be89c3dcb08c7c59771ffe25fea3a20d8d4cae1384002a04eedf15053aeca7a17e83f68bff4aa397544434434c9f3ce4080a9660be26ce13375640506fa2ce1f6e42295ca7432f1c2fdc22ec2a7d574b96468a38a6b2e5688ba69bfdcc7a0d845e7c0725687be4fb3aba3eb17946f0467524cf8c84a36fd3d8c3bdbb45a56578c97eab480a4a0ea764ef862ebbe9fd74748b923d7d109bf080600db3a06ef6519b14e9eda29504cd2cd6eadadd9c36323e559ce81d30cb1896f550362b18c269974f283f1170322703ada51f6d72380f918673c34bf144e2f92d9ac18a74e708e49c9abf69cf5061dc261654df62895afdc3658d80c8d9b649f98c8d0196f7c4832cd89c6b696567ae2158c77ac784801142d1a4eeb5a84f0612cd321b4039a26456e15a0392b1962874547a4d6324f562ff2091f80553ad96031ecffe4c3906e5abafff7aa5f327a158144bdea06331e59b5af8912b9d6cb9470e6d056bd88f722cba9f2425948a37f0a7a27a82e4a640e41d8e712b65e222ce9b360552811fb5d1d168bf26aa514d987add6dcd1bcb61ebb717fea2bdf47e7e9c6feaae8be7b6aa94d68b2fe19cb5b72b5251a8bb1a3932b6c3c5224585e7c4fd2d439ea2eeb8aa6aa0fc3109cb92c035b37c5381dacf0af87de4327fefdf0a7fd0a81ba401109e6b0a320113544b56595538ce7e57b89d33364c7ec45d6cf4e96831f0c045320950ea91417b54b20dfab48b49337ee1787af63d025a6fa47dd54bd700af44a25ab5aee0fa72d6889c6facac178e75ed58851ffbdf2f8205f7e2d43926883deeae0bbfdec7186f8755c8b238f950ed08116df850115c4b15ffe61f9fe78411bba9680b750d85047cb76d0d10a77965dc10303eaf4e3a83594d05e28f1224532a47600cc924b2ca366711d7c54236891a4c428f8f7d39e1a78df8da703bec8a0d8b385e6b2dbeddc0915ab6dd41ea223e30e34b8970886d4351b4f7cc5f3d098640681f4fba2d80402686666433e518038836ff446c14e28f408b7b68d1dc4b497a4302c7f2d9d4df65292bbaa590288cb2dbe81ade01a3c4591a09b42f10196c927ad5cb413bf12447cfb7046822feaadee17e1b6c6a124a023415cd5da2dabe19a78c667f396e1d498d32ce0f0040db262e019025dd6bf4135dea11931073027807feef4c410ba82c4cc246b2817601543b9c78a87d525903e2da5930bdd409e0add961b5890a6c7eb750d72467a5649d5e56c12d4c8b2749e9784d4a59ddbcbd7a43d160d462f7adc74345b41797525ae968122cd258cd45271023fe492c34ca3bbd3572a4db39cbd9c78ae36dc2156873d98a088a7814cf0e6022b5c15c4ee8d007712dfac06deaf43f7aa1058deda3ced94ab5ac405eeb5c8bc8f5439ae9e4e0e615eebd527afa1de948749d3e37009241b575f748436bc503ca369d46c311895707fc6ab75aefab6ba26f39594c2366400810d723b621750355a756eba9057fedbf2527fce27fc5a0795f2871d5b6979bcee66f08688d1a355e620010df36206012b38a18c25d6896a88fead90035be547da3a9adf091847eb30707c38f623edcddf3fd3f6053c86e238cafaf5c74d6eaebcc252d7841ca9e51766919f01a3c3f4143f3d51786e6959fcbb0372641dd662300f2ea5ada81f079cde1f6455e0ab82f2a8c59ae95f7600974db513da2c28bde91bdbadb2fdb69bf1ef5297b8d63f8d70f1d072f81cc1f179c1b9d7c7f177f45aba1441d73dd8351af043fd55da097fdfd7fd2b760b321cdff8e6dd72c7470635fc064e063d49e15250eaac97f6f0d6f6443b7d9ae12a255b458cb77a66d12d79069ae090fd767caef78cf99b432a5fa2591174a4c87e9473abf6a63e004c449c407a73d6dfb2e82559a71fc28b95f9e98cb3e6d91a8d4dafe9a9cc3ab1e4b3e14574e61dc572cb5c899476b8b1b7995b9a4dde5c04888e6e5f5a29270d05a3938163731947995bbd6676db8f4014d5a152a3277058488ad61c734302e2bdc651ebff7f875610828b03ec2bf3e40bca2640cab06a79cc8a30b43e34a70fa8350ac8ce56d81605090c758d531db7c2441679c2a299270b28e16b459b6d9d43516139a344118fa19696179d85ae6c2f8e01a1e98f1d4b713376936568abeb5c2b4c0464d17de70d720172bc32802e9b9f3083b0a20ba3b6f7172f714034d48e905e9ec6886d80e4568170097a457bdde30c260d7990d4f5218c06d6663688d7d6ba675f002a6c840de9ac5a94f54c62aa3072672a15b5743a32f83d1728e6a6ec585d11eaa3295731b68455dbe5d022647a8cba23e1d48098bff11e57ad1db239a7cdd6aff6ad39e304dc1aeb8125e9f7f6124f8a6f744e2e4d4583d14409fd023c92d92cf913ae2fabd82967a608e3e8fef377245610c198803894f086d82ce604c020d3c9b265fcfaacec345895dc8874ddbed3925ff93ed4076a55a18c657f07685146be430d238f720a473f319257919f8b1bb37ae99e52998a02a284ce5f9d2f4797383c530e1295f7bb49566e4fd4129f4e31f4e8a5bfb685965fa9ec84bb0c3162a0c23ea7e669c72a177461ff812f11bea52f715d183b47d16cbd6f389e2167e4b669090f12cf032c414008b7aeb792d50c5c896406cf89cd5c3c5397a736c16d685e96c68a1ca5d40d18bd9d3193dbabccce4fb276433cd041b6fe9c6b156d4b2157502e904bebb99bd77c5492b9427a777441ad8ffa8358ebcd6a86377086266a215d7387f464465dda02e68ef079b24786615d1854a464198abcc42e73da95e9c8dc1d2215ae4ca23e728780529f7dd85241d35c54d513425d397009d851d81a2bbab6a44ae3fa96b56206d1ab8fc19e07cee43f03b60d29fcf8e442901e1272c3fd74a23fc57de7ad4ff5a068e0b11004c683c250ca9fcaf28c7917a368786436fdf51a4d0aa34d22ee03fe7dafcb8aabea1f122b0535c75ac5c3382574224e47c60874b5c1f53e9b4b71d988b08530289c7fa27838ae179d6c55bb128910bd1ace8ad6c2020afcf7db841b58d9cd101e56aef6fb5ddaa89ca81c3bf71c482cb025d12380bd814b1e9a0ac2788ffe201679dd3466b1224272ae37bcf2b96ce6fb822a59ea8f78a54d789af89f9b9bdbde5c8f6cc50c8c2d03c65a43a0da1cdb9fb718e16d308a353bef3651e996bb696a619b0f416c5c69547719545601962a123545af763f56382b542f835962c04d695907fb281c280393b89e98aad788d54c3679bc686a5c160ce5f6d7bab57423335c7dac36304c56139354b6c13ba9647501c12fae852334a77a0157d676fad75e74d1fd85a3ac2fb3a1f56c50c46d0e98ce79921d7244665ab25662c341279c37e518a2feb8647a0cfae9a1201fe8c18336ae159934810586ec40675b61ba04a6bf8e405b5861b3e97b97904cbb798f4fc53c18bd25744e0a9b2a4b4cb5c2789e0e3d0c6a52293ebb57392c2a5c456729258bad3793f2624b2a5cee4fc7c5c86f6088fae2b7ebb5f8e51fd0ba0c04fa72a4e6ac129919a4eaa1f7ee1e4ba6eb2b512e5b1e3e714033d75a4cbe35b812b998f1e7fafa0733e6a90ad296d0780a6cbfc53f32ce2b24a2b18ca00a80cce2aadde1fc5f6f7902057a478e115c1f0f37aa4ece61cd83e6d2d0136ab14f9e3cff507f935b83d28bc89a14a6563e13fba5495d1505c1c7806e1784d9a8af91259114191ce0803a6291ba73a1fc126275dc7c0e7c482a9c415e3ef4e780d6b3eb9aab8758677c9f11c9029a5181d230ed8807f8ffe039fe7392ff04e3d0d3c5f1029cdadc4bffa683a2ec7a143f1745257a6ed8681df2edcf14cdd44fbf6f04093fa683f3ce6090c48a2c30c1dcaf8c6e04a8c704e5e6ab90cea0e66f775f85df96fa364bfcedb3e2917c0077a9871d2250219be209ed42b54d07dcee0a67775610fc74af189f8a90db3e9ad2dbbd55ce8c96cc58981c3d7ae11e65fc8b02b7748d9618afceab73799c3caa2b3ba65bab3f3949a609eb9c7cc960bde7692e38bec74f8cbcfeeb02bfd50922fd016cb8099d9b60c000b7ed2702e1ef6aa7ec692530eaf8d4555cf9f2d59d9bdd3c69fcfa7f990f41380884ce1a2f531d7985e7afab563876e7a440a8275516af9cf5f9e6471857be88b4d2b3a51db85c8c2a36a6ef4936a684036ea6ee9357da5acaab2366d4996080f72e5a259858cad8ad26def4f401f5db625948816b2f9890e70c3bef574882ab32db9dbf73cd51e1c57110a4b3bd613867ec317c0e0841d032642c9e253a92a35ea09d5d280d4c3223176ce88d3959087d3b4c51775229a4cde015654d09df0142de45e7146ac42f21247ef3184404eb8b7f88a43e0cb5c450cb27d51690fb66b9606c5ebb0d643840a0ce5025e55c402290871ec04edc330f1a630ff5aaaafb6f2c36962f55e032b97f72a18f835bba08ebd4d00db3853b20f7d5e4f52a2ba381809ca4613da55d094ca7d860966fb0b20b8a4862be657a98941e5afa259a446b8b13793bc0c8fe3b31f937c7abb3415a3f9b4db9c40e9aa025dbef4d5f3c674b83dcbe726cff8aebf03c387ff179e0ba59bf14983954dc3b22035a0271492077a4b8877552b06f44d2a6e776b0b0fe4b44a59f5ac54e2312b3f9189db29e9b37da7e3180f2d815962367c8790186914ae14389d83c4d64784891dbc0f6574cf64c501a25c71298a8d61fbce841d7409107687217d64774bc8f2826bb1c29ea961b4d298bad84154a2f61210b618de81a9bf1e95f33b6ec5562f1efeb07ef4982d8dd8efaaf5944aa662b5f84a4c349850007743102309d87870b086ee71c77f883cdf2360a3f88f295846cfca4f8d717fa1cd84e8c794bb9b48be022069f5a4d2ed4ea06492794b3565b6ee6b62385472a611c9b38c134b644cf959887ac6a2f81427c3c246bfa03c556c5e821b598613e59795950a96986e66fd647c02982658974ef67b6b2d9c4ebce59937958ee6020cc0e9d24eea5682b1abe3e353864d1fee9c257b6527959b9a2434e4437a109ddc912885b4da3c0ba893b61d9817dbfa407dbe2a215fa8a563d86ddb6d2baa53ecebb49be58f9a4e4c677046aec091c2ec6dc3f69b80ce5cc34dce41d5490d7c8985c31cc7db67976ce875c9e05eb89b7f91af6ac66da04c24b7f2944106d85cf2954e124542624c0cb796864a50627cbe71cdef63152c2057b234c72d3a7f780280bfeebcf8f541a6a9afdf70bb2388359d8e5b3c5b9eb8804b0c67e46c2ead44c9539e37c37ae1766511990b193b17dc191727c6b7ab428e55e18f342b45503524f30c2608bf2d9aa4cef14c43619fde3bab7feaeb2b52dbfcf6db771dc8eefd2d6aecc314a6ee345c87e2dbdc379749907ce652329d76263e16af27793a36c4ba3876651f29f35a9efa28bab8225e59b3c7f88e53994fdf2082cdbba3cd77fb99f14367f511d8db13ff726d6495e5ec5440dfa2d9dcb4bcb3c27b468374dc1cd20a18e8ccac0dfe4d18e82b88b6b55f9194f0ae213d9e13e4888e22f4fcdcc41d2574410de22969e0c75809006bad5e94f1cf3bdfdfd447cb3ba40a5370d903efff2256aede1eb2c363f765d69c344aab3b8830119bfb63b75fb8adf264e296cb80c9ca01b1cdd78f0b8", 0x1000}, {&(0x7f0000001180)="9ac76347449227279ed976ebf5ddda3793b9f1f293a31af201bf315346346b3a3822f5895a704b53217645a7f1e8ecdb3036d6314730496866400ee1d60c11be0b63d9d820d560e4a1ca512c7ea2b304edda9135408f9ad96ea6f7fb68165ca615e5e988c8f26155b8f6fa911057230dc17e5ff48c28f16c1f03d33ac9565e1fc54b6f2056c610433dece745b95014376a2b6c6369fc9f96c8e6090a7260183936378425d7f408e68362223315c624c269346782749caea2cd631ca0220960eff4d4a723746d3f9a35", 0xc9}, {&(0x7f0000001280)="c3473a36448891330d75ec62e1c3bb811da649c165d46c7e68ab324fba16c71154940634315ba1db8035397a8f8e3d9713017668dd484463647276a4dd685ca134c8234d98c31c446c98b94be86a52df4f9be302037bd5cfe8c5f5ddf87ce37ec619dc62ba602ef47529009f6d8b11439ffd9b245f890fbce50cea", 0x7b}], 0x3, &(0x7f0000001340)=[{0xb0, 0x1, 0x3ff, "0d0ffb071b6bbc30356582ae6b03b1ab094e02530510eeaacbb2a96735194b287e532e6342eaa6d58e3d0aa43916f23bdaa69adfd340f13a32ec0e98221ded87117f2783b4667377138eac04333ac88c2677f82bc774fce9f3bca681db0b8b28e7a71b2c52c5bfc14949a70470e60a5ad5429fbf6c497bdc46376ead74bb5af4be5c28e69f14a2999199940acc9f2d3b12b8adad00e33586de978233f5"}, {0x40, 0x111, 0x3b80000, "74f0e66249135bced6c579435043351f1a9ba77451993a7c74d121c5cedd23821339372a96b790651e0c20"}, {0xc8, 0x10e, 0xdfaa, "23f42382a0a66413e6787642bf55a8000dce7f23e94ecc421b5885270612685baa8b27e669c4f69f3ca5e2c4abe872f211489768c91e73a1ffa7cc9e0b0e34a74b4559e504d59ff08f89977b9fc9740a34d392b1be73e1d680463ca341e7a9c0a94d03f93d4fe87042f34e6cb24978af3308267b01683d3973ca6366941ef026308b598f08a18f0aa4feec7d9f9d16be631de2ce0ac806f9fd0ffbc7f54573fa35a0d9fc0c83ddceca826b38fc49102c5864b6"}, {0xc8, 0x88, 0xee9, "72434ec014cf0658cc0215dcf95551d3fd1cb8ce89a6f1ade98c94041677786ef8cfda324518dc428f08e60f86f957f838195cfc1365b5b520ae248c777a4be63cb36ab638c5ffbfe47326a26ded903607b7fb58b4fb4740931cb1f1d24e923f140e44e70132922fa78ecf2a056e6f0a8f73af757f2de13a0cd55e2ead163b5242ac2b9a6b45f44289c49ca99688f1b26e6421bba064039466b88936e92bdbb7a9316eb71148829dbb8d317194acd87f1fc71cff8c9647"}, {0x50, 0xff, 0x401, "8bfeb0d441eb1fd3b169e8230115db570b396fd7a956cd7c3fac02e0016538ab20d9af011cec38e9a261d419b4eb70d3c60ba4a5fbbc5294ea5f7ffd769f"}, {0xd8, 0x114, 0x3, "44ca05662cb35c360a6696ab11e4f5e9bcf726a71692bf6502768e17d8b84461d7a4d6e3c2ead51512a1f28c989d83c743386d996b9ad2aaf6901e3254e35bc0dc3a247b2e1cc29101386bba0dccd9e919d10cd5e6cb14d86ee2e0703727f665c54da02558b9575f871d204c2dd71cdf696582e3402b55428c9901401a71366b15bf13344872377f1d2cacc0bc37dc767472bb3b15a792e7c2620478ea0cdcfb498c912be88628545805dd8b9df641b53784fd07830a47ae85c4823584a00fa4ac"}, {0x88, 0x119, 0x0, "51d3e8b8bddfc09d8f6f466ec05be0d8606733ed491c09200d14d4f8ea6993ba85816328dc2a890a94c302ee691116f315e8ee0bbe4733d72e317fc54b79adbb396b059a285563bb2c97b70ceb3eacf6a14f0fd172895a0ee50a33758e70ca7d8714e8b30b571d18d01962c4d222957ec1"}, {0xb8, 0x3a, 0x83f, "bb918b67efb02d9a7bf2dcee726b83a6d13fc48610e1b5e36e22dfd30383e36114d48e5ac4bcfb7c3cc50f1e27948aa4a0f963dc36be2b6662bc7a1c5a885155f24eb760c896c3e3900afa70fbdcedb7e22c6ba4305e7ee36102f143cda3ea9cbdaa450b06becdcd981fd140f7ca10568a970c322cc56bbba6f30797f6babc2eb2a5bc425afe3e52c2822dee22589e374d9eb3db9885615367b250fed4682a60bfe46dc71fbd"}], 0x4e8}, 0x20004011) getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f00000000c0), 0x4) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) (async) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3344.741259][T16745] shmem 0 [ 3344.748795][T16745] mapped_file 0 [ 3344.754667][T16745] dirty 0 [ 3344.766549][T16745] writeback 0 [ 3344.773626][T16745] workingset_refault_anon 10375 [ 3344.778912][T16745] workingset_refault_file 1 [ 3344.787057][T16745] swap 241664 [ 3344.791089][T16745] swapcached 16384 [ 3344.794984][T16745] pgpgin 215403 [ 3344.804728][T16745] pgpgout 215398 [ 3344.808441][T16745] pgfault 553985 [ 3344.812741][T16745] pgmajfault 9765 [ 3344.816579][T16745] inactive_anon 0 [ 3344.826956][T16745] active_anon 8192 [ 3344.833435][T16745] inactive_file 0 01:28:23 executing program 2: r0 = socket$kcm(0x10, 0x5, 0x10) sendmsg$kcm(r0, &(0x7f0000001840)={&(0x7f0000000100)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'sha1-ce\x00'}, 0x80, &(0x7f0000001300)=[{&(0x7f0000000180)="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", 0x1000}, {&(0x7f0000001180)="9ac76347449227279ed976ebf5ddda3793b9f1f293a31af201bf315346346b3a3822f5895a704b53217645a7f1e8ecdb3036d6314730496866400ee1d60c11be0b63d9d820d560e4a1ca512c7ea2b304edda9135408f9ad96ea6f7fb68165ca615e5e988c8f26155b8f6fa911057230dc17e5ff48c28f16c1f03d33ac9565e1fc54b6f2056c610433dece745b95014376a2b6c6369fc9f96c8e6090a7260183936378425d7f408e68362223315c624c269346782749caea2cd631ca0220960eff4d4a723746d3f9a35", 0xc9}, {&(0x7f0000001280)="c3473a36448891330d75ec62e1c3bb811da649c165d46c7e68ab324fba16c71154940634315ba1db8035397a8f8e3d9713017668dd484463647276a4dd685ca134c8234d98c31c446c98b94be86a52df4f9be302037bd5cfe8c5f5ddf87ce37ec619dc62ba602ef47529009f6d8b11439ffd9b245f890fbce50cea", 0x7b}], 0x3, &(0x7f0000001340)=[{0xb0, 0x1, 0x3ff, "0d0ffb071b6bbc30356582ae6b03b1ab094e02530510eeaacbb2a96735194b287e532e6342eaa6d58e3d0aa43916f23bdaa69adfd340f13a32ec0e98221ded87117f2783b4667377138eac04333ac88c2677f82bc774fce9f3bca681db0b8b28e7a71b2c52c5bfc14949a70470e60a5ad5429fbf6c497bdc46376ead74bb5af4be5c28e69f14a2999199940acc9f2d3b12b8adad00e33586de978233f5"}, {0x40, 0x111, 0x3b80000, "74f0e66249135bced6c579435043351f1a9ba77451993a7c74d121c5cedd23821339372a96b790651e0c20"}, {0xc8, 0x10e, 0xdfaa, "23f42382a0a66413e6787642bf55a8000dce7f23e94ecc421b5885270612685baa8b27e669c4f69f3ca5e2c4abe872f211489768c91e73a1ffa7cc9e0b0e34a74b4559e504d59ff08f89977b9fc9740a34d392b1be73e1d680463ca341e7a9c0a94d03f93d4fe87042f34e6cb24978af3308267b01683d3973ca6366941ef026308b598f08a18f0aa4feec7d9f9d16be631de2ce0ac806f9fd0ffbc7f54573fa35a0d9fc0c83ddceca826b38fc49102c5864b6"}, {0xc8, 0x88, 0xee9, "72434ec014cf0658cc0215dcf95551d3fd1cb8ce89a6f1ade98c94041677786ef8cfda324518dc428f08e60f86f957f838195cfc1365b5b520ae248c777a4be63cb36ab638c5ffbfe47326a26ded903607b7fb58b4fb4740931cb1f1d24e923f140e44e70132922fa78ecf2a056e6f0a8f73af757f2de13a0cd55e2ead163b5242ac2b9a6b45f44289c49ca99688f1b26e6421bba064039466b88936e92bdbb7a9316eb71148829dbb8d317194acd87f1fc71cff8c9647"}, {0x50, 0xff, 0x401, "8bfeb0d441eb1fd3b169e8230115db570b396fd7a956cd7c3fac02e0016538ab20d9af011cec38e9a261d419b4eb70d3c60ba4a5fbbc5294ea5f7ffd769f"}, {0xd8, 0x114, 0x3, "44ca05662cb35c360a6696ab11e4f5e9bcf726a71692bf6502768e17d8b84461d7a4d6e3c2ead51512a1f28c989d83c743386d996b9ad2aaf6901e3254e35bc0dc3a247b2e1cc29101386bba0dccd9e919d10cd5e6cb14d86ee2e0703727f665c54da02558b9575f871d204c2dd71cdf696582e3402b55428c9901401a71366b15bf13344872377f1d2cacc0bc37dc767472bb3b15a792e7c2620478ea0cdcfb498c912be88628545805dd8b9df641b53784fd07830a47ae85c4823584a00fa4ac"}, {0x88, 0x119, 0x0, "51d3e8b8bddfc09d8f6f466ec05be0d8606733ed491c09200d14d4f8ea6993ba85816328dc2a890a94c302ee691116f315e8ee0bbe4733d72e317fc54b79adbb396b059a285563bb2c97b70ceb3eacf6a14f0fd172895a0ee50a33758e70ca7d8714e8b30b571d18d01962c4d222957ec1"}, {0xb8, 0x3a, 0x83f, "bb918b67efb02d9a7bf2dcee726b83a6d13fc48610e1b5e36e22dfd30383e36114d48e5ac4bcfb7c3cc50f1e27948aa4a0f963dc36be2b6662bc7a1c5a885155f24eb760c896c3e3900afa70fbdcedb7e22c6ba4305e7ee36102f143cda3ea9cbdaa450b06becdcd981fd140f7ca10568a970c322cc56bbba6f30797f6babc2eb2a5bc425afe3e52c2822dee22589e374d9eb3db9885615367b250fed4682a60bfe46dc71fbd"}], 0x4e8}, 0x20004011) (async) getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f00000000c0), 0x4) (async) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3344.839613][T16745] active_file 0 [ 3344.846500][T16745] unevictable 0 [ 3344.857707][T16745] hierarchical_memory_limit 314572800 [ 3344.865198][T16745] hierarchical_memsw_limit 9223372036854771712 [ 3344.881310][T16745] total_cache 0 [ 3344.884925][T16745] total_rss 16384 [ 3344.892561][T16745] total_rss_huge 0 [ 3344.896461][T16745] total_shmem 0 [ 3344.902374][T16745] total_mapped_file 0 [ 3344.906464][T16745] total_dirty 0 [ 3344.914203][T16745] total_writeback 0 [ 3344.918288][T16745] total_workingset_refault_anon 10375 [ 3344.926168][T16745] total_workingset_refault_file 1 [ 3344.934896][T16745] total_swap 241664 [ 3344.941812][T16745] total_swapcached 16384 [ 3344.947394][T16745] total_pgpgin 215403 [ 3344.967112][T16745] total_pgpgout 215398 [ 3344.979074][T16745] total_pgfault 553985 01:28:23 executing program 2: r0 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_MCAST_BROADCAST(r0, 0x10f, 0x85) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000000c0)) socket$kcm(0x10, 0x3, 0x10) [ 3344.990517][T16745] total_pgmajfault 9765 [ 3345.000008][T16745] total_inactive_anon 0 [ 3345.010089][T16745] total_active_anon 8192 [ 3345.018728][T16745] total_inactive_file 0 [ 3345.027709][T16745] total_active_file 0 [ 3345.033828][T16745] total_unevictable 0 [ 3345.038460][T16745] anon_cost 0 [ 3345.054546][T16745] file_cost 0 [ 3345.062628][T16745] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16745,uid=0 01:28:23 executing program 2: r0 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_MCAST_BROADCAST(r0, 0x10f, 0x85) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000000c0)) socket$kcm(0x10, 0x3, 0x10) [ 3345.100238][T16745] Memory cgroup out of memory: Killed process 16745 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000 [ 3345.124416][T16746] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3345.155667][T16746] CPU: 1 PID: 16746 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3345.166156][T16746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3345.176361][T16746] Call Trace: [ 3345.179697][T16746] [ 3345.182656][T16746] dump_stack_lvl+0x1e7/0x2e0 [ 3345.187382][T16746] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3345.192633][T16746] ? __pfx__printk+0x10/0x10 [ 3345.197262][T16746] ? ___ratelimit+0x4c4/0x670 [ 3345.202000][T16746] ? __pfx____ratelimit+0x10/0x10 [ 3345.207102][T16746] dump_header+0xda/0x6a0 [ 3345.211488][T16746] oom_kill_process+0x3a7/0x930 [ 3345.216411][T16746] out_of_memory+0xf67/0x1320 [ 3345.221142][T16746] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3345.226820][T16746] ? __pfx___mutex_lock+0x10/0x10 [ 3345.231894][T16746] ? __pfx_out_of_memory+0x10/0x10 [ 3345.237079][T16746] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3345.242931][T16746] ? __pfx_lock_release+0x10/0x10 [ 3345.248006][T16746] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3345.254205][T16746] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3345.259427][T16746] ? mem_cgroup_iter+0x3e9/0x560 [ 3345.264386][T16746] try_charge_memcg+0xda2/0x18a0 [ 3345.269384][T16746] ? __pfx_try_charge_memcg+0x10/0x10 [ 3345.274801][T16746] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3345.280574][T16746] ? __pfx_lock_release+0x10/0x10 [ 3345.285639][T16746] ? memcg_account_kmem+0x1e7/0x210 [ 3345.290875][T16746] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3345.296706][T16746] __memcg_kmem_charge_page+0xe1/0x250 [ 3345.302184][T16746] memcg_charge_kernel_stack+0x3f8/0x550 [ 3345.307833][T16746] dup_task_struct+0x40d/0x7d0 [ 3345.312629][T16746] copy_process+0x5d5/0x3fc0 [ 3345.317243][T16746] ? __might_fault+0xa9/0x120 [ 3345.321938][T16746] ? __pfx_lock_release+0x10/0x10 [ 3345.326987][T16746] ? __pfx_copy_process+0x10/0x10 [ 3345.332041][T16746] ? __might_fault+0xc5/0x120 [ 3345.336983][T16746] ? __asan_memset+0x23/0x50 [ 3345.341612][T16746] kernel_clone+0x21d/0x8d0 [ 3345.346163][T16746] ? __pfx_kernel_clone+0x10/0x10 [ 3345.351230][T16746] __se_sys_clone3+0x2cb/0x350 [ 3345.356075][T16746] ? __pfx___se_sys_clone3+0x10/0x10 [ 3345.361404][T16746] ? do_syscall_64+0x108/0x240 [ 3345.366184][T16746] ? do_syscall_64+0xb4/0x240 [ 3345.370938][T16746] do_syscall_64+0xf9/0x240 [ 3345.375459][T16746] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3345.381371][T16746] RIP: 0033:0x7f02540a9b99 [ 3345.385795][T16746] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3345.405860][T16746] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3345.414287][T16746] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3345.422267][T16746] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3345.430243][T16746] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3345.438222][T16746] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3345.446289][T16746] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3345.454288][T16746] 01:28:23 executing program 2: r0 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_MCAST_BROADCAST(r0, 0x10f, 0x85) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000000c0)) (async) socket$kcm(0x10, 0x3, 0x10) [ 3345.491352][T16746] memory: usage 307200kB, limit 307200kB, failcnt 351102 [ 3345.499435][T16746] memory+swap: usage 307484kB, limit 9007199254740988kB, failcnt 0 [ 3345.507464][T16746] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3345.515908][T16746] Memory cgroup stats for /syz1: [ 3345.516061][T16746] cache 4096 [ 3345.524994][T16746] rss 0 [ 3345.527882][T16746] rss_huge 0 [ 3345.532768][T16746] shmem 0 [ 3345.535743][T16746] mapped_file 0 01:28:23 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x5, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x40}, [@map_idx_val={0x18, 0x1, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0xbf0e}]}, &(0x7f0000000100)='GPL\x00', 0x9, 0xf9, &(0x7f0000000140)=""/249, 0x40f00, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000280)={0x2, 0xc, 0x4, 0x10000}, 0x10, 0x0, 0x0, 0x7, &(0x7f00000002c0)=[0xffffffffffffffff, 0x1, 0x1, 0x1, 0x1, 0x1, 0xffffffffffffffff, 0x1, 0x1], &(0x7f0000000300)=[{0x5, 0x4, 0x2}, {0x0, 0x4, 0x8, 0x6}, {0x5, 0x4, 0xd, 0x7}, {0x5, 0x2, 0x1, 0x8}, {0x5, 0x3, 0x0, 0x1e143447d088c431}, {0x1, 0x2, 0x8, 0xc}, {0x5, 0x2, 0x3, 0x7}], 0x10, 0x2}, 0x90) ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000440)={r0, r1}) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3345.539766][T16746] dirty 4096 [ 3345.542999][T16746] writeback 0 [ 3345.546308][T16746] workingset_refault_anon 119247 [ 3345.553585][T16746] workingset_refault_file 3 [ 3345.558157][T16746] swap 290816 [ 3345.562111][T16746] swapcached 0 [ 3345.565529][T16746] pgpgin 289425 [ 3345.569995][T16746] pgpgout 289424 [ 3345.573572][T16746] pgfault 615673 [ 3345.577152][T16746] pgmajfault 112200 [ 3345.586309][T16746] inactive_anon 0 [ 3345.591560][T16746] active_anon 0 [ 3345.595057][T16746] inactive_file 0 [ 3345.599260][T16746] active_file 4096 [ 3345.603019][T16746] unevictable 0 [ 3345.606507][T16746] hierarchical_memory_limit 314572800 [ 3345.613465][T16746] hierarchical_memsw_limit 9223372036854771712 [ 3345.620124][T16746] total_cache 4096 [ 3345.624047][T16746] total_rss 0 [ 3345.627442][T16746] total_rss_huge 0 [ 3345.631885][T16746] total_shmem 0 [ 3345.635462][T16746] total_mapped_file 0 [ 3345.640165][T16746] total_dirty 4096 [ 3345.644004][T16746] total_writeback 0 [ 3345.655409][T16746] total_workingset_refault_anon 119247 [ 3345.662496][T16746] total_workingset_refault_file 3 [ 3345.667630][T16746] total_swap 290816 [ 3345.672102][T16746] total_swapcached 0 [ 3345.676131][T16746] total_pgpgin 289425 [ 3345.680924][T16746] total_pgpgout 289424 [ 3345.686619][T16746] total_pgfault 615673 [ 3345.693593][T16746] total_pgmajfault 112200 [ 3345.698131][T16746] total_inactive_anon 0 [ 3345.704179][T16746] total_active_anon 0 [ 3345.708272][T16746] total_inactive_file 0 [ 3345.713124][T16746] total_active_file 4096 [ 3345.717536][T16746] total_unevictable 0 [ 3345.722154][T16746] anon_cost 0 [ 3345.725611][T16746] file_cost 0 01:28:23 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000000fc00000000000114000600020000001b"], 0x54}}, 0x0) [ 3345.729511][T16746] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16746,uid=0 [ 3345.745570][T16746] Memory cgroup out of memory: Killed process 16746 (syz-executor.1) total-vm:54508kB, anon-rss:364kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:24 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000000d500000000000114000600020000001b"], 0x54}}, 0x0) [ 3345.857067][T16749] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:28:24 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000e0ffffff0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3346.011030][T16765] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3346.019522][T16765] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.2'. 01:28:24 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_GET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000080)={0x14, r3, 0x1}, 0x14}}, 0x0) sendmsg$TIPC_NL_LINK_RESET_STATS(r1, &(0x7f0000000480)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000280)={0x194, r3, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x44, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_SOCK={0x60, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}]}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3ff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}]}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x800}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x57}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7eae}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4541144}]}, @TIPC_NLA_NET={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x80000000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xffffffffffffffff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x101}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xffffffffffff0865}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x3f}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8000}]}, @TIPC_NLA_SOCK={0x78, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5c64}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xf342}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10000}]}]}]}, 0x194}, 0x1, 0x0, 0x0, 0x40}, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000200)={&(0x7f00000000c0), 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, r4, 0x20, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xe, 0xcd, [0x6, 0x3, 0x9, 0xad, 0xfffe]}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}], @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000841}, 0x20000000) r5 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3346.286240][T16766] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000 [ 3346.313883][T16766] CPU: 0 PID: 16766 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3346.324363][T16766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3346.334537][T16766] Call Trace: [ 3346.337844][T16766] [ 3346.340803][T16766] dump_stack_lvl+0x1e7/0x2e0 [ 3346.345519][T16766] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3346.350748][T16766] ? __pfx__printk+0x10/0x10 [ 3346.355379][T16766] ? ___ratelimit+0x4c4/0x670 [ 3346.360123][T16766] ? __pfx____ratelimit+0x10/0x10 [ 3346.365207][T16766] dump_header+0xda/0x6a0 [ 3346.369602][T16766] oom_kill_process+0x3a7/0x930 [ 3346.374511][T16766] out_of_memory+0xf67/0x1320 [ 3346.379253][T16766] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3346.384941][T16766] ? __pfx___mutex_lock+0x10/0x10 [ 3346.390015][T16766] ? __pfx_out_of_memory+0x10/0x10 [ 3346.395184][T16766] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3346.400779][T16766] ? __pfx_lock_release+0x10/0x10 [ 3346.405857][T16766] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3346.411988][T16766] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3346.417243][T16766] ? mem_cgroup_iter+0x3e9/0x560 [ 3346.422229][T16766] try_charge_memcg+0xda2/0x18a0 [ 3346.427257][T16766] ? __pfx_try_charge_memcg+0x10/0x10 [ 3346.432643][T16766] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3346.438380][T16766] ? __pfx_lock_release+0x10/0x10 [ 3346.443434][T16766] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3346.449440][T16766] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3346.455521][T16766] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3346.461344][T16766] obj_cgroup_charge+0x389/0x630 [ 3346.466292][T16766] ? obj_cgroup_charge+0x121/0x630 [ 3346.471426][T16766] ? __pfx_obj_cgroup_charge+0x10/0x10 [ 3346.476946][T16766] ? kmalloc_trace+0x4e/0x360 [ 3346.481654][T16766] ? __pfx___might_resched+0x10/0x10 [ 3346.486973][T16766] __memcg_slab_pre_alloc_hook+0x28d/0x2b0 [ 3346.492813][T16766] ? copy_semundo+0xb5/0x240 [ 3346.497433][T16766] kmalloc_trace+0x216/0x360 [ 3346.502046][T16766] ? __asan_memcpy+0x40/0x70 [ 3346.506663][T16766] copy_semundo+0xb5/0x240 [ 3346.511116][T16766] copy_process+0x1bc3/0x3fc0 [ 3346.515837][T16766] ? copy_process+0x9c3/0x3fc0 [ 3346.520619][T16766] ? __pfx_copy_process+0x10/0x10 [ 3346.525651][T16766] ? __might_fault+0xc5/0x120 [ 3346.530361][T16766] ? __asan_memset+0x23/0x50 [ 3346.534983][T16766] kernel_clone+0x21d/0x8d0 [ 3346.539521][T16766] ? __pfx_kernel_clone+0x10/0x10 [ 3346.544575][T16766] __se_sys_clone3+0x2cb/0x350 [ 3346.549368][T16766] ? __might_fault+0xa9/0x120 [ 3346.554076][T16766] ? __pfx___se_sys_clone3+0x10/0x10 [ 3346.559402][T16766] ? do_syscall_64+0x108/0x240 [ 3346.564195][T16766] ? do_syscall_64+0xb4/0x240 [ 3346.568907][T16766] do_syscall_64+0xf9/0x240 [ 3346.573449][T16766] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3346.579364][T16766] RIP: 0033:0x7ff32d8a9b99 [ 3346.583796][T16766] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3346.603414][T16766] RSP: 002b:00007ffd9289bbe8 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3346.611852][T16766] RAX: ffffffffffffffda RBX: 00007ff32d852270 RCX: 00007ff32d8a9b99 [ 3346.619854][T16766] RDX: 00007ff32d852270 RSI: 0000000000000058 RDI: 00007ffd9289bc30 [ 3346.627844][T16766] RBP: 00007ff32e5ed6c0 R08: 00007ff32e5ed6c0 R09: 00007ffd9289bd17 [ 3346.635838][T16766] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3346.643825][T16766] R13: 000000000000000b R14: 00007ffd9289bc30 R15: 00007ffd9289bd18 [ 3346.651830][T16766] [ 3346.664029][T16766] memory: usage 307200kB, limit 307200kB, failcnt 18320 [ 3346.671417][T16766] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0 [ 3346.690210][T16766] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3346.697732][T16766] Memory cgroup stats for /syz0: [ 3346.697879][T16766] cache 0 [ 3346.706703][T16766] rss 4096 [ 3346.714140][T16766] rss_huge 0 [ 3346.717564][T16766] shmem 0 [ 3346.721111][T16766] mapped_file 0 [ 3346.724772][T16766] dirty 0 [ 3346.727894][T16766] writeback 0 [ 3346.731895][T16766] workingset_refault_anon 10428 [ 3346.736954][T16766] workingset_refault_file 1 [ 3346.742138][T16766] swap 184320 [ 3346.745630][T16766] swapcached 4096 [ 3346.749965][T16766] pgpgin 215470 [ 3346.753638][T16766] pgpgout 215469 [ 3346.757391][T16766] pgfault 554093 [ 3346.764397][T16766] pgmajfault 9808 [ 3346.768254][T16766] inactive_anon 0 [ 3346.772641][T16766] active_anon 4096 [ 3346.776577][T16766] inactive_file 0 [ 3346.781295][T16766] active_file 0 [ 3346.784961][T16766] unevictable 0 [ 3346.789094][T16766] hierarchical_memory_limit 314572800 [ 3346.797268][T16766] hierarchical_memsw_limit 9223372036854771712 [ 3346.806791][T16766] total_cache 0 [ 3346.816381][T16766] total_rss 4096 [ 3346.822939][T16766] total_rss_huge 0 [ 3346.826878][T16766] total_shmem 0 [ 3346.835056][T16766] total_mapped_file 0 [ 3346.842108][T16766] total_dirty 0 [ 3346.845771][T16766] total_writeback 0 [ 3346.854274][T16766] total_workingset_refault_anon 10428 [ 3346.862672][T16766] total_workingset_refault_file 1 [ 3346.867907][T16766] total_swap 184320 [ 3346.877910][T16766] total_swapcached 4096 [ 3346.886958][T16766] total_pgpgin 215470 [ 3346.895544][T16766] total_pgpgout 215469 [ 3346.904303][T16766] total_pgfault 554093 [ 3346.909334][T16766] total_pgmajfault 9808 [ 3346.916821][T16766] total_inactive_anon 0 [ 3346.925490][T16766] total_active_anon 4096 [ 3346.930415][T16766] total_inactive_file 0 [ 3346.937431][T16766] total_active_file 0 [ 3346.945987][T16766] total_unevictable 0 [ 3346.953086][T16766] anon_cost 0 [ 3346.956593][T16766] file_cost 0 [ 3346.964137][T16766] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16766,uid=0 [ 3346.988126][T16769] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3346.994962][T16766] Memory cgroup out of memory: Killed process 16766 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000 [ 3347.027869][T16768] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3347.054068][T16768] CPU: 1 PID: 16768 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3347.064563][T16768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3347.074670][T16768] Call Trace: [ 3347.077983][T16768] [ 3347.080941][T16768] dump_stack_lvl+0x1e7/0x2e0 [ 3347.085664][T16768] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3347.090923][T16768] dump_header+0xda/0x6a0 [ 3347.095311][T16768] oom_kill_process+0x3a7/0x930 [ 3347.100215][T16768] out_of_memory+0xf67/0x1320 [ 3347.104944][T16768] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3347.110622][T16768] ? __pfx___mutex_lock+0x10/0x10 [ 3347.115688][T16768] ? __pfx_out_of_memory+0x10/0x10 [ 3347.120849][T16768] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3347.126442][T16768] ? __pfx_lock_release+0x10/0x10 [ 3347.131506][T16768] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3347.137602][T16768] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3347.142819][T16768] ? mem_cgroup_iter+0x3e9/0x560 [ 3347.147777][T16768] try_charge_memcg+0xda2/0x18a0 [ 3347.152752][T16768] ? __pfx_try_charge_memcg+0x10/0x10 [ 3347.158183][T16768] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3347.163924][T16768] ? __pfx_lock_release+0x10/0x10 [ 3347.168971][T16768] ? memcg_account_kmem+0x1e7/0x210 [ 3347.174199][T16768] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3347.180027][T16768] __memcg_kmem_charge_page+0xe1/0x250 [ 3347.185506][T16768] memcg_charge_kernel_stack+0x3f8/0x550 [ 3347.191156][T16768] dup_task_struct+0x40d/0x7d0 [ 3347.195934][T16768] copy_process+0x5d5/0x3fc0 [ 3347.200558][T16768] ? __might_fault+0xa9/0x120 [ 3347.205260][T16768] ? __pfx_lock_release+0x10/0x10 [ 3347.210310][T16768] ? __pfx_copy_process+0x10/0x10 [ 3347.215344][T16768] ? __might_fault+0xc5/0x120 [ 3347.220042][T16768] ? __asan_memset+0x23/0x50 [ 3347.224660][T16768] kernel_clone+0x21d/0x8d0 [ 3347.229200][T16768] ? __pfx_kernel_clone+0x10/0x10 [ 3347.234275][T16768] __se_sys_clone3+0x2cb/0x350 [ 3347.239147][T16768] ? __pfx___se_sys_clone3+0x10/0x10 [ 3347.244474][T16768] ? do_syscall_64+0x108/0x240 [ 3347.249265][T16768] ? do_syscall_64+0xb4/0x240 [ 3347.253959][T16768] do_syscall_64+0xf9/0x240 [ 3347.258492][T16768] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3347.264405][T16768] RIP: 0033:0x7f02540a9b99 [ 3347.268831][T16768] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3347.288543][T16768] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3347.296987][T16768] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3347.305059][T16768] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3347.313043][T16768] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3347.321040][T16768] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3347.329041][T16768] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3347.337056][T16768] 01:28:25 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000f0ffffff0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3347.356032][T16768] memory: usage 307200kB, limit 307200kB, failcnt 351327 [ 3347.363458][T16768] memory+swap: usage 307504kB, limit 9007199254740988kB, failcnt 0 [ 3347.417826][T16768] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3347.438080][T16775] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3347.455683][T16768] Memory cgroup stats for /syz1: [ 3347.455851][T16768] cache 4096 01:28:25 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x5, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x40}, [@map_idx_val={0x18, 0x1, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0xbf0e}]}, &(0x7f0000000100)='GPL\x00', 0x9, 0xf9, &(0x7f0000000140)=""/249, 0x40f00, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000280)={0x2, 0xc, 0x4, 0x10000}, 0x10, 0x0, 0x0, 0x7, &(0x7f00000002c0)=[0xffffffffffffffff, 0x1, 0x1, 0x1, 0x1, 0x1, 0xffffffffffffffff, 0x1, 0x1], &(0x7f0000000300)=[{0x5, 0x4, 0x2}, {0x0, 0x4, 0x8, 0x6}, {0x5, 0x4, 0xd, 0x7}, {0x5, 0x2, 0x1, 0x8}, {0x5, 0x3, 0x0, 0x1e143447d088c431}, {0x1, 0x2, 0x8, 0xc}, {0x5, 0x2, 0x3, 0x7}], 0x10, 0x2}, 0x90) ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000440)={r0, r1}) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) socket$kcm(0x10, 0x3, 0x10) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x5, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x40}, [@map_idx_val={0x18, 0x1, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0xbf0e}]}, &(0x7f0000000100)='GPL\x00', 0x9, 0xf9, &(0x7f0000000140)=""/249, 0x40f00, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000280)={0x2, 0xc, 0x4, 0x10000}, 0x10, 0x0, 0x0, 0x7, &(0x7f00000002c0)=[0xffffffffffffffff, 0x1, 0x1, 0x1, 0x1, 0x1, 0xffffffffffffffff, 0x1, 0x1], &(0x7f0000000300)=[{0x5, 0x4, 0x2}, {0x0, 0x4, 0x8, 0x6}, {0x5, 0x4, 0xd, 0x7}, {0x5, 0x2, 0x1, 0x8}, {0x5, 0x3, 0x0, 0x1e143447d088c431}, {0x1, 0x2, 0x8, 0xc}, {0x5, 0x2, 0x3, 0x7}], 0x10, 0x2}, 0x90) (async) ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000440)={r0, r1}) (async) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) (async) [ 3347.464329][T16775] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3347.471105][T16768] rss 0 [ 3347.485065][T16768] rss_huge 0 [ 3347.494093][T16768] shmem 0 [ 3347.517784][T16768] mapped_file 0 [ 3347.530742][T16768] dirty 4096 [ 3347.534111][T16768] writeback 0 [ 3347.538293][T16768] workingset_refault_anon 119319 [ 3347.546818][T16768] workingset_refault_file 3 [ 3347.555435][T16768] swap 311296 [ 3347.563766][T16768] swapcached 0 [ 3347.568373][T16768] pgpgin 289507 [ 3347.573078][T16768] pgpgout 289506 [ 3347.576833][T16768] pgfault 615795 [ 3347.580817][T16768] pgmajfault 112256 [ 3347.584858][T16768] inactive_anon 0 [ 3347.588771][T16768] active_anon 0 [ 3347.592455][T16768] inactive_file 0 [ 3347.596320][T16768] active_file 4096 [ 3347.600303][T16768] unevictable 0 [ 3347.609156][T16768] hierarchical_memory_limit 314572800 [ 3347.615065][T16768] hierarchical_memsw_limit 9223372036854771712 [ 3347.622018][T16768] total_cache 4096 [ 3347.625956][T16768] total_rss 0 [ 3347.629926][T16768] total_rss_huge 0 [ 3347.635368][T16768] total_shmem 0 [ 3347.639647][T16768] total_mapped_file 0 [ 3347.643853][T16768] total_dirty 4096 [ 3347.647768][T16768] total_writeback 0 [ 3347.652434][T16768] total_workingset_refault_anon 119319 [ 3347.658164][T16768] total_workingset_refault_file 3 [ 3347.663938][T16768] total_swap 311296 [ 3347.668009][T16768] total_swapcached 0 [ 3347.677775][T16768] total_pgpgin 289507 [ 3347.682583][T16768] total_pgpgout 289506 [ 3347.686940][T16768] total_pgfault 615795 [ 3347.691771][T16768] total_pgmajfault 112256 [ 3347.696376][T16768] total_inactive_anon 0 [ 3347.701278][T16768] total_active_anon 0 [ 3347.705521][T16768] total_inactive_file 0 [ 3347.710354][T16768] total_active_file 4096 [ 3347.714854][T16768] total_unevictable 0 01:28:26 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000000fc00000000000114000600020000001b"], 0x54}}, 0x0) 01:28:26 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000003fd00000000000114000600020000001b"], 0x54}}, 0x0) [ 3347.719622][T16768] anon_cost 0 [ 3347.723176][T16768] file_cost 0 [ 3347.726696][T16768] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16768,uid=0 [ 3347.744785][T16768] Memory cgroup out of memory: Killed process 16768 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3348.035125][T16785] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000 [ 3348.058263][T16785] CPU: 1 PID: 16785 Comm: syz-executor.0 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3348.068761][T16785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3348.078859][T16785] Call Trace: [ 3348.082183][T16785] [ 3348.085148][T16785] dump_stack_lvl+0x1e7/0x2e0 [ 3348.089879][T16785] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3348.095135][T16785] ? __pfx__printk+0x10/0x10 [ 3348.099760][T16785] ? ___ratelimit+0x4c4/0x670 [ 3348.104498][T16785] ? __pfx____ratelimit+0x10/0x10 [ 3348.109666][T16785] dump_header+0xda/0x6a0 [ 3348.114051][T16785] oom_kill_process+0x3a7/0x930 [ 3348.118963][T16785] out_of_memory+0xf67/0x1320 [ 3348.123695][T16785] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3348.129379][T16785] ? __pfx___mutex_lock+0x10/0x10 [ 3348.134448][T16785] ? __pfx_out_of_memory+0x10/0x10 [ 3348.139617][T16785] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3348.145648][T16785] ? __pfx_lock_release+0x10/0x10 [ 3348.150723][T16785] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3348.156844][T16785] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3348.162085][T16785] ? mem_cgroup_iter+0x3e9/0x560 [ 3348.167081][T16785] try_charge_memcg+0xda2/0x18a0 [ 3348.172110][T16785] ? __pfx_try_charge_memcg+0x10/0x10 [ 3348.177529][T16785] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3348.183291][T16785] ? __pfx_lock_release+0x10/0x10 [ 3348.188371][T16785] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3348.194408][T16785] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3348.200172][T16785] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3348.206025][T16785] obj_cgroup_charge+0x389/0x630 [ 3348.211022][T16785] ? obj_cgroup_charge+0x121/0x630 [ 3348.216187][T16785] ? __pfx_obj_cgroup_charge+0x10/0x10 [ 3348.221704][T16785] ? kmalloc_trace+0x4e/0x360 [ 3348.226437][T16785] ? __pfx___might_resched+0x10/0x10 [ 3348.231784][T16785] __memcg_slab_pre_alloc_hook+0x28d/0x2b0 [ 3348.237646][T16785] ? copy_semundo+0xb5/0x240 [ 3348.242286][T16785] kmalloc_trace+0x216/0x360 [ 3348.246933][T16785] ? __asan_memcpy+0x40/0x70 [ 3348.251584][T16785] copy_semundo+0xb5/0x240 [ 3348.255139][T16777] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3348.256029][T16785] copy_process+0x1bc3/0x3fc0 [ 3348.269976][T16785] ? copy_process+0x9c3/0x3fc0 [ 3348.274803][T16785] ? __pfx_copy_process+0x10/0x10 [ 3348.279868][T16785] ? __might_fault+0xc5/0x120 [ 3348.284598][T16785] ? __asan_memset+0x23/0x50 [ 3348.289247][T16785] kernel_clone+0x21d/0x8d0 [ 3348.293796][T16785] ? __pfx_kernel_clone+0x10/0x10 [ 3348.299059][T16785] __se_sys_clone3+0x2cb/0x350 [ 3348.303866][T16785] ? __pfx___se_sys_clone3+0x10/0x10 [ 3348.309211][T16785] ? do_syscall_64+0x108/0x240 [ 3348.314005][T16785] ? do_syscall_64+0xb4/0x240 [ 3348.318714][T16785] do_syscall_64+0xf9/0x240 [ 3348.323259][T16785] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3348.329194][T16785] RIP: 0033:0x7ff32d8a9b99 [ 3348.333649][T16785] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3348.353313][T16785] RSP: 002b:00007ffd9289bbe8 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3348.361775][T16785] RAX: ffffffffffffffda RBX: 00007ff32d852270 RCX: 00007ff32d8a9b99 [ 3348.369798][T16785] RDX: 00007ff32d852270 RSI: 0000000000000058 RDI: 00007ffd9289bc30 [ 3348.377812][T16785] RBP: 00007ff32e5ed6c0 R08: 00007ff32e5ed6c0 R09: 00007ffd9289bd17 01:28:26 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000fcffffff0000000000000114000600020000001b"], 0x54}}, 0x0) [ 3348.385830][T16785] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3348.393850][T16785] R13: 000000000000000b R14: 00007ffd9289bc30 R15: 00007ffd9289bd18 [ 3348.401979][T16785] [ 3348.422796][T16785] memory: usage 307200kB, limit 307200kB, failcnt 18522 [ 3348.448664][T16785] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0 [ 3348.468695][T16785] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3348.476082][T16785] Memory cgroup stats for /syz0: [ 3348.476232][T16785] cache 0 [ 3348.479686][T16780] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3348.484773][T16785] rss 12288 [ 3348.496010][T16785] rss_huge 0 [ 3348.500378][T16785] shmem 0 [ 3348.503351][T16785] mapped_file 0 [ 3348.506821][T16785] dirty 0 [ 3348.509859][T16780] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3348.533482][T16788] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3348.543241][T16785] writeback 0 01:28:26 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_GET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000080)={0x14, r3, 0x1}, 0x14}}, 0x0) (async) sendmsg$TIPC_NL_LINK_RESET_STATS(r1, &(0x7f0000000480)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000280)={0x194, r3, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x44, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_SOCK={0x60, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}]}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3ff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}]}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x800}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x57}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7eae}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4541144}]}, @TIPC_NLA_NET={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x80000000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xffffffffffffffff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x101}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xffffffffffff0865}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x3f}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8000}]}, @TIPC_NLA_SOCK={0x78, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5c64}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xf342}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10000}]}]}]}, 0x194}, 0x1, 0x0, 0x0, 0x40}, 0x0) (async) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000200)={&(0x7f00000000c0), 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, r4, 0x20, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xe, 0xcd, [0x6, 0x3, 0x9, 0xad, 0xfffe]}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}], @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000841}, 0x20000000) r5 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3348.546570][T16785] workingset_refault_anon 10459 [ 3348.564729][T16785] workingset_refault_file 1 [ 3348.605371][T16785] swap 176128 [ 3348.614605][T16785] swapcached 8192 [ 3348.618301][T16785] pgpgin 215514 [ 3348.632397][T16785] pgpgout 215511 [ 3348.644115][T16785] pgfault 554175 [ 3348.647738][T16785] pgmajfault 9839 [ 3348.663226][T16785] inactive_anon 4096 [ 3348.667347][T16785] active_anon 0 [ 3348.675122][T16785] inactive_file 0 [ 3348.679622][T16785] active_file 0 [ 3348.683277][T16785] unevictable 0 [ 3348.686906][T16785] hierarchical_memory_limit 314572800 [ 3348.694902][T16785] hierarchical_memsw_limit 9223372036854771712 [ 3348.702094][T16785] total_cache 0 01:28:26 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000a9dd4709407f000000000114000600020000001b"], 0x54}}, 0x0) [ 3348.718230][T16785] total_rss 12288 [ 3348.726001][T16785] total_rss_huge 0 [ 3348.734732][T16785] total_shmem 0 [ 3348.738248][T16785] total_mapped_file 0 [ 3348.747398][T16785] total_dirty 0 [ 3348.768709][T16785] total_writeback 0 [ 3348.772591][T16785] total_workingset_refault_anon 10459 [ 3348.777988][T16785] total_workingset_refault_file 1 [ 3348.796702][T16785] total_swap 176128 [ 3348.801879][T16785] total_swapcached 8192 [ 3348.806081][T16785] total_pgpgin 215514 [ 3348.810346][T16785] total_pgpgout 215511 [ 3348.814556][T16785] total_pgfault 554175 [ 3348.818822][T16785] total_pgmajfault 9839 [ 3348.823556][T16785] total_inactive_anon 4096 [ 3348.828334][T16785] total_active_anon 0 [ 3348.832722][T16785] total_inactive_file 0 [ 3348.837303][T16785] total_active_file 0 [ 3348.841676][T16785] total_unevictable 0 [ 3348.845896][T16785] anon_cost 0 [ 3348.853723][T16785] file_cost 0 [ 3348.857274][T16785] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16785,uid=0 [ 3348.875573][T16785] Memory cgroup out of memory: Killed process 16785 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000 [ 3348.906770][T16786] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3348.926362][T16786] CPU: 1 PID: 16786 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3348.936832][T16786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3348.947003][T16786] Call Trace: [ 3348.950312][T16786] [ 3348.953283][T16786] dump_stack_lvl+0x1e7/0x2e0 [ 3348.958008][T16786] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3348.963347][T16786] ? __pfx__printk+0x10/0x10 [ 3348.967975][T16786] ? ___ratelimit+0x4c4/0x670 [ 3348.972703][T16786] ? __pfx____ratelimit+0x10/0x10 [ 3348.977790][T16786] dump_header+0xda/0x6a0 [ 3348.982178][T16786] oom_kill_process+0x3a7/0x930 [ 3348.987086][T16786] out_of_memory+0xf67/0x1320 [ 3348.991818][T16786] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3348.997496][T16786] ? __pfx___mutex_lock+0x10/0x10 [ 3349.002570][T16786] ? __pfx_out_of_memory+0x10/0x10 [ 3349.007749][T16786] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3349.013338][T16786] ? __pfx_lock_release+0x10/0x10 [ 3349.018408][T16786] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3349.024520][T16786] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3349.029848][T16786] ? mem_cgroup_iter+0x3e9/0x560 [ 3349.034850][T16786] try_charge_memcg+0xda2/0x18a0 [ 3349.039878][T16786] ? __pfx_try_charge_memcg+0x10/0x10 [ 3349.045291][T16786] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3349.051062][T16786] ? __pfx_lock_release+0x10/0x10 [ 3349.056134][T16786] ? memcg_account_kmem+0x1e7/0x210 [ 3349.061416][T16786] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3349.067277][T16786] __memcg_kmem_charge_page+0xe1/0x250 [ 3349.072830][T16786] memcg_charge_kernel_stack+0x3f8/0x550 [ 3349.078509][T16786] dup_task_struct+0x40d/0x7d0 [ 3349.083314][T16786] copy_process+0x5d5/0x3fc0 [ 3349.087956][T16786] ? __might_fault+0xa9/0x120 [ 3349.092682][T16786] ? __pfx_lock_release+0x10/0x10 [ 3349.097772][T16786] ? __pfx_copy_process+0x10/0x10 [ 3349.102838][T16786] ? __might_fault+0xc5/0x120 [ 3349.107566][T16786] ? __asan_memset+0x23/0x50 [ 3349.112210][T16786] kernel_clone+0x21d/0x8d0 [ 3349.116763][T16786] ? __pfx_kernel_clone+0x10/0x10 [ 3349.121864][T16786] __se_sys_clone3+0x2cb/0x350 [ 3349.126666][T16786] ? __might_fault+0xa9/0x120 [ 3349.131425][T16786] ? __pfx___se_sys_clone3+0x10/0x10 [ 3349.136790][T16786] ? do_syscall_64+0x108/0x240 [ 3349.141598][T16786] ? do_syscall_64+0xb4/0x240 [ 3349.146317][T16786] do_syscall_64+0xf9/0x240 [ 3349.150864][T16786] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3349.156798][T16786] RIP: 0033:0x7f02540a9b99 [ 3349.161274][T16786] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3349.180940][T16786] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3349.189401][T16786] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3349.197408][T16786] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3349.205417][T16786] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3349.213443][T16786] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3349.221452][T16786] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3349.229479][T16786] [ 3349.247868][T16786] memory: usage 307200kB, limit 307200kB, failcnt 351515 [ 3349.255142][T16786] memory+swap: usage 307472kB, limit 9007199254740988kB, failcnt 0 [ 3349.263138][T16786] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3349.271912][T16786] Memory cgroup stats for /syz1: [ 3349.272063][T16786] cache 4096 [ 3349.280340][T16786] rss 0 [ 3349.283319][T16786] rss_huge 0 [ 3349.286539][T16786] shmem 0 [ 3349.289627][T16786] mapped_file 0 [ 3349.293129][T16786] dirty 4096 [ 3349.296346][T16786] writeback 0 [ 3349.304667][T16786] workingset_refault_anon 119373 [ 3349.311756][T16786] workingset_refault_file 3 [ 3349.316522][T16786] swap 278528 [ 3349.326709][T16786] swapcached 0 [ 3349.332437][T16786] pgpgin 289572 [ 3349.336199][T16786] pgpgout 289571 [ 3349.345814][T16786] pgfault 615905 [ 3349.351561][T16786] pgmajfault 112306 [ 3349.355621][T16786] inactive_anon 0 [ 3349.365967][T16786] active_anon 0 [ 3349.376394][T16796] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3349.384703][T16786] inactive_file 0 [ 3349.392884][T16786] active_file 4096 [ 3349.396902][T16786] unevictable 0 [ 3349.404012][T16786] hierarchical_memory_limit 314572800 [ 3349.409939][T16786] hierarchical_memsw_limit 9223372036854771712 [ 3349.416380][T16786] total_cache 4096 [ 3349.420903][T16786] total_rss 0 [ 3349.424438][T16786] total_rss_huge 0 [ 3349.428454][T16786] total_shmem 0 [ 3349.433736][T16786] total_mapped_file 0 [ 3349.437994][T16786] total_dirty 4096 [ 3349.442101][T16786] total_writeback 0 [ 3349.446208][T16786] total_workingset_refault_anon 119373 [ 3349.452993][T16786] total_workingset_refault_file 3 [ 3349.458282][T16786] total_swap 278528 [ 3349.462717][T16786] total_swapcached 0 [ 3349.466901][T16786] total_pgpgin 289572 [ 3349.471238][T16786] total_pgpgout 289571 [ 3349.481011][T16786] total_pgfault 615905 [ 3349.485396][T16786] total_pgmajfault 112306 [ 3349.490437][T16786] total_inactive_anon 0 [ 3349.495040][T16786] total_active_anon 0 [ 3349.499438][T16786] total_inactive_file 0 [ 3349.503888][T16786] total_active_file 4096 [ 3349.509307][T16786] total_unevictable 0 [ 3349.513556][T16786] anon_cost 0 [ 3349.517169][T16786] file_cost 0 01:28:27 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000003400000000114000600020000001b"], 0x54}}, 0x0) [ 3349.521424][T16786] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16786,uid=0 [ 3349.543843][T16786] Memory cgroup out of memory: Killed process 16786 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:27 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000003fe00000000000114000600020000001b"], 0x54}}, 0x0) [ 3349.583771][T16781] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3349.611717][T16781] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3349.631617][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3349.673023][ T5105] CPU: 0 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3349.683412][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3349.683429][ T5105] Call Trace: [ 3349.683439][ T5105] [ 3349.699838][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3349.704559][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3349.709793][ T5105] ? __pfx__printk+0x10/0x10 [ 3349.714447][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3349.719268][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3349.724353][ T5105] dump_header+0xda/0x6a0 [ 3349.728737][ T5105] oom_kill_process+0x3a7/0x930 [ 3349.733702][ T5105] out_of_memory+0xf67/0x1320 [ 3349.738404][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3349.744057][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3349.749101][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3349.754238][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3349.759804][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3349.764845][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3349.770936][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3349.776154][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3349.781119][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3349.786081][ T5105] ? mark_lock+0x9a/0x350 [ 3349.790443][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3349.795966][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3349.802136][ T5105] charge_memcg+0xa2/0x160 [ 3349.806565][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3349.812650][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3349.818116][ T5105] ? mark_lock+0x9a/0x350 [ 3349.822464][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3349.828464][ T5105] ? blk_start_plug+0x6f/0x1b0 [ 3349.833254][ T5105] swap_cluster_readahead+0x398/0x810 [ 3349.838644][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3349.844549][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3349.849598][ T5105] ? xas_descend+0x37e/0x470 [ 3349.854216][ T5105] swapin_readahead+0x1ea/0x1070 [ 3349.859164][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3349.864390][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3349.869783][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3349.875095][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3349.880392][ T5105] do_swap_page+0x791/0x3f40 [ 3349.885006][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3349.889825][ T5105] ? do_swap_page+0x154/0x3f40 [ 3349.894625][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3349.899686][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3349.905159][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3349.910983][ T5105] ? __pfx_validate_chain+0x10/0x10 [ 3349.916198][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3349.921368][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3349.927024][ T5105] ? mt_find+0x226/0x850 [ 3349.931277][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3349.936341][ T5105] ? mt_find+0x62d/0x850 [ 3349.940630][ T5105] ? mt_find+0x226/0x850 [ 3349.944900][ T5105] ? find_vma+0x142/0x1c0 [ 3349.949243][ T5105] ? __pfx_find_vma+0x10/0x10 [ 3349.953932][ T5105] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3349.959933][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3349.964721][ T5105] exc_page_fault+0x2ad/0x870 [ 3349.969429][ T5105] asm_exc_page_fault+0x26/0x30 [ 3349.974298][ T5105] RIP: 0010:__get_user_8+0x11/0x20 [ 3349.979431][ T5105] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3349.999058][ T5105] RSP: 0018:ffffc90004367d98 EFLAGS: 00050202 [ 3350.005141][ T5105] RAX: 00005555566b1da8 RBX: ffff88802e9bee78 RCX: ffffc90004367c03 [ 3350.013133][ T5105] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7fe0 [ 3350.021115][ T5105] RBP: ffffc90004367ec8 R08: ffffffff8f85feef R09: 1ffffffff1f0bfdd [ 3350.029160][ T5105] R10: dffffc0000000000 R11: fffffbfff1f0bfde R12: ffffc90004367da0 [ 3350.037140][ T5105] R13: ffffc90004367fd8 R14: dffffc0000000000 R15: ffff88802e9bd940 [ 3350.045141][ T5105] __rseq_handle_notify_resume+0x158/0x1490 [ 3350.051061][ T5105] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3350.057407][ T5105] ? syscall_exit_to_user_mode+0xa2/0x360 [ 3350.063147][ T5105] syscall_exit_to_user_mode+0x113/0x360 [ 3350.068808][ T5105] do_syscall_64+0x108/0x240 [ 3350.073437][ T5105] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3350.079343][ T5105] RIP: 0033:0x7f02540a91b5 [ 3350.083780][ T5105] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 3350.103399][ T5105] RSP: 002b:00007ffe12c8cc10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 3350.111825][ T5105] RAX: 0000000000000000 RBX: 0000000000004735 RCX: 00007f02540a91b5 [ 3350.119804][ T5105] RDX: 00007ffe12c8cc50 RSI: 0000000000000000 RDI: 0000000000000000 [ 3350.127778][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000000 R09: 00007ffe12ccd0b0 [ 3350.135753][ T5105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3350.143731][ T5105] R13: 000000000033158b R14: 000000000033158b R15: 0000000000000000 [ 3350.151725][ T5105] [ 3350.189026][ T5105] memory: usage 307192kB, limit 307200kB, failcnt 18663 [ 3350.218166][ T5105] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0 [ 3350.241260][ T5105] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0 [ 3350.267705][ T5105] Memory cgroup stats for /syz0: [ 3350.268224][ T5105] cache 0 [ 3350.295855][ T5105] rss 20480 [ 3350.311324][ T5105] rss_huge 0 [ 3350.318233][ T5105] shmem 0 [ 3350.332844][ T5105] mapped_file 0 [ 3350.342951][ T5105] dirty 0 [ 3350.346491][ T5105] writeback 0 [ 3350.352611][ T5105] workingset_refault_anon 10563 [ 3350.357592][ T5105] workingset_refault_file 1 [ 3350.365448][ T5105] swap 208896 [ 3350.373114][ T5105] swapcached 16384 [ 3350.376954][ T5105] pgpgin 215631 [ 3350.383357][ T5105] pgpgout 215626 [ 3350.387024][ T5105] pgfault 554359 [ 3350.397366][ T5105] pgmajfault 9938 [ 3350.401440][ T5105] inactive_anon 0 [ 3350.405178][ T5105] active_anon 20480 [ 3350.409600][ T5105] inactive_file 0 [ 3350.413370][ T5105] active_file 0 [ 3350.416939][ T5105] unevictable 0 [ 3350.421250][ T5105] hierarchical_memory_limit 314572800 [ 3350.426755][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3350.433337][ T5105] total_cache 0 [ 3350.436911][ T5105] total_rss 20480 [ 3350.440918][ T5105] total_rss_huge 0 [ 3350.444748][ T5105] total_shmem 0 [ 3350.448304][ T5105] total_mapped_file 0 [ 3350.454746][ T5105] total_dirty 0 [ 3350.458322][ T5105] total_writeback 0 [ 3350.462564][ T5105] total_workingset_refault_anon 10563 [ 3350.468050][ T5105] total_workingset_refault_file 1 [ 3350.473550][ T5105] total_swap 208896 [ 3350.477468][ T5105] total_swapcached 16384 [ 3350.482466][ T5105] total_pgpgin 215631 [ 3350.486570][ T5105] total_pgpgout 215626 [ 3350.491044][ T5105] total_pgfault 554359 [ 3350.495239][ T5105] total_pgmajfault 9938 [ 3350.501364][ T5105] total_inactive_anon 0 [ 3350.505663][ T5105] total_active_anon 20480 [ 3350.511741][ T5105] total_inactive_file 0 [ 3350.516153][ T5105] total_active_file 0 [ 3350.520542][ T5105] total_unevictable 0 [ 3350.524644][ T5105] anon_cost 0 [ 3350.528026][ T5105] file_cost 0 [ 3350.531809][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=5100,uid=0 [ 3350.547969][ T5105] Memory cgroup out of memory: Killed process 5100 (syz-executor.0) total-vm:50536kB, anon-rss:504kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0 01:28:28 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000003201000000000114000600020000001b"], 0x54}}, 0x0) [ 3350.796492][T16801] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3350.845905][T16803] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3350.857299][T16803] CPU: 0 PID: 16803 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3350.867764][T16803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3350.877860][T16803] Call Trace: [ 3350.881170][T16803] [ 3350.884294][T16803] dump_stack_lvl+0x1e7/0x2e0 [ 3350.889015][T16803] ? __pfx_dump_stack_lvl+0x10/0x10 01:28:29 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000100000114000600020000001b"], 0x54}}, 0x0) [ 3350.894250][T16803] ? __pfx__printk+0x10/0x10 [ 3350.898872][T16803] ? ___ratelimit+0x4c4/0x670 [ 3350.903604][T16803] ? __pfx____ratelimit+0x10/0x10 [ 3350.908680][T16803] dump_header+0xda/0x6a0 [ 3350.913063][T16803] oom_kill_process+0x3a7/0x930 [ 3350.917971][T16803] out_of_memory+0xf67/0x1320 [ 3350.922704][T16803] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3350.928391][T16803] ? __pfx___mutex_lock+0x10/0x10 [ 3350.933469][T16803] ? __pfx_out_of_memory+0x10/0x10 [ 3350.938660][T16803] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3350.944254][T16803] ? __pfx_lock_release+0x10/0x10 [ 3350.949329][T16803] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3350.955343][T16805] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3350.955438][T16803] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3350.969856][T16803] ? mem_cgroup_iter+0x3e9/0x560 [ 3350.974850][T16803] try_charge_memcg+0xda2/0x18a0 [ 3350.979862][T16803] ? __pfx_try_charge_memcg+0x10/0x10 [ 3350.985285][T16803] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3350.991048][T16803] ? __pfx_lock_release+0x10/0x10 [ 3350.996132][T16803] ? memcg_account_kmem+0x1e7/0x210 [ 3351.001428][T16803] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3351.007275][T16803] __memcg_kmem_charge_page+0xe1/0x250 [ 3351.012779][T16803] memcg_charge_kernel_stack+0x3f8/0x550 [ 3351.018460][T16803] dup_task_struct+0x40d/0x7d0 [ 3351.023262][T16803] copy_process+0x5d5/0x3fc0 [ 3351.027995][T16803] ? __might_fault+0xa9/0x120 [ 3351.032738][T16803] ? __pfx_lock_release+0x10/0x10 [ 3351.037813][T16803] ? __pfx_copy_process+0x10/0x10 [ 3351.042892][T16803] ? __might_fault+0xc5/0x120 [ 3351.047626][T16803] ? __asan_memset+0x23/0x50 [ 3351.052274][T16803] kernel_clone+0x21d/0x8d0 [ 3351.056822][T16803] ? __pfx_kernel_clone+0x10/0x10 [ 3351.061938][T16803] __se_sys_clone3+0x2cb/0x350 [ 3351.066757][T16803] ? __pfx___se_sys_clone3+0x10/0x10 [ 3351.072120][T16803] ? do_syscall_64+0x108/0x240 [ 3351.076927][T16803] ? do_syscall_64+0xb4/0x240 [ 3351.081638][T16803] do_syscall_64+0xf9/0x240 [ 3351.086183][T16803] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3351.092116][T16803] RIP: 0033:0x7f02540a9b99 01:28:29 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000200000114000600020000001b"], 0x54}}, 0x0) [ 3351.096572][T16803] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3351.116222][T16803] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3351.124684][T16803] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3351.132708][T16803] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3351.140724][T16803] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3351.148742][T16803] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3351.156755][T16803] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3351.164778][T16803] [ 3351.176997][T16803] memory: usage 307200kB, limit 307200kB, failcnt 351711 [ 3351.185394][T16803] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0 [ 3351.194362][T16803] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3351.206624][T16803] Memory cgroup stats for /syz1: [ 3351.206907][T16803] cache 4096 [ 3351.225667][T16803] rss 0 [ 3351.228924][T16803] rss_huge 0 [ 3351.232294][T16803] shmem 0 [ 3351.235400][T16803] mapped_file 0 [ 3351.239669][T16803] dirty 4096 [ 3351.243056][T16803] writeback 0 [ 3351.246510][T16803] workingset_refault_anon 119428 [ 3351.252647][T16803] workingset_refault_file 3 [ 3351.257436][T16803] swap 286720 [ 3351.261407][T16803] swapcached 0 [ 3351.264957][T16803] pgpgin 289643 [ 3351.269248][T16803] pgpgout 289642 [ 3351.272980][T16803] pgfault 616011 [ 3351.276692][T16803] pgmajfault 112349 [ 3351.283033][T16803] inactive_anon 0 [ 3351.286838][T16803] active_anon 0 [ 3351.291390][T16803] inactive_file 0 [ 3351.295179][T16803] active_file 4096 [ 3351.306011][T16803] unevictable 0 [ 3351.310380][T16803] hierarchical_memory_limit 314572800 [ 3351.315998][T16803] hierarchical_memsw_limit 9223372036854771712 [ 3351.324275][T16808] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3351.331641][T16803] total_cache 4096 [ 3351.337445][T16803] total_rss 0 01:28:29 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) (async) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x5, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x40}, [@map_idx_val={0x18, 0x1, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0xbf0e}]}, &(0x7f0000000100)='GPL\x00', 0x9, 0xf9, &(0x7f0000000140)=""/249, 0x40f00, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000280)={0x2, 0xc, 0x4, 0x10000}, 0x10, 0x0, 0x0, 0x7, &(0x7f00000002c0)=[0xffffffffffffffff, 0x1, 0x1, 0x1, 0x1, 0x1, 0xffffffffffffffff, 0x1, 0x1], &(0x7f0000000300)=[{0x5, 0x4, 0x2}, {0x0, 0x4, 0x8, 0x6}, {0x5, 0x4, 0xd, 0x7}, {0x5, 0x2, 0x1, 0x8}, {0x5, 0x3, 0x0, 0x1e143447d088c431}, {0x1, 0x2, 0x8, 0xc}, {0x5, 0x2, 0x3, 0x7}], 0x10, 0x2}, 0x90) ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000440)={r0, r1}) (async) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3351.345963][T16803] total_rss_huge 0 [ 3351.355067][T16803] total_shmem 0 [ 3351.362520][T16803] total_mapped_file 0 [ 3351.371890][T16803] total_dirty 4096 [ 3351.380266][T16803] total_writeback 0 [ 3351.391304][T16803] total_workingset_refault_anon 119428 01:28:29 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000080fe00000000000114000600020000001b"], 0x54}}, 0x0) [ 3351.402886][T16803] total_workingset_refault_file 3 [ 3351.417370][T16803] total_swap 286720 [ 3351.434153][T16803] total_swapcached 0 [ 3351.448861][T16803] total_pgpgin 289643 01:28:29 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_GET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000080)={0x14, r3, 0x1}, 0x14}}, 0x0) (async) sendmsg$TIPC_NL_LINK_RESET_STATS(r1, &(0x7f0000000480)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000280)={0x194, r3, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x44, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_SOCK={0x60, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}]}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3ff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}]}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x800}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x57}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7eae}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4541144}]}, @TIPC_NLA_NET={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x80000000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xffffffffffffffff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x101}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xffffffffffff0865}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x3f}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8000}]}, @TIPC_NLA_SOCK={0x78, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5c64}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xf342}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10000}]}]}]}, 0x194}, 0x1, 0x0, 0x0, 0x40}, 0x0) (async) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000200)={&(0x7f00000000c0), 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, r4, 0x20, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xe, 0xcd, [0x6, 0x3, 0x9, 0xad, 0xfffe]}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}], @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000841}, 0x20000000) (async) r5 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3351.453001][T16803] total_pgpgout 289642 [ 3351.471578][T16811] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 3351.479862][T16803] total_pgfault 616011 [ 3351.479882][T16803] total_pgmajfault 112349 [ 3351.479892][T16803] total_inactive_anon 0 [ 3351.479901][T16803] total_active_anon 0 [ 3351.479910][T16803] total_inactive_file 0 [ 3351.479920][T16803] total_active_file 4096 [ 3351.503082][T16811] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3351.544776][T16803] total_unevictable 0 [ 3351.560556][T16803] anon_cost 0 [ 3351.565363][T16803] file_cost 0 [ 3351.571291][T16803] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16803,uid=0 01:28:29 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000003401000000000114000600020000001b"], 0x54}}, 0x0) 01:28:29 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000300000114000600020000001b"], 0x54}}, 0x0) [ 3351.596082][T16803] Memory cgroup out of memory: Killed process 16803 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3351.692433][ T12] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 01:28:30 executing program 0: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000000ff00000000000114000600020000001b"], 0x54}}, 0x0) [ 3352.129663][T16821] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3352.165060][T16821] CPU: 1 PID: 16821 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3352.175552][T16821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3352.185652][T16821] Call Trace: [ 3352.188971][T16821] [ 3352.191941][T16821] dump_stack_lvl+0x1e7/0x2e0 [ 3352.196757][T16821] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3352.202003][T16821] ? __pfx__printk+0x10/0x10 [ 3352.206635][T16821] ? ___ratelimit+0x4c4/0x670 [ 3352.211378][T16821] ? __pfx____ratelimit+0x10/0x10 [ 3352.216456][T16821] dump_header+0xda/0x6a0 [ 3352.220845][T16821] oom_kill_process+0x3a7/0x930 [ 3352.225751][T16821] out_of_memory+0xf67/0x1320 [ 3352.230481][T16821] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3352.236162][T16821] ? __pfx___mutex_lock+0x10/0x10 [ 3352.241232][T16821] ? __pfx_out_of_memory+0x10/0x10 [ 3352.246410][T16821] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3352.252005][T16821] ? __pfx_lock_release+0x10/0x10 [ 3352.257080][T16821] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3352.263296][T16821] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3352.268553][T16821] ? mem_cgroup_iter+0x3e9/0x560 [ 3352.273553][T16821] try_charge_memcg+0xda2/0x18a0 [ 3352.278579][T16821] ? __pfx_try_charge_memcg+0x10/0x10 [ 3352.284001][T16821] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3352.289764][T16821] ? __pfx_lock_release+0x10/0x10 [ 3352.294924][T16821] ? memcg_account_kmem+0x1e7/0x210 [ 3352.300182][T16821] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3352.306041][T16821] __memcg_kmem_charge_page+0xe1/0x250 [ 3352.311549][T16821] memcg_charge_kernel_stack+0x3f8/0x550 [ 3352.317235][T16821] dup_task_struct+0x40d/0x7d0 [ 3352.322042][T16821] copy_process+0x5d5/0x3fc0 [ 3352.326685][T16821] ? __might_fault+0xa9/0x120 [ 3352.331412][T16821] ? __pfx_lock_release+0x10/0x10 [ 3352.336492][T16821] ? __pfx_copy_process+0x10/0x10 [ 3352.341555][T16821] ? __might_fault+0xc5/0x120 [ 3352.346290][T16821] ? __asan_memset+0x23/0x50 [ 3352.350972][T16821] kernel_clone+0x21d/0x8d0 [ 3352.355523][T16821] ? __pfx_kernel_clone+0x10/0x10 [ 3352.360624][T16821] __se_sys_clone3+0x2cb/0x350 [ 3352.365439][T16821] ? __pfx___se_sys_clone3+0x10/0x10 [ 3352.370781][T16821] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3352.376845][T16821] ? exc_page_fault+0x587/0x870 [ 3352.381792][T16821] ? do_syscall_64+0xb4/0x240 [ 3352.386522][T16821] do_syscall_64+0xf9/0x240 [ 3352.391069][T16821] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3352.397004][T16821] RIP: 0033:0x7f02540a9b99 [ 3352.401467][T16821] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3352.421114][T16821] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3352.429578][T16821] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3352.437606][T16821] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3352.445630][T16821] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3352.453650][T16821] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3352.461668][T16821] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3352.469718][T16821] [ 3352.513161][T16821] memory: usage 307200kB, limit 307200kB, failcnt 351915 [ 3352.523968][T16821] memory+swap: usage 307444kB, limit 9007199254740988kB, failcnt 0 [ 3352.534534][T16821] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3352.551377][T16821] Memory cgroup stats for /syz1: [ 3352.551529][T16821] cache 4096 [ 3352.562483][T16821] rss 0 [ 3352.565443][T16821] rss_huge 0 [ 3352.587638][T16821] shmem 0 [ 3352.593498][T16821] mapped_file 0 [ 3352.597087][T16821] dirty 4096 [ 3352.606630][T16821] writeback 0 [ 3352.611578][T16821] workingset_refault_anon 119475 [ 3352.616647][T16821] workingset_refault_file 3 [ 3352.627527][T16821] swap 249856 [ 3352.631483][T16821] swapcached 0 [ 3352.634987][T16821] pgpgin 289715 [ 3352.644597][T16821] pgpgout 289714 [ 3352.667568][T16821] pgfault 616132 [ 3352.671707][T16821] pgmajfault 112409 [ 3352.675722][T16821] inactive_anon 0 [ 3352.685522][T16821] active_anon 0 [ 3352.689482][T16821] inactive_file 0 [ 3352.693318][T16821] active_file 4096 [ 3352.697196][T16821] unevictable 0 [ 3352.709996][T16821] hierarchical_memory_limit 314572800 [ 3352.715549][T16821] hierarchical_memsw_limit 9223372036854771712 [ 3352.726473][T16821] total_cache 4096 [ 3352.735592][T16821] total_rss 0 [ 3352.743686][T16821] total_rss_huge 0 [ 3352.747584][T16821] total_shmem 0 [ 3352.756023][T16821] total_mapped_file 0 [ 3352.765032][T16821] total_dirty 4096 [ 3352.770603][T16821] total_writeback 0 [ 3352.774596][T16821] total_workingset_refault_anon 119475 [ 3352.784936][T16821] total_workingset_refault_file 3 [ 3352.791736][T16821] total_swap 249856 [ 3352.795749][T16821] total_swapcached 0 [ 3352.828111][ T12] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3352.830488][T16821] total_pgpgin 289715 [ 3352.851792][T16820] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3352.854554][T16821] total_pgpgout 289714 [ 3352.872559][T16821] total_pgfault 616132 [ 3352.876688][T16821] total_pgmajfault 112409 [ 3352.882943][T16821] total_inactive_anon 0 [ 3352.887141][T16821] total_active_anon 0 [ 3352.901548][T16821] total_inactive_file 0 [ 3352.905767][T16821] total_active_file 4096 [ 3352.910805][T16821] total_unevictable 0 [ 3352.914822][T16821] anon_cost 0 [ 3352.918128][T16821] file_cost 0 [ 3352.922397][T16821] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16821,uid=0 [ 3352.940376][T16821] Memory cgroup out of memory: Killed process 16821 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:31 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000003601000000000114000600020000001b"], 0x54}}, 0x0) 01:28:31 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000400000114000600020000001b"], 0x54}}, 0x0) [ 3353.139847][T16811] ieee80211 phy1355: Failed to add default virtual iface [ 3353.204116][ T12] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 01:28:31 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x2e}], 0x1}, 0x1) [ 3353.304452][T16825] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:28:31 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f00000012c0)={&(0x7f00000000c0)=@l2={0x1f, 0x7ff, @any, 0x0, 0x2}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000140)="9539dedad50e4fb01816b3e7c4a8821a2c2a8f57f5bfe8dec4e4966d4b7c5b2c09144798cfc7f62549eeb04b54636c2cee", 0x31}], 0x1, &(0x7f00000001c0)=[{0x1010, 0x10b, 0xad9, "c925cd013fac3e23bf13c89c9a4056ba1c3198e8416505315446284a7cc454b5a8d76bb2758c4b61f9f6cc0684b5e3aafca1b8c16de9d35c295196665c8ddf252b51d9e77bfe9bc5b2ae15ce00ca2df0bfe58e8cf5e3a217d99068d44a7aa1267b0fd4bcd812e523e14b9a21d4f0240c209111d35b52ccc9b0cb29b807d15f748cdcfd617284a24e1601d307ace25370f886e86311a03ac76ec7c7a8a70875e448bba75cc9c454f1d51d29bf1c70aa22921921c6e2e4a1e3bd2ca1bcc7b203365abd81ec23bb66f2def2a475353c0f1efe52d5203788aa7af7be4342fe9bd7534257b191d1d71918a4d9925788f8fa5881f6f29f610da2e0f7ab1907d0c61c9ea26e8a93a79b2a7319a9a7506af40c7cc21e5b5686e0d12624530cc3a27c07395a82d0b2d66c5fb3425ad3580d5342b66a7c53ceac0d2935f7780d2cce3e64a842e7bc2826902a25577128ae724f87e24cbc77009efcf8c8d1adde0701b4900994ae5e0e46005b47d1ef1db03d2dcfebf6ef28cebc8573b09298cf099970e69471e77f387f18dbe7cebbe780999954e0f6bcb5297c380d5a521c9054a1dce860d9001a9f1b42c2893434a7a137109de1e634870c34c35edcb8d4cb6496e17933933e6716451f5f6256ec226a3893d2258e26e9f90bf17a8fc9d34b44af8b4e6f0f65765aca17310d0344ff1a29fed7df80641ffcaefbe03c43971874a37e7500c8e96d28a907500600011ea55a5ed6c207b7780422290b8375c4e5548e9c8a465b9cf46aa636f9e8d90b18b546bca931c8b278909bb431444ab0a650b4395d57fe024b1ac4d25718e642cd7098fa2c1a75e87879e32df08a4d4d1de949ce1151071abdb6acdd1fb7dc99497848586fac3b2d97a0734c32b08dfa39997492e378c361a19d5a08e66da75f9e54bf7d1be2352aa9ed22527404396521440d79be7f31d0a4302718fdbf0967ea901fcfcca845688c1082be599b199d08f21cd93719f0bbf05f1e1ae7402853f69f55baee9ac5a512c26812e9102e80a4293b98075e018b885c7ead3f90909cdaf82602fc46f6f7c887fa04dea0d5caeca7229fe31f9b27c1e9c003edb5596c5634e44ea1071ae9b04f0d4aeb0d33a2bee5585d95307f88a49cc0881be9751a3a1b909dba889930bc2bf250b0f0a71c4e17511d0fec897a434968b4cdd51edc072f49af91de4ef1a1ad2866b34ec4ff4a9d36b599cf88007b1f140da00a34f49d87dd564bd370637043977e03440ae95cecf54f92c92f0be06d0dd300740b615247edb7494df5172f4eaa843ddee5b48c6c9224255ecaf252cf7d4c77cc7561149494955b0b3ca9d0422d1fe1ce6ce86fec45afd86157a476d310de052b8a364d4620ebc52d081989ade492cb79d8f75d90103c4f5f8244dd91db44f9b8cb16003ec39078fe1bb7b405958b0891ad21f17cd40f62d6461196e3c9bd8e13d57c6c24b8c080ca542234f5ac1fe0a68a24d1ed165e8235468100f66f6cac42fa550cf7782a8223576982af8e3a17e5bdc15ee9a6de0dcaed0f8b8742245eb435a737781529fd9050a976f24548f0106d3651abadbeb059c8bb194ab5786db450e2a5a4fc0d77a08701049d481f9116cf1a492c23679da66f64ce167a9167dc50229fa3a89e815a7ca79c7b223e174a25b2b207804b0e474f4131f421029d2321b3252467bf3e9b47426b36fd6ed7c41a924a5e63a5e76325f95f7c1f4dd7bd68b661b745b55c148fee44ea1f428f9325c4d0c2d80364898faab7e4b5cbff72d9774b1c0d2c1e84892b32ffe45048321ded5a0eb88110aacebfe7dc1d934b12f997b1114ba1b7a83ed32119a12359a7b0de6f88fdefd9718545815210935f08f980c426a804f847da58446908587cdbc29e7f488f808984afdfc6005dcdcba88297ba85eca32503c1b596868c21c5337e214f5a18f84998b8119237f632fe4a7cc46b36fa4ec5ca43780a2695a186a0560ec7fd01913df7282b9ec426640906300a35dacadeef37d72c8fc0672a810ff99f3af0c1b88a0ad4bff10430ef1336262ce1fbb6122a5d39f1ef595ad55061236b515bda008fc79cc26280449d780bb9b71a28b4ae7857c7963df7fb2291e1a7c5a25606d77f8b1f6f5c52bd1fb79bf4780bbe79225159a0bff96168f3a9e52665e4de41338be977dcfbb04c5b1cbd943181efa4138d4c539e0115fbfe62b8fa6884f7c024020e4db5a632f8a74ee4defe248f74c31de18a0ff266e5db0d38005610d562f7647b8cb8ea20ad011048f1c3dc42d9087fa53b63e55c8c665f78c973148f954f796c15579960431a349ab0eb46071a99c39ebbec073e56d6d9886e4eb282947c830c4c446f799342e381f66306402884b59561abda2cff3e49c6c88ff3dcb8d7a8dc4662b4d1e5c6dfb7b630174f1abe48dbb34bb2374d21ff806d78d88eb9666cf218533ca4d2c889a143c80f4d6951a016c9a060aaa0d5b4472503e43e8f5254e8bb96adb78863ffe20446684bf58732fb33bbeb7e90d469dc4da67f8c0a886aa09ad2b31a640517cb984c894b9e7fcfd22be312f81e23203650df8fe4948b77b246b31b2162d3bcca6e5b20caac1d3892fd929fc675873a74a8aec1fd93d84cac8c42f3a832e44de6b04c731e02817ceea6beb8ce70f6342d354cd294c3e9b24d64233f02efd77858107b845f304df7b84036713a839dc2e578207344f6f40b48e33d3f17d1b6ded20933745a878dc45e6591ae77d2101da51f75ab95c0b209647527ab38facae7cb5e8214e07fdedb6a92dde840f3aaf95dd8058b3048645700ed4582a86a4c6b7c45d8aed3dc7f31b06b2379d1455968e0af0bc611dfa649c9416865870ea9dbe4515bddae1d7f892b144a5614e20a72f9813e372903809206bb25c01b6ea40a90092ea2369f34e5a392892b0eefb4673a36e9a7634c2d476b958d635696962fdaee6b0744930de23f4983aa1744f3b5638f10b227a22ba958015ae45de52c232fedb46d3a1fe431ed6b85a45c9bdbc9744b942ab4528d6af3caa26e042a8db4c95fb63b76a8503606ec66383b01519072c194734583335b446ee76969e1d281a0e39dafe70714d59658d6a424f3deefdf291909d752eb0850164fb15c79e2580f69fcb7849e3f5744c85a83379e5943b03f7211a92ff84bf1c12b3d2c5b2744aa481f0da5c90b0212edf584d87f43d5dacaf75b434f608b7df5da9d0d1329da5e44b64bee96943caa741c9465c65870a47345379586c65cd08ec81c3bdac1c12929998e51e74c5b45526d5c0d3c6e257808e2bd5b9d0c27fdf6ce2efed67955aa02463711b5ec43100cf638032b4bde54ddd3a99796e8f59ed5f63a337a43d6b9a9f85ca7afd426dc13edd974324f0970d66d4177c38a85ccbf1f9f0862b2a661c0d5e0c934216096d6dd9b8c284ac404a8ef9bd00120037cb908879a0ebd1cfecee15f1f62bcc559d70daddef11c462a4fa59b43c054c062d84c7ed60840c49f2b9d380c59cfdaaf0ecf1e2152ae108d5b3b917b6e508dbb68075c730f16b2532cc4d242f627b18b273365c1c91d0cbdcabc630399d454e64f2c0c558f5e15de0d3f52e2d013bef00ea4526f1d31cff9d4ef4c0ca09ff9b1d220558f2fad24cf278826b7746130eead77090fe6d41e9a2fb4c9d7b53f4c488bd416c659a8ea6a50b7b59adacebc932170a074573e5a05b5c85816b8ffb68578717d47ad072f30afba81c716201409e82c0b1c3ded3c57f8e0215f2741dbe202d40947183ddf139f78a3e0aca92d1756eb2d8fbcc9ecdd4b68392cf67b8df5243a3332235724b370b0332fdde4604dff6420cb8ec320ab0f8108014b0b14c7b3bb6a930a144b33debcdfbb27f1422ce77ca81ab2d2b5103356528a99c3c3a4517dd448af0777704497b13acca4567a22a0435dc4a08973e89f0a5675526c1f72909c47934bbdf05b7aa46b176f6aacbcf450ff347e3d3ff81716a4ced964d540bf00cb52754038f68b74ea4bf7e4c10b5558f3e8725e6442393255b0bf52f219eba464372b7f67b93c5a93e3b8513a3d0fad96092e82b561acfa05fa664cb26ebe7db39d319d9ebc01b7efabf4a92ba20dd6439f1eaca376e750078d73f0a2d20568e6defe1666f0873209ab83872d505ee146b53db5e8f55cd440ecd3a724e584e903091274ef248279ee193a8b99eb5c3d5f7d02ac02861a47ca17d28236433a979a0f657dcaa36b28b7d571e828b48d309ce2148522a11f34a345acbe014b87840bcc593476e5141f86acfa599a82ec0afc92730c1f5fe067b35bd0201082aa3b521be19e585547bf6d123aac432d206f8e64da750c95f6be64bfd8d142f83bca5940f91d68dd30236f74a88873a45ee1537963039c748707e33ad9b34cc968c8680a9bc68a29157b297d614a7a257fad6d8144e94a241d40f467379ea1664a653cf41f0d90f4b38ecb19b9575b56c02d9be56c2b718e080d578ea5a57b4bf79c06f0c4edd32c9c9ec469be619e1adb154ebafd99451bba5fe848f8cb120166253beea0a705a0abf6af0fa966c89585f8414263182ab87c9931eecfc0040b69a3ea66ad335cbc07e15eea2bdc6b634f56d5874cbc76abc5cb50f9b154ebfcbdd448d9c227249a4400e04c73c414ed781640d5b9367fde1e40160239ef7ed4b51e2e54b7277cd0930f4498bb1d2074a276ca153b8daed95e490a78270160fe98b479a2b00e53c975b1e5560204b8bea1557c2cf50951be2fbbbd33374ddaf078a6905bf1d3483326c2d3879153d6ed0dc68d08940eae2a336bf07be980bd0bc2c740b93f3544c5c9885863d2e45a95b74a99ba325f05a70b585ca47d8e971b578c801026a421fd03f2594f7366b1d1a3ea85794e29300c5ef24e84bcb17b8abe3f4c7a3a655281754d42a09a320922aefd2f6a705509b19bb0f1155b5cd58613399572e002d42b706b452597fa6211e1ac43091251aa430c0f6fd1daceae71cb3535d49eb2adfeddce77d380dea44add048a868fab1d816e85edb4f397a998d77c205349a95a02580d59518ed2dbda12159c3000baad96185d27161bf2615a0c3d852f9306301a02151f7c614fb6ed2e35968e28d2af73fe19f6921403503f42ad21d5606bef65deb567b78dd2cfc6fb753904671033289ad91da3a8a1d580285fe16fa7ed64f5e9a07e2b282dadde7a502c1a2e4bcb3a832e48303515dd9560118b93d89b3c36cb7acc052cf032f6fcab06e314c218a904e62d3203bf30199a0cf5203fd95245888770b0cf37d6fb372cc1916384896fc269b57a3e3b995487ebf24f77004abc4066c9aa6cb6b395b4ae1f029d5291dc38c8faeacb13465aaee89d08f6e67d47e2d1782e3379e88a861af0326de3cd675dc5176f9f92e00b6f19f22b2e944cc8771d94971bbb2d2f9018be846b7362d79c89fb291192dd447efd7b49645c76b578764753f38655b0b1e1c5d1eb0ab1f6e6520fd0d04c4b74c1770e59b64c6df474de666a5629f1c9568382db0ce04a0da6f4b8a0a70ba685e529c9f12be3e1c638df72d9c1c91678f6f3751dfc56c6c23ff319a52c882c4592f4f3dc29821541ec68844a35edd47eeadc3d819d2a5a6bf188ae045306e1ab9c8d06f7b75cf63e6cd86ebe85d9ac3de02814892fed0385b0780359308c4399c378e500c6a74953f81acd875e99d1509f21a624ae7da855159d0a473804d10a2234be45a6bf4f94cf92176d517de5ea443362ec3127f3dc3a315535dfae03a6cad3942a97c06543b4a066b1a2a9b48e089e8362813746e7796933f0f3f042"}, {0xc0, 0x103, 0x7fffffff, "932374a4bff1c2068e9a0ea083c5e7482221a1f821e5e6b5638398088ec55d268fae749629784cfe9d05d3cedc796293590100c1c84576d7cb8467e2a21aff45467382e5b89a815acaabd97af9245ff58dcb222322b57b2208232d70c9d85e6f7af5e2755b7a29831baed8f6135ae3fb994e862d172c0cb29eed8c90382159403bd622cddc20d6926d08ea849118897b17605b5ad59cc197bb7693e3ec262fa42c87de6bbee9ef92144c91e2cd8140"}], 0x10d0}, 0x880) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) 01:28:31 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x2e}], 0x1}, 0x1) [ 3353.449334][T16830] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3353.477422][T16830] netlink: 159788 bytes leftover after parsing attributes in process `syz-executor.4'. 01:28:31 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000500000114000600020000001b"], 0x54}}, 0x0) [ 3353.532888][ T12] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 01:28:31 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x2e}], 0x1}, 0x1) socket$kcm(0x10, 0x3, 0x10) (async) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x2e}], 0x1}, 0x1) (async) 01:28:32 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000008d9e62005dda97fa85d2eade037afcc911d8af4403221356416555d86e877f00aad1090403cd6a3f1ea6d66b1399f09e3f658ab1730da3ce1957e6651ae733d49f43a16bdaf9e49b2ef50a418b5dfc86bf48ad4410ff6e3a10aa21a7e48d6a94f72ed157f96f1c94ff3e0ca60fb7a152c44c495d88da3e7bd400"/137, @ANYRES16=r1, @ANYBLOB="110c0000000000000000150000000c002b8008000100020000000c0006000100000001000000"], 0x2c}}, 0x0) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000100), 0xffffffffffffffff) r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000480), r0) sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000580)={&(0x7f0000000440), 0xc, &(0x7f0000000540)={&(0x7f0000000280)=ANY=[@ANYBLOB="0c3bcc791cde34364f0b0000e3fa58780f5b", @ANYRES16=r3, @ANYBLOB="00022abd7000fedbdf252500000005002900010000000c0005000201aaaaaaaaaaaa06000600ffff00000c000500000000000000000005002a00030000000c00050000000000000000000a0001007770616e3000000005002b000100000005002e0005000000"], 0x6c}, 0x1, 0x0, 0x0, 0x10}, 0x4000040) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)={0x38, r2, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xf95}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x40040) r4 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x3000}, 0xc, &(0x7f0000000300)={&(0x7f00000005c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000129bd7000fddbdf25010000000c00020003000000000000000c00050000000000000c0003003f000000000000000c00060002000000000000000c00040022000000000000000c0005000800000000000000000000000000000000000000000000948ad367ddb6e8a15a83687329cd2805ca289e2b615a787e6489131bfdbfe7571e855acdb9e11d38fd33970d9bcf694897e675bab32f18d64b74eb791c460433ab5c714c0d6591fb7a08232b75cf3e26ee99b7302dd9ea88efa5f5ea5af900"/208], 0x68}, 0x1, 0x0, 0x0, 0x24040090}, 0x40001) [ 3353.856413][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3353.886067][ T5105] CPU: 1 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3353.896498][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3353.906611][ T5105] Call Trace: [ 3353.909927][ T5105] [ 3353.912892][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3353.917628][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3353.922874][ T5105] ? __pfx__printk+0x10/0x10 [ 3353.927502][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3353.932238][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3353.937319][ T5105] dump_header+0xda/0x6a0 [ 3353.941713][ T5105] oom_kill_process+0x3a7/0x930 [ 3353.946614][ T5105] out_of_memory+0xf67/0x1320 [ 3353.951348][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3353.957026][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3353.962106][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3353.967271][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3353.972916][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3353.978209][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3353.984681][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3353.990189][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3353.995385][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3354.000674][ T5105] ? mark_lock+0x9a/0x350 [ 3354.005372][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3354.011104][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3354.017587][ T5105] charge_memcg+0xa2/0x160 [ 3354.022285][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3354.028646][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3354.034416][ T5105] ? mark_lock+0x9a/0x350 [ 3354.039046][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3354.045452][ T5105] swap_cluster_readahead+0x67c/0x810 [ 3354.051172][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3354.057323][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3354.062537][ T5105] ? xas_descend+0x37e/0x470 [ 3354.067348][ T5105] swapin_readahead+0x1ea/0x1070 [ 3354.072465][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3354.077785][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3354.083350][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3354.088863][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3354.094369][ T5105] do_swap_page+0x791/0x3f40 [ 3354.099486][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3354.104548][ T5105] ? do_swap_page+0x154/0x3f40 [ 3354.109524][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3354.114803][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3354.120422][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3354.126440][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3354.131829][ T5105] ? reacquire_held_locks+0x3eb/0x690 [ 3354.137351][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3354.142984][ T5105] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3354.148920][ T5105] ? mtree_range_walk+0x6fd/0x8e0 [ 3354.154206][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3354.159591][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3354.164774][ T5105] ? lock_vma_under_rcu+0x2f9/0x730 [ 3354.170232][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3354.175842][ T5105] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3354.181654][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3354.186656][ T5105] exc_page_fault+0x456/0x870 [ 3354.191545][ T5105] asm_exc_page_fault+0x26/0x30 [ 3354.196736][ T5105] RIP: 0033:0x7f025407a7a4 [ 3354.201443][ T5105] Code: 84 00 00 00 00 00 80 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00 f0 ff ff 77 5d c3 0f 1f 40 00 48 83 ec 28 <89> 54 24 14 48 89 74 24 08 89 7c 24 10 48 89 4c 24 18 e8 d5 a3 02 [ 3354.221349][ T5105] RSP: 002b:00007ffe12c8cc50 EFLAGS: 00010206 [ 3354.227461][ T5105] RAX: 00000000000002c2 RBX: 0000000000004739 RCX: 0000000000000000 [ 3354.235467][ T5105] RDX: 0000000040000001 RSI: 00007ffe12c8ccdc RDI: 00000000ffffffff [ 3354.243477][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000010 R09: 00007ffe12ccd0b0 [ 3354.251476][ T5105] R10: 0000000000000000 R11: 000000000009cc46 R12: 0000000000000032 [ 3354.259475][ T5105] R13: 00000000003329df R14: 00000000003329df R15: 0000000000000000 [ 3354.267496][ T5105] [ 3354.310850][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 352334 [ 3354.318132][ T5105] memory+swap: usage 307480kB, limit 9007199254740988kB, failcnt 0 [ 3354.336259][ T5105] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3354.345668][ T5105] Memory cgroup stats for /syz1: [ 3354.345835][ T5105] cache 4096 [ 3354.361533][ T5105] rss 4096 [ 3354.364805][ T5105] rss_huge 0 [ 3354.368179][ T5105] shmem 0 [ 3354.374626][ T5105] mapped_file 0 [ 3354.378308][ T5105] dirty 4096 [ 3354.387789][ T5105] writeback 0 [ 3354.398221][ T5105] workingset_refault_anon 119597 [ 3354.407499][ T5105] workingset_refault_file 3 [ 3354.415726][ T5105] swap 282624 [ 3354.423924][ T5105] swapcached 4096 [ 3354.427815][ T5105] pgpgin 289854 [ 3354.434683][ T5105] pgpgout 289852 [ 3354.438445][ T5105] pgfault 616347 [ 3354.451186][ T5105] pgmajfault 112531 [ 3354.455784][ T5105] inactive_anon 0 [ 3354.462818][ T5105] active_anon 4096 [ 3354.466784][ T5105] inactive_file 0 [ 3354.475221][ T5105] active_file 4096 [ 3354.482630][ T5105] unevictable 0 [ 3354.486335][ T5105] hierarchical_memory_limit 314572800 [ 3354.503693][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3354.512704][ T5105] total_cache 4096 [ 3354.516607][ T5105] total_rss 4096 [ 3354.525525][ T5105] total_rss_huge 0 [ 3354.531956][ T5105] total_shmem 0 [ 3354.535610][ T5105] total_mapped_file 0 [ 3354.545126][ T5105] total_dirty 4096 [ 3354.551972][ T5105] total_writeback 0 [ 3354.555946][ T5105] total_workingset_refault_anon 119597 [ 3354.567089][ T5105] total_workingset_refault_file 3 [ 3354.573930][ T5105] total_swap 282624 [ 3354.577897][ T5105] total_swapcached 4096 [ 3354.588160][ T5105] total_pgpgin 289854 [ 3354.601229][ T5105] total_pgpgout 289852 [ 3354.606857][ T5105] total_pgfault 616347 [ 3354.614365][ T5105] total_pgmajfault 112531 [ 3354.623262][ T5105] total_inactive_anon 0 [ 3354.627574][ T5105] total_active_anon 4096 [ 3354.635001][ T5105] total_inactive_file 0 [ 3354.643739][ T5105] total_active_file 4096 [ 3354.648145][ T5105] total_unevictable 0 [ 3354.655728][ T5105] anon_cost 0 [ 3354.662364][ T5105] file_cost 0 [ 3354.670361][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16823,uid=0 [ 3354.686413][T16834] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3354.714732][ T5105] Memory cgroup out of memory: Killed process 16823 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:33 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000003801000000000114000600020000001b"], 0x54}}, 0x0) 01:28:33 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000600000114000600020000001b"], 0x54}}, 0x0) [ 3354.982072][T16843] netlink: 'syz-executor.2': attribute type 12 has an invalid length. 01:28:33 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f00000012c0)={&(0x7f00000000c0)=@l2={0x1f, 0x7ff, @any, 0x0, 0x2}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000140)="9539dedad50e4fb01816b3e7c4a8821a2c2a8f57f5bfe8dec4e4966d4b7c5b2c09144798cfc7f62549eeb04b54636c2cee", 0x31}], 0x1, &(0x7f00000001c0)=[{0x1010, 0x10b, 0xad9, "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"}, {0xc0, 0x103, 0x7fffffff, "932374a4bff1c2068e9a0ea083c5e7482221a1f821e5e6b5638398088ec55d268fae749629784cfe9d05d3cedc796293590100c1c84576d7cb8467e2a21aff45467382e5b89a815acaabd97af9245ff58dcb222322b57b2208232d70c9d85e6f7af5e2755b7a29831baed8f6135ae3fb994e862d172c0cb29eed8c90382159403bd622cddc20d6926d08ea849118897b17605b5ad59cc197bb7693e3ec262fa42c87de6bbee9ef92144c91e2cd8140"}], 0x10d0}, 0x880) (async, rerun: 64) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) (rerun: 64) [ 3355.034457][T16848] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3355.049028][T16843] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3355.337763][T16847] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3355.360166][T16847] CPU: 0 PID: 16847 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3355.370639][T16847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3355.380739][T16847] Call Trace: [ 3355.384051][T16847] [ 3355.387013][T16847] dump_stack_lvl+0x1e7/0x2e0 [ 3355.391734][T16847] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3355.396956][T16847] ? __pfx__printk+0x10/0x10 [ 3355.401569][T16847] ? ___ratelimit+0x4c4/0x670 [ 3355.406295][T16847] ? __pfx____ratelimit+0x10/0x10 [ 3355.411369][T16847] dump_header+0xda/0x6a0 [ 3355.415757][T16847] oom_kill_process+0x3a7/0x930 [ 3355.420663][T16847] out_of_memory+0xf67/0x1320 [ 3355.425411][T16847] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3355.431193][T16847] ? __pfx___mutex_lock+0x10/0x10 [ 3355.436270][T16847] ? __pfx_out_of_memory+0x10/0x10 [ 3355.441462][T16847] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3355.447067][T16847] ? __pfx_lock_release+0x10/0x10 [ 3355.452146][T16847] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3355.458276][T16847] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3355.463525][T16847] ? mem_cgroup_iter+0x3e9/0x560 [ 3355.468518][T16847] try_charge_memcg+0xda2/0x18a0 [ 3355.473504][T16847] ? __pfx_try_charge_memcg+0x10/0x10 [ 3355.478898][T16847] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3355.484659][T16847] ? __pfx_lock_release+0x10/0x10 [ 3355.489811][T16847] ? memcg_account_kmem+0x1e7/0x210 [ 3355.495054][T16847] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3355.500880][T16847] __memcg_kmem_charge_page+0xe1/0x250 [ 3355.506373][T16847] memcg_charge_kernel_stack+0x28a/0x550 [ 3355.512045][T16847] dup_task_struct+0x15d/0x7d0 [ 3355.516840][T16847] copy_process+0x5d5/0x3fc0 [ 3355.521474][T16847] ? __might_fault+0xa9/0x120 [ 3355.526174][T16847] ? __pfx_lock_release+0x10/0x10 [ 3355.531226][T16847] ? __pfx_copy_process+0x10/0x10 [ 3355.536268][T16847] ? __might_fault+0xc5/0x120 [ 3355.540967][T16847] ? __asan_memset+0x23/0x50 [ 3355.545579][T16847] kernel_clone+0x21d/0x8d0 [ 3355.550098][T16847] ? __pfx_kernel_clone+0x10/0x10 [ 3355.555148][T16847] __se_sys_clone3+0x2cb/0x350 [ 3355.559932][T16847] ? __pfx___se_sys_clone3+0x10/0x10 [ 3355.565280][T16847] ? do_syscall_64+0x108/0x240 [ 3355.570075][T16847] ? do_syscall_64+0xb4/0x240 [ 3355.574784][T16847] do_syscall_64+0xf9/0x240 [ 3355.579323][T16847] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3355.585243][T16847] RIP: 0033:0x7f02540a9b99 [ 3355.589670][T16847] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3355.609295][T16847] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3355.617729][T16847] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3355.625892][T16847] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3355.633875][T16847] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3355.641854][T16847] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3355.649831][T16847] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3355.657826][T16847] 01:28:33 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000700000114000600020000001b"], 0x54}}, 0x0) [ 3355.682441][T16854] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 3355.703392][T16854] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 3355.711815][T16854] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 3355.724194][T16854] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 3355.733986][T16854] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 3355.735860][T16847] memory: usage 307200kB, limit 307200kB, failcnt 352525 [ 3355.741568][T16854] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 3355.777445][T16847] memory+swap: usage 307468kB, limit 9007199254740988kB, failcnt 0 [ 3355.785492][T16847] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3355.793024][T16847] Memory cgroup stats for /syz1: [ 3355.793180][T16847] cache 4096 [ 3355.801482][T16847] rss 12288 [ 3355.804617][T16847] rss_huge 0 [ 3355.807830][T16847] shmem 0 [ 3355.811232][T16847] mapped_file 0 [ 3355.814721][T16847] dirty 4096 [ 3355.817947][T16847] writeback 0 [ 3355.821333][T16847] workingset_refault_anon 119643 [ 3355.827874][T16847] workingset_refault_file 3 [ 3355.832685][T16847] swap 274432 [ 3355.836003][T16847] swapcached 8192 [ 3355.839824][T16847] pgpgin 289923 [ 3355.843322][T16847] pgpgout 289919 [ 3355.846891][T16847] pgfault 616452 [ 3355.850903][T16847] pgmajfault 112576 [ 3355.854748][T16847] inactive_anon 0 [ 3355.858405][T16847] active_anon 12288 [ 3355.868140][T16847] inactive_file 4096 [ 3355.872304][T16847] active_file 0 [ 3355.875795][T16847] unevictable 0 [ 3355.881845][T16847] hierarchical_memory_limit 314572800 [ 3355.887259][T16847] hierarchical_memsw_limit 9223372036854771712 [ 3355.893543][T16847] total_cache 4096 [ 3355.897287][T16847] total_rss 12288 [ 3355.901236][T16847] total_rss_huge 0 [ 3355.904997][T16847] total_shmem 0 [ 3355.908497][T16847] total_mapped_file 0 [ 3355.912580][T16847] total_dirty 4096 [ 3355.916320][T16847] total_writeback 0 [ 3355.920456][T16847] total_workingset_refault_anon 119643 [ 3355.927404][T16847] total_workingset_refault_file 3 [ 3355.932517][T16847] total_swap 274432 [ 3355.936351][T16847] total_swapcached 8192 [ 3355.941029][T16847] total_pgpgin 289923 [ 3355.945056][T16847] total_pgpgout 289919 [ 3355.949271][T16847] total_pgfault 616452 [ 3355.953367][T16847] total_pgmajfault 112576 [ 3355.957714][T16847] total_inactive_anon 0 [ 3355.962399][T16847] total_active_anon 12288 [ 3355.966853][T16847] total_inactive_file 4096 [ 3355.971444][T16847] total_active_file 0 [ 3355.975552][T16847] total_unevictable 0 [ 3355.979792][T16847] anon_cost 0 [ 3355.983191][T16847] file_cost 0 [ 3355.986587][T16847] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16847,uid=0 [ 3356.017747][T16847] Memory cgroup out of memory: Killed process 16847 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:34 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000003a01000000000114000600020000001b"], 0x54}}, 0x0) 01:28:34 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000008d9e62005dda97fa85d2eade037afcc911d8af4403221356416555d86e877f00aad1090403cd6a3f1ea6d66b1399f09e3f658ab1730da3ce1957e6651ae733d49f43a16bdaf9e49b2ef50a418b5dfc86bf48ad4410ff6e3a10aa21a7e48d6a94f72ed157f96f1c94ff3e0ca60fb7a152c44c495d88da3e7bd400"/137, @ANYRES16=r1, @ANYBLOB="110c0000000000000000150000000c002b8008000100020000000c0006000100000001000000"], 0x2c}}, 0x0) (async) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000100), 0xffffffffffffffff) (async) r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000480), r0) sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000580)={&(0x7f0000000440), 0xc, &(0x7f0000000540)={&(0x7f0000000280)=ANY=[@ANYBLOB="0c3bcc791cde34364f0b0000e3fa58780f5b", @ANYRES16=r3, @ANYBLOB="00022abd7000fedbdf252500000005002900010000000c0005000201aaaaaaaaaaaa06000600ffff00000c000500000000000000000005002a00030000000c00050000000000000000000a0001007770616e3000000005002b000100000005002e0005000000"], 0x6c}, 0x1, 0x0, 0x0, 0x10}, 0x4000040) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)={0x38, r2, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xf95}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x40040) (async) r4 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) (async) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x3000}, 0xc, &(0x7f0000000300)={&(0x7f00000005c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000129bd7000fddbdf25010000000c00020003000000000000000c00050000000000000c0003003f000000000000000c00060002000000000000000c00040022000000000000000c0005000800000000000000000000000000000000000000000000948ad367ddb6e8a15a83687329cd2805ca289e2b615a787e6489131bfdbfe7571e855acdb9e11d38fd33970d9bcf694897e675bab32f18d64b74eb791c460433ab5c714c0d6591fb7a08232b75cf3e26ee99b7302dd9ea88efa5f5ea5af900"/208], 0x68}, 0x1, 0x0, 0x0, 0x24040090}, 0x40001) [ 3356.523928][T16852] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3356.533320][T16852] netlink: 159788 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3356.544943][T16857] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:28:35 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000800000114000600020000001b"], 0x54}}, 0x0) [ 3356.774475][T16859] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000 [ 3356.809854][T16859] CPU: 1 PID: 16859 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3356.820352][T16859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3356.830449][T16859] Call Trace: [ 3356.833769][T16859] [ 3356.836734][T16859] dump_stack_lvl+0x1e7/0x2e0 [ 3356.841466][T16859] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3356.846709][T16859] ? __pfx__printk+0x10/0x10 [ 3356.851344][T16859] ? ___ratelimit+0x4c4/0x670 [ 3356.856086][T16859] ? __pfx____ratelimit+0x10/0x10 [ 3356.861174][T16859] dump_header+0xda/0x6a0 [ 3356.865559][T16859] oom_kill_process+0x3a7/0x930 [ 3356.870467][T16859] out_of_memory+0xf67/0x1320 [ 3356.875190][T16859] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3356.880851][T16859] ? __pfx___mutex_lock+0x10/0x10 [ 3356.885935][T16859] ? __pfx_out_of_memory+0x10/0x10 [ 3356.891108][T16859] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3356.896697][T16859] ? __pfx_lock_release+0x10/0x10 [ 3356.901771][T16859] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3356.907863][T16859] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3356.913115][T16859] ? mem_cgroup_iter+0x3e9/0x560 [ 3356.918107][T16859] try_charge_memcg+0xda2/0x18a0 [ 3356.923119][T16859] ? __pfx_try_charge_memcg+0x10/0x10 [ 3356.928537][T16859] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3356.934306][T16859] ? __pfx_lock_release+0x10/0x10 [ 3356.939394][T16859] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3356.945446][T16859] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3356.951225][T16859] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3356.957085][T16859] obj_cgroup_charge+0x389/0x630 [ 3356.962080][T16859] ? obj_cgroup_charge+0x121/0x630 [ 3356.967230][T16859] ? __pfx_obj_cgroup_charge+0x10/0x10 [ 3356.972731][T16859] ? __pfx___might_resched+0x10/0x10 [ 3356.978075][T16859] __memcg_slab_pre_alloc_hook+0x28d/0x2b0 [ 3356.983934][T16859] kmem_cache_alloc_node+0x284/0x380 [ 3356.989273][T16859] ? dup_task_struct+0x57/0x7d0 [ 3356.994258][T16859] dup_task_struct+0x57/0x7d0 [ 3356.998983][T16859] ? _raw_spin_unlock_irq+0x23/0x50 [ 3357.004219][T16859] ? lockdep_hardirqs_on+0x98/0x140 [ 3357.009474][T16859] copy_process+0x5d5/0x3fc0 [ 3357.014141][T16859] ? __might_fault+0xa9/0x120 [ 3357.018865][T16859] ? __pfx_lock_release+0x10/0x10 [ 3357.023946][T16859] ? __lock_acquire+0x1345/0x1fd0 [ 3357.029020][T16859] ? __pfx_copy_process+0x10/0x10 [ 3357.034093][T16859] ? __might_fault+0xc5/0x120 [ 3357.038820][T16859] ? __asan_memset+0x23/0x50 [ 3357.043467][T16859] kernel_clone+0x21d/0x8d0 [ 3357.048019][T16859] ? __pfx_kernel_clone+0x10/0x10 [ 3357.053096][T16859] ? __pfx_lock_release+0x10/0x10 [ 3357.058174][T16859] __se_sys_clone3+0x2cb/0x350 [ 3357.062982][T16859] ? __might_fault+0xa9/0x120 [ 3357.067719][T16859] ? __pfx___se_sys_clone3+0x10/0x10 [ 3357.073040][T16859] ? rcu_is_watching+0x15/0xb0 [ 3357.077865][T16859] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3357.083920][T16859] ? exc_page_fault+0x587/0x870 [ 3357.088816][T16859] ? do_syscall_64+0xb4/0x240 [ 3357.093533][T16859] do_syscall_64+0xf9/0x240 [ 3357.098078][T16859] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3357.104017][T16859] RIP: 0033:0x7f02540a9b99 [ 3357.108467][T16859] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3357.128118][T16859] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3357.136586][T16859] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3357.144621][T16859] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3357.152635][T16859] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3357.160654][T16859] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3357.168666][T16859] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3357.176705][T16859] [ 3357.229094][T16859] memory: usage 307176kB, limit 307200kB, failcnt 353001 [ 3357.236414][T16859] memory+swap: usage 307444kB, limit 9007199254740988kB, failcnt 0 [ 3357.252119][T16859] kmem: usage 307160kB, limit 9007199254740988kB, failcnt 0 [ 3357.265875][T16859] Memory cgroup stats for /syz1: [ 3357.266036][T16859] cache 4096 [ 3357.279093][T16859] rss 12288 [ 3357.282445][T16859] rss_huge 0 [ 3357.285832][T16859] shmem 0 [ 3357.290223][T16859] mapped_file 0 [ 3357.293897][T16859] dirty 4096 [ 3357.297293][T16859] writeback 0 [ 3357.302697][T16859] workingset_refault_anon 119811 [ 3357.307845][T16859] workingset_refault_file 3 [ 3357.315802][T16859] swap 274432 [ 3357.319592][T16859] swapcached 8192 [ 3357.327327][T16859] pgpgin 290114 [ 3357.335210][T16859] pgpgout 290110 [ 3357.343354][T16859] pgfault 616732 [ 3357.347117][T16859] pgmajfault 112748 [ 3357.353958][T16859] inactive_anon 0 [ 3357.357795][T16859] active_anon 12288 [ 3357.368076][T16859] inactive_file 4096 [ 3357.376431][T16859] active_file 0 [ 3357.382889][T16859] unevictable 0 [ 3357.386567][T16859] hierarchical_memory_limit 314572800 [ 3357.395959][T16859] hierarchical_memsw_limit 9223372036854771712 [ 3357.405483][T16859] total_cache 4096 [ 3357.413474][T16859] total_rss 12288 [ 3357.417329][T16859] total_rss_huge 0 [ 3357.421698][T16859] total_shmem 0 [ 3357.425419][T16859] total_mapped_file 0 [ 3357.430533][T16859] total_dirty 4096 [ 3357.434465][T16859] total_writeback 0 [ 3357.440427][T16859] total_workingset_refault_anon 119811 [ 3357.446096][T16859] total_workingset_refault_file 3 [ 3357.459744][T16859] total_swap 274432 [ 3357.465176][T16859] total_swapcached 8192 [ 3357.469738][T16859] total_pgpgin 290114 [ 3357.473824][T16859] total_pgpgout 290110 [ 3357.477983][T16859] total_pgfault 616732 [ 3357.482604][T16859] total_pgmajfault 112748 [ 3357.487043][T16859] total_inactive_anon 0 [ 3357.492155][T16859] total_active_anon 12288 [ 3357.496607][T16859] total_inactive_file 4096 [ 3357.501592][T16859] total_active_file 0 [ 3357.505731][T16859] total_unevictable 0 [ 3357.510151][T16859] anon_cost 0 [ 3357.513596][T16859] file_cost 0 [ 3357.517029][T16859] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16859,uid=0 [ 3357.540767][T16859] Memory cgroup out of memory: Killed process 16859 (syz-executor.1) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:35 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000004101000000000114000600020000001b"], 0x54}}, 0x0) [ 3357.626737][T16866] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 01:28:35 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000900000114000600020000001b"], 0x54}}, 0x0) 01:28:36 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f00000012c0)={&(0x7f00000000c0)=@l2={0x1f, 0x7ff, @any, 0x0, 0x2}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000140)="9539dedad50e4fb01816b3e7c4a8821a2c2a8f57f5bfe8dec4e4966d4b7c5b2c09144798cfc7f62549eeb04b54636c2cee", 0x31}], 0x1, &(0x7f00000001c0)=[{0x1010, 0x10b, 0xad9, "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"}, {0xc0, 0x103, 0x7fffffff, "932374a4bff1c2068e9a0ea083c5e7482221a1f821e5e6b5638398088ec55d268fae749629784cfe9d05d3cedc796293590100c1c84576d7cb8467e2a21aff45467382e5b89a815acaabd97af9245ff58dcb222322b57b2208232d70c9d85e6f7af5e2755b7a29831baed8f6135ae3fb994e862d172c0cb29eed8c90382159403bd622cddc20d6926d08ea849118897b17605b5ad59cc197bb7693e3ec262fa42c87de6bbee9ef92144c91e2cd8140"}], 0x10d0}, 0x880) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) [ 3357.770021][T16854] Bluetooth: hci0: command 0x0409 tx timeout 01:28:36 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000008d9e62005dda97fa85d2eade037afcc911d8af4403221356416555d86e877f00aad1090403cd6a3f1ea6d66b1399f09e3f658ab1730da3ce1957e6651ae733d49f43a16bdaf9e49b2ef50a418b5dfc86bf48ad4410ff6e3a10aa21a7e48d6a94f72ed157f96f1c94ff3e0ca60fb7a152c44c495d88da3e7bd400"/137, @ANYRES16=r1, @ANYBLOB="110c0000000000000000150000000c002b8008000100020000000c0006000100000001000000"], 0x2c}}, 0x0) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000100), 0xffffffffffffffff) r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000480), r0) sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000580)={&(0x7f0000000440), 0xc, &(0x7f0000000540)={&(0x7f0000000280)=ANY=[@ANYBLOB="0c3bcc791cde34364f0b0000e3fa58780f5b", @ANYRES16=r3, @ANYBLOB="00022abd7000fedbdf252500000005002900010000000c0005000201aaaaaaaaaaaa06000600ffff00000c000500000000000000000005002a00030000000c00050000000000000000000a0001007770616e3000000005002b000100000005002e0005000000"], 0x6c}, 0x1, 0x0, 0x0, 0x10}, 0x4000040) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)={0x38, r2, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xf95}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x40040) r4 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x3000}, 0xc, &(0x7f0000000300)={&(0x7f00000005c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000129bd7000fddbdf25010000000c00020003000000000000000c00050000000000000c0003003f000000000000000c00060002000000000000000c00040022000000000000000c0005000800000000000000000000000000000000000000000000948ad367ddb6e8a15a83687329cd2805ca289e2b615a787e6489131bfdbfe7571e855acdb9e11d38fd33970d9bcf694897e675bab32f18d64b74eb791c460433ab5c714c0d6591fb7a08232b75cf3e26ee99b7302dd9ea88efa5f5ea5af900"/208], 0x68}, 0x1, 0x0, 0x0, 0x24040090}, 0x40001) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) (async) sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000008d9e62005dda97fa85d2eade037afcc911d8af4403221356416555d86e877f00aad1090403cd6a3f1ea6d66b1399f09e3f658ab1730da3ce1957e6651ae733d49f43a16bdaf9e49b2ef50a418b5dfc86bf48ad4410ff6e3a10aa21a7e48d6a94f72ed157f96f1c94ff3e0ca60fb7a152c44c495d88da3e7bd400"/137, @ANYRES16=r1, @ANYBLOB="110c0000000000000000150000000c002b8008000100020000000c0006000100000001000000"], 0x2c}}, 0x0) (async) syz_genetlink_get_family_id$nbd(&(0x7f0000000100), 0xffffffffffffffff) (async) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000480), r0) (async) sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000580)={&(0x7f0000000440), 0xc, &(0x7f0000000540)={&(0x7f0000000280)=ANY=[@ANYBLOB="0c3bcc791cde34364f0b0000e3fa58780f5b", @ANYRES16=r3, @ANYBLOB="00022abd7000fedbdf252500000005002900010000000c0005000201aaaaaaaaaaaa06000600ffff00000c000500000000000000000005002a00030000000c00050000000000000000000a0001007770616e3000000005002b000100000005002e0005000000"], 0x6c}, 0x1, 0x0, 0x0, 0x10}, 0x4000040) (async) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)={0x38, r2, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xf95}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x40040) (async) socket$kcm(0x10, 0x3, 0x10) (async) sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) (async) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x3000}, 0xc, &(0x7f0000000300)={&(0x7f00000005c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000129bd7000fddbdf25010000000c00020003000000000000000c00050000000000000c0003003f000000000000000c00060002000000000000000c00040022000000000000000c0005000800000000000000000000000000000000000000000000948ad367ddb6e8a15a83687329cd2805ca289e2b615a787e6489131bfdbfe7571e855acdb9e11d38fd33970d9bcf694897e675bab32f18d64b74eb791c460433ab5c714c0d6591fb7a08232b75cf3e26ee99b7302dd9ea88efa5f5ea5af900"/208], 0x68}, 0x1, 0x0, 0x0, 0x24040090}, 0x40001) (async) [ 3357.947516][T16873] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 3357.979104][T16873] netlink: 159788 bytes leftover after parsing attributes in process `syz-executor.4'. [ 3358.042413][T16871] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3358.158450][ T12] bridge_slave_1: left allmulticast mode [ 3358.182935][ T12] bridge_slave_1: left promiscuous mode 01:28:36 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000a00000114000600020000001b"], 0x54}}, 0x0) [ 3358.204186][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 3358.264309][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3358.296602][ T5105] CPU: 1 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3358.307021][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3358.317117][ T5105] Call Trace: [ 3358.320453][ T5105] [ 3358.323425][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3358.328165][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3358.333419][ T5105] ? __pfx__printk+0x10/0x10 [ 3358.338050][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3358.342790][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3358.347872][ T5105] dump_header+0xda/0x6a0 [ 3358.352256][ T5105] oom_kill_process+0x3a7/0x930 [ 3358.357178][ T5105] out_of_memory+0xf67/0x1320 [ 3358.361912][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3358.367771][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3358.372848][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3358.378023][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3358.383625][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3358.388700][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3358.394843][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3358.400100][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3358.405100][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3358.410090][ T5105] ? mark_lock+0x9a/0x350 [ 3358.414489][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3358.419945][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3358.426150][ T5105] charge_memcg+0xa2/0x160 [ 3358.430614][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3358.436735][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3358.442234][ T5105] ? mark_lock+0x9a/0x350 [ 3358.446623][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3358.452687][ T5105] swap_cluster_readahead+0x67c/0x810 [ 3358.458122][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3358.464064][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3358.469148][ T5105] ? xas_descend+0x37e/0x470 [ 3358.473787][ T5105] swapin_readahead+0x1ea/0x1070 [ 3358.478762][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3358.483940][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3358.489370][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3358.494718][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3358.500048][ T5105] do_swap_page+0x791/0x3f40 [ 3358.504686][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3358.509513][ T5105] ? do_swap_page+0x154/0x3f40 [ 3358.514458][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3358.519537][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3358.525137][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3358.531097][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3358.536305][ T5105] ? reacquire_held_locks+0x3eb/0x690 [ 3358.541722][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3358.547248][ T5105] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3358.553027][ T5105] ? mtree_range_walk+0x6fd/0x8e0 [ 3358.558104][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3358.563352][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3358.568430][ T5105] ? lock_vma_under_rcu+0x2f9/0x730 [ 3358.573896][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3358.579154][ T5105] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3358.584754][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3358.589584][ T5105] exc_page_fault+0x456/0x870 [ 3358.594315][ T5105] asm_exc_page_fault+0x26/0x30 [ 3358.599216][ T5105] RIP: 0033:0x7f02540a9163 [ 3358.603667][ T5105] Code: 00 00 00 00 00 66 90 31 c0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 <80> 3d 8e 6d 0d 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f [ 3358.623665][ T5105] RSP: 002b:00007ffe12c8cc38 EFLAGS: 00010293 [ 3358.629790][ T5105] RAX: 00000000fffffffa RBX: 000000000000473c RCX: 0000000000000000 [ 3358.637897][ T5105] RDX: 00007ffe12c8cc50 RSI: 0000000000000000 RDI: 0000000000000000 [ 3358.645911][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000000 R09: 00007ffe12ccd0b0 [ 3358.653927][ T5105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3358.661940][ T5105] R13: 0000000000333be8 R14: 0000000000333be8 R15: 0000000000000000 [ 3358.669980][ T5105] [ 3358.705667][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 353484 [ 3358.717824][ T5105] memory+swap: usage 307516kB, limit 9007199254740988kB, failcnt 0 [ 3358.727857][ T5105] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3358.742010][ T5105] Memory cgroup stats for /syz1: [ 3358.742174][ T5105] cache 4096 [ 3358.753273][ T5105] rss 0 [ 3358.756236][ T5105] rss_huge 0 [ 3358.763746][ T5105] shmem 0 [ 3358.766900][ T5105] mapped_file 0 [ 3358.773060][ T5105] dirty 4096 [ 3358.776440][ T5105] writeback 4096 [ 3358.784688][ T5105] workingset_refault_anon 119936 [ 3358.795114][ T5105] workingset_refault_file 3 [ 3358.803792][ T5105] swap 319488 [ 3358.807291][ T5105] swapcached 4096 [ 3358.860259][ T5105] pgpgin 290276 [ 3358.863986][ T5105] pgpgout 290274 [ 3358.875785][ T5105] pgfault 616971 [ 3358.885460][ T5105] pgmajfault 112891 [ 3358.892600][ T5105] inactive_anon 0 [ 3358.898371][ T5105] active_anon 0 [ 3358.904454][ T5105] inactive_file 4096 [ 3358.913006][ T5105] active_file 0 [ 3358.918658][ T5105] unevictable 0 [ 3358.922257][ T5105] hierarchical_memory_limit 314572800 [ 3358.946194][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3358.953140][ T5105] total_cache 4096 [ 3358.957075][ T5105] total_rss 0 [ 3358.967158][ T5105] total_rss_huge 0 [ 3358.971891][ T5105] total_shmem 0 [ 3358.975472][ T5105] total_mapped_file 0 [ 3358.981498][ T5105] total_dirty 4096 [ 3358.993583][ T5105] total_writeback 4096 [ 3359.008446][ T5105] total_workingset_refault_anon 119936 [ 3359.015854][ T5105] total_workingset_refault_file 3 [ 3359.025077][ T5105] total_swap 319488 [ 3359.034235][ T5105] total_swapcached 4096 [ 3359.042618][ T5105] total_pgpgin 290276 [ 3359.046828][ T5105] total_pgpgout 290274 [ 3359.054040][ T5105] total_pgfault 616971 [ 3359.058252][ T5105] total_pgmajfault 112891 [ 3359.066606][ T5105] total_inactive_anon 0 [ 3359.086948][ T5105] total_active_anon 0 [ 3359.096152][ T5105] total_inactive_file 4096 [ 3359.120171][ T5105] total_active_file 0 [ 3359.124256][ T5105] total_unevictable 0 [ 3359.128278][ T5105] anon_cost 0 [ 3359.143703][ T5105] file_cost 0 [ 3359.147057][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16869,uid=0 [ 3359.186616][ T5105] Memory cgroup out of memory: Killed process 16869 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:37 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000000c402000000000114000600020000001b"], 0x54}}, 0x0) [ 3359.735838][T16896] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3359.751449][T16896] CPU: 1 PID: 16896 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3359.761940][T16896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3359.772034][T16896] Call Trace: [ 3359.775354][T16896] [ 3359.778321][T16896] dump_stack_lvl+0x1e7/0x2e0 [ 3359.783329][T16896] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3359.788662][T16896] ? __pfx__printk+0x10/0x10 [ 3359.793300][T16896] ? ___ratelimit+0x4c4/0x670 [ 3359.798003][T16896] ? __pfx____ratelimit+0x10/0x10 [ 3359.803059][T16896] dump_header+0xda/0x6a0 [ 3359.807416][T16896] oom_kill_process+0x3a7/0x930 [ 3359.812290][T16896] out_of_memory+0xf67/0x1320 [ 3359.817001][T16896] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3359.822666][T16896] ? __pfx___mutex_lock+0x10/0x10 [ 3359.827719][T16896] ? __pfx_out_of_memory+0x10/0x10 [ 3359.832861][T16896] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3359.838432][T16896] ? __pfx_lock_release+0x10/0x10 [ 3359.843476][T16896] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3359.849566][T16896] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3359.854778][T16896] ? mem_cgroup_iter+0x3e9/0x560 [ 3359.859740][T16896] try_charge_memcg+0xda2/0x18a0 [ 3359.864716][T16896] ? __pfx_try_charge_memcg+0x10/0x10 [ 3359.870104][T16896] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3359.875837][T16896] ? __pfx_lock_release+0x10/0x10 [ 3359.880886][T16896] ? memcg_account_kmem+0x1e7/0x210 [ 3359.886110][T16896] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3359.891938][T16896] __memcg_kmem_charge_page+0xe1/0x250 [ 3359.897424][T16896] memcg_charge_kernel_stack+0x28a/0x550 [ 3359.903087][T16896] dup_task_struct+0x15d/0x7d0 [ 3359.907866][T16896] copy_process+0x5d5/0x3fc0 [ 3359.912483][T16896] ? __might_fault+0xa9/0x120 [ 3359.917183][T16896] ? __pfx_lock_release+0x10/0x10 [ 3359.922244][T16896] ? __pfx_copy_process+0x10/0x10 [ 3359.927285][T16896] ? __might_fault+0xc5/0x120 [ 3359.931995][T16896] ? __asan_memset+0x23/0x50 [ 3359.936612][T16896] kernel_clone+0x21d/0x8d0 [ 3359.941143][T16896] ? __pfx_kernel_clone+0x10/0x10 [ 3359.946205][T16896] __se_sys_clone3+0x2cb/0x350 [ 3359.950988][T16896] ? __pfx___se_sys_clone3+0x10/0x10 [ 3359.956315][T16896] ? do_syscall_64+0x108/0x240 [ 3359.961096][T16896] ? do_syscall_64+0xb4/0x240 [ 3359.965789][T16896] do_syscall_64+0xf9/0x240 [ 3359.970310][T16896] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3359.976225][T16896] RIP: 0033:0x7f02540a9b99 [ 3359.980650][T16896] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3360.000271][T16896] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3360.008702][T16896] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3360.016688][T16896] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3360.024676][T16896] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3360.032667][T16896] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3360.040651][T16896] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3360.048664][T16896] [ 3360.056648][T16854] Bluetooth: hci0: command 0x041b tx timeout [ 3360.077405][T16896] memory: usage 307200kB, limit 307200kB, failcnt 353761 [ 3360.104966][T16896] memory+swap: usage 307540kB, limit 9007199254740988kB, failcnt 0 [ 3360.114194][T16896] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0 [ 3360.125845][T16896] Memory cgroup stats for /syz1: [ 3360.126006][T16896] cache 4096 [ 3360.141434][T16896] rss 12288 [ 3360.144691][T16896] rss_huge 0 [ 3360.148006][T16896] shmem 0 [ 3360.155662][T16896] mapped_file 0 [ 3360.162103][T16896] dirty 4096 [ 3360.165438][T16896] writeback 0 [ 3360.175345][T16896] workingset_refault_anon 120033 [ 3360.187262][T16896] workingset_refault_file 3 [ 3360.192455][T16896] swap 348160 [ 3360.195985][T16896] swapcached 8192 [ 3360.200269][T16896] pgpgin 290391 [ 3360.204024][T16896] pgpgout 290387 [ 3360.207798][T16896] pgfault 617142 [ 3360.211628][T16896] pgmajfault 112979 [ 3360.215651][T16896] inactive_anon 0 [ 3360.219544][T16896] active_anon 12288 [ 3360.223572][T16896] inactive_file 0 [ 3360.236121][T16896] active_file 4096 [ 3360.240184][T16896] unevictable 0 [ 3360.243917][T16896] hierarchical_memory_limit 314572800 [ 3360.255963][T16896] hierarchical_memsw_limit 9223372036854771712 [ 3360.262469][T16896] total_cache 4096 [ 3360.266464][T16896] total_rss 12288 [ 3360.270664][T16896] total_rss_huge 0 [ 3360.274654][T16896] total_shmem 0 [ 3360.280858][T16896] total_mapped_file 0 [ 3360.292453][T16896] total_dirty 4096 [ 3360.299346][T16896] total_writeback 0 [ 3360.303201][T16896] total_workingset_refault_anon 120033 [ 3360.309645][T16896] total_workingset_refault_file 3 [ 3360.314727][T16896] total_swap 348160 [ 3360.320030][T16896] total_swapcached 8192 [ 3360.324229][T16896] total_pgpgin 290391 [ 3360.331169][T16896] total_pgpgout 290387 [ 3360.335281][T16896] total_pgfault 617142 [ 3360.340473][T16896] total_pgmajfault 112979 [ 3360.344945][T16896] total_inactive_anon 0 [ 3360.350755][T16896] total_active_anon 12288 [ 3360.355239][T16896] total_inactive_file 0 [ 3360.360138][T16896] total_active_file 4096 [ 3360.364505][T16896] total_unevictable 0 [ 3360.369274][T16896] anon_cost 0 [ 3360.372685][T16896] file_cost 0 [ 3360.376104][T16896] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16896,uid=0 [ 3360.394507][T16896] Memory cgroup out of memory: Killed process 16896 (syz-executor.1) total-vm:54508kB, anon-rss:356kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:38 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000000c602000000000114000600020000001b"], 0x54}}, 0x0) [ 3361.388407][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3361.400317][ T5105] CPU: 0 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3361.410794][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3361.420980][ T5105] Call Trace: [ 3361.424294][ T5105] [ 3361.427256][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3361.431985][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3361.437230][ T5105] ? __pfx__printk+0x10/0x10 [ 3361.441850][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3361.446596][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3361.451675][ T5105] dump_header+0xda/0x6a0 [ 3361.456066][ T5105] oom_kill_process+0x3a7/0x930 [ 3361.460978][ T5105] out_of_memory+0xf67/0x1320 [ 3361.465716][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3361.471413][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3361.476494][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3361.481677][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3361.487365][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3361.492437][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3361.498561][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3361.503897][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3361.508886][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3361.513866][ T5105] ? mark_lock+0x9a/0x350 [ 3361.518259][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3361.523713][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3361.529916][ T5105] charge_memcg+0xa2/0x160 [ 3361.534372][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3361.540487][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3361.546007][ T5105] ? mark_lock+0x9a/0x350 [ 3361.550391][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3361.556426][ T5105] swap_cluster_readahead+0x67c/0x810 [ 3361.561882][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3361.567821][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3361.572904][ T5105] ? xas_descend+0x37e/0x470 [ 3361.577546][ T5105] swapin_readahead+0x1ea/0x1070 [ 3361.582523][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3361.587699][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3361.593119][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3361.598648][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3361.604061][ T5105] do_swap_page+0x791/0x3f40 [ 3361.608702][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3361.613531][ T5105] ? do_swap_page+0x154/0x3f40 [ 3361.618334][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3361.623399][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3361.628911][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3361.634764][ T5105] ? __pfx_validate_chain+0x10/0x10 [ 3361.640015][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3361.645295][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3361.650813][ T5105] ? mt_find+0x226/0x850 [ 3361.655099][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3361.660199][ T5105] ? mt_find+0x62d/0x850 [ 3361.664489][ T5105] ? mt_find+0x226/0x850 [ 3361.668799][ T5105] ? find_vma+0x142/0x1c0 [ 3361.673176][ T5105] ? __pfx_find_vma+0x10/0x10 [ 3361.677892][ T5105] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3361.683928][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3361.688751][ T5105] exc_page_fault+0x2ad/0x870 [ 3361.693482][ T5105] asm_exc_page_fault+0x26/0x30 [ 3361.698370][ T5105] RIP: 0010:__get_user_8+0x11/0x20 [ 3361.703538][ T5105] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3361.723185][ T5105] RSP: 0018:ffffc90004367d98 EFLAGS: 00050202 [ 3361.729298][ T5105] RAX: 00005555566b1da8 RBX: ffff88802e9bee78 RCX: ffffc90004367c03 [ 3361.738004][ T5105] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7fe0 [ 3361.746017][ T5105] RBP: ffffc90004367ec8 R08: ffffffff8f85feef R09: 1ffffffff1f0bfdd [ 3361.754036][ T5105] R10: dffffc0000000000 R11: fffffbfff1f0bfde R12: ffffc90004367da0 [ 3361.762051][ T5105] R13: ffffc90004367fd8 R14: dffffc0000000000 R15: ffff88802e9bd940 [ 3361.770083][ T5105] __rseq_handle_notify_resume+0x158/0x1490 [ 3361.776039][ T5105] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3361.782513][ T5105] ? syscall_exit_to_user_mode+0xa2/0x360 [ 3361.788280][ T5105] syscall_exit_to_user_mode+0x113/0x360 [ 3361.793961][ T5105] do_syscall_64+0x108/0x240 [ 3361.798605][ T5105] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3361.804543][ T5105] RIP: 0033:0x7f02540a91b5 [ 3361.808997][ T5105] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 3361.828740][ T5105] RSP: 002b:00007ffe12c8cc10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 3361.837206][ T5105] RAX: 0000000000000000 RBX: 000000000000473e RCX: 00007f02540a91b5 [ 3361.845220][ T5105] RDX: 00007ffe12c8cc50 RSI: 0000000000000000 RDI: 0000000000000000 [ 3361.853229][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000000 R09: 00007ffe12ccd0b0 [ 3361.861264][ T5105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3361.869281][ T5105] R13: 000000000033470e R14: 000000000033470e R15: 0000000000000000 [ 3361.877317][ T5105] [ 3361.904133][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 354374 [ 3361.911946][ T5105] memory+swap: usage 307460kB, limit 9007199254740988kB, failcnt 0 [ 3361.926181][ T5105] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3361.934189][ T5105] Memory cgroup stats for /syz1: [ 3361.934349][ T5105] cache 4096 [ 3361.948577][ T5105] rss 0 [ 3361.951384][ T5105] rss_huge 0 [ 3361.954608][ T5105] shmem 0 [ 3361.957574][ T5105] mapped_file 0 [ 3361.973147][ T5105] dirty 4096 [ 3361.976409][ T5105] writeback 0 [ 3361.981553][ T5105] workingset_refault_anon 120241 [ 3361.986534][ T5105] workingset_refault_file 3 [ 3361.997825][ T5105] swap 266240 [ 3362.003082][ T5105] swapcached 0 [ 3362.007274][ T5105] pgpgin 290612 [ 3362.016099][ T5105] pgpgout 290611 [ 3362.020137][ T5105] pgfault 617444 [ 3362.023732][ T5105] pgmajfault 113157 [ 3362.027646][ T5105] inactive_anon 0 [ 3362.038147][ T5105] active_anon 0 [ 3362.042074][ T5105] inactive_file 0 [ 3362.045739][ T5105] active_file 4096 [ 3362.056039][ T5105] unevictable 0 [ 3362.060270][ T5105] hierarchical_memory_limit 314572800 [ 3362.065675][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3362.074234][ T5105] total_cache 4096 [ 3362.077995][ T5105] total_rss 0 [ 3362.088025][ T5105] total_rss_huge 0 [ 3362.092992][ T5105] total_shmem 0 [ 3362.096490][ T5105] total_mapped_file 0 [ 3362.098688][T16854] Bluetooth: hci0: command 0x040f tx timeout [ 3362.102805][ T5105] total_dirty 4096 [ 3362.116315][ T5105] total_writeback 0 [ 3362.120901][ T5105] total_workingset_refault_anon 120241 [ 3362.126408][ T5105] total_workingset_refault_file 3 [ 3362.132346][ T5105] total_swap 266240 [ 3362.136188][ T5105] total_swapcached 0 [ 3362.146499][ T5105] total_pgpgin 290612 [ 3362.151209][ T5105] total_pgpgout 290611 [ 3362.155310][ T5105] total_pgfault 617444 [ 3362.160181][ T5105] total_pgmajfault 113157 [ 3362.164547][ T5105] total_inactive_anon 0 [ 3362.186053][ T5105] total_active_anon 0 [ 3362.190713][ T5105] total_inactive_file 0 [ 3362.194917][ T5105] total_active_file 4096 [ 3362.205524][ T5105] total_unevictable 0 [ 3362.211691][ T5105] anon_cost 0 [ 3362.215024][ T5105] file_cost 0 [ 3362.225304][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16899,uid=0 01:28:40 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000000c802000000000114000600020000001b"], 0x54}}, 0x0) [ 3362.249655][ T5105] Memory cgroup out of memory: Killed process 16899 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3362.563933][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3362.591892][ T5105] CPU: 0 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3362.602561][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3362.612657][ T5105] Call Trace: [ 3362.615968][ T5105] [ 3362.618930][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3362.623657][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3362.628901][ T5105] ? __pfx__printk+0x10/0x10 [ 3362.633535][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3362.638453][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3362.643534][ T5105] dump_header+0xda/0x6a0 [ 3362.647918][ T5105] oom_kill_process+0x3a7/0x930 [ 3362.653340][ T5105] out_of_memory+0xf67/0x1320 [ 3362.658073][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3362.663748][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3362.668820][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3362.673993][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3362.679588][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3362.684667][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3362.690795][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3362.696037][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3362.701024][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3362.706004][ T5105] ? mark_lock+0x9a/0x350 [ 3362.710424][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3362.715873][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3362.722068][ T5105] charge_memcg+0xa2/0x160 [ 3362.726523][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3362.732628][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3362.738113][ T5105] ? mark_lock+0x9a/0x350 [ 3362.742491][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3362.748534][ T5105] swap_cluster_readahead+0x67c/0x810 [ 3362.753949][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3362.759884][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3362.764958][ T5105] ? xas_descend+0x37e/0x470 [ 3362.769598][ T5105] swapin_readahead+0x1ea/0x1070 [ 3362.774572][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3362.779750][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3362.785164][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3362.790502][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3362.795827][ T5105] do_swap_page+0x791/0x3f40 [ 3362.800460][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3362.805282][ T5105] ? do_swap_page+0x154/0x3f40 [ 3362.810082][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3362.815147][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3362.820655][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3362.826505][ T5105] ? __pfx_validate_chain+0x10/0x10 [ 3362.831749][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3362.837023][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3362.842539][ T5105] ? mt_find+0x226/0x850 [ 3362.846821][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3362.851909][ T5105] ? mt_find+0x62d/0x850 [ 3362.856191][ T5105] ? mt_find+0x226/0x850 [ 3362.860511][ T5105] ? find_vma+0x142/0x1c0 [ 3362.864893][ T5105] ? __pfx_find_vma+0x10/0x10 [ 3362.869700][ T5105] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3362.875732][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3362.880644][ T5105] exc_page_fault+0x2ad/0x870 [ 3362.885365][ T5105] asm_exc_page_fault+0x26/0x30 [ 3362.890261][ T5105] RIP: 0010:__get_user_8+0x11/0x20 [ 3362.895414][ T5105] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3362.915059][ T5105] RSP: 0018:ffffc90004367d98 EFLAGS: 00050202 [ 3362.921173][ T5105] RAX: 00005555566b1da8 RBX: ffff88802e9bee78 RCX: ffffc90004367c03 [ 3362.929185][ T5105] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7fe0 [ 3362.937191][ T5105] RBP: ffffc90004367ec8 R08: ffffffff8f85feef R09: 1ffffffff1f0bfdd [ 3362.945200][ T5105] R10: dffffc0000000000 R11: fffffbfff1f0bfde R12: ffffc90004367da0 [ 3362.953209][ T5105] R13: ffffc90004367fd8 R14: dffffc0000000000 R15: ffff88802e9bd940 [ 3362.961240][ T5105] __rseq_handle_notify_resume+0x158/0x1490 [ 3362.967192][ T5105] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3362.973573][ T5105] ? syscall_exit_to_user_mode+0xa2/0x360 [ 3362.979337][ T5105] syscall_exit_to_user_mode+0x113/0x360 [ 3362.985017][ T5105] do_syscall_64+0x108/0x240 [ 3362.989646][ T5105] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3362.995583][ T5105] RIP: 0033:0x7f02540a91b5 [ 3363.000031][ T5105] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 3363.019673][ T5105] RSP: 002b:00007ffe12c8cc10 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 3363.028125][ T5105] RAX: 0000000000000000 RBX: 000000000000473f RCX: 00007f02540a91b5 [ 3363.036125][ T5105] RDX: 00007ffe12c8cc50 RSI: 0000000000000000 RDI: 0000000000000000 [ 3363.044212][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000000 R09: 00007ffe12ccd0b0 [ 3363.052235][ T5105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3363.060237][ T5105] R13: 0000000000334e27 R14: 0000000000334e27 R15: 0000000000000000 [ 3363.068258][ T5105] [ 3363.089730][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 354596 [ 3363.098279][ T5105] memory+swap: usage 307496kB, limit 9007199254740988kB, failcnt 0 [ 3363.107023][ T5105] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3363.116403][ T5105] Memory cgroup stats for /syz1: [ 3363.116562][ T5105] cache 4096 [ 3363.125312][ T5105] rss 0 [ 3363.128282][ T5105] rss_huge 0 [ 3363.132419][ T5105] shmem 0 [ 3363.135392][ T5105] mapped_file 0 [ 3363.139504][ T5105] dirty 4096 [ 3363.142739][ T5105] writeback 0 [ 3363.146045][ T5105] workingset_refault_anon 120314 [ 3363.151745][ T5105] workingset_refault_file 3 [ 3363.156281][ T5105] swap 303104 [ 3363.160550][ T5105] swapcached 0 [ 3363.163954][ T5105] pgpgin 290696 [ 3363.167518][ T5105] pgpgout 290695 [ 3363.171964][ T5105] pgfault 617577 [ 3363.175547][ T5105] pgmajfault 113227 [ 3363.180164][ T5105] inactive_anon 0 [ 3363.183827][ T5105] active_anon 0 [ 3363.187306][ T5105] inactive_file 0 [ 3363.193229][ T5105] active_file 4096 [ 3363.198479][ T5105] unevictable 0 [ 3363.202625][ T5105] hierarchical_memory_limit 314572800 [ 3363.208066][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3363.232358][ T5105] total_cache 4096 [ 3363.236123][ T5105] total_rss 0 [ 3363.242394][ T5105] total_rss_huge 0 [ 3363.246152][ T5105] total_shmem 0 [ 3363.253995][ T5105] total_mapped_file 0 [ 3363.258012][ T5105] total_dirty 4096 [ 3363.264633][ T5105] total_writeback 0 [ 3363.268476][ T5105] total_workingset_refault_anon 120314 [ 3363.278225][ T5105] total_workingset_refault_file 3 [ 3363.286426][ T5105] total_swap 303104 [ 3363.301369][ T5105] total_swapcached 0 [ 3363.305396][ T5105] total_pgpgin 290696 [ 3363.310346][ T5105] total_pgpgout 290695 [ 3363.314459][ T5105] total_pgfault 617577 [ 3363.319210][ T5105] total_pgmajfault 113227 [ 3363.323578][ T5105] total_inactive_anon 0 [ 3363.327764][ T5105] total_active_anon 0 [ 3363.332744][ T5105] total_inactive_file 0 [ 3363.336941][ T5105] total_active_file 4096 [ 3363.343732][ T5105] total_unevictable 0 [ 3363.347752][ T5105] anon_cost 0 [ 3363.351688][ T5105] file_cost 0 [ 3363.355007][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16900,uid=0 01:28:41 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000000ca02000000000114000600020000001b"], 0x54}}, 0x0) [ 3363.371834][ T5105] Memory cgroup out of memory: Killed process 16900 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3363.874614][T16901] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3363.906320][T16901] CPU: 1 PID: 16901 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3363.916802][T16901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3363.926888][T16901] Call Trace: [ 3363.930194][T16901] [ 3363.933148][T16901] dump_stack_lvl+0x1e7/0x2e0 [ 3363.937975][T16901] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3363.943301][T16901] ? __pfx__printk+0x10/0x10 [ 3363.947930][T16901] ? ___ratelimit+0x4c4/0x670 [ 3363.952657][T16901] ? __pfx____ratelimit+0x10/0x10 [ 3363.957737][T16901] dump_header+0xda/0x6a0 [ 3363.962125][T16901] oom_kill_process+0x3a7/0x930 [ 3363.967033][T16901] out_of_memory+0xf67/0x1320 [ 3363.971772][T16901] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3363.977458][T16901] ? __pfx___mutex_lock+0x10/0x10 [ 3363.982529][T16901] ? __pfx_out_of_memory+0x10/0x10 [ 3363.987703][T16901] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3363.993299][T16901] ? __pfx_lock_release+0x10/0x10 [ 3363.998372][T16901] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3364.004496][T16901] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3364.009750][T16901] ? mem_cgroup_iter+0x3e9/0x560 [ 3364.014824][T16901] try_charge_memcg+0xda2/0x18a0 [ 3364.019832][T16901] ? __pfx_try_charge_memcg+0x10/0x10 [ 3364.025247][T16901] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3364.031025][T16901] ? __pfx_lock_release+0x10/0x10 [ 3364.036101][T16901] ? memcg_account_kmem+0x1e7/0x210 [ 3364.041357][T16901] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3364.047209][T16901] __memcg_kmem_charge_page+0xe1/0x250 [ 3364.052718][T16901] memcg_charge_kernel_stack+0x210/0x550 [ 3364.058398][T16901] dup_task_struct+0x15d/0x7d0 [ 3364.063211][T16901] copy_process+0x5d5/0x3fc0 [ 3364.067858][T16901] ? __might_fault+0xa9/0x120 [ 3364.072579][T16901] ? __pfx_lock_release+0x10/0x10 [ 3364.077658][T16901] ? __pfx_copy_process+0x10/0x10 [ 3364.082728][T16901] ? __might_fault+0xc5/0x120 [ 3364.087454][T16901] ? __asan_memset+0x23/0x50 [ 3364.092087][T16901] kernel_clone+0x21d/0x8d0 [ 3364.096614][T16901] ? __pfx_kernel_clone+0x10/0x10 [ 3364.101669][T16901] __se_sys_clone3+0x2cb/0x350 [ 3364.106454][T16901] ? __pfx___se_sys_clone3+0x10/0x10 [ 3364.111786][T16901] ? do_syscall_64+0x108/0x240 [ 3364.116580][T16901] ? do_syscall_64+0xb4/0x240 [ 3364.121285][T16901] do_syscall_64+0xf9/0x240 [ 3364.125813][T16901] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3364.131728][T16901] RIP: 0033:0x7f02540a9b99 [ 3364.136170][T16901] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3364.155787][T16901] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3364.164213][T16901] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3364.172192][T16901] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3364.180189][T16901] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3364.188255][T16901] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3364.196273][T16901] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3364.204268][T16901] [ 3364.231039][T16901] memory: usage 307200kB, limit 307200kB, failcnt 355024 [ 3364.238134][T16901] memory+swap: usage 307448kB, limit 9007199254740988kB, failcnt 0 [ 3364.243392][T16854] Bluetooth: hci0: command 0x0419 tx timeout [ 3364.262329][T16901] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3364.271466][T16901] Memory cgroup stats for /syz1: [ 3364.271613][T16901] cache 0 [ 3364.279595][T16901] rss 0 [ 3364.282559][T16901] rss_huge 0 [ 3364.285787][T16901] shmem 0 [ 3364.288848][T16901] mapped_file 0 [ 3364.292331][T16901] dirty 0 [ 3364.295281][T16901] writeback 0 [ 3364.298672][T16901] workingset_refault_anon 120482 [ 3364.303637][T16901] workingset_refault_file 3 [ 3364.308161][T16901] swap 253952 [ 3364.311620][T16901] swapcached 0 [ 3364.315016][T16901] pgpgin 290874 [ 3364.318676][T16901] pgpgout 290874 [ 3364.324239][T16901] pgfault 617847 [ 3364.327828][T16901] pgmajfault 113388 [ 3364.332154][T16901] inactive_anon 0 [ 3364.335837][T16901] active_anon 0 [ 3364.341621][T16901] inactive_file 0 [ 3364.345299][T16901] active_file 0 [ 3364.348897][T16901] unevictable 0 [ 3364.352392][T16901] hierarchical_memory_limit 314572800 [ 3364.357808][T16901] hierarchical_memsw_limit 9223372036854771712 [ 3364.364079][T16901] total_cache 0 [ 3364.367578][T16901] total_rss 0 [ 3364.371026][T16901] total_rss_huge 0 [ 3364.374781][T16901] total_shmem 0 [ 3364.378270][T16901] total_mapped_file 0 [ 3364.382357][T16901] total_dirty 0 [ 3364.385844][T16901] total_writeback 0 [ 3364.389755][T16901] total_workingset_refault_anon 120482 [ 3364.395347][T16901] total_workingset_refault_file 3 [ 3364.400580][T16901] total_swap 253952 [ 3364.404422][T16901] total_swapcached 0 [ 3364.408345][T16901] total_pgpgin 290874 [ 3364.412608][T16901] total_pgpgout 290874 [ 3364.416713][T16901] total_pgfault 617847 [ 3364.420876][T16901] total_pgmajfault 113388 [ 3364.426740][T16901] total_inactive_anon 0 [ 3364.431112][T16901] total_active_anon 0 [ 3364.435125][T16901] total_inactive_file 0 [ 3364.439388][T16901] total_active_file 0 [ 3364.443397][T16901] total_unevictable 0 [ 3364.447396][T16901] anon_cost 0 [ 3364.453313][T16901] file_cost 0 [ 3364.456635][T16901] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16901,uid=0 [ 3364.472327][T16901] Memory cgroup out of memory: Killed process 16901 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:42 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000000cc02000000000114000600020000001b"], 0x54}}, 0x0) [ 3365.387815][T16902] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3365.404734][T16902] CPU: 0 PID: 16902 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3365.415224][T16902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3365.425408][T16902] Call Trace: [ 3365.428728][T16902] [ 3365.431704][T16902] dump_stack_lvl+0x1e7/0x2e0 [ 3365.436446][T16902] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3365.441689][T16902] ? __pfx__printk+0x10/0x10 [ 3365.446324][T16902] ? ___ratelimit+0x4c4/0x670 [ 3365.451057][T16902] ? __pfx____ratelimit+0x10/0x10 [ 3365.456607][T16902] dump_header+0xda/0x6a0 [ 3365.460990][T16902] oom_kill_process+0x3a7/0x930 [ 3365.465892][T16902] out_of_memory+0xf67/0x1320 [ 3365.470718][T16902] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3365.476399][T16902] ? __pfx___mutex_lock+0x10/0x10 [ 3365.481474][T16902] ? __pfx_out_of_memory+0x10/0x10 [ 3365.486644][T16902] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3365.492260][T16902] ? __pfx_lock_release+0x10/0x10 [ 3365.497345][T16902] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3365.503472][T16902] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3365.508715][T16902] ? mem_cgroup_iter+0x3e9/0x560 [ 3365.513708][T16902] try_charge_memcg+0xda2/0x18a0 [ 3365.518715][T16902] ? __pfx_try_charge_memcg+0x10/0x10 [ 3365.524129][T16902] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3365.529894][T16902] ? __pfx_lock_release+0x10/0x10 [ 3365.534972][T16902] ? memcg_account_kmem+0x1e7/0x210 [ 3365.540226][T16902] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3365.546080][T16902] __memcg_kmem_charge_page+0xe1/0x250 [ 3365.551579][T16902] memcg_charge_kernel_stack+0x210/0x550 [ 3365.557263][T16902] dup_task_struct+0x40d/0x7d0 [ 3365.562073][T16902] copy_process+0x5d5/0x3fc0 [ 3365.566733][T16902] ? __might_fault+0xa9/0x120 [ 3365.571454][T16902] ? __pfx_lock_release+0x10/0x10 [ 3365.576531][T16902] ? __pfx_copy_process+0x10/0x10 [ 3365.581595][T16902] ? __might_fault+0xc5/0x120 [ 3365.586333][T16902] ? __asan_memset+0x23/0x50 [ 3365.590974][T16902] kernel_clone+0x21d/0x8d0 [ 3365.595523][T16902] ? __pfx_kernel_clone+0x10/0x10 [ 3365.600617][T16902] __se_sys_clone3+0x2cb/0x350 [ 3365.605421][T16902] ? __pfx___se_sys_clone3+0x10/0x10 [ 3365.610741][T16902] ? rcu_is_watching+0x15/0xb0 [ 3365.615559][T16902] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3365.621614][T16902] ? exc_page_fault+0x587/0x870 [ 3365.626501][T16902] ? do_syscall_64+0xb4/0x240 [ 3365.631220][T16902] do_syscall_64+0xf9/0x240 [ 3365.635765][T16902] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3365.641699][T16902] RIP: 0033:0x7f02540a9b99 [ 3365.646145][T16902] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3365.665782][T16902] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3365.674231][T16902] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3365.682231][T16902] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3365.690233][T16902] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3365.698233][T16902] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3365.706236][T16902] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3365.714260][T16902] [ 3365.729942][T16902] memory: usage 307200kB, limit 307200kB, failcnt 355916 [ 3365.737020][T16902] memory+swap: usage 307448kB, limit 9007199254740988kB, failcnt 0 [ 3365.746005][T16902] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3365.753765][T16902] Memory cgroup stats for /syz1: [ 3365.753907][T16902] cache 0 [ 3365.764604][T16902] rss 4096 [ 3365.767658][T16902] rss_huge 0 [ 3365.784950][T16902] shmem 0 [ 3365.787932][T16902] mapped_file 0 [ 3365.792336][T16902] dirty 0 [ 3365.795302][T16902] writeback 0 [ 3365.805221][T16902] workingset_refault_anon 120774 [ 3365.810590][T16902] workingset_refault_file 3 [ 3365.815166][T16902] swap 249856 [ 3365.818487][T16902] swapcached 4096 [ 3365.828457][T16902] pgpgin 291177 [ 3365.835504][T16902] pgpgout 291176 [ 3365.840190][T16902] pgfault 618308 [ 3365.843764][T16902] pgmajfault 113667 [ 3365.847588][T16902] inactive_anon 4096 [ 3365.852756][T16902] active_anon 0 [ 3365.856245][T16902] inactive_file 0 [ 3365.862447][T16902] active_file 0 [ 3365.865940][T16902] unevictable 0 [ 3365.871198][T16902] hierarchical_memory_limit 314572800 [ 3365.876605][T16902] hierarchical_memsw_limit 9223372036854771712 [ 3365.883326][T16902] total_cache 0 [ 3365.886818][T16902] total_rss 4096 [ 3365.892309][T16902] total_rss_huge 0 [ 3365.896060][T16902] total_shmem 0 [ 3365.900115][T16902] total_mapped_file 0 [ 3365.904122][T16902] total_dirty 0 [ 3365.907613][T16902] total_writeback 0 [ 3365.917799][T16902] total_workingset_refault_anon 120774 [ 3365.923969][T16902] total_workingset_refault_file 3 [ 3365.935570][T16902] total_swap 249856 [ 3365.941152][T16902] total_swapcached 4096 [ 3365.945350][T16902] total_pgpgin 291177 [ 3365.956346][T16902] total_pgpgout 291176 [ 3365.964004][T16902] total_pgfault 618308 [ 3365.968103][T16902] total_pgmajfault 113667 [ 3365.978987][T16902] total_inactive_anon 4096 [ 3365.983444][T16902] total_active_anon 0 [ 3365.987442][T16902] total_inactive_file 0 [ 3365.997647][T16902] total_active_file 0 [ 3366.001935][T16902] total_unevictable 0 [ 3366.005962][T16902] anon_cost 0 [ 3366.015645][T16902] file_cost 0 [ 3366.019260][T16902] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16902,uid=0 01:28:44 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000003000000000114000600020000001b"], 0x54}}, 0x0) [ 3366.038918][T16902] Memory cgroup out of memory: Killed process 16902 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3366.622767][T16904] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000 [ 3366.635556][T16904] CPU: 0 PID: 16904 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3366.646017][T16904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3366.656120][T16904] Call Trace: [ 3366.659427][T16904] [ 3366.662386][T16904] dump_stack_lvl+0x1e7/0x2e0 [ 3366.667202][T16904] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3366.672438][T16904] ? __pfx__printk+0x10/0x10 [ 3366.677147][T16904] ? ___ratelimit+0x4c4/0x670 [ 3366.681879][T16904] ? __pfx____ratelimit+0x10/0x10 [ 3366.686960][T16904] dump_header+0xda/0x6a0 [ 3366.691349][T16904] oom_kill_process+0x3a7/0x930 [ 3366.696250][T16904] out_of_memory+0xf67/0x1320 [ 3366.700979][T16904] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3366.706659][T16904] ? __pfx___mutex_lock+0x10/0x10 [ 3366.711741][T16904] ? __pfx_out_of_memory+0x10/0x10 [ 3366.716916][T16904] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3366.722499][T16904] ? __pfx_lock_release+0x10/0x10 [ 3366.727567][T16904] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3366.733680][T16904] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3366.738921][T16904] ? mem_cgroup_iter+0x3e9/0x560 [ 3366.743915][T16904] try_charge_memcg+0xda2/0x18a0 [ 3366.748934][T16904] ? __pfx_try_charge_memcg+0x10/0x10 [ 3366.754350][T16904] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3366.760086][T16904] ? __pfx_lock_release+0x10/0x10 [ 3366.765137][T16904] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3366.771149][T16904] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3366.776884][T16904] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3366.782709][T16904] obj_cgroup_charge+0x389/0x630 [ 3366.787661][T16904] ? obj_cgroup_charge+0x121/0x630 [ 3366.792795][T16904] ? __pfx_obj_cgroup_charge+0x10/0x10 [ 3366.798264][T16904] ? kmalloc_trace+0x4e/0x360 [ 3366.802959][T16904] ? __pfx___might_resched+0x10/0x10 [ 3366.808261][T16904] __memcg_slab_pre_alloc_hook+0x28d/0x2b0 [ 3366.814086][T16904] ? copy_semundo+0xb5/0x240 [ 3366.818695][T16904] kmalloc_trace+0x216/0x360 [ 3366.823297][T16904] ? __asan_memcpy+0x40/0x70 [ 3366.827903][T16904] copy_semundo+0xb5/0x240 [ 3366.832357][T16904] copy_process+0x1bc3/0x3fc0 [ 3366.837078][T16904] ? copy_process+0x9c3/0x3fc0 [ 3366.841873][T16904] ? __pfx_copy_process+0x10/0x10 [ 3366.846916][T16904] ? __might_fault+0xc5/0x120 [ 3366.851613][T16904] ? __asan_memset+0x23/0x50 [ 3366.856225][T16904] kernel_clone+0x21d/0x8d0 [ 3366.860839][T16904] ? __pfx_kernel_clone+0x10/0x10 [ 3366.865906][T16904] __se_sys_clone3+0x2cb/0x350 [ 3366.870688][T16904] ? __pfx___se_sys_clone3+0x10/0x10 [ 3366.876010][T16904] ? do_syscall_64+0x108/0x240 [ 3366.880877][T16904] ? do_syscall_64+0xb4/0x240 [ 3366.885573][T16904] do_syscall_64+0xf9/0x240 [ 3366.890097][T16904] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3366.896006][T16904] RIP: 0033:0x7f02540a9b99 [ 3366.900440][T16904] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3366.920054][T16904] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3366.928479][T16904] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3366.936562][T16904] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3366.944542][T16904] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3366.952542][T16904] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3366.960607][T16904] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3366.968600][T16904] [ 3366.977662][T16904] memory: usage 307200kB, limit 307200kB, failcnt 356465 [ 3366.987312][T16904] memory+swap: usage 307448kB, limit 9007199254740988kB, failcnt 0 [ 3366.995367][T16904] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3367.002834][T16904] Memory cgroup stats for /syz1: [ 3367.002987][T16904] cache 0 [ 3367.020168][T16904] rss 0 [ 3367.022969][T16904] rss_huge 0 [ 3367.026189][T16904] shmem 0 [ 3367.032645][T16904] mapped_file 0 [ 3367.036139][T16904] dirty 0 [ 3367.040401][T16904] writeback 0 [ 3367.043720][T16904] workingset_refault_anon 120982 [ 3367.049597][T16904] workingset_refault_file 3 [ 3367.054135][T16904] swap 253952 [ 3367.057441][T16904] swapcached 0 [ 3367.064012][T16904] pgpgin 291397 [ 3367.067506][T16904] pgpgout 291397 [ 3367.071585][T16904] pgfault 618653 [ 3367.075157][T16904] pgmajfault 113864 [ 3367.083072][T16904] inactive_anon 0 [ 3367.088331][T16904] active_anon 0 [ 3367.092418][T16904] inactive_file 0 [ 3367.096079][T16904] active_file 0 [ 3367.100183][T16904] unevictable 0 [ 3367.103693][T16904] hierarchical_memory_limit 314572800 [ 3367.109583][T16904] hierarchical_memsw_limit 9223372036854771712 [ 3367.115778][T16904] total_cache 0 [ 3367.119780][T16904] total_rss 0 [ 3367.123089][T16904] total_rss_huge 0 [ 3367.126825][T16904] total_shmem 0 [ 3367.131107][T16904] total_mapped_file 0 [ 3367.135138][T16904] total_dirty 0 [ 3367.139153][T16904] total_writeback 0 [ 3367.142991][T16904] total_workingset_refault_anon 120982 [ 3367.148478][T16904] total_workingset_refault_file 3 [ 3367.154308][T16904] total_swap 253952 [ 3367.158145][T16904] total_swapcached 0 [ 3367.162632][T16904] total_pgpgin 291397 [ 3367.171540][T16904] total_pgpgout 291397 [ 3367.175650][T16904] total_pgfault 618653 [ 3367.180160][T16904] total_pgmajfault 113864 [ 3367.184517][T16904] total_inactive_anon 0 [ 3367.195114][T16904] total_active_anon 0 [ 3367.199555][T16904] total_inactive_file 0 [ 3367.203755][T16904] total_active_file 0 [ 3367.207756][T16904] total_unevictable 0 [ 3367.212713][T16904] anon_cost 0 [ 3367.216055][T16904] file_cost 0 [ 3367.219982][T16904] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16904,uid=0 [ 3367.235974][T16904] Memory cgroup out of memory: Killed process 16904 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:45 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000005000000000114000600020000001b"], 0x54}}, 0x0) [ 3368.174792][T16905] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3368.216186][T16905] CPU: 1 PID: 16905 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3368.226677][T16905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3368.236769][T16905] Call Trace: [ 3368.240078][T16905] [ 3368.243037][T16905] dump_stack_lvl+0x1e7/0x2e0 [ 3368.247760][T16905] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3368.252998][T16905] ? __pfx__printk+0x10/0x10 [ 3368.257622][T16905] ? ___ratelimit+0x4c4/0x670 [ 3368.262353][T16905] ? __pfx____ratelimit+0x10/0x10 [ 3368.267444][T16905] dump_header+0xda/0x6a0 [ 3368.271826][T16905] oom_kill_process+0x3a7/0x930 [ 3368.276762][T16905] out_of_memory+0xf67/0x1320 [ 3368.281492][T16905] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3368.287168][T16905] ? __pfx___mutex_lock+0x10/0x10 [ 3368.292240][T16905] ? __pfx_out_of_memory+0x10/0x10 [ 3368.297413][T16905] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3368.303001][T16905] ? __pfx_lock_release+0x10/0x10 [ 3368.308078][T16905] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3368.314195][T16905] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3368.319420][T16905] ? mem_cgroup_iter+0x3e9/0x560 [ 3368.324389][T16905] try_charge_memcg+0xda2/0x18a0 [ 3368.329374][T16905] ? __pfx_try_charge_memcg+0x10/0x10 [ 3368.334771][T16905] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3368.340514][T16905] ? __pfx_lock_release+0x10/0x10 [ 3368.345562][T16905] ? memcg_account_kmem+0x1e7/0x210 [ 3368.350790][T16905] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3368.356615][T16905] __memcg_kmem_charge_page+0xe1/0x250 [ 3368.362358][T16905] memcg_charge_kernel_stack+0x3f8/0x550 [ 3368.368017][T16905] dup_task_struct+0x40d/0x7d0 [ 3368.372796][T16905] copy_process+0x5d5/0x3fc0 [ 3368.377410][T16905] ? __might_fault+0xa9/0x120 [ 3368.382192][T16905] ? __pfx_lock_release+0x10/0x10 [ 3368.387240][T16905] ? __pfx_copy_process+0x10/0x10 [ 3368.392272][T16905] ? __might_fault+0xc5/0x120 [ 3368.396968][T16905] ? __asan_memset+0x23/0x50 [ 3368.401583][T16905] kernel_clone+0x21d/0x8d0 [ 3368.406102][T16905] ? __pfx_kernel_clone+0x10/0x10 [ 3368.411155][T16905] __se_sys_clone3+0x2cb/0x350 [ 3368.415937][T16905] ? __pfx___se_sys_clone3+0x10/0x10 [ 3368.421260][T16905] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3368.427273][T16905] ? exc_page_fault+0x587/0x870 [ 3368.432181][T16905] ? do_syscall_64+0xb4/0x240 [ 3368.436875][T16905] do_syscall_64+0xf9/0x240 [ 3368.441400][T16905] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3368.447304][T16905] RIP: 0033:0x7f02540a9b99 [ 3368.451729][T16905] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3368.471351][T16905] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3368.479785][T16905] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3368.487763][T16905] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3368.495760][T16905] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3368.503759][T16905] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3368.511759][T16905] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3368.519771][T16905] [ 3368.713377][T16905] memory: usage 307200kB, limit 307200kB, failcnt 357126 [ 3368.721402][T16905] memory+swap: usage 307484kB, limit 9007199254740988kB, failcnt 0 [ 3368.749790][T16905] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 3368.757158][T16905] Memory cgroup stats for /syz1: [ 3368.757317][T16905] cache 0 [ 3368.777035][T16905] rss 0 [ 3368.783045][T16905] rss_huge 0 [ 3368.786299][T16905] shmem 0 [ 3368.800882][T16905] mapped_file 0 [ 3368.804414][T16905] dirty 0 [ 3368.807376][T16905] writeback 0 [ 3368.824552][T16905] workingset_refault_anon 121183 [ 3368.848956][T16905] workingset_refault_file 3 [ 3368.853543][T16905] swap 290816 [ 3368.856855][T16905] swapcached 0 [ 3368.870385][T16905] pgpgin 291609 [ 3368.873989][T16905] pgpgout 291608 [ 3368.877560][T16905] pgfault 618998 [ 3368.888993][T16905] pgmajfault 114059 [ 3368.892857][T16905] inactive_anon 0 [ 3368.896510][T16905] active_anon 0 [ 3368.908619][T16905] inactive_file 0 [ 3368.912301][T16905] active_file 0 [ 3368.915783][T16905] unevictable 0 [ 3368.937489][T16905] hierarchical_memory_limit 314572800 [ 3368.945324][T16905] hierarchical_memsw_limit 9223372036854771712 [ 3368.958598][T16905] total_cache 0 [ 3368.962104][T16905] total_rss 0 [ 3368.965410][T16905] total_rss_huge 0 [ 3368.988610][T16905] total_shmem 0 [ 3368.992134][T16905] total_mapped_file 0 [ 3368.996140][T16905] total_dirty 0 [ 3369.008895][T16905] total_writeback 0 [ 3369.012772][T16905] total_workingset_refault_anon 121183 [ 3369.018257][T16905] total_workingset_refault_file 3 [ 3369.038866][T16905] total_swap 290816 [ 3369.042734][T16905] total_swapcached 0 [ 3369.046649][T16905] total_pgpgin 291609 [ 3369.098885][T16905] total_pgpgout 291608 [ 3369.103012][T16905] total_pgfault 618998 [ 3369.107099][T16905] total_pgmajfault 114059 [ 3369.129054][T16905] total_inactive_anon 0 [ 3369.133273][T16905] total_active_anon 0 [ 3369.148617][T16905] total_inactive_file 0 [ 3369.152834][T16905] total_active_file 0 [ 3369.156840][T16905] total_unevictable 0 [ 3369.168613][T16905] anon_cost 0 [ 3369.171974][T16905] file_cost 0 [ 3369.175281][T16905] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16905,uid=0 01:28:47 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000006000000000114000600020000001b"], 0x54}}, 0x0) [ 3369.191453][T16905] Memory cgroup out of memory: Killed process 16905 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3369.412793][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3369.451168][ T5105] CPU: 0 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3369.461575][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3369.471677][ T5105] Call Trace: [ 3369.474998][ T5105] [ 3369.477965][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3369.482690][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3369.488009][ T5105] ? __pfx__printk+0x10/0x10 [ 3369.492652][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3369.497485][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3369.502571][ T5105] dump_header+0xda/0x6a0 [ 3369.506956][ T5105] oom_kill_process+0x3a7/0x930 [ 3369.511859][ T5105] out_of_memory+0xf67/0x1320 [ 3369.516595][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3369.522287][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3369.527370][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3369.532551][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3369.538147][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3369.543234][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3369.549367][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3369.554619][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3369.559615][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3369.564600][ T5105] ? mark_lock+0x9a/0x350 [ 3369.568990][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3369.574433][ T5105] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3369.580624][ T5105] charge_memcg+0xa2/0x160 [ 3369.585076][ T5105] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3369.591187][ T5105] __read_swap_cache_async+0x480/0x8b0 [ 3369.596680][ T5105] ? mark_lock+0x9a/0x350 [ 3369.601055][ T5105] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3369.607079][ T5105] ? blk_start_plug+0x6f/0x1b0 [ 3369.611898][ T5105] swap_cluster_readahead+0x398/0x810 [ 3369.617314][ T5105] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3369.623248][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3369.628316][ T5105] ? xas_descend+0x37e/0x470 [ 3369.632949][ T5105] swapin_readahead+0x1ea/0x1070 [ 3369.637927][ T5105] ? filemap_get_entry+0x127/0x4e0 [ 3369.643103][ T5105] ? __pfx_swapin_readahead+0x10/0x10 [ 3369.648528][ T5105] ? __filemap_get_folio+0x935/0xbc0 [ 3369.653877][ T5105] ? swap_cache_get_folio+0x9f/0x570 [ 3369.659212][ T5105] do_swap_page+0x791/0x3f40 [ 3369.663852][ T5105] ? rcu_is_watching+0x15/0xb0 [ 3369.668673][ T5105] ? do_swap_page+0x154/0x3f40 [ 3369.673484][ T5105] ? __pfx_do_swap_page+0x10/0x10 [ 3369.678553][ T5105] ? pte_offset_map_nolock+0x137/0x1f0 [ 3369.684075][ T5105] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3369.689927][ T5105] ? __pfx_validate_chain+0x10/0x10 [ 3369.695171][ T5105] __handle_mm_fault+0x15e8/0x72d0 [ 3369.700360][ T5105] ? reacquire_held_locks+0x3eb/0x690 [ 3369.705772][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3369.711291][ T5105] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3369.717064][ T5105] ? mtree_range_walk+0x6fd/0x8e0 [ 3369.722133][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3369.727380][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3369.732443][ T5105] ? lock_vma_under_rcu+0x2f9/0x730 [ 3369.737706][ T5105] ? lock_vma_under_rcu+0x18a/0x730 [ 3369.742957][ T5105] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3369.748562][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3369.753394][ T5105] exc_page_fault+0x456/0x870 [ 3369.758124][ T5105] asm_exc_page_fault+0x26/0x30 [ 3369.763013][ T5105] RIP: 0033:0x7f025407a780 [ 3369.767473][ T5105] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00 [ 3369.787114][ T5105] RSP: 002b:00007ffe12c8cc78 EFLAGS: 00010246 [ 3369.793220][ T5105] RAX: 0000000000000071 RBX: 0000000000004745 RCX: 0000000000000000 [ 3369.801224][ T5105] RDX: 0000000040000001 RSI: 00007ffe12c8ccdc RDI: 00000000ffffffff [ 3369.809229][ T5105] RBP: 00007ffe12c8ccdc R08: 0000000000000010 R09: 00007ffe12ccd0b0 [ 3369.817230][ T5105] R10: 00007ffe12ccd080 R11: 000000000009d72c R12: 0000000000000032 [ 3369.825239][ T5105] R13: 000000000033692d R14: 000000000033692d R15: 0000000000000000 [ 3369.833255][ T5105] [ 3369.856425][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 357339 [ 3369.863777][ T5105] memory+swap: usage 307448kB, limit 9007199254740988kB, failcnt 0 [ 3369.872095][ T5105] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3369.879945][ T5105] Memory cgroup stats for /syz1: [ 3369.880102][ T5105] cache 0 [ 3369.887996][ T5105] rss 12288 [ 3369.891799][ T5105] rss_huge 0 [ 3369.895026][ T5105] shmem 0 [ 3369.897981][ T5105] mapped_file 0 [ 3369.902194][ T5105] dirty 0 [ 3369.905163][ T5105] writeback 0 [ 3369.908466][ T5105] workingset_refault_anon 121241 [ 3369.916454][ T5105] workingset_refault_file 3 [ 3369.921377][ T5105] swap 241664 [ 3369.924689][ T5105] swapcached 12288 [ 3369.928422][ T5105] pgpgin 291680 [ 3369.932763][ T5105] pgpgout 291677 [ 3369.936333][ T5105] pgfault 619112 [ 3369.940406][ T5105] pgmajfault 114108 [ 3369.944247][ T5105] inactive_anon 0 [ 3369.947985][ T5105] active_anon 12288 [ 3369.952690][ T5105] inactive_file 0 [ 3369.957913][ T5105] active_file 0 [ 3369.961887][ T5105] unevictable 0 [ 3369.965372][ T5105] hierarchical_memory_limit 314572800 [ 3369.971309][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3369.977488][ T5105] total_cache 0 [ 3369.981460][ T5105] total_rss 12288 [ 3369.985120][ T5105] total_rss_huge 0 [ 3369.989425][ T5105] total_shmem 0 [ 3369.992914][ T5105] total_mapped_file 0 [ 3369.996910][ T5105] total_dirty 0 [ 3370.001049][ T5105] total_writeback 0 [ 3370.004885][ T5105] total_workingset_refault_anon 121241 [ 3370.010796][ T5105] total_workingset_refault_file 3 [ 3370.015853][ T5105] total_swap 241664 [ 3370.022613][ T5105] total_swapcached 12288 [ 3370.026888][ T5105] total_pgpgin 291680 [ 3370.031462][ T5105] total_pgpgout 291677 [ 3370.035557][ T5105] total_pgfault 619112 [ 3370.040223][ T5105] total_pgmajfault 114108 [ 3370.044578][ T5105] total_inactive_anon 0 [ 3370.049322][ T5105] total_active_anon 12288 [ 3370.053709][ T5105] total_inactive_file 0 01:28:48 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000007000000000114000600020000001b"], 0x54}}, 0x0) [ 3370.059966][ T5105] total_active_file 0 [ 3370.064746][ T5105] total_unevictable 0 [ 3370.069822][ T5105] anon_cost 0 [ 3370.073138][ T5105] file_cost 0 [ 3370.076435][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16906,uid=0 [ 3370.093043][ T5105] Memory cgroup out of memory: Killed process 16906 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 [ 3370.501378][T16907] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3370.519751][T16907] CPU: 1 PID: 16907 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3370.530232][T16907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3370.540326][T16907] Call Trace: [ 3370.543631][T16907] [ 3370.546594][T16907] dump_stack_lvl+0x1e7/0x2e0 [ 3370.551312][T16907] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3370.556550][T16907] ? __pfx__printk+0x10/0x10 [ 3370.561168][T16907] ? ___ratelimit+0x4c4/0x670 [ 3370.565907][T16907] ? __pfx____ratelimit+0x10/0x10 [ 3370.570974][T16907] dump_header+0xda/0x6a0 [ 3370.575335][T16907] oom_kill_process+0x3a7/0x930 [ 3370.580213][T16907] out_of_memory+0xf67/0x1320 [ 3370.584911][T16907] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3370.590560][T16907] ? __pfx___mutex_lock+0x10/0x10 [ 3370.595605][T16907] ? __pfx_out_of_memory+0x10/0x10 [ 3370.600741][T16907] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3370.606308][T16907] ? __pfx_lock_release+0x10/0x10 [ 3370.611350][T16907] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3370.617437][T16907] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3370.622652][T16907] ? mem_cgroup_iter+0x3e9/0x560 [ 3370.627610][T16907] try_charge_memcg+0xda2/0x18a0 [ 3370.632583][T16907] ? __pfx_try_charge_memcg+0x10/0x10 [ 3370.637968][T16907] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3370.643699][T16907] ? __pfx_lock_release+0x10/0x10 [ 3370.648743][T16907] ? memcg_account_kmem+0x1e7/0x210 [ 3370.653964][T16907] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3370.659787][T16907] __memcg_kmem_charge_page+0xe1/0x250 [ 3370.665258][T16907] memcg_charge_kernel_stack+0x210/0x550 [ 3370.670919][T16907] dup_task_struct+0x15d/0x7d0 [ 3370.675734][T16907] copy_process+0x5d5/0x3fc0 [ 3370.680355][T16907] ? __might_fault+0xa9/0x120 [ 3370.685052][T16907] ? __pfx_lock_release+0x10/0x10 [ 3370.690099][T16907] ? __lock_acquire+0x1345/0x1fd0 [ 3370.695241][T16907] ? __pfx_copy_process+0x10/0x10 [ 3370.700280][T16907] ? __might_fault+0xc5/0x120 [ 3370.704978][T16907] ? __asan_memset+0x23/0x50 [ 3370.709592][T16907] kernel_clone+0x21d/0x8d0 [ 3370.714110][T16907] ? __pfx_kernel_clone+0x10/0x10 [ 3370.719169][T16907] ? __pfx_lock_release+0x10/0x10 [ 3370.724226][T16907] __se_sys_clone3+0x2cb/0x350 [ 3370.729016][T16907] ? __might_fault+0xa9/0x120 [ 3370.733708][T16907] ? __pfx___se_sys_clone3+0x10/0x10 [ 3370.739090][T16907] ? rcu_is_watching+0x15/0xb0 [ 3370.743882][T16907] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3370.749891][T16907] ? exc_page_fault+0x587/0x870 [ 3370.754840][T16907] ? do_syscall_64+0xb4/0x240 [ 3370.759528][T16907] do_syscall_64+0xf9/0x240 [ 3370.764046][T16907] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3370.769952][T16907] RIP: 0033:0x7f02540a9b99 [ 3370.774381][T16907] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3370.794002][T16907] RSP: 002b:00007ffe12c8c838 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3370.802434][T16907] RAX: ffffffffffffffda RBX: 00007f0254052270 RCX: 00007f02540a9b99 [ 3370.810417][T16907] RDX: 00007f0254052270 RSI: 0000000000000058 RDI: 00007ffe12c8c880 [ 3370.818392][T16907] RBP: 00007f0254e466c0 R08: 00007f0254e466c0 R09: 00007ffe12c8c967 [ 3370.826370][T16907] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3370.834352][T16907] R13: 000000000000000b R14: 00007ffe12c8c880 R15: 00007ffe12c8c968 [ 3370.842344][T16907] [ 3370.886837][T16907] memory: usage 307200kB, limit 307200kB, failcnt 357744 [ 3370.899563][T16907] memory+swap: usage 307444kB, limit 9007199254740988kB, failcnt 0 [ 3370.907501][T16907] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3370.919796][T16907] Memory cgroup stats for /syz1: [ 3370.919941][T16907] cache 0 [ 3370.927849][T16907] rss 0 [ 3370.936995][T16907] rss_huge 0 [ 3370.942232][T16907] shmem 0 [ 3370.945206][T16907] mapped_file 0 [ 3370.951782][T16907] dirty 0 [ 3370.954837][T16907] writeback 0 [ 3370.958137][T16907] workingset_refault_anon 121388 [ 3370.965216][T16907] workingset_refault_file 3 [ 3370.972521][T16907] swap 249856 [ 3370.975834][T16907] swapcached 0 [ 3370.983108][T16907] pgpgin 291839 [ 3370.986593][T16907] pgpgout 291839 [ 3370.995578][T16907] pgfault 619348 [ 3371.001433][T16907] pgmajfault 114237 [ 3371.005271][T16907] inactive_anon 0 [ 3371.011986][T16907] active_anon 0 [ 3371.015473][T16907] inactive_file 0 [ 3371.021127][T16907] active_file 0 [ 3371.024621][T16907] unevictable 0 [ 3371.028095][T16907] hierarchical_memory_limit 314572800 [ 3371.036519][T16907] hierarchical_memsw_limit 9223372036854771712 [ 3371.042900][T16907] total_cache 0 [ 3371.046382][T16907] total_rss 0 [ 3371.054418][T16907] total_rss_huge 0 [ 3371.058228][T16907] total_shmem 0 [ 3371.061767][T16907] total_mapped_file 0 [ 3371.065771][T16907] total_dirty 0 [ 3371.074247][T16907] total_writeback 0 [ 3371.078089][T16907] total_workingset_refault_anon 121388 [ 3371.086061][T16907] total_workingset_refault_file 3 [ 3371.095778][T16907] total_swap 249856 [ 3371.102015][T16907] total_swapcached 0 [ 3371.105944][T16907] total_pgpgin 291839 [ 3371.110267][T16907] total_pgpgout 291839 [ 3371.114363][T16907] total_pgfault 619348 [ 3371.118453][T16907] total_pgmajfault 114237 [ 3371.127573][T16907] total_inactive_anon 0 [ 3371.132065][T16907] total_active_anon 0 [ 3371.136072][T16907] total_inactive_file 0 [ 3371.140553][T16907] total_active_file 0 [ 3371.144563][T16907] total_unevictable 0 [ 3371.148601][T16907] anon_cost 0 [ 3371.151904][T16907] file_cost 0 [ 3371.155199][T16907] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16907,uid=0 [ 3371.171605][T16907] Memory cgroup out of memory: Killed process 16907 (syz-executor.1) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000 01:28:49 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000009000000000114000600020000001b"], 0x54}}, 0x0) [ 3371.283368][ T5105] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 3371.310271][ T5105] CPU: 1 PID: 5105 Comm: syz-executor.1 Not tainted 6.8.0-rc6-syzkaller-02058-geeb78df4063c #0 [ 3371.320677][ T5105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 3371.330774][ T5105] Call Trace: [ 3371.334106][ T5105] [ 3371.337060][ T5105] dump_stack_lvl+0x1e7/0x2e0 [ 3371.341788][ T5105] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3371.347022][ T5105] ? __pfx__printk+0x10/0x10 [ 3371.351638][ T5105] ? ___ratelimit+0x4c4/0x670 [ 3371.356346][ T5105] ? __pfx____ratelimit+0x10/0x10 [ 3371.361398][ T5105] dump_header+0xda/0x6a0 [ 3371.365752][ T5105] oom_kill_process+0x3a7/0x930 [ 3371.370632][ T5105] out_of_memory+0xf67/0x1320 [ 3371.375331][ T5105] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3371.380983][ T5105] ? __pfx___mutex_lock+0x10/0x10 [ 3371.386022][ T5105] ? __pfx_out_of_memory+0x10/0x10 [ 3371.391166][ T5105] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3371.396733][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3371.401777][ T5105] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3371.407865][ T5105] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3371.413074][ T5105] ? mem_cgroup_iter+0x3e9/0x560 [ 3371.418062][ T5105] try_charge_memcg+0xda2/0x18a0 [ 3371.423037][ T5105] ? __pfx_try_charge_memcg+0x10/0x10 [ 3371.428427][ T5105] ? percpu_ref_tryget+0x14/0x180 [ 3371.433485][ T5105] charge_memcg+0xa2/0x160 [ 3371.437914][ T5105] __mem_cgroup_charge+0x27/0x80 [ 3371.442866][ T5105] folio_prealloc+0x52/0x170 [ 3371.447559][ T5105] do_wp_page+0x1222/0x4c90 [ 3371.452093][ T5105] ? __pfx_do_wp_page+0x10/0x10 [ 3371.456965][ T5105] ? __pfx_lock_acquire+0x10/0x10 [ 3371.462012][ T5105] ? do_raw_spin_lock+0x14e/0x370 [ 3371.467059][ T5105] ? __pfx_validate_chain+0x10/0x10 [ 3371.472275][ T5105] __handle_mm_fault+0x26ad/0x72d0 [ 3371.477426][ T5105] ? __pfx___handle_mm_fault+0x10/0x10 [ 3371.482906][ T5105] ? mt_find+0x226/0x850 [ 3371.487188][ T5105] ? __pfx_lock_release+0x10/0x10 [ 3371.492285][ T5105] ? mt_find+0x62d/0x850 [ 3371.496558][ T5105] ? mt_find+0x226/0x850 [ 3371.500838][ T5105] ? find_vma+0x142/0x1c0 [ 3371.505196][ T5105] ? __pfx_find_vma+0x10/0x10 [ 3371.509889][ T5105] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3371.515897][ T5105] handle_mm_fault+0x3c1/0x8a0 [ 3371.520687][ T5105] exc_page_fault+0x2ad/0x870 [ 3371.525380][ T5105] asm_exc_page_fault+0x26/0x30 [ 3371.530243][ T5105] RIP: 0010:__put_user_8+0x11/0x20 [ 3371.535366][ T5105] Code: 84 00 00 00 00 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <48> 89 01 31 c9 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3371.554983][ T5105] RSP: 0018:ffffc90004367d98 EFLAGS: 00050202 [ 3371.561063][ T5105] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00005555566b1da8 [ 3371.569042][ T5105] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe7fe0 [ 3371.577021][ T5105] RBP: ffffc90004367ec8 R08: ffffffff8f85feef R09: 1ffffffff1f0bfdd [ 3371.584998][ T5105] R10: dffffc0000000000 R11: fffffbfff1f0bfde R12: ffffc90004367e50 [ 3371.592981][ T5105] R13: ffffc90004367fd8 R14: dffffc0000000000 R15: ffff88802e9bee78 [ 3371.600984][ T5105] __rseq_handle_notify_resume+0x651/0x1490 [ 3371.606907][ T5105] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3371.613256][ T5105] ? syscall_exit_to_user_mode+0xa2/0x360 [ 3371.618998][ T5105] syscall_exit_to_user_mode+0x113/0x360 [ 3371.624645][ T5105] do_syscall_64+0x108/0x240 [ 3371.629254][ T5105] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3371.635166][ T5105] RIP: 0033:0x7f025407add3 [ 3371.639602][ T5105] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00 [ 3371.659237][ T5105] RSP: 002b:00007ffe12c8cb78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 3371.667760][ T5105] RAX: 0000000000004747 RBX: 0000000000000000 RCX: 00007f025407add3 [ 3371.675740][ T5105] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 3371.683720][ T5105] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 3371.691697][ T5105] R10: 00005555566b1750 R11: 0000000000000246 R12: 0000000000000000 [ 3371.699682][ T5105] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001 [ 3371.707678][ T5105] [ 3371.736811][ T5105] memory: usage 307200kB, limit 307200kB, failcnt 357924 [ 3371.752164][ T5105] memory+swap: usage 307456kB, limit 9007199254740988kB, failcnt 0 [ 3371.769885][ T5105] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3371.777232][ T5105] Memory cgroup stats for /syz1: [ 3371.777364][ T5105] cache 0 [ 3371.791162][ T5105] rss 4096 [ 3371.794236][ T5105] rss_huge 0 [ 3371.803320][ T5105] shmem 0 [ 3371.806308][ T5105] mapped_file 0 [ 3371.812469][ T5105] dirty 0 [ 3371.815431][ T5105] writeback 0 [ 3371.818941][ T5105] workingset_refault_anon 121425 [ 3371.823903][ T5105] workingset_refault_file 3 [ 3371.828420][ T5105] swap 266240 [ 3371.836386][ T5105] swapcached 8192 [ 3371.846704][ T5105] pgpgin 291885 [ 3371.859209][ T5105] pgpgout 291883 [ 3371.862798][ T5105] pgfault 619421 [ 3371.866359][ T5105] pgmajfault 114274 [ 3371.887856][ T5105] inactive_anon 0 [ 3371.902380][ T5105] active_anon 8192 [ 3371.906163][ T5105] inactive_file 0 [ 3371.923707][ T5105] active_file 0 [ 3371.927224][ T5105] unevictable 0 [ 3371.964978][ T5105] hierarchical_memory_limit 314572800 [ 3371.976422][ T5105] hierarchical_memsw_limit 9223372036854771712 [ 3371.994992][ T5105] total_cache 0 [ 3372.004439][ T5105] total_rss 4096 [ 3372.008136][ T5105] total_rss_huge 0 [ 3372.018161][ T5105] total_shmem 0 [ 3372.023733][ T5105] total_mapped_file 0 [ 3372.027749][ T5105] total_dirty 0 [ 3372.034133][ T5105] total_writeback 0 [ 3372.037970][ T5105] total_workingset_refault_anon 121425 [ 3372.043653][ T5105] total_workingset_refault_file 3 [ 3372.053286][ T5105] total_swap 266240 [ 3372.057127][ T5105] total_swapcached 8192 [ 3372.063735][ T5105] total_pgpgin 291885 [ 3372.067742][ T5105] total_pgpgout 291883 [ 3372.076511][ T5105] total_pgfault 619421 [ 3372.080705][ T5105] total_pgmajfault 114274 [ 3372.085070][ T5105] total_inactive_anon 0 [ 3372.096377][ T5105] total_active_anon 8192 [ 3372.100782][ T5105] total_inactive_file 0 [ 3372.107963][ T5105] total_active_file 0 [ 3372.116675][ T5105] total_unevictable 0 [ 3372.120750][ T5105] anon_cost 0 [ 3372.124062][ T5105] file_cost 0 [ 3372.127365][ T5105] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=5105,uid=0 [ 3372.143247][ T5105] Memory cgroup out of memory: Killed process 5105 (syz-executor.1) total-vm:50536kB, anon-rss:504kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0 01:29:06 executing program 4: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000001c0)={'ip6tnl0\x00', &(0x7f0000000140)={'syztnl1\x00', 0x0, 0x29, 0x4, 0x6, 0x4, 0x20, @dev={0xfe, 0x80, '\x00', 0x3c}, @ipv4={'\x00', '\xff\xff', @remote}, 0x40, 0x783e, 0x1, 0x7}}) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000300)={'tunl0\x00', &(0x7f0000000200)={'syztnl1\x00', 0x0, 0x7800, 0x60, 0x40, 0x401, {{0x31, 0x4, 0x0, 0xf, 0xc4, 0x68, 0x0, 0x0, 0x29, 0x0, @multicast1, @remote, {[@timestamp_addr={0x44, 0x24, 0x7, 0x1, 0xb, [{@dev={0xac, 0x14, 0x14, 0x2a}, 0x2}, {@remote, 0x5}, {@loopback, 0x7fff}, {@loopback, 0x5}]}, @end, @ssrr={0x89, 0x1b, 0x31, [@local, @empty, @remote, @multicast2, @dev={0xac, 0x14, 0x14, 0x14}, @rand_addr=0x64010101]}, @timestamp_addr={0x44, 0x54, 0xdd, 0x1, 0xd, [{@broadcast, 0x8}, {@dev={0xac, 0x14, 0x14, 0x13}, 0x8b}, {@remote, 0x20000}, {@broadcast, 0xffffffe1}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0xfff}, {@dev={0xac, 0x14, 0x14, 0xf}, 0x2}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x1ff}, {@local, 0xfff}, {@multicast1, 0x7}, {@loopback}]}, @lsrr={0x83, 0x1b, 0x5f, [@empty, @dev={0xac, 0x14, 0x14, 0x21}, @multicast2, @broadcast, @loopback, @multicast2]}]}}}}}) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000340)={0x0, @rand_addr, @dev}, &(0x7f0000000380)=0xc) r5 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000100)=0xc, 0x4) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendto$packet(r5, &(0x7f0000000180)="26030800d3fc030000054300000000000000", 0x6c, 0x0, &(0x7f0000000140)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000580), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(r7, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x34, r8, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x7f}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_LOW={0x8, 0x11, 0x3}, @ETHTOOL_A_COALESCE_RX_USECS_IRQ={0x8, 0x4, 0x9}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES_LOW={0x8, 0xf, 0xfff}]}, 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x0) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) r11 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r11, &(0x7f0000000280)={0x0, 0x74, &(0x7f0000001140)={&(0x7f0000000a40)=ANY=[@ANYBLOB="54000000100003052bab7000249d0200000000009d3ad2e0c7a5953db69d7db5e2358a6b267f0921f7c8933ef426163704cf155705f219c62f714ba5fefe45484f4bd4cd8e069885a84a8a1915bc04d6c2dc1c8de33df3a5000000000000dc40ff8d6348cfa2", @ANYRES32=0x0, @ANYBLOB="1544010001800000240012800b0001006d61637365630000140002800500060001000000080005000400000008000500", @ANYRES32=r10, @ANYBLOB='\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="db46fe5e6c24ae7ddad91863763d5003c774adf6312971803dfa166fff57c5af76e2fc8fb21e625f1df554ac2d050620b2353cf2b8799b"], 0x54}}, 0x0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000003c0)={@multicast2, @initdev, 0x0}, &(0x7f0000000400)=0xc) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000440)={'batadv_slave_1\x00', 0x0}) r14 = socket$inet6_sctp(0xa, 0x1, 0x84) r15 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r14, 0x8933, &(0x7f0000000140)={'vxcan1\x00', 0x0}) bind$can_j1939(r15, &(0x7f0000000080)={0x1d, r16, 0x1}, 0x18) bind$can_j1939(r15, &(0x7f00000000c0)={0x1d, r16}, 0x18) sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000740)={0x21c, r1, 0x8, 0x70bd27, 0x25dfdbff, {}, [@HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r16}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x21c}, 0x1, 0x0, 0x0, 0x802}, 0x880) 01:29:06 executing program 2: r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc6011000c7a0a000300050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1}, 0x0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000001200)={@local, @empty, 0x0}, &(0x7f0000001240)=0xc) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000006340)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x20000000, &(0x7f0000000540)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000100), 0x4) recvmsg(r2, &(0x7f0000000240)={&(0x7f0000000040)=@nfc={0x27, 0x0}, 0xf012, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0x3a68}], 0x6, &(0x7f0000000200)=""/20, 0x31, 0xd571012c}, 0x12c) write$binfmt_elf64(r2, &(0x7f00000000c0)=ANY=[@ANYRES16, @ANYRES64=r3, @ANYRESHEX], 0x100000530) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000006300)={0x42c, 0x6, 0xffffffff, 0x1, 0x7}, 0x14) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000014c0)={{{@in=@empty, @in6=@local}}, {{@in6=@private0}}}, &(0x7f00000015c0)=0xe8) sendmsg$inet(r0, &(0x7f0000001480)={&(0x7f00000000c0)={0x2, 0x4e20, @rand_addr=0x64010100}, 0x10, &(0x7f00000011c0)=[{&(0x7f0000000100)="be0c32b77735c6fc0045d82abd58afe31e90de3747d6ea21a1b2e48d906f677188f0dcbe360e594fea4bed2eace591e9f2df7ed066afd6659a7566b966cfe15e4df34dc42c2655ac0410d6c7772190c01ece44f4cd2cdf43c80cc8c9724c17b8d97e80512ab4bcc0356f9b2d43e0916b48a5913293d31585c42961492747029ed6a1e5d4197b7ab3f5357ad30c902db85d0799ec83798de55b75d5b671f45c17b5b643c49114d5241110c5d450b6fb6d44e2f289a2ef7bc799a9b2aae9cfb9d5f63a7369142661ef34a5b95568c88adee5e3d528dd7aeda0b20b20c6832c8e3a7927446c377a47f184f055897f424aab3ba5fafbd4829734e82f556ad06b4edb07a08ed249120415fd64d69bca1fc82665c235156037727bf6260796835a66b06c1b1ca5669c2b419cde6e1db0168d0b6cbe0c96c2fbca72b64b67a5a4cf953ea260c690a065c6cef86107b0fea8cdb2c09237a06b1274a27df20fef22a7a13f090e9240daa81deed57f289720eda793337388562a0bf05ee60bcf4b3e7a14ac6a055085ca3222f55edc22bddeb21b697c8c8a872e9de3eedcc25e809d352f5819b88017500c8ca9e31b5c2cd5f64f2ad197d47bc2c4ace2bfe17a0e6b362bb52073fbc9d416daf5e4e0aee655464005e35ccb6fe41d4a8d6504e3e044027fbb0cbecd5e178270d8c4f56f7255818a5f1823d1256dbc48b64b7e4727e8be91225c39eb1ff2e92ea370f88a47b5af798cc8b16c07ef28473a9442227d7ec47841679671deab07796107bd6b267dae1beca213064d90cf46dd1b515ef3bc6e49f349659d697bc8c0e645039998ae957d0c9e3b90466260516690e47b8c8492ad8cbff249aed5320f75e7551ccd47d18abfcfe746da16c4cabfa0b90cb806875e30830f32bf64845bdaaad4397c31d064068ce8d6b634a198bd6ac495888cbf11685cc951b6ad8449e7feb38ad5a12ef64e275eac4d44305055b5abe4cf78ecaf28a951e8ff307f85e1525a0fbeeefca1745ab2a68e9ce99c9f1e4629d52d57e516a7c930e5ea5ed03fc2e0d7f07071baddc2a5aa50d7a467cc4d99abe166b29840165ce8623a43e15ac7115298dde32bd5054ec28d0e6db1c84d22a274166e8470c63c1b812e50187bdf4e988a4608a35d243dbf4f5899a82b6c2784ef520ce99513e6803dc8d8c1cbce70dbdd3606198499446171eb13fca9159a6e6a04fd7185ad2c0eda5966754fcb677f45ac4db9134ff408a9e548ad059beeeca027ad81f7dbec8dac774206669e0ed7bccf9492cbef90a5f4ba2ff611261179de4bc60f07665279761bfa6f901e717493305a72d1fa946abcc92226c6da0ea2ac7d436eff5cb99e86f5621e25d4dd4204bc2080e29c31a7130a20de6ced22a64e3802a90c7aab3771c1bfdffa7b4004078748c161a332515f82ce4dad02216175269fcad39542bcfb5d644e4ae7a9c681d8b6dc69d7ead7aa27e626a03c411fbdce09994b49001796a4e86296a9fb08f8bb567468cc92abff9e79dd7e7fc32edc8cc5c4b01cf19bd6d2c9716c21dc99d970dd6b02b8e40bedfa118f0c491698c49cc72975bd8463535b1ab76ca1a0e223197d8a39361a34fd02a1a10a92ede4fe0a248e20a9c1d2b3b15fa9b4c206156a4f4399240be13a1d7bbd2021b7fd02932b1887dc318df921bc7a153b14c0aa2774c9d3ad43f799dcd76d61ff7599fef926dee631c3444340efd8970e1cf7dbe97d07033ee6a394b54bbf21bedfe196498c1b5104f2cff00c9765fb8840279ed71e9d0935f450616b12597d49be11c890c799b11e2bf4e8fee3ccb64b608cf702a31ceef132418f012baeb903f5cc793f6d87df86bbc0e90829acc879fb4cff0eba707df4fdef8fb480408881dcd2d1364fa06d1c31fd78955e6fb8a05e57b49f4e47a38655c742727b3a95be06ccbe008b081d825ea0474531db6c561e9bae75a8c79c2ec47f1171c10de3048f4315f8929eed5175529b634e1a1d81582a772b07ae82b25d68102a4d5a8a16dc46f5687638d8ac0a8b1f02f53d88ee9292db399a459d202092ffe535b9232bd6832aae25e54e80da51d1f2434cbd2c67f5dfab46dff23525cced28889cdd32fc09970297ffffde2a744f0bf85125c0cdb69e65dd1fe6409598c3aa3b8e76219ab906ea9e2ea46f886ec77d6582ea9bbb33a4f9eb3a6aacb295b1b2200993905903387446111b4aabd0c885634ad48ee038d1365fed6a7bb862d4f4280718b59ba29a3810647cf79f34605074603a03c1e0da587f1001104e825cfb64ab1cbac2bfccda3f181b38c912c2a0d6c9847c68cc4e96b66872f56c364b6e2c577ca9973e597d7f4112e52edc16b55a24a38c00983bd04f0606bae321513adc2c989d45870704f0cb5e9ea4f83fe2f4bec7abf3761f6645e23a909116791a13844ad2042a577700c3ba5aa584e65a00ec26c4cbb8a6442caf1f859b0f4fd493e4574f194bf3e9d0d5009bf6f7809f883151a0381273e64531230abf6591cbc91872ddbed04ac97e64fb18ce8eba802551ca8be144e17ab471dbe867214a9eebc7815f35ba2ccbd8d26b2ef0f5d6a08ab717b08734edb67c495002ee408613458509b37077815d51b1f15d4ba86e6c59239059dd3a7ab9d51a9a714801a073aaf1a9f9148a71a2f2312e2c05378140c81af67d47b9c26ff62d0a4d7a5813ee4e90cc7a48e20bbb1e96ee2db6563e741bf4d178f5974c13edfd3510d5be9097f5e2a5805fd1cf8b70bc2238b75cb7b0a995cdf7f4f926554c9352b365e66bba1c897dcd78b177ab6e63649931d85caaf580db686db3a0ff3e9df17fdab6f5a768e4f1b508e0b138e2190094d736729eeeb166b07a9177fa9852875e040722cdf912482de62e7ae91f1dde2e95df678708520704709909e50e1c851caacd74ef39497ca00e0cf3075f02f1b63939148deba8f3e854156573abca0791fadd1e5e3c68e914ba1f3684b57b277a763d4c7e646a46d66a0edd5e7c38f286f50e53aafad0452a12e32418e77a8922df0f7f06f5948d652cb9845cdc5cdde1c2b6e9a24a5cab50817f2d08811278b61e43dd7638221eadb319186ba98811a6908b4a677c33aa6c1a90cf5d776af5d545360f04f730e667613a2a4f9c71cc71bb13571b5cc64f8fb6c0d4656e67cc1bc528874184a106e69ac6472e13e059d1d07c468801722973a7c63020405183205bf16c50cb0c71f14e44b1003fe9d3e4b629714fca874eab37819667c6f6f12b5744e9168bc0be3ba40694c0cc5aae6f440ef97b0c52240c2ec7110aa8c9772aa1912775db5f0d4859b5501fb67e888dc5890da87242f80d3447ff3548ab66fe897a7da6908e0822272d067cb6d985e7e008091597d64804a7b5d85bc37850c015af8e79fbc45c276ff45dd889c362f1442aae6acd77f4c31f59855d2e488bcdd69856745a620c32846e35a951d11566f6a45622fc41d68e243477691d9be55c4ffff7a48a0c8c88a7954aa57712dc3dd7e5aab9f6a129faf1d2dc1c80cb9ed1a83d541f36524396487830cb9379b44773d916d5d1511c4ec8a68265c4020e0f270ff1617dd2eb1e0af3da1e1d766159deec886232718cd0c21dcf21bd62228a406dda1ae4987e43a55ed7e2fb18a95712c2ff06a0098d37ec1bb1032330f3df47a0b8effbe7bb92bfcfc64fa79a4951e197389059cd1516290bed3339b61360c43827fc59d8f2729fab429788d0096b06ab4876b9d8bbef51a217259a94071ac6479012689edbb89db09ae7784995fb8d8a9fc8c278656b3362fbbddb7b799c2a58b79913c16048d884cd302836d986abf5f693dc4477c652bbf3eb24794c8ba44223bb8d4218409d0293f4a10f22db6ba3a9f175cf379f6bccad32200135bc4d56eb9f4e830756b4762fb8795dac608891df9e7be1a3c4167681b2dd0b2fd38a51504ff8f0fecf68e1122beed6a99e9a72766d95283f06afda515289134ca690eef1809319d8ee0aed6c6b928ad3dd9e978936e03427350379c4464ac8336f80990483a8a6f028fe3349c5e47c02c45c8e29ba62255a6259efef07a12bbba5424ee7049ccabe645ada0b2c1c0c9bca8a3587f183a7832af43513088d79fc60aff0c2d436771360f6e562e37f48034b29c0c39c658daa0a80aeba43b1ef74368cb5007b28d0c0be208482b13c64083f25370029dc0bce9590d7ba16db8f356201289b8721e5669ef45837a9c4aa602c94ad58bb92d646c0f5765e576cf2cf388bfa1ca5b5d2f7a694c9a436f583f279e6fcc1b916424626b039d35e00042a83f9de053900881427334c20d384f2712678e1744c91ce7f2304e04a2fc6d433f89d9117007a22b0e69bf980c9646550238b3aa7e722bd14cac0e709ec37315b7b1af2b6c08924cb6fae344457c0ff0fa749966fd5d4c4f5b8ce80990dc7f28c2ad34df0a78d4d446556330e0d7e02849a91cbb01a75299b818229fbc88e3f97db3864506b8902ea2888cb180f2137d10e23aff662ddc4afff7ba8e8861473284bece2afbf84211f6ad947fe62ddfb4055cdc54559483ee6eaca0db7bb6850c4cc774c345a02cf7e6e40d36f42e6e5fb3b0e499e545fddd5b8400b7dd23dcbc5277424c0c15a6d8ee470905ed6a002ed5cc22ac2de1d1a3d2a098f8780b26f1f1dd29d95d47a778b1eab7d69fc95da8bd678f072e27d774f66e32637444cd07e15689b9c028faa0f1c2697d4ec3ee8af9e9c47828dd0b1c21bb3482ba0ca99219e7977d9f56a2913c841f09f834ae392e40dfa9032a12ce9e1e62fe72262f0d29af899e668c6d3945e9ae1ac87e47090269d49ba86cfcd54f340a8859720cba91488824c43334e17a66fee958e53611d3672c29a309fb137eea24c1263d854a751a827329e09cdecad33c56dcd02163884da169d11e4df837859c94f9f8e99a083a4b5c9e12406a240c5d53ad4c7031b4e01ff3eb70185f972a354dcfcbce246ab2bd01dd5cc723dcb9da3effd1b4017eee737c1254e04770e932bd310c514387a11c2a5ebaeded95dae8b41c3e4baaf4455d3c772e0490c1bf66593458bca3c8cfe137793c7e41643be1bcffcefacfd13c3c1572ed8d56a059384ee41df0e213b99b9ec385fc75756e5587f2123bd13089a3b30f038b150c302144ea08775678bc2133491bab5531c2e06026b15d4164a7b6de5773645f7983ee411725b17692eb8b44a35a97fb4efedc171eafd71ee354f306a6e004719d88d78dbccc0afdd3828298224556a21e523e7a4d262e7fbf0e817fd0763fe86bb2ecdd334bf8e410bd1cabd2b5f2845daac68d6cda21334314f54cf3f0bc088246ac09ec8135fdf53b2526ac8baecae823ebc64fd348df1695a2233fb997b72b97386290471438c04d196f646476e6e5156928eb10b066a063f561ced2995c9a36b6646aa14a9872791892dc9415eb74def65a87a2b86064ad69d68d6719c9c564f3ced0cc7b4d372388482b19c67badb95f15a8f43cd6ae3655c970a529cf261e66cd8319143dbe5a5300faa67c3cffb416c11e47a134bdf7c35f5b208091c3742654b4e3c94e97fe6186f752146621d3012d1505b0bb505753b421ae66b9b673819613c831f0f68ac2826d49814105ac82dfb26b05293ea32b95c23503e4c07140a0906c23582f489ce7fc3daf75d209dda54b7a550b5de548c518cf8b31c868232fff6994b28bcb49c98038e2366f713ff4ff12a309552154d820a79f1db51ce501f3c51dbdf99918cc13dc98629a67fe1532b1ba9c8661a6ea8da25cae7c81aa5311c4aab8a0e", 0x1000}, {&(0x7f0000001100)="41f4ccd58e79a53a0eae2ff78926d0412f4f3ad15ba1cb62645d7131321bf4723549af683afa3e39084ddfa3bba9f9aad1b614764e066801", 0x38}, {&(0x7f0000001140)="477ca60b4746e92cfaa0ec2830bdec418830b96da2f0f473dfc661d5b19caeb7a049f3f3c9bd971e4dda5212623afb39a7ad403e47484b8c4bf6a11e53b15e7c464ebe6274a1e23ec280bfb73b85f99727aaa3dc195e85e8d8136f17ce839b17de56fe664b16d9a45a7a0d17751fdad980fe616f45b609d28f9b05ae", 0x7c}], 0x3, &(0x7f0000001280)=[@ip_retopts={{0x58, 0x0, 0x7, {[@generic={0x82, 0xf, "0947f31cfc68878077ed1e0b99"}, @generic={0x7, 0x3, "a0"}, @ssrr={0x89, 0x1b, 0xa3, [@rand_addr=0x64010102, @remote, @local, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, @local]}, @noop, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x13, 0x1, [{0x0, 0xd, "d9638b4944017df13f4f18"}]}]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_retopts={{0xa0, 0x0, 0x7, {[@noop, @generic={0x86, 0xd, "c896d2f095218137db8b00"}, @rr={0x7, 0xb, 0xc0, [@local, @local]}, @generic={0x19, 0x7, "71dcb3cf66"}, @ssrr={0x89, 0xf, 0x71, [@broadcast, @private=0xa010100, @empty]}, @ssrr={0x89, 0x7, 0x46, [@dev={0xac, 0x14, 0x14, 0x28}]}, @rr={0x7, 0x1b, 0x20, [@multicast1, @multicast2, @dev={0xac, 0x14, 0x14, 0xa}, @broadcast, @multicast1, @private=0xa010101]}, @cipso={0x86, 0x33, 0x3, [{0x7, 0xf, "17d1e467fd6cefbfaed7fea8ba"}, {0x5, 0x10, "66a614db22a82fa01c78f02c9f13"}, {0x7, 0xe, "6c167d6234f29b78d8bbc116"}]}, @ssrr={0x89, 0xb, 0xf4, [@local, @broadcast]}, @end]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x4}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r1, @private=0xa010100, @multicast1}}}, @ip_retopts={{0x84, 0x0, 0x7, {[@ssrr={0x89, 0x23, 0x5c, [@rand_addr=0x64010100, @multicast1, @empty, @rand_addr=0x64010100, @private=0xa010100, @dev={0xac, 0x14, 0x14, 0x12}, @dev={0xac, 0x14, 0x14, 0x14}, @multicast1]}, @ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @rr={0x7, 0x17, 0x88, [@dev={0xac, 0x14, 0x14, 0x16}, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote, @multicast2, @empty]}, @timestamp={0x44, 0x2c, 0xb8, 0x0, 0x9, [0x2, 0x9, 0x8001, 0xfffffffd, 0x8, 0x3d, 0x5, 0x0, 0x4, 0x0]}, @ra={0x94, 0x4}]}}}], 0x1d0}, 0x8000) 01:29:06 executing program 3: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff00000000140001000000000000000000000000000b00000114000600020000001b"], 0x54}}, 0x0) [ 3389.544926][ T1239] ieee802154 phy0 wpan0: encryption failed: -22 [ 3389.551787][ T1239] ieee802154 phy1 wpan1: encryption failed: -22 [ 3391.010833][ T5118] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 3391.020895][ T5118] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 3391.035302][ T5118] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 3391.063710][ T5118] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 3391.076161][ T5118] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 3391.083860][ T5118] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 3391.461780][T16854] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 3391.479237][T16854] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 3391.489071][T16854] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 3391.498413][T16854] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 3391.518385][T16854] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 3391.526331][T16854] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 3391.872232][T16854] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 3391.882634][T16854] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 3391.891352][T16854] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 3391.900371][T16854] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 3391.908882][T16854] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 3391.916313][T16854] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 3393.128998][ T5118] Bluetooth: hci4: command 0x0409 tx timeout [ 3393.611075][ T5118] Bluetooth: hci5: command 0x0409 tx timeout [ 3393.930866][ T5118] Bluetooth: hci6: command 0x0409 tx timeout [ 3395.209070][ T5118] Bluetooth: hci4: command 0x041b tx timeout [ 3395.689331][ T5118] Bluetooth: hci5: command 0x041b tx timeout [ 3396.018716][ T5118] Bluetooth: hci6: command 0x041b tx timeout 01:29:14 executing program 1: r0 = socket(0x10, 0x803, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r3, @ANYBLOB="1400020000000000000000001500ffff0000000014000100000000000000000000000a000000000114000600020000001b"], 0x54}}, 0x0) [ 3397.300117][ T5118] Bluetooth: hci4: command 0x040f tx timeout [ 3397.769103][ T5118] Bluetooth: hci5: command 0x040f tx timeout [ 3398.089473][ T5118] Bluetooth: hci6: command 0x040f tx timeout [ 3398.398005][T16854] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 3398.414258][T16854] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 3398.428174][T16854] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 3398.437113][T16854] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 3398.447430][T16854] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 3398.455020][T16854] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 3399.368919][T16854] Bluetooth: hci4: command 0x0419 tx timeout [ 3399.848596][T16854] Bluetooth: hci5: command 0x0419 tx timeout [ 3400.175176][T16854] Bluetooth: hci6: command 0x0419 tx timeout [ 3400.488991][T16854] Bluetooth: hci7: command 0x0409 tx timeout [ 3402.572238][T16854] Bluetooth: hci7: command 0x041b tx timeout [ 3404.661788][T16854] Bluetooth: hci7: command 0x040f tx timeout [ 3406.728650][T16854] Bluetooth: hci7: command 0x0419 tx timeout [ 3421.039524][ T5118] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 3421.050092][ T5118] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 3421.066860][ T5118] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 3421.075942][ T5118] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 3421.084595][ T5118] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 3421.092067][ T5118] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 3423.129700][T16854] Bluetooth: hci8: command 0x0409 tx timeout [ 3425.219557][T16854] Bluetooth: hci8: command 0x041b tx timeout [ 3427.288955][ T5118] Bluetooth: hci8: command 0x040f tx timeout [ 3429.378588][ T5118] Bluetooth: hci8: command 0x0419 tx timeout [ 3450.984050][ T1239] ieee802154 phy0 wpan0: encryption failed: -22 [ 3450.990514][ T1239] ieee802154 phy1 wpan1: encryption failed: -22 [ 3457.038048][T16854] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 3457.047925][T16854] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 3457.056651][T16854] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 3457.065672][T16854] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 3457.075654][T16854] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3 [ 3457.083205][T16854] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 3457.565467][T16854] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 3457.577235][T16854] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 3457.585792][T16854] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 3457.594475][T16854] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 3457.605427][T16854] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 3457.614585][T16854] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 3457.997351][ T5118] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 3458.006031][ T5118] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 3458.016326][ T5118] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 3458.026829][ T5118] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 3458.038354][ T5118] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3 [ 3458.047979][ T5118] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 3459.128704][T16854] Bluetooth: hci9: command 0x0409 tx timeout [ 3459.688794][T16854] Bluetooth: hci10: command 0x0409 tx timeout [ 3460.088881][T16854] Bluetooth: hci11: command 0x0409 tx timeout [ 3461.242207][T16854] Bluetooth: hci9: command 0x041b tx timeout [ 3461.769186][T16854] Bluetooth: hci10: command 0x041b tx timeout [ 3462.169040][T16854] Bluetooth: hci11: command 0x041b tx timeout [ 3463.294378][T16854] Bluetooth: hci9: command 0x040f tx timeout [ 3463.848766][T16854] Bluetooth: hci10: command 0x040f tx timeout [ 3464.248668][T16854] Bluetooth: hci11: command 0x040f tx timeout [ 3464.564422][ T5118] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 3464.580800][ T5118] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 3464.589867][ T5118] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 3464.598067][ T5118] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 3464.606353][ T5118] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 3464.618780][ T5118] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 3465.368604][T16854] Bluetooth: hci9: command 0x0419 tx timeout [ 3465.928711][T16854] Bluetooth: hci10: command 0x0419 tx timeout [ 3466.352970][T16854] Bluetooth: hci11: command 0x0419 tx timeout [ 3466.649101][T16854] Bluetooth: hci12: command 0x0409 tx timeout [ 3468.729318][T16854] Bluetooth: hci12: command 0x041b tx timeout [ 3470.808946][T16854] Bluetooth: hci12: command 0x040f tx timeout [ 3472.899095][T16854] Bluetooth: hci12: command 0x0419 tx timeout [ 3478.648898][T16854] Bluetooth: hci0: command 0x0406 tx timeout [ 3487.297233][T16854] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1 [ 3487.309109][T16854] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9 [ 3487.317817][T16854] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9 [ 3487.327980][T16854] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4 [ 3487.336764][T16854] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3 [ 3487.345390][T16854] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2 [ 3489.368720][ T5118] Bluetooth: hci13: command 0x0409 tx timeout [ 3491.458595][ T5118] Bluetooth: hci13: command 0x041b tx timeout [ 3493.528706][ T5118] Bluetooth: hci13: command 0x040f tx timeout [ 3495.608572][ T5118] Bluetooth: hci13: command 0x0419 tx timeout