[ 49.038756][ T38] audit: type=1400 audit(1687914783.082:82): avc: denied { read } for pid=4605 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 81.558794][ T23] cfg80211: failed to load regulatory.db [ 81.568096][ T38] audit: type=1400 audit(1687914815.612:83): avc: denied { append } for pid=4605 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 81.575858][ T38] audit: type=1400 audit(1687914815.612:84): avc: denied { open } for pid=4605 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 81.583910][ T38] audit: type=1400 audit(1687914815.612:85): avc: denied { getattr } for pid=4605 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 Warning: Permanently added '[localhost]:29710' (ECDSA) to the list of known hosts. [ 133.504959][ T38] audit: type=1400 audit(1687914867.542:86): avc: denied { execute } for pid=5143 comm="sh" name="syz-executor1317313224" dev="sda1" ino=1926 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 133.513243][ T38] audit: type=1400 audit(1687914867.542:87): avc: denied { execute_no_trans } for pid=5143 comm="sh" path="/syz-executor1317313224" dev="sda1" ino=1926 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 133.517124][ T5143] cgroup: Unknown subsys name 'net' [ 133.522065][ T38] audit: type=1400 audit(1687914867.552:88): avc: denied { execmem } for pid=5143 comm="syz-executor131" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 133.531927][ T38] audit: type=1400 audit(1687914867.552:89): avc: denied { mounton } for pid=5143 comm="syz-executor131" path="/syzcgroup/unified" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 133.540200][ T38] audit: type=1400 audit(1687914867.552:90): avc: denied { mount } for pid=5143 comm="syz-executor131" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 133.548276][ T38] audit: type=1400 audit(1687914867.562:91): avc: denied { unmount } for pid=5143 comm="syz-executor131" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 133.654231][ T5143] cgroup: Unknown subsys name 'rlimit' [ 133.782483][ T38] audit: type=1400 audit(1687914867.822:92): avc: denied { mounton } for pid=5143 comm="syz-executor131" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 133.791487][ T38] audit: type=1400 audit(1687914867.822:93): avc: denied { mount } for pid=5143 comm="syz-executor131" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 133.802138][ T38] audit: type=1400 audit(1687914867.822:94): avc: denied { setattr } for pid=5143 comm="syz-executor131" name="raw-gadget" dev="devtmpfs" ino=760 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 133.811564][ T38] audit: type=1400 audit(1687914867.822:95): avc: denied { create } for pid=5143 comm="syz-executor131" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 133.846328][ T5145] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 134.549773][ T5143] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS [ 134.568698][ T63] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 134.572501][ T63] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 134.576061][ T63] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 134.580565][ T63] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 134.584558][ T63] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 134.588481][ T63] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 134.676568][ T5147] chnl_net:caif_netlink_parms(): no params data found [ 134.743174][ T5147] bridge0: port 1(bridge_slave_0) entered blocking state [ 134.746828][ T5147] bridge0: port 1(bridge_slave_0) entered disabled state [ 134.750087][ T5147] bridge_slave_0: entered allmulticast mode [ 134.753324][ T5147] bridge_slave_0: entered promiscuous mode [ 134.758801][ T5147] bridge0: port 2(bridge_slave_1) entered blocking state [ 134.761859][ T5147] bridge0: port 2(bridge_slave_1) entered disabled state [ 134.764942][ T5147] bridge_slave_1: entered allmulticast mode [ 134.768379][ T5147] bridge_slave_1: entered promiscuous mode [ 134.805450][ T5147] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 134.811279][ T5147] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 134.840194][ T5147] team0: Port device team_slave_0 added [ 134.844025][ T5147] team0: Port device team_slave_1 added [ 134.864658][ T5147] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 134.867221][ T5147] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.877674][ T5147] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 134.882871][ T5147] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 134.885464][ T5147] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 134.894953][ T5147] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 134.922570][ T5147] hsr_slave_0: entered promiscuous mode [ 134.925359][ T5147] hsr_slave_1: entered promiscuous mode [ 134.997350][ T5147] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 135.002375][ T5147] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 135.006491][ T5147] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 135.010649][ T5147] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 135.026464][ T5147] bridge0: port 2(bridge_slave_1) entered blocking state [ 135.029838][ T5147] bridge0: port 2(bridge_slave_1) entered forwarding state [ 135.032878][ T5147] bridge0: port 1(bridge_slave_0) entered blocking state [ 135.035895][ T5147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 135.075312][ T5147] 8021q: adding VLAN 0 to HW filter on device bond0 [ 135.084445][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 135.091285][ T1937] bridge0: port 1(bridge_slave_0) entered disabled state [ 135.096418][ T1937] bridge0: port 2(bridge_slave_1) entered disabled state [ 135.101241][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 135.108073][ T5147] 8021q: adding VLAN 0 to HW filter on device team0 [ 135.115426][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 135.120029][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 135.123306][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 135.131979][ T1373] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 135.135780][ T1373] bridge0: port 2(bridge_slave_1) entered blocking state [ 135.139015][ T1373] bridge0: port 2(bridge_slave_1) entered forwarding state [ 135.152722][ T962] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 135.157106][ T962] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 135.171771][ T5147] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 135.176605][ T5147] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 135.184739][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 135.188891][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 135.193627][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 135.197027][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 135.208516][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 135.211951][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 135.222044][ T5147] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 135.232606][ T1373] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 135.243271][ T1373] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 135.247215][ T1373] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 135.250394][ T1373] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 135.254479][ T5147] veth0_vlan: entered promiscuous mode [ 135.260059][ T5147] veth1_vlan: entered promiscuous mode [ 135.271553][ T1373] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 135.274587][ T1373] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 135.277816][ T1373] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 135.282582][ T5147] veth0_macvtap: entered promiscuous mode [ 135.287699][ T5147] veth1_macvtap: entered promiscuous mode [ 135.301131][ T5147] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 135.304649][ T962] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 135.310014][ T962] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 135.316860][ T5147] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 135.320747][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 135.327770][ T5147] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 135.331975][ T5147] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 135.335995][ T5147] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 135.340071][ T5147] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 135.391799][ T5155] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.395633][ T5155] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.406038][ T1373] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 135.412852][ T10] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.416682][ T10] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.422086][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready executing program [ 135.454340][ T5160] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 135.483832][ T5161] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 135.512952][ T5162] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 135.544517][ T5163] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 135.571642][ T5164] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 135.597719][ T5165] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 135.623278][ T5166] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 135.646080][ T5167] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 135.666403][ T5168] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 135.695430][ T5169] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 136.597994][ T63] Bluetooth: hci0: command 0x0409 tx timeout executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 138.678805][ T4575] Bluetooth: hci0: command 0x041b tx timeout executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 140.478108][ T5386] __nla_validate_parse: 215 callbacks suppressed [ 140.478122][ T5386] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 140.510380][ T5387] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 140.531865][ T5388] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 140.557685][ T5389] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 140.586741][ T5390] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 140.611289][ T5391] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 140.635683][ T5392] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 140.667923][ T5393] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 140.689427][ T5394] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 140.713504][ T5395] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program executing program [ 140.768204][ T4575] Bluetooth: hci0: command 0x040f tx timeout executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 142.837705][ T4575] Bluetooth: hci0: command 0x0419 tx timeout executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 145.499283][ T5605] __nla_validate_parse: 209 callbacks suppressed [ 145.499297][ T5605] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 145.532010][ T5606] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 145.555426][ T5607] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 145.583951][ T5608] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 145.615593][ T5609] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 145.646284][ T5610] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 145.674280][ T5611] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 145.702482][ T5612] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 145.724114][ T5613] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 145.749226][ T5614] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 150.525113][ T5773] __nla_validate_parse: 158 callbacks suppressed [ 150.525122][ T5773] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 150.549053][ T5774] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 150.571046][ T5775] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 150.598197][ T5776] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 150.621319][ T5777] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 150.653958][ T5778] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 150.689746][ T5779] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 150.713407][ T5780] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 150.748925][ T5781] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 150.776361][ T5782] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 155.542616][ T5969] __nla_validate_parse: 186 callbacks suppressed [ 155.542625][ T5969] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 155.569916][ T5970] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 155.593914][ T5971] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 155.619315][ T5972] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 155.651312][ T5973] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 155.676334][ T5974] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 155.703682][ T5975] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 155.737293][ T5976] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 155.760880][ T5977] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 155.784558][ T5978] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 160.559890][ T6168] __nla_validate_parse: 189 callbacks suppressed [ 160.559900][ T6168] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 160.588619][ T6169] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 160.613803][ T6170] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 160.639492][ T6171] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 160.666938][ T6172] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 160.693526][ T6173] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 160.731146][ T6174] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 160.756737][ T6175] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 160.791146][ T6176] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 160.829557][ T6177] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 165.583514][ T6362] __nla_validate_parse: 184 callbacks suppressed [ 165.583523][ T6362] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 165.609365][ T6363] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 165.633197][ T6364] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 165.659018][ T6365] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 165.682571][ T6366] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 165.707444][ T6367] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 165.732378][ T6368] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 165.756851][ T6369] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 165.781371][ T6370] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 165.806244][ T6371] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 170.594313][ T6530] __nla_validate_parse: 158 callbacks suppressed [ 170.594322][ T6530] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 170.624967][ T6531] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 170.661311][ T6532] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 170.690398][ T6533] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 170.727529][ T6534] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 170.754726][ T6535] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 170.793177][ T6536] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 170.825518][ T6537] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 170.855570][ T6538] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 170.883060][ T6539] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 175.604319][ T6689] __nla_validate_parse: 149 callbacks suppressed [ 175.604332][ T6689] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 175.636657][ T6690] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 175.679304][ T6691] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 175.721384][ T6692] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 175.763286][ T6693] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 175.807598][ T6694] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 175.843742][ T6695] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 175.870518][ T6696] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 175.914525][ T6697] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 175.956172][ T6698] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 180.623532][ T6852] __nla_validate_parse: 153 callbacks suppressed [ 180.623541][ T6852] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 180.664835][ T6853] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 180.704751][ T6854] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 180.736156][ T6855] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 180.778015][ T6856] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 180.818928][ T6857] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 180.854234][ T6858] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 180.900155][ T6859] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 180.932650][ T6860] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 180.964309][ T6861] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 182.431058][ T6905] syz-executor131 (6905) used greatest stack depth: 22528 bytes left executing program executing program [ 182.487853][ C0] [ 182.488816][ C0] ================================ [ 182.490998][ C0] WARNING: inconsistent lock state [ 182.493202][ C0] 6.4.0-syzkaller-01224-g1ef6663a587b #0 Not tainted [ 182.497325][ C0] -------------------------------- [ 182.499157][ C0] inconsistent {SOFTIRQ-ON-W} -> {IN-SOFTIRQ-W} usage. [ 182.501811][ C0] swapper/0/0 [HC0[0]:SC1[1]:HE0:SE0] takes: [ 182.503981][ C0] ffff88807ffdc728 (&pgdat->memcg_lru.lock){+.?.}-{2:2}, at: lru_gen_rotate_memcg+0x64/0xab0 [ 182.507695][ C0] {SOFTIRQ-ON-W} state was registered at: [ 182.509778][ C0] lock_acquire+0x1b1/0x520 [ 182.511416][ C0] _raw_spin_lock+0x2e/0x40 [ 182.513163][ C0] lru_gen_online_memcg+0x16b/0x5a0 [ 182.515053][ C0] mem_cgroup_css_online+0x227/0x3b0 [ 182.517228][ C0] online_css+0xaf/0x2a0 [ 182.519114][ C0] cgroup_init_subsys+0x46b/0x900 [ 182.521189][ C0] cgroup_init+0xb83/0x1090 [ 182.522878][ C0] start_kernel+0x398/0x490 [ 182.524554][ C0] x86_64_start_reservations+0x18/0x30 [ 182.526691][ C0] x86_64_start_kernel+0xb3/0xc0 [ 182.528874][ C0] secondary_startup_64_no_verify+0x167/0x16b [ 182.531062][ C0] irq event stamp: 646725 [ 182.532695][ C0] hardirqs last enabled at (646724): [] memcg_account_kmem+0x4f/0x80 [ 182.536206][ C0] hardirqs last disabled at (646725): [] uncharge_batch+0x1c7/0x560 [ 182.539627][ C0] softirqs last enabled at (646568): [] irq_exit_rcu+0xb7/0x120 [ 182.543099][ C0] softirqs last disabled at (646575): [] irq_exit_rcu+0xb7/0x120 [ 182.546486][ C0] [ 182.546486][ C0] other info that might help us debug this: [ 182.549448][ C0] Possible unsafe locking scenario: [ 182.549448][ C0] [ 182.552067][ C0] CPU0 [ 182.553310][ C0] ---- [ 182.554498][ C0] lock(&pgdat->memcg_lru.lock); [ 182.556405][ C0] [ 182.557635][ C0] lock(&pgdat->memcg_lru.lock); [ 182.559362][ C0] [ 182.559362][ C0] *** DEADLOCK *** [ 182.559362][ C0] [ 182.562265][ C0] 1 lock held by swapper/0/0: [ 182.564053][ C0] #0: ffffffff8c795f60 (rcu_callback){....}-{0:0}, at: rcu_core+0x791/0x1ad0 [ 182.567368][ C0] [ 182.567368][ C0] stack backtrace: [ 182.569560][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.4.0-syzkaller-01224-g1ef6663a587b #0 [ 182.572948][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 182.576197][ C0] Call Trace: [ 182.577387][ C0] [ 182.578462][ C0] dump_stack_lvl+0xd9/0x150 [ 182.580112][ C0] mark_lock.part.0+0x1110/0x1970 [ 182.581882][ C0] ? print_usage_bug.part.0+0x660/0x660 [ 182.583854][ C0] ? print_usage_bug.part.0+0x660/0x660 [ 182.585848][ C0] ? lockdep_unlock+0x11b/0x290 [ 182.587638][ C0] ? __lock_acquire+0x28bf/0x5f30 [ 182.589401][ C0] __lock_acquire+0x1227/0x5f30 [ 182.591102][ C0] ? __lock_acquire+0xc17/0x5f30 [ 182.592868][ C0] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 182.594992][ C0] ? find_held_lock+0x2d/0x110 [ 182.596724][ C0] ? get_random_u8+0x3b8/0x7d0 [ 182.598508][ C0] lock_acquire+0x1b1/0x520 [ 182.600126][ C0] ? lru_gen_rotate_memcg+0x64/0xab0 [ 182.602097][ C0] ? lock_sync+0x190/0x190 [ 182.603694][ C0] ? get_random_u8+0x432/0x7d0 [ 182.605388][ C0] ? get_random_u16+0x7d0/0x7d0 [ 182.607368][ C0] _raw_spin_lock+0x2e/0x40 [ 182.608999][ C0] ? lru_gen_rotate_memcg+0x64/0xab0 [ 182.610993][ C0] lru_gen_rotate_memcg+0x64/0xab0 [ 182.612664][ C0] ? memcg_check_events+0x1b7/0x5f0 [ 182.614310][ C0] lru_gen_soft_reclaim+0x62/0x70 [ 182.616129][ C0] uncharge_batch+0x2be/0x560 [ 182.617994][ C0] __mem_cgroup_uncharge+0x11f/0x290 [ 182.619997][ C0] ? mem_cgroup_swapin_charge_folio+0x300/0x300 [ 182.622341][ C0] ? __drain_all_pages+0x450/0x450 [ 182.624211][ C0] ? _raw_spin_unlock+0x28/0x40 [ 182.625994][ C0] ? free_unref_page+0x1a3/0x370 [ 182.627833][ C0] __folio_put+0xb6/0x140 [ 182.629350][ C0] free_page_and_swap_cache+0x257/0x2c0 [ 182.631657][ C0] tlb_remove_table_rcu+0x89/0xe0 [ 182.633520][ C0] rcu_core+0x806/0x1ad0 [ 182.635078][ C0] ? rcu_report_dead+0x610/0x610 [ 182.636918][ C0] ? kvm_clock_read+0x14/0x30 [ 182.638742][ C0] __do_softirq+0x1d4/0x905 [ 182.640393][ C0] irq_exit_rcu+0xb7/0x120 [ 182.641999][ C0] sysvec_apic_timer_interrupt+0x97/0xc0 [ 182.643943][ C0] [ 182.644989][ C0] [ 182.646040][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 182.648181][ C0] RIP: 0010:intel_idle_hlt+0x23/0x30 [ 182.650161][ C0] Code: 1f 84 00 00 00 00 00 f3 0f 1e fa 41 54 41 89 d4 0f 1f 44 00 00 66 90 0f 1f 44 00 00 0f 00 2d a4 fb 9c 00 0f 1f 44 00 00 fb f4 44 89 e0 41 5c c3 66 0f 1f 44 00 00 f3 0f 1e fa 41 54 41 89 d4 [ 182.657337][ C0] RSP: 0018:ffffffff8c407d78 EFLAGS: 00000242 [ 182.659508][ C0] RAX: 000000000009ddad RBX: ffffe8fefd655380 RCX: ffffffff8a10ae35 [ 182.662455][ C0] RDX: 0000000000000002 RSI: ffffffff8d1994c0 RDI: ffffe8fefd655380 [ 182.665233][ C0] RBP: ffffffff8d1994c0 R08: 0000000000000001 R09: ffff88806b636ceb [ 182.668452][ C0] R10: ffffed100d6c6d9d R11: 0000000000000000 R12: 0000000000000002 [ 182.671258][ C0] R13: ffffffff8d1995a8 R14: 0000000000000002 R15: 0000000000000000 [ 182.674175][ C0] ? ct_kernel_exit+0x1d5/0x240 [ 182.675964][ C0] cpuidle_enter_state+0xd3/0x6f0 [ 182.677753][ C0] cpuidle_enter+0x4e/0xa0 [ 182.679564][ C0] do_idle+0x2fe/0x3c0 [ 182.681026][ C0] ? arch_cpu_idle_exit+0x30/0x30 [ 182.682781][ C0] cpu_startup_entry+0x18/0x20 [ 182.684763][ C0] rest_init+0x16f/0x2b0 [ 182.686435][ C0] ? regulator_has_full_constraints+0x9/0x20 [ 182.688702][ C0] ? trace_init_perf_perm_irq_work_exit+0x20/0x20 [ 182.691263][ C0] arch_call_rest_init+0x13/0x30 [ 182.693068][ C0] start_kernel+0x3b1/0x490 [ 182.694848][ C0] x86_64_start_reservations+0x18/0x30 [ 182.696883][ C0] x86_64_start_kernel+0xb3/0xc0 [ 182.698988][ C0] secondary_startup_64_no_verify+0x167/0x16b [ 182.701664][ C0] executing program executing program executing program executing program executing program [ 182.845959][ T6912] syz-executor131 (6912) used greatest stack depth: 21640 bytes left executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 183.243659][ T6922] syz-executor131 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=2, oom_score_adj=1000 [ 183.247781][ T6922] CPU: 2 PID: 6922 Comm: syz-executor131 Not tainted 6.4.0-syzkaller-01224-g1ef6663a587b #0 [ 183.251398][ T6922] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 183.254690][ T6922] Call Trace: [ 183.255959][ T6922] [ 183.257020][ T6922] dump_stack_lvl+0x136/0x150 [ 183.258716][ T6922] dump_header+0x10a/0xd70 [ 183.260317][ T6922] oom_kill_process+0x25d/0x600 [ 183.262074][ T6922] out_of_memory+0x35c/0x1660 [ 183.263768][ T6922] ? oom_killer_disable+0x2b0/0x2b0 [ 183.265596][ T6922] ? lock_release+0x4fb/0x670 [ 183.267338][ T6922] ? rcu_read_unlock+0x9/0x60 [ 183.269026][ T6922] mem_cgroup_out_of_memory+0x206/0x270 [ 183.271002][ T6922] ? mem_cgroup_margin+0x130/0x130 [ 183.272875][ T6922] ? lock_downgrade+0x690/0x690 [ 183.274601][ T6922] try_charge_memcg+0xf99/0x13a0 [ 183.276477][ T6922] ? mem_cgroup_handle_over_high+0x520/0x520 [ 183.278605][ T6922] ? get_mem_cgroup_from_objcg+0xa1/0x280 [ 183.280657][ T6922] ? lock_downgrade+0x690/0x690 [ 183.282432][ T6922] ? lock_release+0x4fb/0x670 [ 183.284117][ T6922] ? obj_cgroup_charge+0x248/0x5e0 [ 183.285989][ T6922] ? lock_downgrade+0x690/0x690 [ 183.287922][ T6922] ? lock_release+0x4fb/0x670 [ 183.289650][ T6922] ? rcu_read_unlock+0x9/0x60 [ 183.291308][ T6922] obj_cgroup_charge+0x2af/0x5e0 [ 183.293068][ T6922] __kmem_cache_alloc_node+0x93/0x3f0 [ 183.294950][ T6922] ? __addrconf_sysctl_register+0x9d/0x3d0 [ 183.297127][ T6922] __kmalloc_node_track_caller+0x4f/0x1a0 [ 183.299347][ T6922] ? register_net_sysctl+0x238/0x3c0 [ 183.301224][ T6922] kmemdup+0x2c/0x60 [ 183.302599][ T6922] __addrconf_sysctl_register+0x9d/0x3d0 [ 183.304607][ T6922] ? pndisc_destructor+0x240/0x240 [ 183.306475][ T6922] ? inet6_netconf_notify_devconf+0x1f0/0x1f0 [ 183.308701][ T6922] ? lockdep_init_map_type+0x21e/0x810 [ 183.310677][ T6922] ? lockdep_init_map_type+0x21e/0x810 [ 183.312664][ T6922] ? __raw_spin_lock_init+0x3a/0x110 [ 183.314566][ T6922] addrconf_sysctl_register+0x139/0x1d0 [ 183.316714][ T6922] ? ipv6_mc_init_dev+0x954/0xb50 [ 183.318594][ T6922] ipv6_add_dev+0xa0d/0x13b0 [ 183.320289][ T6922] addrconf_notify+0x63d/0x19f0 [ 183.322023][ T6922] ? tee_netdev_event+0x2d7/0x390 [ 183.323887][ T6922] ? ip6mr_device_event+0x1af/0x220 [ 183.325749][ T6922] ? mutex_is_locked+0x12/0x50 [ 183.327475][ T6922] notifier_call_chain+0xb6/0x3c0 [ 183.329292][ T6922] call_netdevice_notifiers_info+0xb9/0x130 [ 183.331460][ T6922] register_netdevice+0xfb4/0x1640 [ 183.333312][ T6922] ? unregister_netdevice_queue+0x3c0/0x3c0 [ 183.335452][ T6922] ? dev_addr_mod+0x2cd/0x400 [ 183.337192][ T6922] veth_newlink+0x352/0x9d0 [ 183.338819][ T6922] ? veth_set_features+0x2e0/0x2e0 [ 183.340669][ T6922] ? __rtnl_newlink+0xfd4/0x1840 [ 183.342443][ T6922] ? rtnl_newlink+0x68/0xa0 [ 183.344109][ T6922] ? rtnetlink_rcv_msg+0x43d/0xd50 [ 183.345931][ T6922] ? netlink_rcv_skb+0x165/0x440 [ 183.347776][ T6922] ? netlink_unicast+0x547/0x7f0 [ 183.349561][ T6922] ? netlink_sendmsg+0x925/0xe30 [ 183.351339][ T6922] ? sock_sendmsg+0xde/0x190 [ 183.353074][ T6922] ? ____sys_sendmsg+0x722/0x900 [ 183.354851][ T6922] ? ___sys_sendmsg+0x110/0x1b0 [ 183.356625][ T6922] ? __sys_sendmsg+0xf7/0x1c0 [ 183.358358][ T6922] ? do_syscall_64+0x39/0xb0 [ 183.360077][ T6922] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 183.362258][ T6922] ? lock_downgrade+0x690/0x690 [ 183.364017][ T6922] ? rcu_is_watching+0x12/0xb0 [ 183.365740][ T6922] ? rcu_is_watching+0x12/0xb0 [ 183.367487][ T6922] ? lock_release+0x4fb/0x670 [ 183.369185][ T6922] ? percpu_ref_put_many.constprop.0+0x4c/0x100 [ 183.371425][ T6922] ? lock_downgrade+0x690/0x690 [ 183.373244][ T6922] ? kvmalloc_node+0xa2/0x1a0 [ 183.374906][ T6922] ? rcu_is_watching+0x12/0xb0 [ 183.376642][ T6922] ? __kmalloc_node+0xfb/0x1a0 [ 183.378366][ T6922] ? __xdp_rxq_info_reg+0x18d/0x340 [ 183.380240][ T6922] ? alloc_netdev_mqs+0xdce/0x1250 [ 183.382101][ T6922] ? rtnl_create_link+0xa00/0xf20 [ 183.383946][ T6922] ? veth_set_features+0x2e0/0x2e0 [ 183.386179][ T6922] __rtnl_newlink+0x10c2/0x1840 [ 183.388280][ T6922] ? rtnl_link_unregister+0x250/0x250 [ 183.390197][ T6922] ? rcu_is_watching+0x12/0xb0 [ 183.391993][ T6922] ? lock_release+0x4fb/0x670 [ 183.393915][ T6922] ? __kmem_cache_alloc_node+0x43/0x3f0 [ 183.396007][ T6922] ? rtnetlink_rcv_msg+0x3e8/0xd50 [ 183.397855][ T6922] ? __kmem_cache_alloc_node+0x170/0x3f0 [ 183.399880][ T6922] rtnl_newlink+0x68/0xa0 [ 183.401515][ T6922] ? __rtnl_newlink+0x1840/0x1840 [ 183.403332][ T6922] rtnetlink_rcv_msg+0x43d/0xd50 [ 183.405146][ T6922] ? rtnl_stats_set+0x4d0/0x4d0 [ 183.406951][ T6922] ? __dev_queue_xmit+0xa2a/0x3b10 [ 183.408864][ T6922] ? avc_has_perm_noaudit+0x3a0/0x3a0 [ 183.410802][ T6922] netlink_rcv_skb+0x165/0x440 [ 183.412779][ T6922] ? rtnl_stats_set+0x4d0/0x4d0 [ 183.414728][ T6922] ? netlink_ack+0x1360/0x1360 [ 183.416723][ T6922] ? netlink_deliver_tap+0x1b1/0xcf0 [ 183.418988][ T6922] netlink_unicast+0x547/0x7f0 [ 183.420993][ T6922] ? netlink_attachskb+0x890/0x890 [ 183.423200][ T6922] netlink_sendmsg+0x925/0xe30 [ 183.425131][ T6922] ? netlink_unicast+0x7f0/0x7f0 [ 183.427093][ T6922] ? netlink_unicast+0x7f0/0x7f0 [ 183.428986][ T6922] sock_sendmsg+0xde/0x190 [ 183.430609][ T6922] ____sys_sendmsg+0x722/0x900 [ 183.432371][ T6922] ? copy_msghdr_from_user+0xfc/0x150 [ 183.434439][ T6922] ? kernel_sendmsg+0x50/0x50 [ 183.436149][ T6922] ? do_swap_page+0x473/0x3570 [ 183.437914][ T6922] ___sys_sendmsg+0x110/0x1b0 [ 183.439750][ T6922] ? do_recvmmsg+0x6f0/0x6f0 [ 183.441446][ T6922] ? lock_release+0x4fb/0x670 [ 183.443145][ T6922] ? mt_find+0x2c8/0xa60 [ 183.445026][ T6922] ? lock_downgrade+0x690/0x690 [ 183.447035][ T6922] ? __handle_mm_fault+0x857/0x41c0 [ 183.448920][ T6922] ? rcu_is_watching+0x12/0xb0 [ 183.450652][ T6922] ? lock_acquire+0x470/0x520 [ 183.452554][ T6922] ? __fget_light+0x201/0x270 [ 183.454547][ T6922] __sys_sendmsg+0xf7/0x1c0 [ 183.456197][ T6922] ? __sys_sendmsg_sock+0x40/0x40 [ 183.458004][ T6922] ? rcu_is_watching+0x12/0xb0 [ 183.459768][ T6922] ? trace_irq_enable.constprop.0+0xd0/0x100 [ 183.461982][ T6922] do_syscall_64+0x39/0xb0 [ 183.463771][ T6922] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 183.465869][ T6922] RIP: 0033:0x7f0ebb70f7e9 [ 183.467474][ T6922] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 183.474360][ T6922] RSP: 002b:00007ffe7ea0a5b8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 183.477300][ T6922] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f0ebb70f7e9 [ 183.480140][ T6922] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 183.483014][ T6922] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000003 [ 183.485939][ T6922] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ffe7ea0a5ec [ 183.488797][ T6922] R13: 00007ffe7ea0a600 R14: 00007ffe7ea0a640 R15: 00000000000006e1 [ 183.491744][ T6922] [ 183.493497][ T6922] memory: usage 307192kB, limit 307200kB, failcnt 1143 [ 183.496831][ T6922] memory+swap: usage 307260kB, limit 9007199254740988kB, failcnt 0 [ 183.500545][ T6922] kmem: usage 307044kB, limit 9007199254740988kB, failcnt 0 [ 183.503963][ T6922] Memory cgroup stats for /syz0: [ 183.504063][ T6922] anon 12288 [ 183.504063][ T6922] file 122880 [ 183.504063][ T6922] kernel 314413056 [ 183.504063][ T6922] kernel_stack 32768 [ 183.504063][ T6922] pagetables 40960 [ 183.504063][ T6922] sec_pagetables 0 [ 183.504063][ T6922] percpu 10410480 [ 183.504063][ T6922] sock 0 [ 183.504063][ T6922] vmalloc 0 [ 183.504063][ T6922] shmem 0 [ 183.504063][ T6922] zswap 0 [ 183.504063][ T6922] zswapped 0 [ 183.504063][ T6922] file_mapped 0 [ 183.504063][ T6922] file_dirty 0 [ 183.504063][ T6922] file_writeback 0 [ 183.504063][ T6922] swapcached 4096 [ 183.504063][ T6922] anon_thp 0 [ 183.504063][ T6922] file_thp 0 [ 183.504063][ T6922] shmem_thp 0 [ 183.504063][ T6922] inactive_anon 0 [ 183.504063][ T6922] active_anon 0 [ 183.504063][ T6922] inactive_file 0 [ 183.504063][ T6922] active_file 122880 [ 183.504063][ T6922] unevictable 0 [ 183.504063][ T6922] slab_reclaimable 24464 [ 183.504063][ T6922] slab_unreclaimable 303884240 [ 183.504063][ T6922] slab 303908704 [ 183.504063][ T6922] workingset_refault_anon 23 [ 183.504063][ T6922] workingset_refault_file 1 [ 183.504063][ T6922] workingset_activate_anon 0 [ 183.504063][ T6922] workingset_activate_file 0 [ 183.504063][ T6922] workingset_restore_anon 23 [ 183.504063][ T6922] workingset_restore_file 1 [ 183.504063][ T6922] workingset_nodereclaim 0 [ 183.504063][ T6922] pgscan 18490 [ 183.504063][ T6922] pgsteal 646 [ 183.504063][ T6922] pgscan_kswapd 0 [ 183.504063][ T6922] pgscan_direct 18490 [ 183.504063][ T6922] pgscan_khugepaged 0 [ 183.504063][ T6922] pgsteal_kswapd 0 [ 183.504063][ T6922] pgsteal_direct 646 [ 183.504063][ T6922] pgsteal_khugepaged 0 [ 183.504063][ T6922] pgfault 51433 [ 183.504063][ T6922] pgmajfault 251 [ 183.504063][ T6922] pgrefill 10 [ 183.504063][ T6922] pgactivate 17815 [ 183.504063][ T6922] pgdeactivate 0 [ 183.504063][ T6922] pglazyfree 0 [ 183.504063][ T6922] pglazyfreed 0 [ 183.504063][ T6922] zswpin 303 [ 183.504063][ T6922] zswpout 283 [ 183.578014][ T6922] Tasks state (memory values in pages): [ 183.580406][ T6922] [ pid ] uid tgid total_vm rss pgtables_bytes swapents oom_score_adj name [ 183.584484][ T6922] [ 5147] 0 5147 6451 128 40960 0 0 syz-executor131 [ 183.588461][ T6922] [ 6922] 0 6922 6451 128 53248 0 1000 syz-executor131 [ 183.591987][ T6922] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor131,pid=6922,uid=0 [ 183.597436][ T6922] Memory cgroup out of memory: Killed process 6922 (syz-executor131) total-vm:25804kB, anon-rss:0kB, file-rss:512kB, shmem-rss:0kB, UID:0 pgtables:52kB oom_score_adj:1000 executing program [ 183.724910][ T6923] syz-executor131 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000 [ 183.729067][ T6923] CPU: 1 PID: 6923 Comm: syz-executor131 Not tainted 6.4.0-syzkaller-01224-g1ef6663a587b #0 [ 183.732573][ T6923] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 183.735811][ T6923] Call Trace: [ 183.736992][ T6923] [ 183.738043][ T6923] dump_stack_lvl+0x136/0x150 [ 183.739702][ T6923] dump_header+0x10a/0xd70 [ 183.741271][ T6923] oom_kill_process+0x25d/0x600 [ 183.742955][ T6923] out_of_memory+0x35c/0x1660 [ 183.744653][ T6923] ? oom_killer_disable+0x2b0/0x2b0 [ 183.746538][ T6923] ? lock_release+0x4fb/0x670 [ 183.748199][ T6923] ? rcu_read_unlock+0x9/0x60 [ 183.749842][ T6923] mem_cgroup_out_of_memory+0x206/0x270 [ 183.751799][ T6923] ? mem_cgroup_margin+0x130/0x130 [ 183.753665][ T6923] ? lock_downgrade+0x690/0x690 [ 183.755559][ T6923] try_charge_memcg+0xf99/0x13a0 [ 183.757349][ T6923] ? mem_cgroup_handle_over_high+0x520/0x520 [ 183.759425][ T6923] ? get_mem_cgroup_from_objcg+0xa1/0x280 [ 183.761409][ T6923] ? lock_downgrade+0x690/0x690 [ 183.763117][ T6923] ? lock_release+0x4fb/0x670 [ 183.764781][ T6923] ? obj_cgroup_charge+0x248/0x5e0 [ 183.766555][ T6923] ? lock_downgrade+0x690/0x690 [ 183.768279][ T6923] ? lock_release+0x4fb/0x670 [ 183.769989][ T6923] ? rcu_read_unlock+0x9/0x60 [ 183.771709][ T6923] obj_cgroup_charge+0x2af/0x5e0 [ 183.773456][ T6923] __kmem_cache_alloc_node+0x93/0x3f0 [ 183.775401][ T6923] ? neigh_sysctl_register+0x9e/0x5f0 [ 183.777408][ T6923] __kmalloc_node_track_caller+0x4f/0x1a0 [ 183.779441][ T6923] kmemdup+0x2c/0x60 [ 183.780854][ T6923] neigh_sysctl_register+0x9e/0x5f0 [ 183.782694][ T6923] ? neigh_stat_seq_show+0x420/0x420 [ 183.784646][ T6923] ? lock_downgrade+0x690/0x690 [ 183.786350][ T6923] ? inetdev_init+0x23d/0x580 [ 183.788031][ T6923] ? inetdev_event+0xe7c/0x1720 [ 183.789732][ T6923] ? notifier_call_chain+0xb6/0x3c0 [ 183.791520][ T6923] ? call_netdevice_notifiers_info+0xb9/0x130 [ 183.793667][ T6923] ? register_netdevice+0xfb4/0x1640 [ 183.795515][ T6923] ? veth_newlink+0x352/0x9d0 [ 183.797170][ T6923] ? __rtnl_newlink+0x10c2/0x1840 [ 183.798919][ T6923] ? rtnl_newlink+0x68/0xa0 [ 183.800505][ T6923] ? rtnetlink_rcv_msg+0x43d/0xd50 [ 183.802314][ T6923] ? netlink_rcv_skb+0x165/0x440 [ 183.804104][ T6923] ? netlink_unicast+0x547/0x7f0 [ 183.805863][ T6923] ? netlink_sendmsg+0x925/0xe30 [ 183.807627][ T6923] ? sock_sendmsg+0xde/0x190 [ 183.809271][ T6923] ? ____sys_sendmsg+0x722/0x900 [ 183.811198][ T6923] ? ___sys_sendmsg+0x110/0x1b0 [ 183.812975][ T6923] devinet_sysctl_register+0xb1/0x230 [ 183.814989][ T6923] inetdev_init+0x286/0x580 [ 183.816619][ T6923] inetdev_event+0xe7c/0x1720 [ 183.818291][ T6923] ? del_default_gids+0xe0/0xe0 [ 183.820244][ T6923] ? is_ndev_for_default_gid_filter.part.0+0x320/0x320 [ 183.822659][ T6923] ? devinet_init_net+0x650/0x650 [ 183.824533][ T6923] ? skb_dequeue+0x129/0x180 [ 183.826166][ T6923] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 183.828277][ T6923] notifier_call_chain+0xb6/0x3c0 [ 183.830184][ T6923] call_netdevice_notifiers_info+0xb9/0x130 [ 183.832342][ T6923] register_netdevice+0xfb4/0x1640 [ 183.834198][ T6923] ? unregister_netdevice_queue+0x3c0/0x3c0 [ 183.836248][ T6923] ? dev_addr_mod+0x2cd/0x400 [ 183.837888][ T6923] veth_newlink+0x352/0x9d0 [ 183.839479][ T6923] ? veth_set_features+0x2e0/0x2e0 [ 183.841290][ T6923] ? __rtnl_newlink+0xfd4/0x1840 [ 183.843009][ T6923] ? rtnl_newlink+0x68/0xa0 [ 183.844630][ T6923] ? rtnetlink_rcv_msg+0x43d/0xd50 [ 183.846401][ T6923] ? netlink_rcv_skb+0x165/0x440 [ 183.848209][ T6923] ? netlink_unicast+0x547/0x7f0 [ 183.850015][ T6923] ? netlink_sendmsg+0x925/0xe30 [ 183.851794][ T6923] ? sock_sendmsg+0xde/0x190 [ 183.853482][ T6923] ? ____sys_sendmsg+0x722/0x900 [ 183.855632][ T6923] ? ___sys_sendmsg+0x110/0x1b0 [ 183.857455][ T6923] ? __sys_sendmsg+0xf7/0x1c0 [ 183.859086][ T6923] ? do_syscall_64+0x39/0xb0 [ 183.860702][ T6923] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 183.862750][ T6923] ? lock_downgrade+0x690/0x690 [ 183.864747][ T6923] ? rcu_is_watching+0x12/0xb0 [ 183.866475][ T6923] ? rcu_is_watching+0x12/0xb0 [ 183.868252][ T6923] ? lock_release+0x4fb/0x670 [ 183.870023][ T6923] ? percpu_ref_put_many.constprop.0+0x4c/0x100 [ 183.872259][ T6923] ? lock_downgrade+0x690/0x690 [ 183.874114][ T6923] ? kvmalloc_node+0xa2/0x1a0 [ 183.875817][ T6923] ? rcu_is_watching+0x12/0xb0 [ 183.877551][ T6923] ? __kmalloc_node+0xfb/0x1a0 [ 183.879265][ T6923] ? __xdp_rxq_info_reg+0x18d/0x340 [ 183.881249][ T6923] ? alloc_netdev_mqs+0xdce/0x1250 [ 183.883089][ T6923] ? rtnl_create_link+0xa00/0xf20 [ 183.884969][ T6923] ? veth_set_features+0x2e0/0x2e0 [ 183.886835][ T6923] __rtnl_newlink+0x10c2/0x1840 [ 183.888596][ T6923] ? rtnl_link_unregister+0x250/0x250 [ 183.890521][ T6923] ? rcu_is_watching+0x12/0xb0 [ 183.892239][ T6923] ? lock_release+0x4fb/0x670 [ 183.893885][ T6923] ? __kmem_cache_alloc_node+0x43/0x3f0 [ 183.895956][ T6923] ? rtnetlink_rcv_msg+0x3e8/0xd50 [ 183.897776][ T6923] ? __kmem_cache_alloc_node+0x170/0x3f0 [ 183.899791][ T6923] rtnl_newlink+0x68/0xa0 [ 183.901359][ T6923] ? __rtnl_newlink+0x1840/0x1840 [ 183.903156][ T6923] rtnetlink_rcv_msg+0x43d/0xd50 [ 183.905349][ T6923] ? rtnl_stats_set+0x4d0/0x4d0 [ 183.907429][ T6923] ? __dev_queue_xmit+0xa2a/0x3b10 [ 183.909309][ T6923] ? avc_has_perm_noaudit+0x3a0/0x3a0 [ 183.911245][ T6923] netlink_rcv_skb+0x165/0x440 [ 183.913353][ T6923] ? rtnl_stats_set+0x4d0/0x4d0 [ 183.915497][ T6923] ? netlink_ack+0x1360/0x1360 [ 183.917756][ T6923] ? netlink_deliver_tap+0x1b1/0xcf0 [ 183.920138][ T6923] netlink_unicast+0x547/0x7f0 [ 183.922213][ T6923] ? netlink_attachskb+0x890/0x890 [ 183.924531][ T6923] netlink_sendmsg+0x925/0xe30 [ 183.926689][ T6923] ? netlink_unicast+0x7f0/0x7f0 [ 183.928520][ T6923] ? netlink_unicast+0x7f0/0x7f0 [ 183.930285][ T6923] sock_sendmsg+0xde/0x190 [ 183.932101][ T6923] ____sys_sendmsg+0x722/0x900 [ 183.934181][ T6923] ? copy_msghdr_from_user+0xfc/0x150 [ 183.936056][ T6923] ? kernel_sendmsg+0x50/0x50 [ 183.937717][ T6923] ? rcu_is_watching+0x12/0xb0 [ 183.939476][ T6923] ___sys_sendmsg+0x110/0x1b0 [ 183.941452][ T6923] ? do_recvmmsg+0x6f0/0x6f0 [ 183.943169][ T6923] ? lock_release+0x4fb/0x670 [ 183.944918][ T6923] ? __might_fault+0xe2/0x190 [ 183.946652][ T6923] ? lock_downgrade+0x690/0x690 [ 183.948441][ T6923] ? lock_release+0x4fb/0x670 [ 183.950198][ T6923] ? __might_fault+0xe2/0x190 [ 183.952084][ T6923] ? lock_downgrade+0x690/0x690 [ 183.953958][ T6923] ? __wake_up_common+0x650/0x650 [ 183.955743][ T6923] ? lock_downgrade+0x690/0x690 [ 183.957467][ T6923] ? _copy_to_user+0x49/0xc0 [ 183.959092][ T6923] ? __fget_light+0x201/0x270 [ 183.960757][ T6923] __sys_sendmsg+0xf7/0x1c0 [ 183.962530][ T6923] ? __sys_sendmsg_sock+0x40/0x40 [ 183.964351][ T6923] ? rcu_is_watching+0x12/0xb0 [ 183.966038][ T6923] ? trace_irq_enable.constprop.0+0xd0/0x100 [ 183.968171][ T6923] do_syscall_64+0x39/0xb0 [ 183.969741][ T6923] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 183.971789][ T6923] RIP: 0033:0x7f0ebb70f7e9 [ 183.973392][ T6923] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 183.980252][ T6923] RSP: 002b:00007ffe7ea0a5b8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 183.983208][ T6923] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f0ebb70f7e9 [ 183.986450][ T6923] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 183.989752][ T6923] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000003 [ 183.993084][ T6923] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ffe7ea0a5ec [ 183.996397][ T6923] R13: 00007ffe7ea0a600 R14: 00007ffe7ea0a640 R15: 00000000000006e2 [ 183.999729][ T6923] [ 184.001455][ T6923] memory: usage 307196kB, limit 307200kB, failcnt 1375 [ 184.004320][ T6923] memory+swap: usage 307300kB, limit 9007199254740988kB, failcnt 0 [ 184.007752][ T6923] kmem: usage 307036kB, limit 9007199254740988kB, failcnt 0 [ 184.010867][ T6923] Memory cgroup stats for /syz0: [ 184.010971][ T6923] anon 8192 [ 184.010971][ T6923] file 126976 [ 184.010971][ T6923] kernel 314404864 [ 184.010971][ T6923] kernel_stack 32768 [ 184.010971][ T6923] pagetables 40960 [ 184.010971][ T6923] sec_pagetables 0 [ 184.010971][ T6923] percpu 10407680 [ 184.010971][ T6923] sock 0 [ 184.010971][ T6923] vmalloc 0 [ 184.010971][ T6923] shmem 0 [ 184.010971][ T6923] zswap 0 [ 184.010971][ T6923] zswapped 0 [ 184.010971][ T6923] file_mapped 0 [ 184.010971][ T6923] file_dirty 0 [ 184.010971][ T6923] file_writeback 0 [ 184.010971][ T6923] swapcached 4096 [ 184.010971][ T6923] anon_thp 0 [ 184.010971][ T6923] file_thp 0 [ 184.010971][ T6923] shmem_thp 0 [ 184.010971][ T6923] inactive_anon 0 [ 184.010971][ T6923] active_anon 0 [ 184.010971][ T6923] inactive_file 0 [ 184.010971][ T6923] active_file 126976 [ 184.010971][ T6923] unevictable 0 [ 184.010971][ T6923] slab_reclaimable 27656 [ 184.010971][ T6923] slab_unreclaimable 303873168 [ 184.010971][ T6923] slab 303900824 [ 184.010971][ T6923] workingset_refault_anon 23 [ 184.010971][ T6923] workingset_refault_file 1 [ 184.010971][ T6923] workingset_activate_anon 0 [ 184.010971][ T6923] workingset_activate_file 0 [ 184.010971][ T6923] workingset_restore_anon 23 [ 184.010971][ T6923] workingset_restore_file 1 [ 184.010971][ T6923] workingset_nodereclaim 0 [ 184.010971][ T6923] pgscan 26633 [ 184.010971][ T6923] pgsteal 732 [ 184.010971][ T6923] pgscan_kswapd 0 [ 184.010971][ T6923] pgscan_direct 26633 [ 184.010971][ T6923] pgscan_khugepaged 0 [ 184.010971][ T6923] pgsteal_kswapd 0 [ 184.010971][ T6923] pgsteal_direct 732 [ 184.010971][ T6923] pgsteal_khugepaged 0 [ 184.010971][ T6923] pgfault 51557 [ 184.010971][ T6923] pgmajfault 327 [ 184.010971][ T6923] pgrefill 10 [ 184.010971][ T6923] pgactivate 25856 [ 184.010971][ T6923] pgdeactivate 0 [ 184.010971][ T6923] pglazyfree 0 [ 184.010971][ T6923] pglazyfreed 0 [ 184.010971][ T6923] zswpin 380 [ 184.010971][ T6923] zswpout 337 [ 184.081450][ T6923] Tasks state (memory values in pages): [ 184.083550][ T6923] [ pid ] uid tgid total_vm rss pgtables_bytes swapents oom_score_adj name [ 184.087707][ T6923] [ 5147] 0 5147 6451 128 40960 0 0 syz-executor131 [ 184.092154][ T6923] [ 6923] 0 6923 6451 128 53248 0 1000 syz-executor131 [ 184.096543][ T6923] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor131,pid=6923,uid=0 [ 184.103371][ T6923] Memory cgroup out of memory: Killed process 6923 (syz-executor131) total-vm:25804kB, anon-rss:0kB, file-rss:512kB, shmem-rss:0kB, UID:0 pgtables:52kB oom_score_adj:1000 executing program [ 185.237627][ T6924] syz-executor131 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000 [ 185.242761][ T6924] CPU: 1 PID: 6924 Comm: syz-executor131 Not tainted 6.4.0-syzkaller-01224-g1ef6663a587b #0 [ 185.246487][ T6924] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 185.249810][ T6924] Call Trace: [ 185.251299][ T6924] [ 185.252818][ T6924] dump_stack_lvl+0x136/0x150 [ 185.254950][ T6924] dump_header+0x10a/0xd70 [ 185.257034][ T6924] oom_kill_process+0x25d/0x600 [ 185.259200][ T6924] out_of_memory+0x35c/0x1660 [ 185.260894][ T6924] ? oom_killer_disable+0x2b0/0x2b0 [ 185.263150][ T6924] ? lock_release+0x4fb/0x670 [ 185.265319][ T6924] ? rcu_read_unlock+0x9/0x60 [ 185.267534][ T6924] mem_cgroup_out_of_memory+0x206/0x270 [ 185.270132][ T6924] ? mem_cgroup_margin+0x130/0x130 [ 185.272544][ T6924] ? lock_downgrade+0x690/0x690 [ 185.274561][ T6924] try_charge_memcg+0xf99/0x13a0 [ 185.276417][ T6924] ? mem_cgroup_handle_over_high+0x520/0x520 [ 185.278828][ T6924] ? get_mem_cgroup_from_objcg+0xa1/0x280 [ 185.280926][ T6924] ? lock_downgrade+0x690/0x690 [ 185.282944][ T6924] ? lock_release+0x4fb/0x670 [ 185.284966][ T6924] ? obj_cgroup_charge+0x248/0x5e0 [ 185.287344][ T6924] ? lock_downgrade+0x690/0x690 [ 185.289661][ T6924] ? lock_release+0x4fb/0x670 [ 185.291912][ T6924] ? rcu_read_unlock+0x9/0x60 [ 185.294109][ T6924] obj_cgroup_charge+0x2af/0x5e0 [ 185.296428][ T6924] __kmem_cache_alloc_node+0x93/0x3f0 [ 185.298587][ T6924] ? veth_dev_init+0xe5/0x360 [ 185.300466][ T6924] __kmalloc+0x4e/0x190 [ 185.302410][ T6924] ? veth_get_num_queues+0x50/0x50 [ 185.304804][ T6924] veth_dev_init+0xe5/0x360 [ 185.306921][ T6924] ? veth_get_num_queues+0x50/0x50 [ 185.309392][ T6924] register_netdevice+0x573/0x1640 [ 185.311708][ T6924] ? unregister_netdevice_queue+0x3c0/0x3c0 [ 185.314094][ T6924] ? dev_addr_mod+0x2cd/0x400 [ 185.315852][ T6924] veth_newlink+0x352/0x9d0 [ 185.317514][ T6924] ? veth_set_features+0x2e0/0x2e0 [ 185.319687][ T6924] ? __rtnl_newlink+0xfd4/0x1840 [ 185.321996][ T6924] ? rtnl_newlink+0x68/0xa0 [ 185.324201][ T6924] ? rtnetlink_rcv_msg+0x43d/0xd50 [ 185.326622][ T6924] ? netlink_rcv_skb+0x165/0x440 [ 185.328934][ T6924] ? netlink_unicast+0x547/0x7f0 [ 185.331237][ T6924] ? netlink_sendmsg+0x925/0xe30 [ 185.333555][ T6924] ? sock_sendmsg+0xde/0x190 [ 185.335637][ T6924] ? ____sys_sendmsg+0x722/0x900 [ 185.337896][ T6924] ? ___sys_sendmsg+0x110/0x1b0 [ 185.340086][ T6924] ? __sys_sendmsg+0xf7/0x1c0 [ 185.341833][ T6924] ? do_syscall_64+0x39/0xb0 [ 185.343530][ T6924] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 185.346026][ T6924] ? lock_downgrade+0x690/0x690 [ 185.348307][ T6924] ? rcu_is_watching+0x12/0xb0 [ 185.350523][ T6924] ? rcu_is_watching+0x12/0xb0 [ 185.352772][ T6924] ? lock_release+0x4fb/0x670 [ 185.355001][ T6924] ? percpu_ref_put_many.constprop.0+0x4c/0x100 [ 185.357914][ T6924] ? lock_downgrade+0x690/0x690 [ 185.360199][ T6924] ? kvmalloc_node+0xa2/0x1a0 [ 185.362363][ T6924] ? rcu_is_watching+0x12/0xb0 [ 185.364637][ T6924] ? __kmalloc_node+0xfb/0x1a0 [ 185.366817][ T6924] ? __xdp_rxq_info_reg+0x18d/0x340 [ 185.369285][ T6924] ? alloc_netdev_mqs+0xdce/0x1250 [ 185.371652][ T6924] ? rtnl_create_link+0xa00/0xf20 [ 185.373795][ T6924] ? veth_set_features+0x2e0/0x2e0 [ 185.375781][ T6924] __rtnl_newlink+0x10c2/0x1840 [ 185.377537][ T6924] ? rtnl_link_unregister+0x250/0x250 [ 185.379457][ T6924] ? rcu_is_watching+0x12/0xb0 [ 185.381191][ T6924] ? lock_release+0x4fb/0x670 [ 185.383318][ T6924] ? __kmem_cache_alloc_node+0x43/0x3f0 [ 185.385879][ T6924] ? rtnetlink_rcv_msg+0x3e8/0xd50 [ 185.388334][ T6924] ? __kmem_cache_alloc_node+0x170/0x3f0 [ 185.390606][ T6924] rtnl_newlink+0x68/0xa0 [ 185.392417][ T6924] ? __rtnl_newlink+0x1840/0x1840 [ 185.394793][ T6924] rtnetlink_rcv_msg+0x43d/0xd50 [ 185.397142][ T6924] ? rtnl_stats_set+0x4d0/0x4d0 [ 185.399205][ T6924] ? __dev_queue_xmit+0xa2a/0x3b10 [ 185.401257][ T6924] ? avc_has_perm_noaudit+0x3a0/0x3a0 [ 185.403383][ T6924] netlink_rcv_skb+0x165/0x440 [ 185.405119][ T6924] ? rtnl_stats_set+0x4d0/0x4d0 [ 185.407004][ T6924] ? netlink_ack+0x1360/0x1360 [ 185.409314][ T6924] ? netlink_deliver_tap+0x1b1/0xcf0 [ 185.411745][ T6924] netlink_unicast+0x547/0x7f0 [ 185.413988][ T6924] ? netlink_attachskb+0x890/0x890 [ 185.416376][ T6924] netlink_sendmsg+0x925/0xe30 [ 185.418603][ T6924] ? netlink_unicast+0x7f0/0x7f0 [ 185.420857][ T6924] ? netlink_unicast+0x7f0/0x7f0 [ 185.423173][ T6924] sock_sendmsg+0xde/0x190 [ 185.425128][ T6924] ____sys_sendmsg+0x722/0x900 [ 185.427079][ T6924] ? copy_msghdr_from_user+0xfc/0x150 [ 185.428998][ T6924] ? kernel_sendmsg+0x50/0x50 [ 185.430753][ T6924] ? rcu_is_watching+0x12/0xb0 [ 185.432979][ T6924] ___sys_sendmsg+0x110/0x1b0 [ 185.435230][ T6924] ? do_recvmmsg+0x6f0/0x6f0 [ 185.437373][ T6924] ? lock_release+0x4fb/0x670 [ 185.439580][ T6924] ? __might_fault+0xe2/0x190 [ 185.441784][ T6924] ? lock_downgrade+0x690/0x690 [ 185.444000][ T6924] ? lock_release+0x4fb/0x670 [ 185.446205][ T6924] ? __might_fault+0xe2/0x190 [ 185.447945][ T6924] ? lock_downgrade+0x690/0x690 [ 185.449685][ T6924] ? __wake_up_common+0x650/0x650 [ 185.451734][ T6924] ? lock_downgrade+0x690/0x690 [ 185.453947][ T6924] ? _copy_to_user+0x49/0xc0 [ 185.456149][ T6924] ? __fget_light+0x201/0x270 [ 185.458307][ T6924] __sys_sendmsg+0xf7/0x1c0 [ 185.460495][ T6924] ? __sys_sendmsg_sock+0x40/0x40 [ 185.462835][ T6924] ? rcu_is_watching+0x12/0xb0 [ 185.465079][ T6924] ? trace_irq_enable.constprop.0+0xd0/0x100 [ 185.468082][ T6924] do_syscall_64+0x39/0xb0 [ 185.469941][ T6924] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 185.472327][ T6924] RIP: 0033:0x7f0ebb70f7e9 [ 185.474404][ T6924] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 185.482392][ T6924] RSP: 002b:00007ffe7ea0a5b8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 185.486365][ T6924] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f0ebb70f7e9 [ 185.490192][ T6924] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 185.493692][ T6924] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000003 [ 185.497028][ T6924] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ffe7ea0a5ec [ 185.499915][ T6924] R13: 00007ffe7ea0a600 R14: 00007ffe7ea0a640 R15: 00000000000006e3 [ 185.502949][ T6924] [ 185.504763][ T6924] memory: usage 307200kB, limit 307200kB, failcnt 1531 [ 185.508364][ T6924] memory+swap: usage 307332kB, limit 9007199254740988kB, failcnt 0 [ 185.512199][ T6924] kmem: usage 307056kB, limit 9007199254740988kB, failcnt 0 [ 185.514848][ T6924] Memory cgroup stats for /syz0: [ 185.514927][ T6924] anon 12288 [ 185.514927][ T6924] file 118784 [ 185.514927][ T6924] kernel 314425344 [ 185.514927][ T6924] kernel_stack 32768 [ 185.514927][ T6924] pagetables 40960 [ 185.514927][ T6924] sec_pagetables 0 [ 185.514927][ T6924] percpu 10407840 [ 185.514927][ T6924] sock 0 [ 185.514927][ T6924] vmalloc 0 [ 185.514927][ T6924] shmem 0 [ 185.514927][ T6924] zswap 0 [ 185.514927][ T6924] zswapped 0 [ 185.514927][ T6924] file_mapped 0 [ 185.514927][ T6924] file_dirty 0 [ 185.514927][ T6924] file_writeback 0 [ 185.514927][ T6924] swapcached 8192 [ 185.514927][ T6924] anon_thp 0 [ 185.514927][ T6924] file_thp 0 [ 185.514927][ T6924] shmem_thp 0 [ 185.514927][ T6924] inactive_anon 0 [ 185.514927][ T6924] active_anon 12288 [ 185.514927][ T6924] inactive_file 0 [ 185.514927][ T6924] active_file 118784 [ 185.514927][ T6924] unevictable 0 [ 185.514927][ T6924] slab_reclaimable 36800 [ 185.514927][ T6924] slab_unreclaimable 303877192 [ 185.514927][ T6924] slab 303913992 [ 185.514927][ T6924] workingset_refault_anon 23 [ 185.514927][ T6924] workingset_refault_file 1 [ 185.514927][ T6924] workingset_activate_anon 0 [ 185.514927][ T6924] workingset_activate_file 0 [ 185.514927][ T6924] workingset_restore_anon 23 [ 185.514927][ T6924] workingset_restore_file 1 [ 185.514927][ T6924] workingset_nodereclaim 0 [ 185.514927][ T6924] pgscan 31932 [ 185.514927][ T6924] pgsteal 758 [ 185.514927][ T6924] pgscan_kswapd 0 [ 185.514927][ T6924] pgscan_direct 31932 [ 185.514927][ T6924] pgscan_khugepaged 0 [ 185.514927][ T6924] pgsteal_kswapd 0 [ 185.514927][ T6924] pgsteal_direct 758 [ 185.514927][ T6924] pgsteal_khugepaged 0 [ 185.514927][ T6924] pgfault 51598 [ 185.514927][ T6924] pgmajfault 340 [ 185.514927][ T6924] pgrefill 10 [ 185.514927][ T6924] pgactivate 31128 [ 185.514927][ T6924] pgdeactivate 0 [ 185.514927][ T6924] pglazyfree 0 [ 185.514927][ T6924] pglazyfreed 0 [ 185.514927][ T6924] zswpin 396 [ 185.514927][ T6924] zswpout 355 [ 185.591630][ T6924] Tasks state (memory values in pages): [ 185.593971][ T6924] [ pid ] uid tgid total_vm rss pgtables_bytes swapents oom_score_adj name [ 185.597632][ T6924] [ 5147] 0 5147 6451 128 40960 0 0 syz-executor131 [ 185.601127][ T6924] [ 6924] 0 6924 6451 128 53248 0 1000 syz-executor131 [ 185.605603][ T6924] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor131,pid=6924,uid=0 [ 185.612826][ T6924] Memory cgroup out of memory: Killed process 6924 (syz-executor131) total-vm:25804kB, anon-rss:0kB, file-rss:512kB, shmem-rss:0kB, UID:0 pgtables:52kB oom_score_adj:1000 executing program [ 185.678785][ T6925] __nla_validate_parse: 63 callbacks suppressed [ 185.678800][ T6925] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. executing program [ 185.767963][ T6926] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. [ 185.786611][ T6926] syz-executor131 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000 [ 185.790867][ T6926] CPU: 3 PID: 6926 Comm: syz-executor131 Not tainted 6.4.0-syzkaller-01224-g1ef6663a587b #0 [ 185.794637][ T6926] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 185.798017][ T6926] Call Trace: [ 185.799233][ T6926] [ 185.800306][ T6926] dump_stack_lvl+0x136/0x150 [ 185.802027][ T6926] dump_header+0x10a/0xd70 [ 185.803639][ T6926] oom_kill_process+0x25d/0x600 [ 185.805550][ T6926] out_of_memory+0x35c/0x1660 [ 185.807267][ T6926] ? oom_killer_disable+0x2b0/0x2b0 [ 185.809150][ T6926] ? lock_release+0x4fb/0x670 [ 185.810843][ T6926] ? rcu_read_unlock+0x9/0x60 [ 185.812552][ T6926] mem_cgroup_out_of_memory+0x206/0x270 [ 185.814590][ T6926] ? mem_cgroup_margin+0x130/0x130 [ 185.816557][ T6926] ? lock_downgrade+0x690/0x690 [ 185.818356][ T6926] try_charge_memcg+0xf99/0x13a0 [ 185.820163][ T6926] ? mem_cgroup_handle_over_high+0x520/0x520 [ 185.822338][ T6926] ? get_mem_cgroup_from_objcg+0xa1/0x280 [ 185.824424][ T6926] ? lock_downgrade+0x690/0x690 [ 185.826216][ T6926] ? lock_release+0x4fb/0x670 [ 185.828000][ T6926] ? obj_cgroup_charge+0x248/0x5e0 [ 185.829922][ T6926] ? lock_downgrade+0x690/0x690 [ 185.831747][ T6926] ? lock_release+0x4fb/0x670 [ 185.833528][ T6926] ? rcu_read_unlock+0x9/0x60 [ 185.835287][ T6926] obj_cgroup_charge+0x2af/0x5e0 [ 185.837121][ T6926] __kmem_cache_alloc_node+0x93/0x3f0 [ 185.839142][ T6926] ? neigh_sysctl_register+0x9e/0x5f0 [ 185.841125][ T6926] __kmalloc_node_track_caller+0x4f/0x1a0 [ 185.843249][ T6926] kmemdup+0x2c/0x60 [ 185.844700][ T6926] neigh_sysctl_register+0x9e/0x5f0 [ 185.846522][ T6926] ? neigh_stat_seq_show+0x420/0x420 [ 185.848445][ T6926] ? lock_downgrade+0x690/0x690 [ 185.850261][ T6926] ? inetdev_init+0x23d/0x580 [ 185.852059][ T6926] ? inetdev_event+0xe7c/0x1720 [ 185.853845][ T6926] ? notifier_call_chain+0xb6/0x3c0 [ 185.855807][ T6926] ? call_netdevice_notifiers_info+0xb9/0x130 [ 185.858027][ T6926] ? register_netdevice+0xfb4/0x1640 [ 185.860176][ T6926] ? veth_newlink+0x352/0x9d0 [ 185.861854][ T6926] ? __rtnl_newlink+0x10c2/0x1840 [ 185.863707][ T6926] ? rtnl_newlink+0x68/0xa0 [ 185.865765][ T6926] ? rtnetlink_rcv_msg+0x43d/0xd50 [ 185.868086][ T6926] ? netlink_rcv_skb+0x165/0x440 [ 185.870042][ T6926] ? netlink_unicast+0x547/0x7f0 [ 185.871813][ T6926] ? netlink_sendmsg+0x925/0xe30 [ 185.873559][ T6926] ? sock_sendmsg+0xde/0x190 [ 185.875239][ T6926] ? ____sys_sendmsg+0x722/0x900 [ 185.877211][ T6926] ? ___sys_sendmsg+0x110/0x1b0 [ 185.879405][ T6926] devinet_sysctl_register+0xb1/0x230 [ 185.881808][ T6926] inetdev_init+0x286/0x580 [ 185.883862][ T6926] inetdev_event+0xe7c/0x1720 [ 185.886003][ T6926] ? del_default_gids+0xe0/0xe0 [ 185.888229][ T6926] ? is_ndev_for_default_gid_filter.part.0+0x320/0x320 [ 185.891230][ T6926] ? devinet_init_net+0x650/0x650 [ 185.893478][ T6926] ? skb_dequeue+0x129/0x180 [ 185.895617][ T6926] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 185.898271][ T6926] notifier_call_chain+0xb6/0x3c0 [ 185.900629][ T6926] call_netdevice_notifiers_info+0xb9/0x130 [ 185.903324][ T6926] register_netdevice+0xfb4/0x1640 [ 185.905701][ T6926] ? unregister_netdevice_queue+0x3c0/0x3c0 [ 185.908363][ T6926] ? dev_addr_mod+0x2cd/0x400 [ 185.910471][ T6926] veth_newlink+0x352/0x9d0 [ 185.912550][ T6926] ? veth_set_features+0x2e0/0x2e0 [ 185.914910][ T6926] ? __rtnl_newlink+0xfd4/0x1840 [ 185.917221][ T6926] ? rtnl_newlink+0x68/0xa0 [ 185.919310][ T6926] ? rtnetlink_rcv_msg+0x43d/0xd50 [ 185.921639][ T6926] ? netlink_rcv_skb+0x165/0x440 [ 185.923853][ T6926] ? netlink_unicast+0x547/0x7f0 [ 185.926077][ T6926] ? netlink_sendmsg+0x925/0xe30 [ 185.928309][ T6926] ? sock_sendmsg+0xde/0x190 [ 185.930367][ T6926] ? ____sys_sendmsg+0x722/0x900 [ 185.932744][ T6926] ? ___sys_sendmsg+0x110/0x1b0 [ 185.934914][ T6926] ? __sys_sendmsg+0xf7/0x1c0 [ 185.937034][ T6926] ? do_syscall_64+0x39/0xb0 [ 185.939128][ T6926] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 185.941887][ T6926] ? lock_downgrade+0x690/0x690 [ 185.944060][ T6926] ? rcu_is_watching+0x12/0xb0 [ 185.946195][ T6926] ? rcu_is_watching+0x12/0xb0 [ 185.948362][ T6926] ? lock_release+0x4fb/0x670 [ 185.950470][ T6926] ? percpu_ref_put_many.constprop.0+0x4c/0x100 [ 185.953305][ T6926] ? lock_downgrade+0x690/0x690 [ 185.955472][ T6926] ? kvmalloc_node+0xa2/0x1a0 [ 185.957645][ T6926] ? rcu_is_watching+0x12/0xb0 [ 185.959863][ T6926] ? __kmalloc_node+0xfb/0x1a0 [ 185.962066][ T6926] ? __xdp_rxq_info_reg+0x18d/0x340 [ 185.964417][ T6926] ? alloc_netdev_mqs+0xdce/0x1250 [ 185.966741][ T6926] ? rtnl_create_link+0xa00/0xf20 [ 185.969129][ T6926] ? veth_set_features+0x2e0/0x2e0 [ 185.971465][ T6926] __rtnl_newlink+0x10c2/0x1840 [ 185.973720][ T6926] ? rtnl_link_unregister+0x250/0x250 [ 185.976153][ T6926] ? rcu_is_watching+0x12/0xb0 [ 185.978394][ T6926] ? lock_release+0x4fb/0x670 [ 185.980551][ T6926] ? __kmem_cache_alloc_node+0x43/0x3f0 [ 185.983067][ T6926] ? rtnetlink_rcv_msg+0x3e8/0xd50 [ 185.985416][ T6926] ? __kmem_cache_alloc_node+0x170/0x3f0 [ 185.988040][ T6926] rtnl_newlink+0x68/0xa0 [ 185.990063][ T6926] ? __rtnl_newlink+0x1840/0x1840 [ 185.992401][ T6926] rtnetlink_rcv_msg+0x43d/0xd50 [ 185.994701][ T6926] ? rtnl_stats_set+0x4d0/0x4d0 [ 185.997040][ T6926] ? __dev_queue_xmit+0xa2a/0x3b10 [ 185.999407][ T6926] ? avc_has_perm_noaudit+0x3a0/0x3a0 [ 186.001865][ T6926] netlink_rcv_skb+0x165/0x440 [ 186.004089][ T6926] ? rtnl_stats_set+0x4d0/0x4d0 [ 186.006330][ T6926] ? netlink_ack+0x1360/0x1360 [ 186.008574][ T6926] ? netlink_deliver_tap+0x1b1/0xcf0 [ 186.011053][ T6926] netlink_unicast+0x547/0x7f0 [ 186.013235][ T6926] ? netlink_attachskb+0x890/0x890 [ 186.015529][ T6926] netlink_sendmsg+0x925/0xe30 [ 186.017719][ T6926] ? netlink_unicast+0x7f0/0x7f0 [ 186.019960][ T6926] ? netlink_unicast+0x7f0/0x7f0 [ 186.022249][ T6926] sock_sendmsg+0xde/0x190 [ 186.024370][ T6926] ____sys_sendmsg+0x722/0x900 [ 186.026624][ T6926] ? copy_msghdr_from_user+0xfc/0x150 [ 186.029152][ T6926] ? kernel_sendmsg+0x50/0x50 [ 186.031396][ T6926] ? do_wp_page+0x4be/0x33c0 [ 186.033599][ T6926] ___sys_sendmsg+0x110/0x1b0 [ 186.035491][ T6926] ? do_recvmmsg+0x6f0/0x6f0 [ 186.037173][ T6926] ? spin_bug+0x1c0/0x1c0 [ 186.038723][ T6926] ? lock_downgrade+0x690/0x690 [ 186.040498][ T6926] ? __handle_mm_fault+0x857/0x41c0 [ 186.042510][ T6926] ? rcu_is_watching+0x12/0xb0 [ 186.044705][ T6926] ? lock_acquire+0x470/0x520 [ 186.046858][ T6926] ? __fget_light+0x201/0x270 [ 186.049059][ T6926] __sys_sendmsg+0xf7/0x1c0 [ 186.051153][ T6926] ? __sys_sendmsg_sock+0x40/0x40 [ 186.053533][ T6926] ? rcu_is_watching+0x12/0xb0 [ 186.055840][ T6926] ? trace_irq_enable.constprop.0+0xd0/0x100 [ 186.058667][ T6926] do_syscall_64+0x39/0xb0 [ 186.060791][ T6926] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 186.063620][ T6926] RIP: 0033:0x7f0ebb70f7e9 [ 186.065748][ T6926] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 186.074626][ T6926] RSP: 002b:00007ffe7ea0a5b8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 186.078473][ T6926] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f0ebb70f7e9 [ 186.082185][ T6926] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 186.085872][ T6926] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000003 [ 186.089590][ T6926] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ffe7ea0a5ec [ 186.093266][ T6926] R13: 00007ffe7ea0a600 R14: 00007ffe7ea0a640 R15: 00000000000006e5 [ 186.096952][ T6926] [ 186.098695][ T6926] memory: usage 307200kB, limit 307200kB, failcnt 2104 [ 186.101912][ T6926] memory+swap: usage 307376kB, limit 9007199254740988kB, failcnt 0 [ 186.105586][ T6926] kmem: usage 307044kB, limit 9007199254740988kB, failcnt 0 [ 186.109027][ T6926] Memory cgroup stats for /syz0: [ 186.109165][ T6926] anon 8192 [ 186.109165][ T6926] file 118784 [ 186.109165][ T6926] kernel 314413056 [ 186.109165][ T6926] kernel_stack 32768 [ 186.109165][ T6926] pagetables 40960 [ 186.109165][ T6926] sec_pagetables 0 [ 186.109165][ T6926] percpu 10407840 [ 186.109165][ T6926] sock 0 [ 186.109165][ T6926] vmalloc 0 [ 186.109165][ T6926] shmem 0 [ 186.109165][ T6926] zswap 0 [ 186.109165][ T6926] zswapped 0 [ 186.109165][ T6926] file_mapped 0 [ 186.109165][ T6926] file_dirty 0 [ 186.109165][ T6926] file_writeback 0 [ 186.109165][ T6926] swapcached 8192 [ 186.109165][ T6926] anon_thp 0 [ 186.109165][ T6926] file_thp 0 [ 186.109165][ T6926] shmem_thp 0 [ 186.109165][ T6926] inactive_anon 0 [ 186.109165][ T6926] active_anon 0 [ 186.109165][ T6926] inactive_file 0 [ 186.109165][ T6926] active_file 118784 [ 186.109165][ T6926] unevictable 0 [ 186.109165][ T6926] slab_reclaimable 30512 [ 186.109165][ T6926] slab_unreclaimable 303874528 [ 186.109165][ T6926] slab 303905040 [ 186.109165][ T6926] workingset_refault_anon 45 [ 186.109165][ T6926] workingset_refault_file 1 [ 186.109165][ T6926] workingset_activate_anon 0 [ 186.109165][ T6926] workingset_activate_file 0 [ 186.109165][ T6926] workingset_restore_anon 45 [ 186.109165][ T6926] workingset_restore_file 1 [ 186.109165][ T6926] workingset_nodereclaim 0 [ 186.109165][ T6926] pgscan 42915 [ 186.109165][ T6926] pgsteal 1014 [ 186.109165][ T6926] pgscan_kswapd 0 [ 186.109165][ T6926] pgscan_direct 42915 [ 186.109165][ T6926] pgscan_khugepaged 0 [ 186.109165][ T6926] pgsteal_kswapd 0 [ 186.109165][ T6926] pgsteal_direct 1014 [ 186.109165][ T6926] pgsteal_khugepaged 0 [ 186.109165][ T6926] pgfault 51970 [ 186.109165][ T6926] pgmajfault 565 [ 186.109165][ T6926] pgrefill 10 [ 186.109165][ T6926] pgactivate 41831 [ 186.109165][ T6926] pgdeactivate 0 [ 186.109165][ T6926] pglazyfree 0 [ 186.109165][ T6926] pglazyfreed 0 [ 186.109165][ T6926] zswpin 639 [ 186.109165][ T6926] zswpout 544 [ 186.179457][ T6926] Tasks state (memory values in pages): [ 186.181452][ T6926] [ pid ] uid tgid total_vm rss pgtables_bytes swapents oom_score_adj name [ 186.184804][ T6926] [ 5147] 0 5147 6451 128 40960 32 0 syz-executor131 [ 186.188465][ T6926] [ 6926] 0 6926 6451 128 53248 0 1000 syz-executor131 [ 186.191977][ T6926] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor131,pid=6926,uid=0 [ 186.197497][ T6926] Memory cgroup out of memory: Killed process 6926 (syz-executor131) total-vm:25804kB, anon-rss:0kB, file-rss:512kB, shmem-rss:0kB, UID:0 pgtables:52kB oom_score_adj:1000 executing program [ 186.298610][ T6927] netlink: 24 bytes leftover after parsing attributes in process `syz-executor131'. [ 186.324814][ T6927] syz-executor131 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=1, oom_score_adj=1000 [ 186.329235][ T6927] CPU: 1 PID: 6927 Comm: syz-executor131 Not tainted 6.4.0-syzkaller-01224-g1ef6663a587b #0 [ 186.332872][ T6927] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 186.336060][ T6927] Call Trace: [ 186.337270][ T6927] [ 186.338352][ T6927] dump_stack_lvl+0x136/0x150 [ 186.340098][ T6927] dump_header+0x10a/0xd70 [ 186.341736][ T6927] oom_kill_process+0x25d/0x600 [ 186.343488][ T6927] out_of_memory+0x35c/0x1660 [ 186.345174][ T6927] ? oom_killer_disable+0x2b0/0x2b0 [ 186.347057][ T6927] ? lock_release+0x4fb/0x670 [ 186.348792][ T6927] ? rcu_read_unlock+0x9/0x60 [ 186.350453][ T6927] mem_cgroup_out_of_memory+0x206/0x270 [ 186.352436][ T6927] ? mem_cgroup_margin+0x130/0x130 [ 186.354268][ T6927] ? lock_downgrade+0x690/0x690 [ 186.356031][ T6927] try_charge_memcg+0xf99/0x13a0 [ 186.357828][ T6927] ? mem_cgroup_handle_over_high+0x520/0x520 [ 186.360002][ T6927] ? get_mem_cgroup_from_objcg+0xa1/0x280 [ 186.362057][ T6927] ? lock_downgrade+0x690/0x690 [ 186.363831][ T6927] ? lock_release+0x4fb/0x670 [ 186.365538][ T6927] ? obj_cgroup_charge+0x248/0x5e0 [ 186.367403][ T6927] ? lock_downgrade+0x690/0x690 [ 186.369187][ T6927] ? lock_release+0x4fb/0x670 [ 186.370895][ T6927] ? rcu_read_unlock+0x9/0x60 [ 186.372611][ T6927] obj_cgroup_charge+0x2af/0x5e0 [ 186.374405][ T6927] __kmem_cache_alloc_node+0x93/0x3f0 [ 186.376383][ T6927] kmalloc_trace+0x26/0xe0 [ 186.378027][ T6927] ipv6_add_dev+0xfe/0x13b0 [ 186.379683][ T6927] addrconf_notify+0x63d/0x19f0 [ 186.381469][ T6927] ? tee_netdev_event+0x2d7/0x390 [ 186.383300][ T6927] ? ip6mr_device_event+0x1af/0x220 [ 186.385176][ T6927] ? mutex_is_locked+0x12/0x50 [ 186.386940][ T6927] notifier_call_chain+0xb6/0x3c0 [ 186.388809][ T6927] call_netdevice_notifiers_info+0xb9/0x130 [ 186.390935][ T6927] register_netdevice+0xfb4/0x1640 [ 186.392788][ T6927] ? unregister_netdevice_queue+0x3c0/0x3c0 [ 186.394914][ T6927] ? dev_addr_mod+0x2cd/0x400 [ 186.396608][ T6927] veth_newlink+0x352/0x9d0 [ 186.398233][ T6927] ? veth_set_features+0x2e0/0x2e0 [ 186.400059][ T6927] ? __rtnl_newlink+0xfd4/0x1840 [ 186.401827][ T6927] ? rtnl_newlink+0x68/0xa0 [ 186.403447][ T6927] ? rtnetlink_rcv_msg+0x43d/0xd50 [ 186.405277][ T6927] ? netlink_rcv_skb+0x165/0x440 [ 186.407066][ T6927] ? netlink_unicast+0x547/0x7f0 [ 186.408849][ T6927] ? netlink_sendmsg+0x925/0xe30 [ 186.410611][ T6927] ? sock_sendmsg+0xde/0x190 [ 186.412294][ T6927] ? ____sys_sendmsg+0x722/0x900 [ 186.414060][ T6927] ? ___sys_sendmsg+0x110/0x1b0 [ 186.415839][ T6927] ? __sys_sendmsg+0xf7/0x1c0 [ 186.417606][ T6927] ? do_syscall_64+0x39/0xb0 [ 186.419278][ T6927] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 186.421476][ T6927] ? lock_downgrade+0x690/0x690 [ 186.423245][ T6927] ? rcu_is_watching+0x12/0xb0 [ 186.425004][ T6927] ? rcu_is_watching+0x12/0xb0 [ 186.426735][ T6927] ? lock_release+0x4fb/0x670 [ 186.428450][ T6927] ? percpu_ref_put_many.constprop.0+0x4c/0x100 [ 186.430694][ T6927] ? lock_downgrade+0x690/0x690 [ 186.432461][ T6927] ? kvmalloc_node+0xa2/0x1a0 [ 186.434166][ T6927] ? rcu_is_watching+0x12/0xb0 [ 186.435898][ T6927] ? __kmalloc_node+0xfb/0x1a0 [ 186.437802][ T6927] ? __xdp_rxq_info_reg+0x18d/0x340 [ 186.439673][ T6927] ? alloc_netdev_mqs+0xdce/0x1250 [ 186.441546][ T6927] ? rtnl_create_link+0xa00/0xf20 [ 186.443400][ T6927] ? veth_set_features+0x2e0/0x2e0 [ 186.445257][ T6927] __rtnl_newlink+0x10c2/0x1840 [ 186.447020][ T6927] ? rtnl_link_unregister+0x250/0x250 [ 186.448975][ T6927] ? rcu_is_watching+0x12/0xb0 [ 186.450712][ T6927] ? lock_release+0x4fb/0x670 [ 186.452437][ T6927] ? __kmem_cache_alloc_node+0x43/0x3f0 [ 186.454417][ T6927] ? rtnetlink_rcv_msg+0x3e8/0xd50 [ 186.456276][ T6927] ? __kmem_cache_alloc_node+0x170/0x3f0 [ 186.458299][ T6927] rtnl_newlink+0x68/0xa0 [ 186.459886][ T6927] ? __rtnl_newlink+0x1840/0x1840 [ 186.461709][ T6927] rtnetlink_rcv_msg+0x43d/0xd50 [ 186.463503][ T6927] ? rtnl_stats_set+0x4d0/0x4d0 [ 186.465317][ T6927] ? __dev_queue_xmit+0xa2a/0x3b10 [ 186.467184][ T6927] ? avc_has_perm_noaudit+0x3a0/0x3a0 [ 186.469142][ T6927] netlink_rcv_skb+0x165/0x440 [ 186.470903][ T6927] ? rtnl_stats_set+0x4d0/0x4d0 [ 186.472677][ T6927] ? netlink_ack+0x1360/0x1360 [ 186.474413][ T6927] ? netlink_deliver_tap+0x1b1/0xcf0 [ 186.476321][ T6927] netlink_unicast+0x547/0x7f0 [ 186.478051][ T6927] ? netlink_attachskb+0x890/0x890 [ 186.479902][ T6927] netlink_sendmsg+0x925/0xe30 [ 186.481645][ T6927] ? netlink_unicast+0x7f0/0x7f0 [ 186.483450][ T6927] ? netlink_unicast+0x7f0/0x7f0 [ 186.485301][ T6927] sock_sendmsg+0xde/0x190 [ 186.486940][ T6927] ____sys_sendmsg+0x722/0x900 [ 186.488748][ T6927] ? copy_msghdr_from_user+0xfc/0x150 [ 186.490677][ T6927] ? kernel_sendmsg+0x50/0x50 [ 186.492401][ T6927] ? do_wp_page+0x4be/0x33c0 [ 186.494097][ T6927] ___sys_sendmsg+0x110/0x1b0 [ 186.495828][ T6927] ? do_recvmmsg+0x6f0/0x6f0 [ 186.497497][ T6927] ? spin_bug+0x1c0/0x1c0 [ 186.499067][ T6927] ? lock_downgrade+0x690/0x690 [ 186.500826][ T6927] ? __handle_mm_fault+0x857/0x41c0 [ 186.502703][ T6927] ? rcu_is_watching+0x12/0xb0 [ 186.504433][ T6927] ? lock_acquire+0x470/0x520 [ 186.506118][ T6927] ? __fget_light+0x201/0x270 [ 186.507839][ T6927] __sys_sendmsg+0xf7/0x1c0 [ 186.509543][ T6927] ? __sys_sendmsg_sock+0x40/0x40 [ 186.511364][ T6927] ? rcu_is_watching+0x12/0xb0 [ 186.513112][ T6927] ? trace_irq_enable.constprop.0+0xd0/0x100 [ 186.515256][ T6927] do_syscall_64+0x39/0xb0 [ 186.516875][ T6927] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 186.518992][ T6927] RIP: 0033:0x7f0ebb70f7e9 [ 186.520606][ T6927] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 186.527709][ T6927] RSP: 002b:00007ffe7ea0a5b8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 186.530723][ T6927] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f0ebb70f7e9 [ 186.533615][ T6927] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 186.536529][ T6927] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000003 [ 186.539377][ T6927] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ffe7ea0a5ec [ 186.542229][ T6927] R13: 00007ffe7ea0a600 R14: 00007ffe7ea0a640 R15: 00000000000006e6 [ 186.545083][ T6927] [ 186.546374][ T6927] memory: usage 307196kB, limit 307200kB, failcnt 2309 [ 186.549059][ T6927] memory+swap: usage 307324kB, limit 9007199254740988kB, failcnt 0 [ 186.551905][ T6927] kmem: usage 307068kB, limit 9007199254740988kB, failcnt 0 [ 186.554526][ T6927] Memory cgroup stats for /syz0: [ 186.554603][ T6927] anon 8192 [ 186.554603][ T6927] file 114688 [ 186.554603][ T6927] kernel 314437632 [ 186.554603][ T6927] kernel_stack 32768 [ 186.554603][ T6927] pagetables 40960 [ 186.554603][ T6927] sec_pagetables 0 [ 186.554603][ T6927] percpu 10407840 [ 186.554603][ T6927] sock 0 [ 186.554603][ T6927] vmalloc 0 [ 186.554603][ T6927] shmem 0 [ 186.554603][ T6927] zswap 0 [ 186.554603][ T6927] zswapped 0 [ 186.554603][ T6927] file_mapped 0 [ 186.554603][ T6927] file_dirty 0 [ 186.554603][ T6927] file_writeback 0 [ 186.554603][ T6927] swapcached 8192 [ 186.554603][ T6927] anon_thp 0 [ 186.554603][ T6927] file_thp 0 [ 186.554603][ T6927] shmem_thp 0 [ 186.554603][ T6927] inactive_anon 0 [ 186.554603][ T6927] active_anon 0 [ 186.554603][ T6927] inactive_file 0 [ 186.554603][ T6927] active_file 114688 [ 186.554603][ T6927] unevictable 0 [ 186.554603][ T6927] slab_reclaimable 23984 [ 186.554603][ T6927] slab_unreclaimable 303900224 [ 186.554603][ T6927] slab 303924208 [ 186.554603][ T6927] workingset_refault_anon 52 [ 186.554603][ T6927] workingset_refault_file 1 [ 186.554603][ T6927] workingset_activate_anon 0 [ 186.554603][ T6927] workingset_activate_file 0 [ 186.554603][ T6927] workingset_restore_anon 52 [ 186.554603][ T6927] workingset_restore_file 1 [ 186.554603][ T6927] workingset_nodereclaim 0 [ 186.554603][ T6927] pgscan 49189 [ 186.554603][ T6927] pgsteal 1088 [ 186.554603][ T6927] pgscan_kswapd 0 [ 186.554603][ T6927] pgscan_direct 49189 [ 186.554603][ T6927] pgscan_khugepaged 0 [ 186.554603][ T6927] pgsteal_kswapd 0 [ 186.554603][ T6927] pgsteal_direct 1088 [ 186.554603][ T6927] pgsteal_khugepaged 0 [ 186.554603][ T6927] pgfault 52073 [ 186.554603][ T6927] pgmajfault 623 [ 186.554603][ T6927] pgrefill 12 [ 186.554603][ T6927] pgactivate 48026 [ 186.554603][ T6927] pgdeactivate 0 [ 186.554603][ T6927] pglazyfree 0 [ 186.554603][ T6927] pglazyfreed 0 [ 186.554603][ T6927] zswpin 703 [ 186.554603][ T6927] zswpout 588 [ 186.619364][ T6927] Tasks state (memory values in pages): [ 186.620778][ T38] kauditd_printk_skb: 17 callbacks suppressed [ 186.620788][ T38] audit: type=1400 audit(1687914920.662:113): avc: denied { rename } for pid=4605 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 186.621342][ T6927] [ pid ] uid tgid total_vm rss pgtables_bytes swapents oom_score_adj name [ 186.621351][ T6927] [ 5147] 0 5147 6451 128 40960 32 0 syz-executor131 [ 186.624023][ T38] audit: type=1400 audit(1687914920.662:114): avc: denied { unlink } for pid=4605 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 186.631921][ T6927] [ 6927] 0 6927 6451 128 53248 0 1000 syz-executor131 [ 186.631941][ T6927] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0 [ 186.635486][ T38] audit: type=1400 audit(1687914920.662:115): avc: denied { create } for pid=4605 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 186.639032][ T6927] ,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor131,pid=6927,uid=0 [ 186.639062][ T6927] Memory cgroup out of memory: Killed process 6927 (syz-executor131) total-vm:25804kB, anon-rss:0kB, file-rss:512kB, shmem-rss:0kB, UID:0 pgtables:52kB oom_score_adj:1000 [ 186.750763][ T6928] syz-executor131 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 186.754618][ T6928] CPU: 1 PID: 6928 Comm: syz-executor131 Not tainted 6.4.0-syzkaller-01224-g1ef6663a587b #0 [ 186.758781][ T6928] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 186.762479][ T6928] Call Trace: [ 186.763716][ T6928] [ 186.764823][ T6928] dump_stack_lvl+0x136/0x150 [ 186.766562][ T6928] dump_header+0x10a/0xd70 [ 186.768223][ T6928] oom_kill_process+0x25d/0x600 [ 186.770001][ T6928] out_of_memory+0x35c/0x1660 [ 186.771725][ T6928] ? oom_killer_disable+0x2b0/0x2b0 [ 186.773622][ T6928] ? lock_release+0x4fb/0x670 [ 186.775349][ T6928] ? rcu_read_unlock+0x9/0x60 [ 186.777070][ T6928] mem_cgroup_out_of_memory+0x206/0x270 [ 186.779134][ T6928] ? mem_cgroup_margin+0x130/0x130 [ 186.781018][ T6928] ? lock_downgrade+0x690/0x690 [ 186.782768][ T6928] try_charge_memcg+0xf99/0x13a0 [ 186.784564][ T6928] ? mem_cgroup_handle_over_high+0x520/0x520 [ 186.786759][ T6928] ? lock_release+0x4fb/0x670 [ 186.788472][ T6928] ? rcu_read_unlock+0x9/0x60 [ 186.790202][ T6928] ? lock_downgrade+0x690/0x690 [ 186.792009][ T6928] ? __folio_alloc+0x16/0x40 [ 186.793672][ T6928] ? vma_alloc_folio+0x1a4/0x890 [ 186.795450][ T6928] charge_memcg+0x90/0x3b0 [ 186.797077][ T6928] __mem_cgroup_charge+0x2b/0x90 [ 186.798873][ T6928] ? copy_mc_to_kernel+0x3e/0x90 [ 186.800720][ T6928] do_wp_page+0x8ea/0x33c0 [ 186.802490][ T6928] ? finish_mkwrite_fault+0x3d0/0x3d0 [ 186.804907][ T6928] ? page_ext_put+0x4d/0xd0 [ 186.806542][ T6928] ? __page_table_check_pte_set+0xe3/0x310 [ 186.808666][ T6928] ? __page_table_check_pte_clear+0x2b0/0x2b0 [ 186.810821][ T6928] ? page_add_anon_rmap+0x66b/0x11c0 [ 186.812765][ T6928] do_swap_page+0x122c/0x3570 [ 186.814500][ T6928] ? unmap_mapping_folio+0x3a0/0x3a0 [ 186.816685][ T6928] ? rcu_is_watching+0x12/0xb0 [ 186.818425][ T6928] ? lock_release+0x4fb/0x670 [ 186.820175][ T6928] ? mt_find+0x2c8/0xa60 [ 186.821699][ T6928] ? lock_downgrade+0x690/0x690 [ 186.823941][ T6928] __handle_mm_fault+0x15de/0x41c0 [ 186.825936][ T6928] ? mt_find+0x3b9/0xa60 [ 186.827467][ T6928] ? vm_iomap_memory+0x190/0x190 [ 186.829248][ T6928] ? mas_find+0x200/0x200 [ 186.830792][ T6928] handle_mm_fault+0x2a7/0x9e0 [ 186.832545][ T6928] do_user_addr_fault+0x51a/0x1210 [ 186.834558][ T6928] exc_page_fault+0x98/0x170 [ 186.836226][ T6928] asm_exc_page_fault+0x26/0x30 [ 186.837965][ T6928] RIP: 0010:__put_user_4+0x11/0x20 [ 186.839843][ T6928] Code: fa 0f 01 cb 66 89 01 31 c9 0f 01 ca c3 66 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa f3 0f 1e [ 186.846745][ T6928] RSP: 0018:ffffc9000de2ff38 EFLAGS: 00050202 [ 186.848936][ T6928] RAX: 00000000000006ea RBX: 0000000000000000 RCX: 0000555555ffa6d0 [ 186.851760][ T6928] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: ffff888022edda38 [ 186.854948][ T6928] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff8e7a3e17 [ 186.857775][ T6928] R10: fffffbfff1cf47c2 R11: 0000000000000001 R12: 0000000000000000 [ 186.860676][ T6928] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 186.863465][ T6928] schedule_tail+0xa8/0xe0 [ 186.865076][ T6928] ret_from_fork+0x8/0x30 [ 186.866628][ T6928] [ 186.868037][ T6928] memory: usage 307200kB, limit 307200kB, failcnt 2464 [ 186.870549][ T6928] memory+swap: usage 307324kB, limit 9007199254740988kB, failcnt 0 [ 186.873399][ T6928] kmem: usage 307072kB, limit 9007199254740988kB, failcnt 0 [ 186.876011][ T6928] Memory cgroup stats for /syz0: [ 186.876116][ T6928] anon 0 [ 186.876116][ T6928] file 114688 [ 186.876116][ T6928] kernel 314441728 [ 186.876116][ T6928] kernel_stack 32768 [ 186.876116][ T6928] pagetables 32768 [ 186.876116][ T6928] sec_pagetables 0 [ 186.876116][ T6928] percpu 10408000 [ 186.876116][ T6928] sock 0 [ 186.876116][ T6928] vmalloc 0 [ 186.876116][ T6928] shmem 0 [ 186.876116][ T6928] zswap 0 [ 186.876116][ T6928] zswapped 0 [ 186.876116][ T6928] file_mapped 0 [ 186.876116][ T6928] file_dirty 0 [ 186.876116][ T6928] file_writeback 0 [ 186.876116][ T6928] swapcached 8192 [ 186.876116][ T6928] anon_thp 0 [ 186.876116][ T6928] file_thp 0 [ 186.876116][ T6928] shmem_thp 0 [ 186.876116][ T6928] inactive_anon 8192 [ 186.876116][ T6928] active_anon 0 [ 186.876116][ T6928] inactive_file 0 [ 186.876116][ T6928] active_file 114688 [ 186.876116][ T6928] unevictable 0 [ 186.876116][ T6928] slab_reclaimable 37976 [ 186.876116][ T6928] slab_unreclaimable 303844704 [ 186.876116][ T6928] slab 303882680 [ 186.876116][ T6928] workingset_refault_anon 52 [ 186.876116][ T6928] workingset_refault_file 1 [ 186.876116][ T6928] workingset_activate_anon 0 [ 186.876116][ T6928] workingset_activate_file 0 [ 186.876116][ T6928] workingset_restore_anon 52 [ 186.876116][ T6928] workingset_restore_file 1 [ 186.876116][ T6928] workingset_nodereclaim 0 [ 186.876116][ T6928] pgscan 52963 [ 186.876116][ T6928] pgsteal 1119 [ 186.876116][ T6928] pgscan_kswapd 0 [ 186.876116][ T6928] pgscan_direct 52963 [ 186.876116][ T6928] pgscan_khugepaged 0 [ 186.876116][ T6928] pgsteal_kswapd 0 [ 186.876116][ T6928] pgsteal_direct 1119 [ 186.876116][ T6928] pgsteal_khugepaged 0 [ 186.876116][ T6928] pgfault 52115 [ 186.876116][ T6928] pgmajfault 654 [ 186.876116][ T6928] pgrefill 12 [ 186.876116][ T6928] pgactivate 51702 [ 186.876116][ T6928] pgdeactivate 0 [ 186.876116][ T6928] pglazyfree 0 [ 186.876116][ T6928] pglazyfreed 0 [ 186.876116][ T6928] zswpin 734 [ 186.876116][ T6928] zswpout 618 [ 186.947674][ T6928] Tasks state (memory values in pages): [ 186.949679][ T6928] [ pid ] uid tgid total_vm rss pgtables_bytes swapents oom_score_adj name [ 186.952996][ T6928] [ 5147] 0 5147 6451 128 40960 32 0 syz-executor131 [ 186.957409][ T6928] [ 6928] 0 6928 6451 0 40960 0 0 syz-executor131 [ 186.961443][ T6928] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor131,pid=5147,uid=0 [ 186.967036][ T6928] Memory cgroup out of memory: Killed process 5147 (syz-executor131) total-vm:25804kB, anon-rss:0kB, file-rss:512kB, shmem-rss:0kB, UID:0 pgtables:40kB oom_score_adj:0 [ 187.203285][ T5243] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.291659][ T5243] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.400801][ T5243] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.462509][ T5243] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.477603][ T5243] hsr_slave_0: left promiscuous mode [ 188.480590][ T5243] hsr_slave_1: left promiscuous mode [ 188.483448][ T5243] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 188.487231][ T5243] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 188.491675][ T5243] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 188.495256][ T5243] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 188.500007][ T5243] bridge_slave_1: left allmulticast mode [ 188.502602][ T5243] bridge_slave_1: left promiscuous mode [ 188.505248][ T5243] bridge0: port 2(bridge_slave_1) entered disabled state [ 188.511456][ T5243] bridge_slave_0: left allmulticast mode [ 188.513806][ T5243] bridge_slave_0: left promiscuous mode [ 188.515969][ T5243] bridge0: port 1(bridge_slave_0) entered disabled state [ 188.524774][ T5243] veth1_macvtap: left promiscuous mode [ 188.526968][ T5243] veth0_macvtap: left promiscuous mode [ 188.529744][ T5243] veth1_vlan: left promiscuous mode [ 188.532237][ T5243] veth0_vlan: left promiscuous mode [ 191.987008][ T5243] team0 (unregistering): Port device team_slave_1 removed [ 191.994444][ T5243] team0 (unregistering): Port device team_slave_0 removed [ 191.998817][ T5243] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 192.003548][ T5243] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 192.023449][ T5243] bond0 (unregistering): Released all slaves VM DIAGNOSIS: 01:15:16 Registers: info registers vcpu 0 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84882cc5 RDI=ffffffff920d3bc0 RBP=ffffffff920d3b80 RSP=ffffc90000007400 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=79732d302e342e36 R12=0000000000000000 R13=000000000000002d R14=ffffffff84882c60 R15=0000000000000000 RIP=ffffffff84882cef RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f0ebb764cc8 CR3=000000000c571000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000001 XMM01=00007ffe4ccbc3200000003000000018 XMM02=6c5f5f00455441564952505f4342494c XMM03=0000000000000000000000000042494c XMM04=6362696c5f5f00455441564952505f43 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000097b09 RBX=ffffe8fefd755380 RCX=ffffffff8a10ae35 RDX=0000000000000002 RSI=ffffffff8d1994c0 RDI=ffffe8fefd755380 RBP=ffffffff8d1994c0 RSP=ffffc9000037fd78 R8 =0000000000000001 R9 =ffff88806b736ceb R10=ffffed100d6e6d9d R11=0000000000000000 R12=0000000000000002 R13=ffffffff8d1995a8 R14=0000000000000002 R15=0000000000000000 RIP=ffffffff8a10cc23 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f0ebb7485a0 CR3=000000000c571000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000000000000000000000000001a4 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 2 RAX=000000000007146f RBX=ffffe8fefd855380 RCX=ffffffff8a10ae35 RDX=0000000000000002 RSI=ffffffff8d1994c0 RDI=ffffe8fefd855380 RBP=ffffffff8d1994c0 RSP=ffffc9000038fd78 R8 =0000000000000001 R9 =ffff88806b836ceb R10=ffffed100d706d9d R11=0000000000000000 R12=0000000000000002 R13=ffffffff8d1995a8 R14=0000000000000002 R15=0000000000000000 RIP=ffffffff8a10cc23 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000020000200 CR3=000000000c571000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0001000c001200280000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=ffff000000ffff00000000ff00000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 3 RAX=1ffff11009f6ee03 RBX=dffffc0000000000 RCX=0000000000000000 RDX=ffff88801f3b8f80 RSI=ffffffff89da251b RDI=ffff88804fb77018 RBP=ffff888044914000 RSP=ffffc9000dd4eeb0 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000094001 R12=ffff88804fb77000 R13=ffff888044914000 R14=ffffffff8e5c1c80 R15=0000000000000000 RIP=ffffffff89da252b RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000555555ffa400 ffffffff 00c00000 GS =0000 ffff88806b900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f0ebb7485a0 CR3=0000000056909000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000000000ff0000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000ff0000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000