ffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:54:58 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={0x0, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2636.396011][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2636.402524][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2636.524510][T13287] memory: usage 304852kB, limit 307200kB, failcnt 715
[ 2636.531538][T13287] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2636.538742][T13287] Memory cgroup stats for /syz4:
[ 2636.539027][T13287] anon 277909504
[ 2636.539027][T13287] file 53248
[ 2636.539027][T13287] kernel_stack 3170304
[ 2636.539027][T13287] slab 6303744
[ 2636.539027][T13287] sock 8192
[ 2636.539027][T13287] shmem 0
[ 2636.539027][T13287] file_mapped 135168
[ 2636.539027][T13287] file_dirty 0
[ 2636.539027][T13287] file_writeback 0
[ 2636.539027][T13287] anon_thp 255852544
[ 2636.539027][T13287] inactive_anon 0
[ 2636.539027][T13287] active_anon 277905408
[ 2636.539027][T13287] inactive_file 28672
[ 2636.539027][T13287] active_file 61440
[ 2636.539027][T13287] unevictable 0
[ 2636.539027][T13287] slab_reclaimable 1081344
[ 2636.539027][T13287] slab_unreclaimable 5222400
[ 2636.539027][T13287] pgfault 330429
[ 2636.539027][T13287] pgmajfault 0
[ 2636.539027][T13287] workingset_refault 0
[ 2636.539027][T13287] workingset_activate 0
[ 2636.539027][T13287] workingset_nodereclaim 0
[ 2636.539027][T13287] pgrefill 633
[ 2636.539027][T13287] pgscan 16982
[ 2636.539027][T13287] pgsteal 16620
[ 2636.835518][T13287] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=8848,uid=0
03:54:59 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2636.875817][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2636.882550][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2636.915547][T13287] Memory cgroup out of memory: Killed process 8848 (syz-executor.4) total-vm:72716kB, anon-rss:2208kB, file-rss:35808kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2637.003294][   T26] audit: type=1804 audit(2000001299.119:61064): pid=13536 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3724/bus" dev="sda1" ino=16974 res=1
[ 2637.088049][T13293] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2637.193482][T13293] CPU: 1 PID: 13293 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2637.202190][T13293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2637.212240][T13293] Call Trace:
[ 2637.215540][T13293]  dump_stack+0x11d/0x181
[ 2637.219882][T13293]  dump_header+0xaa/0x39c
[ 2637.224226][T13293]  oom_kill_process.cold+0x10/0x15
[ 2637.229358][T13293]  out_of_memory+0x231/0xa60
[ 2637.234004][T13293]  mem_cgroup_out_of_memory+0x128/0x150
[ 2637.239609][T13293]  try_charge+0x800/0xbf0
[ 2637.244004][T13293]  ? rcu_note_context_switch+0x720/0x760
[ 2637.249775][T13293]  mem_cgroup_try_charge+0xd2/0x260
[ 2637.254989][T13293]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2637.260631][T13293]  wp_page_copy+0x322/0x1040
[ 2637.265230][T13293]  ? __read_once_size+0x41/0xe0
[ 2637.270091][T13293]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2637.276004][T13293]  do_wp_page+0x192/0xeb0
[ 2637.280409][T13293]  __handle_mm_fault+0x1d16/0x2e00
[ 2637.285548][T13293]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2637.291630][T13293]  handle_mm_fault+0x21b/0x530
[ 2637.296408][T13293]  __do_page_fault+0x456/0x8d0
[ 2637.301182][T13293]  do_page_fault+0x38/0x194
[ 2637.305703][T13293]  page_fault+0x34/0x40
[ 2637.309907][T13293] RIP: 0033:0x403f80
[ 2637.313819][T13293] Code: 80 3d fb e6 66 00 00 c6 85 84 00 00 00 00 74 0f 8b 05 e8 e6 66 00 39 45 24 0f 84 46 02 00 00 44 8b a5 80 00 00 00 48 8b 5d 78 <e8> fb e6 ff ff 48 2b 05 84 40 33 00 8b 75 00 4c 89 f1 45 89 e1 49
[ 2637.333481][T13293] RSP: 002b:00007f0b9e6acc90 EFLAGS: 00010246
03:54:59 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x1f40}, 0x0, 0x0)

[ 2637.339548][T13293] RAX: 00007f0ba06ae000 RBX: 00000000000028c9 RCX: 0000000000000000
[ 2637.347521][T13293] RDX: 000000000003ffff RSI: 0000000000403ecc RDI: 0000000000000000
[ 2637.355492][T13293] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2637.363462][T13293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2637.371434][T13293] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2637.536954][T13293] memory: usage 305136kB, limit 307200kB, failcnt 715
[ 2637.544031][T13293] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2637.553308][T13293] Memory cgroup stats for /syz4:
[ 2637.565904][T13293] anon 278204416
[ 2637.565904][T13293] file 53248
[ 2637.565904][T13293] kernel_stack 3133440
[ 2637.565904][T13293] slab 6303744
[ 2637.565904][T13293] sock 8192
[ 2637.565904][T13293] shmem 0
[ 2637.565904][T13293] file_mapped 135168
[ 2637.565904][T13293] file_dirty 0
[ 2637.565904][T13293] file_writeback 0
[ 2637.565904][T13293] anon_thp 255852544
[ 2637.565904][T13293] inactive_anon 0
[ 2637.565904][T13293] active_anon 278204416
[ 2637.565904][T13293] inactive_file 28672
[ 2637.565904][T13293] active_file 61440
[ 2637.565904][T13293] unevictable 0
[ 2637.565904][T13293] slab_reclaimable 1081344
[ 2637.565904][T13293] slab_unreclaimable 5222400
[ 2637.565904][T13293] pgfault 330726
[ 2637.565904][T13293] pgmajfault 0
[ 2637.565904][T13293] workingset_refault 0
[ 2637.565904][T13293] workingset_activate 0
[ 2637.565904][T13293] workingset_nodereclaim 0
[ 2637.565904][T13293] pgrefill 633
[ 2637.565904][T13293] pgscan 16982
[ 2637.565904][T13293] pgsteal 16620
[ 2637.915844][T13293] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13287,uid=0
[ 2637.945347][T13293] Memory cgroup out of memory: Killed process 13293 (syz-executor.4) total-vm:72716kB, anon-rss:2732kB, file-rss:35804kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000
[ 2638.008693][ T1069] oom_reaper: reaped process 13293 (syz-executor.4), now anon-rss:0kB, file-rss:34844kB, shmem-rss:0kB
[ 2638.024476][T13421] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2638.048633][T13421] CPU: 1 PID: 13421 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2638.057596][T13421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2638.067663][T13421] Call Trace:
[ 2638.070975][T13421]  dump_stack+0x11d/0x181
[ 2638.075487][T13421]  dump_header+0xaa/0x39c
[ 2638.079866][T13421]  oom_kill_process.cold+0x10/0x15
[ 2638.085006][T13421]  out_of_memory+0x231/0xa60
[ 2638.089762][T13421]  mem_cgroup_out_of_memory+0x128/0x150
[ 2638.095484][T13421]  try_charge+0xb6c/0xbf0
[ 2638.099838][T13421]  ? __rcu_read_unlock+0x66/0x3d0
[ 2638.105268][T13421]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2638.110749][T13421]  __memcg_kmem_charge+0xcf/0x1b0
[ 2638.115868][T13421]  __alloc_pages_nodemask+0x26c/0x310
[ 2638.121326][T13421]  alloc_pages_current+0xd1/0x170
[ 2638.126450][T13421]  pte_alloc_one+0x18/0x50
[ 2638.130898][T13421]  __pte_alloc+0x2d/0x220
[ 2638.135244][T13421]  copy_page_range+0x135a/0x19b0
[ 2638.140256][T13421]  ? __vma_link_rb+0x3f4/0x440
[ 2638.145095][T13421]  dup_mm+0x74a/0xba0
[ 2638.149102][T13421]  copy_process+0x3138/0x3c40
[ 2638.153827][T13421]  _do_fork+0xfe/0x7a0
[ 2638.157908][T13421]  ? __sanitizer_cov_trace_pc+0x44/0x50
[ 2638.163488][T13421]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2638.169468][T13421]  ? __read_once_size+0x5a/0xe0
[ 2638.174335][T13421]  __x64_sys_clone+0x130/0x170
[ 2638.179241][T13421]  do_syscall_64+0xcc/0x3a0
[ 2638.183837][T13421]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2638.189765][T13421] RIP: 0033:0x45b399
[ 2638.193681][T13421] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2638.213369][T13421] RSP: 002b:00007ffac9a53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2638.221795][T13421] RAX: ffffffffffffffda RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2638.229865][T13421] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2638.238447][T13421] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2638.246485][T13421] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2638.254564][T13421] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2638.274797][T13421] memory: usage 307200kB, limit 307200kB, failcnt 424
[ 2638.282828][T13421] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2638.293772][T13421] Memory cgroup stats for /syz0:
[ 2638.297814][T13421] anon 286240768
[ 2638.297814][T13421] file 28672
[ 2638.297814][T13421] kernel_stack 2654208
[ 2638.297814][T13421] slab 5079040
[ 2638.297814][T13421] sock 81920
[ 2638.297814][T13421] shmem 8192
[ 2638.297814][T13421] file_mapped 0
[ 2638.297814][T13421] file_dirty 0
[ 2638.297814][T13421] file_writeback 0
[ 2638.297814][T13421] anon_thp 266338304
[ 2638.297814][T13421] inactive_anon 0
[ 2638.297814][T13421] active_anon 286240768
[ 2638.297814][T13421] inactive_file 4096
[ 2638.297814][T13421] active_file 49152
[ 2638.297814][T13421] unevictable 0
[ 2638.297814][T13421] slab_reclaimable 675840
[ 2638.297814][T13421] slab_unreclaimable 4403200
[ 2638.297814][T13421] pgfault 269841
[ 2638.297814][T13421] pgmajfault 0
[ 2638.297814][T13421] workingset_refault 0
[ 2638.297814][T13421] workingset_activate 0
[ 2638.297814][T13421] workingset_nodereclaim 0
[ 2638.297814][T13421] pgrefill 390
[ 2638.297814][T13421] pgscan 8596
[ 2638.297814][T13421] pgsteal 8360
[ 2638.395650][T13421] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=12448,uid=0
[ 2638.493057][T13421] Memory cgroup out of memory: Killed process 12448 (syz-executor.0) total-vm:72716kB, anon-rss:2216kB, file-rss:35800kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000
03:55:00 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={0x0, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:00 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, &(0x7f000095dffc))
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:00 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:00 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x2000}, 0x0, 0x0)

03:55:00 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={0x0, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2638.690963][   T26] audit: type=1804 audit(2000001300.809:61065): pid=13554 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3725/bus" dev="sda1" ino=16928 res=1
[ 2638.948704][T13552] syz-executor.1 invoked oom-killer: gfp_mask=0x40cc0(GFP_KERNEL|__GFP_COMP), order=0, oom_score_adj=1000
[ 2639.031846][T13552] CPU: 1 PID: 13552 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0
[ 2639.040737][T13552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2639.051093][T13552] Call Trace:
[ 2639.054465][T13552]  dump_stack+0x11d/0x181
[ 2639.058849][T13552]  dump_header+0xaa/0x39c
[ 2639.063293][T13552]  oom_kill_process.cold+0x10/0x15
[ 2639.068646][T13552]  out_of_memory+0x231/0xa60
[ 2639.073266][T13552]  mem_cgroup_out_of_memory+0x128/0x150
[ 2639.078984][T13552]  try_charge+0xb6c/0xbf0
[ 2639.083339][T13552]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2639.089000][T13552]  cache_grow_begin+0x3bb/0x5c0
[ 2639.093874][T13552]  fallback_alloc+0x161/0x1f0
[ 2639.098586][T13552]  ____cache_alloc_node+0x1b1/0x1c0
[ 2639.103939][T13552]  ? memcg_kmem_get_cache+0x1b1/0x320
[ 2639.109451][T13552]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2639.115860][T13552]  kmem_cache_alloc+0x179/0x5d0
[ 2639.120892][T13552]  vm_area_dup+0x49/0xf0
[ 2639.125288][T13552]  dup_mm+0x330/0xba0
[ 2639.129443][T13552]  copy_process+0x3138/0x3c40
[ 2639.134157][T13552]  _do_fork+0xfe/0x7a0
[ 2639.138274][T13552]  __x64_sys_clone+0x130/0x170
[ 2639.143152][T13552]  do_syscall_64+0xcc/0x3a0
[ 2639.147695][T13552]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2639.153820][T13552] RIP: 0033:0x45b399
[ 2639.158090][T13552] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2639.178082][T13552] RSP: 002b:00007f44cabc9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2639.186513][T13552] RAX: ffffffffffffffda RBX: 00007f44cabca6d4 RCX: 000000000045b399
[ 2639.194769][T13552] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2639.202907][T13552] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2639.210898][T13552] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2639.219120][T13552] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:55:01 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x4000}, 0x0, 0x0)

[ 2639.728850][T13552] memory: usage 307196kB, limit 307200kB, failcnt 444
[ 2639.766269][T13552] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2639.788878][T13552] Memory cgroup stats for /syz1:
[ 2639.791020][T13552] anon 290422784
[ 2639.791020][T13552] file 81920
[ 2639.791020][T13552] kernel_stack 2174976
[ 2639.791020][T13552] slab 4521984
[ 2639.791020][T13552] sock 0
[ 2639.791020][T13552] shmem 28672
[ 2639.791020][T13552] file_mapped 0
[ 2639.791020][T13552] file_dirty 0
[ 2639.791020][T13552] file_writeback 0
[ 2639.791020][T13552] anon_thp 272629760
[ 2639.791020][T13552] inactive_anon 30908416
[ 2639.791020][T13552] active_anon 253218816
03:55:02 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:02 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2639.791020][T13552] inactive_file 0
[ 2639.791020][T13552] active_file 0
[ 2639.791020][T13552] unevictable 6393856
[ 2639.791020][T13552] slab_reclaimable 1081344
[ 2639.791020][T13552] slab_unreclaimable 3440640
[ 2639.791020][T13552] pgfault 297495
[ 2639.791020][T13552] pgmajfault 0
[ 2639.791020][T13552] workingset_refault 0
[ 2639.791020][T13552] workingset_activate 0
[ 2639.791020][T13552] workingset_nodereclaim 0
[ 2639.791020][T13552] pgrefill 231
[ 2639.791020][T13552] pgscan 12507
[ 2639.791020][T13552] pgsteal 12402
03:55:02 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0x0, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2639.943996][   T26] audit: type=1804 audit(2000001302.059:61066): pid=13676 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3726/bus" dev="sda1" ino=17047 res=1
[ 2639.989124][T13552] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=11327,uid=0
[ 2640.068897][T13552] Memory cgroup out of memory: Killed process 11327 (syz-executor.1) total-vm:72716kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:155648kB oom_score_adj:1000
03:55:02 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0x0, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2640.426494][T13681] syz-executor.0 invoked oom-killer: gfp_mask=0x40cc0(GFP_KERNEL|__GFP_COMP), order=0, oom_score_adj=1000
[ 2640.525707][T13681] CPU: 0 PID: 13681 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2640.534452][T13681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2640.544521][T13681] Call Trace:
[ 2640.548053][T13681]  dump_stack+0x11d/0x181
[ 2640.552486][T13681]  dump_header+0xaa/0x39c
[ 2640.556881][T13681]  oom_kill_process.cold+0x10/0x15
[ 2640.562336][T13681]  out_of_memory+0x231/0xa60
[ 2640.566990][T13681]  mem_cgroup_out_of_memory+0x128/0x150
[ 2640.572565][T13681]  try_charge+0xb6c/0xbf0
[ 2640.576926][T13681]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2640.582615][T13681]  cache_grow_begin+0x3bb/0x5c0
[ 2640.587506][T13681]  fallback_alloc+0x161/0x1f0
[ 2640.592361][T13681]  ____cache_alloc_node+0x1b1/0x1c0
[ 2640.597578][T13681]  ? memcg_kmem_get_cache+0x1b1/0x320
[ 2640.603005][T13681]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2640.609284][T13681]  kmem_cache_alloc_node+0xbb/0x660
[ 2640.614634][T13681]  copy_process+0x2dd/0x3c40
[ 2640.619285][T13681]  ? record_times+0x16/0x90
[ 2640.623819][T13681]  ? psi_task_change+0x1ad/0x2d0
[ 2640.628792][T13681]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2640.634981][T13681]  _do_fork+0xfe/0x7a0
[ 2640.639121][T13681]  ? cgroup_file_notify+0xff/0x130
[ 2640.644446][T13681]  ? blkcg_maybe_throttle_current+0x23d/0x580
[ 2640.650584][T13681]  __x64_sys_clone+0x130/0x170
[ 2640.655434][T13681]  do_syscall_64+0xcc/0x3a0
[ 2640.660074][T13681]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2640.665977][T13681] RIP: 0033:0x45dd69
[ 2640.670141][T13681] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 2640.690136][T13681] RSP: 002b:00007ffdda484758 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2640.698831][T13681] RAX: ffffffffffffffda RBX: 00007ffac9a33700 RCX: 000000000045dd69
[ 2640.706821][T13681] RDX: 00007ffac9a339d0 RSI: 00007ffac9a32db0 RDI: 00000000003d0f00
[ 2640.714811][T13681] RBP: 00007ffdda484970 R08: 00007ffac9a33700 R09: 00007ffac9a33700
[ 2640.722913][T13681] R10: 00007ffac9a339d0 R11: 0000000000000202 R12: 0000000000000000
[ 2640.730904][T13681] R13: 00007ffdda48480f R14: 00007ffac9a339c0 R15: 000000000075bfd4
[ 2640.739004][    C0] net_ratelimit: 20 callbacks suppressed
[ 2640.739025][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2640.750590][    C0] protocol 88fb is buggy, dev hsr_slave_1
03:55:03 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x6, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:03 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x401f}, 0x0, 0x0)

[ 2641.005778][T13681] memory: usage 307200kB, limit 307200kB, failcnt 663
[ 2641.012829][T13681] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2641.045506][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2641.052470][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2641.059204][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2641.066538][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2641.074951][T13681] Memory cgroup stats for /syz0:
[ 2641.075125][T13681] anon 286101504
[ 2641.075125][T13681] file 28672
[ 2641.075125][T13681] kernel_stack 2654208
[ 2641.075125][T13681] slab 5079040
[ 2641.075125][T13681] sock 81920
[ 2641.075125][T13681] shmem 8192
[ 2641.075125][T13681] file_mapped 0
[ 2641.075125][T13681] file_dirty 0
[ 2641.075125][T13681] file_writeback 0
[ 2641.075125][T13681] anon_thp 266338304
[ 2641.075125][T13681] inactive_anon 0
[ 2641.075125][T13681] active_anon 286101504
[ 2641.075125][T13681] inactive_file 4096
[ 2641.075125][T13681] active_file 49152
[ 2641.075125][T13681] unevictable 0
[ 2641.075125][T13681] slab_reclaimable 675840
[ 2641.075125][T13681] slab_unreclaimable 4403200
[ 2641.075125][T13681] pgfault 270204
[ 2641.075125][T13681] pgmajfault 0
[ 2641.075125][T13681] workingset_refault 0
[ 2641.075125][T13681] workingset_activate 0
[ 2641.075125][T13681] workingset_nodereclaim 0
[ 2641.075125][T13681] pgrefill 423
[ 2641.075125][T13681] pgscan 8629
[ 2641.075125][T13681] pgsteal 8360
[ 2641.171120][T13681] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9918,uid=0
[ 2641.209901][T13681] Memory cgroup out of memory: Killed process 9918 (syz-executor.0) total-vm:72716kB, anon-rss:2216kB, file-rss:35796kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000
[ 2641.251303][   T26] audit: type=1804 audit(2000001303.369:61067): pid=13811 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3727/bus" dev="sda1" ino=16942 res=1
03:55:03 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0x0, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:03 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, &(0x7f000095dffc))
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2641.557165][T13688] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2641.699625][T13688] CPU: 0 PID: 13688 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2641.708371][T13688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2641.718437][T13688] Call Trace:
[ 2641.721743][T13688]  dump_stack+0x11d/0x181
[ 2641.726088][T13688]  dump_header+0xaa/0x39c
[ 2641.730438][T13688]  oom_kill_process.cold+0x10/0x15
[ 2641.735667][T13688]  out_of_memory+0x231/0xa60
[ 2641.740349][T13688]  mem_cgroup_out_of_memory+0x128/0x150
[ 2641.745909][T13688]  try_charge+0x800/0xbf0
[ 2641.750291][T13688]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2641.756195][T13688]  ? __rcu_read_unlock+0x66/0x3d0
[ 2641.761316][T13688]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2641.766906][T13688]  __memcg_kmem_charge+0xcf/0x1b0
[ 2641.772039][T13688]  __alloc_pages_nodemask+0x26c/0x310
[ 2641.777434][T13688]  alloc_pages_current+0xd1/0x170
[ 2641.782480][T13688]  pte_alloc_one+0x18/0x50
[ 2641.786905][T13688]  __handle_mm_fault+0x2be6/0x2e00
[ 2641.792123][T13688]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2641.798194][T13688]  handle_mm_fault+0x21b/0x530
[ 2641.803122][T13688]  __do_page_fault+0x456/0x8d0
[ 2641.807903][T13688]  do_page_fault+0x38/0x194
[ 2641.812472][T13688]  page_fault+0x34/0x40
[ 2641.816774][T13688] RIP: 0033:0x45b399
[ 2641.820683][T13688] Code: Bad RIP value.
[ 2641.825008][T13688] RSP: 002b:00007ffac9a53c78 EFLAGS: 00010246
[ 2641.831133][T13688] RAX: 0000000000000000 RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2641.839120][T13688] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
03:55:04 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0x0, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2641.847287][T13688] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2641.855321][T13688] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2641.863308][T13688] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2641.871557][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2641.877401][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2641.902459][T13688] memory: usage 307196kB, limit 307200kB, failcnt 686
[ 2642.029128][T13688] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2642.036216][T13688] Memory cgroup stats for /syz0:
[ 2642.036484][T13688] anon 286240768
[ 2642.036484][T13688] file 28672
[ 2642.036484][T13688] kernel_stack 2654208
[ 2642.036484][T13688] slab 5079040
[ 2642.036484][T13688] sock 81920
[ 2642.036484][T13688] shmem 8192
[ 2642.036484][T13688] file_mapped 0
[ 2642.036484][T13688] file_dirty 0
[ 2642.036484][T13688] file_writeback 0
[ 2642.036484][T13688] anon_thp 266338304
[ 2642.036484][T13688] inactive_anon 0
[ 2642.036484][T13688] active_anon 286240768
[ 2642.036484][T13688] inactive_file 4096
[ 2642.036484][T13688] active_file 49152
[ 2642.036484][T13688] unevictable 0
[ 2642.036484][T13688] slab_reclaimable 675840
[ 2642.036484][T13688] slab_unreclaimable 4403200
[ 2642.036484][T13688] pgfault 270402
[ 2642.036484][T13688] pgmajfault 0
[ 2642.036484][T13688] workingset_refault 0
[ 2642.036484][T13688] workingset_activate 0
[ 2642.036484][T13688] workingset_nodereclaim 0
[ 2642.036484][T13688] pgrefill 456
[ 2642.036484][T13688] pgscan 8629
[ 2642.036484][T13688] pgsteal 8360
03:55:04 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x6, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:04 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x4d01}, 0x0, 0x0)

[ 2642.330787][   T26] audit: type=1804 audit(2000001304.449:61068): pid=13912 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3728/bus" dev="sda1" ino=16942 res=1
[ 2642.410429][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2642.417297][    C1] protocol 88fb is buggy, dev hsr_slave_1
03:55:04 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2642.558272][T13688] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9970,uid=0
[ 2642.575380][T13688] Memory cgroup out of memory: Killed process 9970 (syz-executor.0) total-vm:72584kB, anon-rss:2208kB, file-rss:35800kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000
03:55:04 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2642.632021][T13814] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2642.632431][ T1069] oom_reaper: reaped process 9970 (syz-executor.0), now anon-rss:0kB, file-rss:34840kB, shmem-rss:0kB
[ 2642.646070][T13814] CPU: 1 PID: 13814 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2642.662314][T13814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2642.672378][T13814] Call Trace:
[ 2642.675688][T13814]  dump_stack+0x11d/0x181
[ 2642.680105][T13814]  dump_header+0xaa/0x39c
[ 2642.684478][T13814]  oom_kill_process.cold+0x10/0x15
[ 2642.689618][T13814]  out_of_memory+0x231/0xa60
[ 2642.694252][T13814]  mem_cgroup_out_of_memory+0x128/0x150
[ 2642.699827][T13814]  try_charge+0xb6c/0xbf0
[ 2642.704215][T13814]  ? rcu_note_context_switch+0x720/0x760
[ 2642.709888][T13814]  mem_cgroup_try_charge+0xd2/0x260
[ 2642.715104][T13814]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2642.720754][T13814]  wp_page_copy+0x322/0x1040
[ 2642.725530][T13814]  ? __read_once_size+0x41/0xe0
[ 2642.730434][T13814]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2642.736529][T13814]  do_wp_page+0x192/0xeb0
[ 2642.741030][T13814]  ? record_times+0x16/0x90
[ 2642.745591][T13814]  __handle_mm_fault+0x1d16/0x2e00
[ 2642.750768][T13814]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2642.756875][T13814]  handle_mm_fault+0x21b/0x530
[ 2642.761832][T13814]  __do_page_fault+0x456/0x8d0
[ 2642.766615][T13814]  do_page_fault+0x38/0x194
[ 2642.771207][T13814]  page_fault+0x34/0x40
[ 2642.775369][T13814] RIP: 0033:0x4103e8
[ 2642.779281][T13814] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf d5 0c 4c 00 31 c0 e8 c3 1a ff ff 31 ff e8 0c 17 ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 5e 22 66 00
[ 2642.800107][T13814] RSP: 002b:00007ffd378c3fb0 EFLAGS: 00010246
[ 2642.806445][T13814] RAX: 000000008d89bfb3 RBX: 00000000bfd686c7 RCX: 0000001b30220000
[ 2642.814544][T13814] RDX: 0000000000000000 RSI: 0000000000001fb3 RDI: ffffffff8d89bfb3
[ 2642.822532][T13814] RBP: 0000000000000006 R08: 000000008d89bfb3 R09: 000000008d89bfb7
[ 2642.830524][T13814] R10: 00007ffd378c4150 R11: 0000000000000246 R12: 000000000075c050
[ 2642.838643][T13814] R13: 0000000080000000 R14: 00007f0ba04ae008 R15: 000000000000000b
[ 2642.863394][T13814] memory: usage 307200kB, limit 307200kB, failcnt 915
[ 2642.904694][T13814] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2642.919950][T13814] Memory cgroup stats for /syz4:
[ 2642.920978][T13814] anon 280043520
[ 2642.920978][T13814] file 53248
[ 2642.920978][T13814] kernel_stack 3170304
[ 2642.920978][T13814] slab 6303744
[ 2642.920978][T13814] sock 8192
[ 2642.920978][T13814] shmem 0
[ 2642.920978][T13814] file_mapped 135168
[ 2642.920978][T13814] file_dirty 0
[ 2642.920978][T13814] file_writeback 0
[ 2642.920978][T13814] anon_thp 257949696
[ 2642.920978][T13814] inactive_anon 0
[ 2642.920978][T13814] active_anon 280018944
[ 2642.920978][T13814] inactive_file 28672
[ 2642.920978][T13814] active_file 61440
[ 2642.920978][T13814] unevictable 0
[ 2642.920978][T13814] slab_reclaimable 1081344
[ 2642.920978][T13814] slab_unreclaimable 5222400
[ 2642.920978][T13814] pgfault 331518
[ 2642.920978][T13814] pgmajfault 0
[ 2642.920978][T13814] workingset_refault 0
[ 2642.920978][T13814] workingset_activate 0
[ 2642.920978][T13814] workingset_nodereclaim 0
[ 2642.920978][T13814] pgrefill 666
[ 2642.920978][T13814] pgscan 17015
[ 2642.920978][T13814] pgsteal 16620
[ 2643.025597][T13814] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=24071,uid=0
[ 2643.080590][T13814] Memory cgroup out of memory: Killed process 24071 (syz-executor.4) total-vm:72584kB, anon-rss:2212kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000
[ 2643.123050][ T1069] oom_reaper: reaped process 24071 (syz-executor.4), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB
03:55:05 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0x0, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:05 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x7c15}, 0x0, 0x0)

03:55:05 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x6, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2643.541895][   T26] audit: type=1804 audit(2000001305.659:61069): pid=13964 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3729/bus" dev="sda1" ino=16991 res=1
[ 2643.650767][T13949] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2643.705985][T13949] CPU: 0 PID: 13949 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2643.714686][T13949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2643.724831][T13949] Call Trace:
[ 2643.728214][T13949]  dump_stack+0x11d/0x181
[ 2643.732608][T13949]  dump_header+0xaa/0x39c
[ 2643.736977][T13949]  oom_kill_process.cold+0x10/0x15
[ 2643.742144][T13949]  out_of_memory+0x231/0xa60
[ 2643.746755][T13949]  ? __rcu_read_unlock+0x66/0x3d0
[ 2643.751802][T13949]  ? apic_timer_interrupt+0xa/0x20
[ 2643.756935][T13949]  mem_cgroup_out_of_memory+0x128/0x150
[ 2643.762550][T13949]  try_charge+0xb6c/0xbf0
[ 2643.766906][T13949]  ? rcu_note_context_switch+0x720/0x760
[ 2643.772658][T13949]  mem_cgroup_try_charge+0xd2/0x260
[ 2643.777875][T13949]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2643.783519][T13949]  wp_page_copy+0x322/0x1040
[ 2643.788122][T13949]  ? __perf_event_task_sched_in+0x14d/0x390
[ 2643.794094][T13949]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2643.799837][T13949]  do_wp_page+0x192/0xeb0
[ 2643.804278][T13949]  ? __handle_mm_fault+0xbf8/0x2e00
[ 2643.809488][T13949]  __handle_mm_fault+0x1d16/0x2e00
[ 2643.814658][T13949]  handle_mm_fault+0x21b/0x530
[ 2643.819526][T13949]  __do_page_fault+0x456/0x8d0
[ 2643.824346][T13949]  do_page_fault+0x38/0x194
[ 2643.828869][T13949]  page_fault+0x34/0x40
[ 2643.833093][T13949] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2643.839697][T13949] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2643.859311][T13949] RSP: 0018:ffffc9000ebe7630 EFLAGS: 00010206
[ 2643.865383][T13949] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2643.873518][T13949] RDX: 0000000000001000 RSI: ffff88808923b000 RDI: 00000000009d3000
[ 2643.881500][T13949] RBP: ffffc9000ebe7668 R08: ffff8880937fc0c0 R09: 00008880937fcc10
[ 2643.889479][T13949] R10: 0000c9000ebe7738 R11: 00008880937fcc17 R12: 00000000009d3000
[ 2643.897473][T13949] R13: 00000000009d4000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2643.905475][T13949]  ? copyout+0xa5/0xb0
[ 2643.909558][T13949]  copy_page_to_iter+0x252/0x8d0
[ 2643.914503][T13949]  ? copy_page_to_iter+0x343/0x8d0
[ 2643.919661][T13949]  bio_uncopy_user+0x253/0x2f0
[ 2643.924574][T13949]  __blk_rq_unmap_user+0x78/0x80
[ 2643.929603][T13949]  blk_rq_map_user_iov+0x30b/0x420
[ 2643.934820][T13949]  blk_rq_map_user+0x90/0xd0
[ 2643.939428][T13949]  sg_common_write.isra.0+0xc64/0x12c0
[ 2643.944970][T13949]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2643.951220][T13949]  ? _copy_from_user+0x98/0xf0
[ 2643.956009][T13949]  sg_new_write.isra.0+0x2bd/0x520
[ 2643.961174][T13949]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2643.967439][T13949]  ? scsi_block_when_processing_errors+0x19f/0x1d0
[ 2643.973960][T13949]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2643.980224][T13949]  sg_write.part.0+0x73e/0x8c0
[ 2643.985006][T13949]  ? apic_timer_interrupt+0xa/0x20
[ 2643.990197][T13949]  ? sg_check_file_access.isra.0+0x62/0x180
[ 2643.996188][T13949]  ? write_comp_data+0x10/0x70
[ 2644.001049][T13949]  sg_write+0x65/0x88
[ 2644.005048][T13949]  do_iter_write+0x34b/0x3c0
[ 2644.009663][T13949]  vfs_writev+0x118/0x1c0
[ 2644.014086][T13949]  ? __fget_light+0xaf/0x190
[ 2644.018694][T13949]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2644.024998][T13949]  do_writev+0xe3/0x250
[ 2644.029175][T13949]  __x64_sys_writev+0x4e/0x60
[ 2644.033947][T13949]  do_syscall_64+0xcc/0x3a0
[ 2644.038497][T13949]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2644.044662][T13949] RIP: 0033:0x45b399
[ 2644.048696][T13949] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2644.068307][T13949] RSP: 002b:00007ffac9a53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2644.076816][T13949] RAX: ffffffffffffffda RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2644.084794][T13949] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000007
[ 2644.092776][T13949] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
03:55:06 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0x0, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2644.100790][T13949] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2644.108884][T13949] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bf2c
[ 2644.226020][T13949] memory: usage 307168kB, limit 307200kB, failcnt 874
[ 2644.238037][T13949] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
03:55:06 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {0x0, 0x0, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2644.270377][T13949] Memory cgroup stats for /syz0:
[ 2644.273570][T13949] anon 286224384
[ 2644.273570][T13949] file 28672
[ 2644.273570][T13949] kernel_stack 2654208
[ 2644.273570][T13949] slab 4943872
[ 2644.273570][T13949] sock 81920
[ 2644.273570][T13949] shmem 8192
[ 2644.273570][T13949] file_mapped 0
[ 2644.273570][T13949] file_dirty 0
[ 2644.273570][T13949] file_writeback 0
[ 2644.273570][T13949] anon_thp 266338304
[ 2644.273570][T13949] inactive_anon 0
[ 2644.273570][T13949] active_anon 286224384
[ 2644.273570][T13949] inactive_file 4096
[ 2644.273570][T13949] active_file 49152
[ 2644.273570][T13949] unevictable 0
[ 2644.273570][T13949] slab_reclaimable 540672
[ 2644.273570][T13949] slab_unreclaimable 4403200
[ 2644.273570][T13949] pgfault 270765
[ 2644.273570][T13949] pgmajfault 0
[ 2644.273570][T13949] workingset_refault 0
[ 2644.273570][T13949] workingset_activate 0
[ 2644.273570][T13949] workingset_nodereclaim 0
[ 2644.273570][T13949] pgrefill 456
[ 2644.273570][T13949] pgscan 8629
[ 2644.273570][T13949] pgsteal 8360
03:55:06 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x9a02}, 0x0, 0x0)

03:55:06 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2644.531489][   T26] audit: type=1804 audit(2000001306.649:61070): pid=14084 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3730/bus" dev="sda1" ino=16942 res=1
03:55:07 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2644.969072][T13949] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=13947,uid=0
[ 2645.014479][T13949] Memory cgroup out of memory: Killed process 13949 (syz-executor.0) total-vm:72716kB, anon-rss:2232kB, file-rss:35812kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2645.113863][ T1069] oom_reaper: reaped process 13949 (syz-executor.0), now anon-rss:0kB, file-rss:34852kB, shmem-rss:0kB
[ 2645.129591][T14079] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2645.182199][T14079] CPU: 0 PID: 14079 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2645.190919][T14079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2645.200976][T14079] Call Trace:
[ 2645.204272][T14079]  dump_stack+0x11d/0x181
[ 2645.208623][T14079]  dump_header+0xaa/0x39c
[ 2645.212973][T14079]  oom_kill_process.cold+0x10/0x15
[ 2645.218198][T14079]  out_of_memory+0x231/0xa60
[ 2645.222804][T14079]  mem_cgroup_out_of_memory+0x128/0x150
[ 2645.228409][T14079]  try_charge+0xb6c/0xbf0
[ 2645.232834][T14079]  ? rcu_note_context_switch+0x720/0x760
[ 2645.238568][T14079]  mem_cgroup_try_charge+0xd2/0x260
[ 2645.243788][T14079]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2645.249446][T14079]  wp_page_copy+0x322/0x1040
[ 2645.254051][T14079]  ? __read_once_size+0x41/0xe0
[ 2645.258968][T14079]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2645.264883][T14079]  do_wp_page+0x192/0xeb0
[ 2645.269238][T14079]  ? record_times+0x16/0x90
[ 2645.273784][T14079]  __handle_mm_fault+0x1d16/0x2e00
[ 2645.278914][T14079]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2645.284998][T14079]  handle_mm_fault+0x21b/0x530
[ 2645.289778][T14079]  __do_page_fault+0x456/0x8d0
[ 2645.294698][T14079]  do_page_fault+0x38/0x194
[ 2645.299219][T14079]  page_fault+0x34/0x40
[ 2645.303389][T14079] RIP: 0033:0x4103e8
[ 2645.307315][T14079] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf d5 0c 4c 00 31 c0 e8 c3 1a ff ff 31 ff e8 0c 17 ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 5e 22 66 00
[ 2645.327707][T14079] RSP: 002b:00007ffd378c3fb0 EFLAGS: 00010246
[ 2645.333799][T14079] RAX: 000000000b59142c RBX: 000000000cfba949 RCX: 0000001b30220000
[ 2645.341780][T14079] RDX: 0000000000000000 RSI: 000000000000142c RDI: ffffffff0b59142c
[ 2645.349776][T14079] RBP: 0000000000000005 R08: 000000000b59142c R09: 000000000b591430
[ 2645.357853][T14079] R10: 00007ffd378c4150 R11: 0000000000000246 R12: 000000000075c050
[ 2645.365830][T14079] R13: 0000000080000000 R14: 00007f0ba04ae008 R15: 000000000000000a
03:55:07 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xa00f}, 0x0, 0x0)

[ 2645.525656][T14079] memory: usage 307200kB, limit 307200kB, failcnt 1142
[ 2645.532898][T14079] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2645.548903][T14079] Memory cgroup stats for /syz4:
[ 2645.549184][T14079] anon 279982080
[ 2645.549184][T14079] file 53248
[ 2645.549184][T14079] kernel_stack 3170304
[ 2645.549184][T14079] slab 6303744
[ 2645.549184][T14079] sock 8192
[ 2645.549184][T14079] shmem 0
[ 2645.549184][T14079] file_mapped 135168
[ 2645.549184][T14079] file_dirty 0
[ 2645.549184][T14079] file_writeback 0
[ 2645.549184][T14079] anon_thp 257949696
[ 2645.549184][T14079] inactive_anon 0
[ 2645.549184][T14079] active_anon 279982080
[ 2645.549184][T14079] inactive_file 28672
[ 2645.549184][T14079] active_file 61440
[ 2645.549184][T14079] unevictable 0
[ 2645.549184][T14079] slab_reclaimable 1081344
[ 2645.549184][T14079] slab_unreclaimable 5222400
[ 2645.549184][T14079] pgfault 331881
[ 2645.549184][T14079] pgmajfault 0
[ 2645.549184][T14079] workingset_refault 0
[ 2645.549184][T14079] workingset_activate 0
[ 2645.549184][T14079] workingset_nodereclaim 0
[ 2645.549184][T14079] pgrefill 699
[ 2645.549184][T14079] pgscan 17048
[ 2645.549184][T14079] pgsteal 16620
03:55:07 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {0x0, 0x0, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2645.862788][   T26] audit: type=1804 audit(2000001307.979:61071): pid=14217 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3731/bus" dev="sda1" ino=16971 res=1
03:55:08 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, &(0x7f00000000c0))
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:08 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:08 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2646.019804][T14079] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=27306,uid=0
[ 2646.155503][    C0] net_ratelimit: 20 callbacks suppressed
[ 2646.155513][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2646.164966][T14079] Memory cgroup out of memory: Killed process 27306 (syz-executor.4) total-vm:72848kB, anon-rss:2216kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2646.167037][    C0] protocol 88fb is buggy, dev hsr_slave_1
03:55:08 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x2000b}, 0x0, 0x0)

[ 2646.559615][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2646.565967][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2646.572695][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2646.579338][    C1] protocol 88fb is buggy, dev hsr_slave_1
03:55:08 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {0x0, 0x0, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2646.897400][T14227] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2646.946840][T14227] CPU: 1 PID: 14227 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2646.955549][T14227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2646.956122][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2646.965613][T14227] Call Trace:
[ 2646.965638][T14227]  dump_stack+0x11d/0x181
[ 2646.965668][T14227]  dump_header+0xaa/0x39c
[ 2646.965733][T14227]  oom_kill_process.cold+0x10/0x15
[ 2646.972041][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2646.974678][T14227]  out_of_memory+0x231/0xa60
[ 2646.974717][T14227]  mem_cgroup_out_of_memory+0x128/0x150
[ 2647.004290][T14227]  try_charge+0xb6c/0xbf0
[ 2647.008637][T14227]  ? rcu_note_context_switch+0x720/0x760
[ 2647.014355][T14227]  mem_cgroup_try_charge+0xd2/0x260
[ 2647.019570][T14227]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2647.025242][T14227]  wp_page_copy+0x322/0x1040
[ 2647.029854][T14227]  ? __sanitizer_cov_trace_pc+0x20/0x50
[ 2647.035408][T14227]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2647.041161][T14227]  do_wp_page+0x192/0xeb0
[ 2647.045599][T14227]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2647.051628][T14227]  __handle_mm_fault+0x1d16/0x2e00
[ 2647.056763][T14227]  handle_mm_fault+0x21b/0x530
[ 2647.061571][T14227]  __do_page_fault+0x456/0x8d0
[ 2647.066471][T14227]  do_page_fault+0x38/0x194
[ 2647.070986][T14227]  page_fault+0x34/0x40
[ 2647.075149][T14227] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2647.081879][T14227] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2647.101485][T14227] RSP: 0018:ffffc9001525b630 EFLAGS: 00010206
[ 2647.107555][T14227] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2647.115698][T14227] RDX: 0000000000001000 RSI: ffff8880893b3000 RDI: 00000000009d3000
[ 2647.123700][T14227] RBP: ffffc9001525b668 R08: ffff8880937fc0c0 R09: 00008880937fcc10
[ 2647.131739][T14227] R10: 0000c9001525b738 R11: 00008880937fcc17 R12: 00000000009d3000
[ 2647.139716][T14227] R13: 00000000009d4000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2647.147721][T14227]  ? copyout+0xa5/0xb0
[ 2647.151804][T14227]  copy_page_to_iter+0x252/0x8d0
[ 2647.156934][T14227]  bio_uncopy_user+0x253/0x2f0
[ 2647.161749][T14227]  __blk_rq_unmap_user+0x78/0x80
[ 2647.166709][T14227]  blk_rq_map_user_iov+0x30b/0x420
[ 2647.171885][T14227]  blk_rq_map_user+0x90/0xd0
[ 2647.176564][T14227]  sg_common_write.isra.0+0xc64/0x12c0
[ 2647.182048][T14227]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2647.188303][T14227]  ? _copy_from_user+0x98/0xf0
[ 2647.193184][T14227]  sg_new_write.isra.0+0x2bd/0x520
[ 2647.198327][T14227]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2647.204847][T14227]  ? scsi_block_when_processing_errors+0x19f/0x1d0
[ 2647.211373][T14227]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2647.217633][T14227]  sg_write.part.0+0x73e/0x8c0
[ 2647.222411][T14227]  ? apic_timer_interrupt+0xa/0x20
[ 2647.227664][T14227]  ? __tsan_read8+0x100/0x100
[ 2647.232354][T14227]  ? iov_iter_advance+0x216/0x940
[ 2647.237419][T14227]  sg_write+0x65/0x88
[ 2647.241420][T14227]  do_iter_write+0x34b/0x3c0
[ 2647.246036][T14227]  vfs_writev+0x118/0x1c0
[ 2647.250439][T14227]  ? __fget_light+0xaf/0x190
[ 2647.255051][T14227]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2647.261445][T14227]  do_writev+0xe3/0x250
[ 2647.265736][T14227]  __x64_sys_writev+0x4e/0x60
[ 2647.270427][T14227]  do_syscall_64+0xcc/0x3a0
[ 2647.274949][T14227]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2647.281022][T14227] RIP: 0033:0x45b399
[ 2647.284935][T14227] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2647.304578][T14227] RSP: 002b:00007ffac9a53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2647.313138][T14227] RAX: ffffffffffffffda RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2647.321243][T14227] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000007
[ 2647.329251][T14227] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 2647.337233][T14227] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
03:55:09 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2647.345222][T14227] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bf2c
03:55:09 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, &(0x7f00000000c0))
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2647.378896][T14227] memory: usage 307200kB, limit 307200kB, failcnt 890
[ 2647.419134][T14227] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2647.421723][   T26] audit: type=1804 audit(2000001309.539:61072): pid=14357 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3732/bus" dev="sda1" ino=16555 res=1
[ 2647.451495][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2647.457409][    C1] protocol 88fb is buggy, dev hsr_slave_1
03:55:09 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2647.511529][T14227] Memory cgroup stats for /syz0:
[ 2647.522364][T14227] anon 286179328
[ 2647.522364][T14227] file 28672
[ 2647.522364][T14227] kernel_stack 2654208
[ 2647.522364][T14227] slab 4943872
[ 2647.522364][T14227] sock 81920
[ 2647.522364][T14227] shmem 8192
[ 2647.522364][T14227] file_mapped 0
[ 2647.522364][T14227] file_dirty 0
[ 2647.522364][T14227] file_writeback 0
[ 2647.522364][T14227] anon_thp 266338304
[ 2647.522364][T14227] inactive_anon 0
[ 2647.522364][T14227] active_anon 286236672
03:55:09 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x1000000}, 0x0, 0x0)

[ 2647.522364][T14227] inactive_file 4096
[ 2647.522364][T14227] active_file 49152
[ 2647.522364][T14227] unevictable 0
[ 2647.522364][T14227] slab_reclaimable 540672
[ 2647.522364][T14227] slab_unreclaimable 4403200
[ 2647.522364][T14227] pgfault 271062
[ 2647.522364][T14227] pgmajfault 0
[ 2647.522364][T14227] workingset_refault 0
[ 2647.522364][T14227] workingset_activate 0
[ 2647.522364][T14227] workingset_nodereclaim 0
[ 2647.522364][T14227] pgrefill 456
[ 2647.522364][T14227] pgscan 8629
[ 2647.522364][T14227] pgsteal 8360
[ 2647.759440][T14227] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14225,uid=0
[ 2647.794696][T14227] Memory cgroup out of memory: Killed process 14225 (syz-executor.0) total-vm:72716kB, anon-rss:2228kB, file-rss:35784kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2647.883644][T14362] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2647.884079][ T1069] oom_reaper: reaped process 14225 (syz-executor.0), now anon-rss:0kB, file-rss:34852kB, shmem-rss:0kB
[ 2647.900923][T14362] CPU: 1 PID: 14362 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2647.913700][T14362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2647.923755][T14362] Call Trace:
[ 2647.927059][T14362]  dump_stack+0x11d/0x181
[ 2647.931462][T14362]  dump_header+0xaa/0x39c
[ 2647.935808][T14362]  oom_kill_process.cold+0x10/0x15
[ 2647.941008][T14362]  out_of_memory+0x231/0xa60
[ 2647.945693][T14362]  mem_cgroup_out_of_memory+0x128/0x150
[ 2647.951402][T14362]  try_charge+0xb6c/0xbf0
[ 2647.955747][T14362]  ? rcu_note_context_switch+0x720/0x760
[ 2647.961522][T14362]  mem_cgroup_try_charge+0xd2/0x260
[ 2647.966888][T14362]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2647.972539][T14362]  wp_page_copy+0x322/0x1040
[ 2647.977305][T14362]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2647.983048][T14362]  do_wp_page+0x192/0xeb0
[ 2647.987397][T14362]  ? __udelay+0x10/0x20
[ 2647.991625][T14362]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2647.997543][T14362]  __handle_mm_fault+0x1d16/0x2e00
[ 2648.002858][T14362]  handle_mm_fault+0x21b/0x530
[ 2648.007648][T14362]  __do_page_fault+0x456/0x8d0
[ 2648.012458][T14362]  do_page_fault+0x38/0x194
[ 2648.017053][T14362]  page_fault+0x34/0x40
[ 2648.021227][T14362] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2648.027907][T14362] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2648.047687][T14362] RSP: 0018:ffffc900152e3630 EFLAGS: 00010206
[ 2648.053758][T14362] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2648.061765][T14362] RDX: 0000000000001000 RSI: ffff888089123000 RDI: 00000000009a3000
[ 2648.069752][T14362] RBP: ffffc900152e3668 R08: ffff88808dcf4080 R09: 000088808dcf4bd0
[ 2648.077735][T14362] R10: 0000c900152e3738 R11: 000088808dcf4bd7 R12: 00000000009a3000
[ 2648.085748][T14362] R13: 00000000009a4000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2648.093835][T14362]  ? copyout+0xa5/0xb0
[ 2648.097933][T14362]  copy_page_to_iter+0x252/0x8d0
[ 2648.102909][T14362]  bio_uncopy_user+0x253/0x2f0
[ 2648.107746][T14362]  __blk_rq_unmap_user+0x78/0x80
[ 2648.112746][T14362]  blk_rq_map_user_iov+0x30b/0x420
[ 2648.117895][T14362]  blk_rq_map_user+0x90/0xd0
[ 2648.122559][T14362]  sg_common_write.isra.0+0xc64/0x12c0
[ 2648.128056][T14362]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2648.134317][T14362]  ? _copy_from_user+0x98/0xf0
[ 2648.139097][T14362]  sg_new_write.isra.0+0x2bd/0x520
[ 2648.144239][T14362]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2648.150623][T14362]  ? scsi_block_when_processing_errors+0x19f/0x1d0
[ 2648.157214][T14362]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2648.163554][T14362]  sg_write.part.0+0x73e/0x8c0
[ 2648.168378][T14362]  ? common_file_perm+0x1d5/0x490
[ 2648.173444][T14362]  ? drop_futex_key_refs.isra.0+0x5c/0xb0
[ 2648.179197][T14362]  ? check_stack_object+0xda/0x110
[ 2648.184420][T14362]  ? apparmor_file_permission+0x38/0x50
[ 2648.190024][T14362]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2648.195762][T14362]  ? iov_iter_advance+0x216/0x940
[ 2648.200832][T14362]  sg_write+0x65/0x88
[ 2648.204909][T14362]  do_iter_write+0x34b/0x3c0
[ 2648.209549][T14362]  vfs_writev+0x118/0x1c0
[ 2648.213909][T14362]  ? __fget_light+0xaf/0x190
[ 2648.218596][T14362]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2648.225212][T14362]  do_writev+0xe3/0x250
[ 2648.229452][T14362]  __x64_sys_writev+0x4e/0x60
[ 2648.234156][T14362]  do_syscall_64+0xcc/0x3a0
[ 2648.238688][T14362]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2648.244681][T14362] RIP: 0033:0x45b399
[ 2648.248588][T14362] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2648.268302][T14362] RSP: 002b:00007f0b9e68bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2648.276802][T14362] RAX: ffffffffffffffda RBX: 00007f0b9e68c6d4 RCX: 000000000045b399
[ 2648.284909][T14362] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000008
[ 2648.292890][T14362] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[ 2648.300908][T14362] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2648.308889][T14362] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bfd4
[ 2648.421612][T14362] memory: usage 307200kB, limit 307200kB, failcnt 1319
[ 2648.464500][T14362] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2648.532178][T14362] Memory cgroup stats for /syz4:
[ 2648.532584][T14362] anon 279941120
[ 2648.532584][T14362] file 53248
[ 2648.532584][T14362] kernel_stack 3170304
[ 2648.532584][T14362] slab 6303744
[ 2648.532584][T14362] sock 8192
[ 2648.532584][T14362] shmem 0
[ 2648.532584][T14362] file_mapped 135168
[ 2648.532584][T14362] file_dirty 0
[ 2648.532584][T14362] file_writeback 0
[ 2648.532584][T14362] anon_thp 257949696
[ 2648.532584][T14362] inactive_anon 0
[ 2648.532584][T14362] active_anon 279945216
[ 2648.532584][T14362] inactive_file 28672
03:55:10 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0), 0x0, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2648.532584][T14362] active_file 61440
[ 2648.532584][T14362] unevictable 0
[ 2648.532584][T14362] slab_reclaimable 1081344
[ 2648.532584][T14362] slab_unreclaimable 5222400
[ 2648.532584][T14362] pgfault 332409
[ 2648.532584][T14362] pgmajfault 0
[ 2648.532584][T14362] workingset_refault 0
[ 2648.532584][T14362] workingset_activate 0
[ 2648.532584][T14362] workingset_nodereclaim 0
[ 2648.532584][T14362] pgrefill 732
[ 2648.532584][T14362] pgscan 17082
[ 2648.532584][T14362] pgsteal 16620
03:55:10 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:10 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x2000000}, 0x0, 0x0)

[ 2648.831578][   T26] audit: type=1804 audit(2000001310.949:61073): pid=14489 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3733/bus" dev="sda1" ino=17187 res=1
03:55:11 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, 0x0)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:11 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, &(0x7f00000000c0))
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2649.265799][T14362] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=14358,uid=0
[ 2649.345361][T14362] Memory cgroup out of memory: Killed process 14362 (syz-executor.4) total-vm:72716kB, anon-rss:2232kB, file-rss:35812kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000
[ 2649.447318][ T1069] oom_reaper: reaped process 14362 (syz-executor.4), now anon-rss:0kB, file-rss:34852kB, shmem-rss:0kB
[ 2649.464099][T14490] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2649.490504][T14490] CPU: 0 PID: 14490 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2649.499210][T14490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2649.509358][T14490] Call Trace:
[ 2649.512660][T14490]  dump_stack+0x11d/0x181
[ 2649.517012][T14490]  dump_header+0xaa/0x39c
[ 2649.521357][T14490]  oom_kill_process.cold+0x10/0x15
[ 2649.526552][T14490]  out_of_memory+0x231/0xa60
[ 2649.531190][T14490]  mem_cgroup_out_of_memory+0x128/0x150
[ 2649.536765][T14490]  try_charge+0xb6c/0xbf0
[ 2649.541192][T14490]  ? rcu_note_context_switch+0x720/0x760
[ 2649.546847][T14490]  mem_cgroup_try_charge+0xd2/0x260
[ 2649.552120][T14490]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2649.557767][T14490]  wp_page_copy+0x322/0x1040
[ 2649.562377][T14490]  ? __read_once_size+0x41/0xe0
[ 2649.567236][T14490]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2649.573146][T14490]  do_wp_page+0x192/0xeb0
[ 2649.577544][T14490]  ? record_times+0x16/0x90
[ 2649.582125][T14490]  __handle_mm_fault+0x1d16/0x2e00
[ 2649.587288][T14490]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2649.593540][T14490]  handle_mm_fault+0x21b/0x530
[ 2649.598420][T14490]  __do_page_fault+0x456/0x8d0
[ 2649.603198][T14490]  do_page_fault+0x38/0x194
[ 2649.607721][T14490]  page_fault+0x34/0x40
[ 2649.612751][T14490] RIP: 0033:0x4103e8
[ 2649.616706][T14490] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf d5 0c 4c 00 31 c0 e8 c3 1a ff ff 31 ff e8 0c 17 ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 5e 22 66 00
[ 2649.636527][T14490] RSP: 002b:00007ffdda4847c0 EFLAGS: 00010246
[ 2649.642619][T14490] RAX: 000000000b59142c RBX: 000000000cfba949 RCX: 0000001b2f120000
[ 2649.650606][T14490] RDX: 0000000000000000 RSI: 000000000000142c RDI: ffffffff0b59142c
[ 2649.658727][T14490] RBP: 0000000000000005 R08: 000000000b59142c R09: 000000000b591430
[ 2649.666733][T14490] R10: 00007ffdda484960 R11: 0000000000000246 R12: 000000000075c050
[ 2649.674706][T14490] R13: 0000000080000000 R14: 00007ffacb855008 R15: 000000000000000a
[ 2649.729113][T14490] memory: usage 307200kB, limit 307200kB, failcnt 916
[ 2649.781761][T14490] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2649.813033][T14490] Memory cgroup stats for /syz0:
[ 2649.813268][T14490] anon 286072832
[ 2649.813268][T14490] file 28672
[ 2649.813268][T14490] kernel_stack 2691072
[ 2649.813268][T14490] slab 4943872
[ 2649.813268][T14490] sock 81920
[ 2649.813268][T14490] shmem 8192
[ 2649.813268][T14490] file_mapped 0
[ 2649.813268][T14490] file_dirty 0
[ 2649.813268][T14490] file_writeback 0
[ 2649.813268][T14490] anon_thp 266338304
[ 2649.813268][T14490] inactive_anon 0
[ 2649.813268][T14490] active_anon 286072832
[ 2649.813268][T14490] inactive_file 4096
[ 2649.813268][T14490] active_file 49152
[ 2649.813268][T14490] unevictable 0
[ 2649.813268][T14490] slab_reclaimable 540672
[ 2649.813268][T14490] slab_unreclaimable 4403200
[ 2649.813268][T14490] pgfault 271128
03:55:12 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:12 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:12 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x3000000}, 0x0, 0x0)

03:55:12 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0), 0x0, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2649.813268][T14490] pgmajfault 0
[ 2649.813268][T14490] workingset_refault 0
[ 2649.813268][T14490] workingset_activate 0
[ 2649.813268][T14490] workingset_nodereclaim 0
[ 2649.813268][T14490] pgrefill 489
[ 2649.813268][T14490] pgscan 8629
[ 2649.813268][T14490] pgsteal 8360
[ 2649.991418][T14490] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14490,uid=0
[ 2650.119843][   T26] audit: type=1804 audit(2000001312.239:61074): pid=14625 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3734/bus" dev="sda1" ino=17371 res=1
[ 2650.132308][T14490] Memory cgroup out of memory: Killed process 14490 (syz-executor.0) total-vm:72716kB, anon-rss:2220kB, file-rss:35784kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000
03:55:12 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, 0x0)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2650.223943][ T1069] oom_reaper: reaped process 14490 (syz-executor.0), now anon-rss:0kB, file-rss:34824kB, shmem-rss:0kB
[ 2650.316335][T14617] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2650.365103][T14617] CPU: 1 PID: 14617 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2650.374890][T14617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2650.385111][T14617] Call Trace:
[ 2650.388460][T14617]  dump_stack+0x11d/0x181
[ 2650.392842][T14617]  dump_header+0xaa/0x39c
[ 2650.397180][T14617]  oom_kill_process.cold+0x10/0x15
[ 2650.402295][T14617]  out_of_memory+0x231/0xa60
[ 2650.406912][T14617]  mem_cgroup_out_of_memory+0x128/0x150
[ 2650.412450][T14617]  try_charge+0xb6c/0xbf0
[ 2650.416783][T14617]  ? rcu_note_context_switch+0x720/0x760
[ 2650.422573][T14617]  mem_cgroup_try_charge+0xd2/0x260
[ 2650.427778][T14617]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2650.433753][T14617]  __handle_mm_fault+0x197f/0x2e00
[ 2650.438992][T14617]  handle_mm_fault+0x21b/0x530
[ 2650.443773][T14617]  __do_page_fault+0x456/0x8d0
[ 2650.448543][T14617]  do_page_fault+0x38/0x194
[ 2650.453095][T14617]  page_fault+0x34/0x40
[ 2650.457476][T14617] RIP: 0033:0x412b8f
[ 2650.461410][T14617] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41
[ 2650.481063][T14617] RSP: 002b:00007ffd378c3f90 EFLAGS: 00010206
[ 2650.487120][T14617] RAX: 00007f0b9e66c000 RBX: 0000000000020000 RCX: 000000000045b3ea
[ 2650.495093][T14617] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000
[ 2650.503117][T14617] RBP: 00007ffd378c4070 R08: ffffffffffffffff R09: 0000000000000000
[ 2650.511102][T14617] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd378c4160
[ 2650.519080][T14617] R13: 00007f0b9e68c700 R14: 0000000000000001 R15: 000000000075bfd4
[ 2650.530108][T14617] memory: usage 307200kB, limit 307200kB, failcnt 1389
[ 2650.537729][T14617] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2650.545336][T14617] Memory cgroup stats for /syz4:
[ 2650.545684][T14617] anon 280023040
[ 2650.545684][T14617] file 53248
[ 2650.545684][T14617] kernel_stack 3133440
[ 2650.545684][T14617] slab 6303744
[ 2650.545684][T14617] sock 8192
[ 2650.545684][T14617] shmem 0
[ 2650.545684][T14617] file_mapped 135168
[ 2650.545684][T14617] file_dirty 0
[ 2650.545684][T14617] file_writeback 0
[ 2650.545684][T14617] anon_thp 257949696
[ 2650.545684][T14617] inactive_anon 0
[ 2650.545684][T14617] active_anon 280080384
[ 2650.545684][T14617] inactive_file 28672
[ 2650.545684][T14617] active_file 61440
[ 2650.545684][T14617] unevictable 0
[ 2650.545684][T14617] slab_reclaimable 1081344
[ 2650.545684][T14617] slab_unreclaimable 5222400
[ 2650.545684][T14617] pgfault 332475
[ 2650.545684][T14617] pgmajfault 0
[ 2650.545684][T14617] workingset_refault 0
[ 2650.545684][T14617] workingset_activate 0
[ 2650.545684][T14617] workingset_nodereclaim 0
[ 2650.545684][T14617] pgrefill 799
[ 2650.545684][T14617] pgscan 17148
[ 2650.545684][T14617] pgsteal 16620
[ 2650.670083][T14617] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=8825,uid=0
[ 2650.692089][T14617] Memory cgroup out of memory: Killed process 8825 (syz-executor.4) total-vm:72716kB, anon-rss:2208kB, file-rss:35792kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
03:55:12 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2650.769114][ T1069] oom_reaper: reaped process 8825 (syz-executor.4), now anon-rss:0kB, file-rss:34832kB, shmem-rss:0kB
[ 2650.826436][T14620] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2650.841302][T14620] CPU: 1 PID: 14620 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2650.849999][T14620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2650.860061][T14620] Call Trace:
[ 2650.863378][T14620]  dump_stack+0x11d/0x181
[ 2650.867724][T14620]  dump_header+0xaa/0x39c
[ 2650.872143][T14620]  oom_kill_process.cold+0x10/0x15
[ 2650.877275][T14620]  out_of_memory+0x231/0xa60
[ 2650.881885][T14620]  mem_cgroup_out_of_memory+0x128/0x150
[ 2650.887515][T14620]  try_charge+0x800/0xbf0
[ 2650.891868][T14620]  ? __rcu_read_unlock+0x66/0x3d0
[ 2650.896956][T14620]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2650.902442][T14620]  __memcg_kmem_charge+0xcf/0x1b0
[ 2650.907513][T14620]  __alloc_pages_nodemask+0x26c/0x310
[ 2650.912907][T14620]  alloc_pages_current+0xd1/0x170
[ 2650.918025][T14620]  __get_free_pages+0xc/0x40
[ 2650.922697][T14620]  pgd_alloc+0x34/0x220
[ 2650.926943][T14620]  mm_init+0x377/0x560
[ 2650.931026][T14620]  dup_mm+0x98/0xba0
[ 2650.934928][T14620]  ? __write_once_size+0x25/0xe0
[ 2650.939875][T14620]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2650.946176][T14620]  ? __hrtimer_init+0x12f/0x1a0
[ 2650.951043][T14620]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2650.957079][T14620]  copy_process+0x3138/0x3c40
[ 2650.961790][T14620]  _do_fork+0xfe/0x7a0
[ 2650.965939][T14620]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2650.971842][T14620]  ? __read_once_size+0x5a/0xe0
[ 2650.976703][T14620]  __x64_sys_clone+0x130/0x170
[ 2650.981477][T14620]  do_syscall_64+0xcc/0x3a0
[ 2650.985993][T14620]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2650.991998][T14620] RIP: 0033:0x45b399
[ 2650.995917][T14620] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2651.015526][T14620] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
03:55:13 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2651.023976][T14620] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2651.031973][T14620] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2651.039969][T14620] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2651.047960][T14620] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2651.055938][T14620] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:55:13 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x4000000}, 0x0, 0x0)

[ 2651.106220][T14620] memory: usage 304972kB, limit 307200kB, failcnt 1391
[ 2651.174977][T14620] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2651.228908][T14620] Memory cgroup stats for /syz4:
[ 2651.231544][T14620] anon 277794816
[ 2651.231544][T14620] file 53248
[ 2651.231544][T14620] kernel_stack 3133440
[ 2651.231544][T14620] slab 6303744
[ 2651.231544][T14620] sock 8192
[ 2651.231544][T14620] shmem 0
[ 2651.231544][T14620] file_mapped 135168
[ 2651.231544][T14620] file_dirty 0
[ 2651.231544][T14620] file_writeback 0
[ 2651.231544][T14620] anon_thp 255852544
[ 2651.231544][T14620] inactive_anon 0
[ 2651.231544][T14620] active_anon 277794816
[ 2651.231544][T14620] inactive_file 28672
03:55:13 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0), 0x0, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2651.231544][T14620] active_file 61440
[ 2651.231544][T14620] unevictable 0
[ 2651.231544][T14620] slab_reclaimable 1081344
[ 2651.231544][T14620] slab_unreclaimable 5222400
[ 2651.231544][T14620] pgfault 332508
[ 2651.231544][T14620] pgmajfault 0
[ 2651.231544][T14620] workingset_refault 0
[ 2651.231544][T14620] workingset_activate 0
[ 2651.231544][T14620] workingset_nodereclaim 0
[ 2651.231544][T14620] pgrefill 799
[ 2651.231544][T14620] pgscan 17148
[ 2651.231544][T14620] pgsteal 16620
[ 2651.342560][T14620] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=2216,uid=0
[ 2651.363716][T14620] Memory cgroup out of memory: Killed process 2216 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2651.408697][T14750] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2651.409115][ T1069] oom_reaper: reaped process 2216 (syz-executor.4), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB
[ 2651.430756][T14750] CPU: 1 PID: 14750 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2651.439443][T14750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2651.449497][T14750] Call Trace:
[ 2651.452802][T14750]  dump_stack+0x11d/0x181
[ 2651.457162][T14750]  dump_header+0xaa/0x39c
[ 2651.461503][T14750]  oom_kill_process.cold+0x10/0x15
[ 2651.466622][T14750]  out_of_memory+0x231/0xa60
[ 2651.471230][T14750]  mem_cgroup_out_of_memory+0x128/0x150
[ 2651.476843][T14750]  try_charge+0xb6c/0xbf0
[ 2651.481178][T14750]  ? memcg_to_vmpressure+0x1b/0x50
[ 2651.486317][T14750]  ? setup_fault_attr+0x90/0x120
[ 2651.491267][T14750]  ? __rcu_read_unlock+0x66/0x3d0
[ 2651.496301][T14750]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2651.501818][T14750]  __memcg_kmem_charge+0xcf/0x1b0
[ 2651.506941][T14750]  copy_process+0x11d2/0x3c40
[ 2651.511633][T14750]  ? record_times+0x16/0x90
[ 2651.516217][T14750]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2651.522373][T14750]  _do_fork+0xfe/0x7a0
[ 2651.526459][T14750]  ? cgroup_file_notify+0xff/0x130
[ 2651.531638][T14750]  ? blkcg_maybe_throttle_current+0x23d/0x580
[ 2651.537721][T14750]  __x64_sys_clone+0x130/0x170
[ 2651.542549][T14750]  do_syscall_64+0xcc/0x3a0
[ 2651.547081][T14750]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2651.553116][T14750] RIP: 0033:0x45dd69
[ 2651.557112][T14750] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 2651.576808][T14750] RSP: 002b:00007ffdda484758 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2651.585233][T14750] RAX: ffffffffffffffda RBX: 00007ffac9a54700 RCX: 000000000045dd69
[ 2651.593833][T14750] RDX: 00007ffac9a549d0 RSI: 00007ffac9a53db0 RDI: 00000000003d0f00
[ 2651.601816][T14750] RBP: 00007ffdda484970 R08: 00007ffac9a54700 R09: 00007ffac9a54700
03:55:13 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, 0x0)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2651.609792][T14750] R10: 00007ffac9a549d0 R11: 0000000000000202 R12: 0000000000000000
[ 2651.617776][T14750] R13: 00007ffdda48480f R14: 00007ffac9a549c0 R15: 000000000075bf2c
[ 2651.702535][   T26] audit: type=1804 audit(2000001313.819:61075): pid=14759 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3735/bus" dev="sda1" ino=16994 res=1
[ 2651.755796][    C1] net_ratelimit: 22 callbacks suppressed
[ 2651.755806][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2651.767382][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2651.773282][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2651.775950][T14750] memory: usage 307196kB, limit 307200kB, failcnt 959
[ 2651.779133][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2651.829887][T14750] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
03:55:14 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2652.088877][T14750] Memory cgroup stats for /syz0:
[ 2652.089095][T14750] anon 286072832
[ 2652.089095][T14750] file 28672
[ 2652.089095][T14750] kernel_stack 2654208
[ 2652.089095][T14750] slab 4943872
[ 2652.089095][T14750] sock 81920
[ 2652.089095][T14750] shmem 8192
[ 2652.089095][T14750] file_mapped 0
[ 2652.089095][T14750] file_dirty 0
[ 2652.089095][T14750] file_writeback 0
[ 2652.089095][T14750] anon_thp 266338304
[ 2652.089095][T14750] inactive_anon 0
[ 2652.089095][T14750] active_anon 286072832
[ 2652.089095][T14750] inactive_file 4096
03:55:14 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2652.089095][T14750] active_file 49152
[ 2652.089095][T14750] unevictable 0
[ 2652.089095][T14750] slab_reclaimable 540672
[ 2652.089095][T14750] slab_unreclaimable 4403200
[ 2652.089095][T14750] pgfault 271194
[ 2652.089095][T14750] pgmajfault 0
[ 2652.089095][T14750] workingset_refault 0
[ 2652.089095][T14750] workingset_activate 0
[ 2652.089095][T14750] workingset_nodereclaim 0
[ 2652.089095][T14750] pgrefill 555
[ 2652.089095][T14750] pgscan 8695
[ 2652.089095][T14750] pgsteal 8360
03:55:14 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x5000000}, 0x0, 0x0)

[ 2652.396216][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2652.403434][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2652.528366][T14750] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9958,uid=0
03:55:14 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4", 0x72, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2652.646142][T14750] Memory cgroup out of memory: Killed process 9958 (syz-executor.0) total-vm:72716kB, anon-rss:2216kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000
03:55:14 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(0x0, 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2652.768496][   T26] audit: type=1804 audit(2000001314.889:61076): pid=14886 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3736/bus" dev="sda1" ino=17361 res=1
[ 2652.802731][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2652.809961][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2652.817478][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2652.824861][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2652.847578][T14875] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2652.891813][T14875] CPU: 0 PID: 14875 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2652.900647][T14875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2652.910802][T14875] Call Trace:
[ 2652.914097][T14875]  dump_stack+0x11d/0x181
[ 2652.918537][T14875]  dump_header+0xaa/0x39c
[ 2652.922940][T14875]  oom_kill_process.cold+0x10/0x15
[ 2652.928146][T14875]  out_of_memory+0x231/0xa60
[ 2652.932877][T14875]  mem_cgroup_out_of_memory+0x128/0x150
[ 2652.938448][T14875]  try_charge+0xb6c/0xbf0
[ 2652.942927][T14875]  ? rcu_note_context_switch+0x720/0x760
[ 2652.948755][T14875]  mem_cgroup_try_charge+0xd2/0x260
[ 2652.953972][T14875]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2652.959615][T14875]  wp_page_copy+0x322/0x1040
[ 2652.964337][T14875]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2652.970141][T14875]  do_wp_page+0x192/0xeb0
[ 2652.974490][T14875]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2652.980394][T14875]  __handle_mm_fault+0x1d16/0x2e00
[ 2652.985607][T14875]  handle_mm_fault+0x21b/0x530
[ 2652.990452][T14875]  __do_page_fault+0x456/0x8d0
[ 2652.995364][T14875]  do_page_fault+0x38/0x194
[ 2652.999901][T14875]  page_fault+0x34/0x40
[ 2653.004087][T14875] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2653.010828][T14875] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2653.030685][T14875] RSP: 0018:ffffc900158a7630 EFLAGS: 00010206
[ 2653.036844][T14875] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2653.044945][T14875] RDX: 0000000000001000 RSI: ffff888091d10000 RDI: 0000000000970000
[ 2653.052957][T14875] RBP: ffffc900158a7668 R08: ffff8880a66830c0 R09: 00008880a6683c10
[ 2653.060964][T14875] R10: 0000c900158a7738 R11: 00008880a6683c17 R12: 0000000000970000
[ 2653.069049][T14875] R13: 0000000000971000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2653.077056][T14875]  ? copyout+0xa5/0xb0
[ 2653.081136][T14875]  copy_page_to_iter+0x252/0x8d0
[ 2653.086098][T14875]  bio_uncopy_user+0x253/0x2f0
[ 2653.090886][T14875]  __blk_rq_unmap_user+0x78/0x80
[ 2653.095891][T14875]  blk_rq_map_user_iov+0x319/0x420
[ 2653.101026][T14875]  blk_rq_map_user+0x90/0xd0
[ 2653.105639][T14875]  sg_common_write.isra.0+0xc64/0x12c0
[ 2653.111129][T14875]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2653.117383][T14875]  ? _copy_from_user+0x98/0xf0
[ 2653.122238][T14875]  sg_new_write.isra.0+0x2bd/0x520
[ 2653.127382][T14875]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2653.133640][T14875]  ? scsi_block_when_processing_errors+0x19f/0x1d0
[ 2653.140263][T14875]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2653.146601][T14875]  sg_write.part.0+0x73e/0x8c0
[ 2653.151388][T14875]  ? aa_file_perm+0x39c/0xc20
[ 2653.156082][T14875]  ? __tsan_read8+0x71/0x100
[ 2653.160704][T14875]  ? common_file_perm+0x1d5/0x490
[ 2653.165750][T14875]  ? check_stack_object+0xda/0x110
[ 2653.170891][T14875]  ? apparmor_file_permission+0x38/0x50
[ 2653.176455][T14875]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2653.182194][T14875]  ? iov_iter_advance+0x216/0x940
[ 2653.187239][T14875]  sg_write+0x65/0x88
[ 2653.191273][T14875]  do_iter_write+0x34b/0x3c0
[ 2653.195904][T14875]  vfs_writev+0x118/0x1c0
[ 2653.200336][T14875]  ? __fget_light+0xaf/0x190
[ 2653.204961][T14875]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2653.211225][T14875]  do_writev+0xe3/0x250
[ 2653.215404][T14875]  __x64_sys_writev+0x4e/0x60
[ 2653.220097][T14875]  do_syscall_64+0xcc/0x3a0
[ 2653.224679][T14875]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2653.230695][T14875] RIP: 0033:0x45b399
[ 2653.234607][T14875] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2653.254334][T14875] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2653.262758][T14875] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2653.270739][T14875] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000008
[ 2653.279962][T14875] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 2653.288812][T14875] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2653.296859][T14875] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bf2c
[ 2653.443194][T14875] memory: usage 307200kB, limit 307200kB, failcnt 1415
[ 2653.450541][T14875] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2653.458241][T14875] Memory cgroup stats for /syz4:
[ 2653.462301][T14875] anon 280125440
[ 2653.462301][T14875] file 53248
[ 2653.462301][T14875] kernel_stack 3133440
[ 2653.462301][T14875] slab 6168576
[ 2653.462301][T14875] sock 8192
[ 2653.462301][T14875] shmem 0
[ 2653.462301][T14875] file_mapped 135168
[ 2653.462301][T14875] file_dirty 0
[ 2653.462301][T14875] file_writeback 0
[ 2653.462301][T14875] anon_thp 257949696
[ 2653.462301][T14875] inactive_anon 0
[ 2653.462301][T14875] active_anon 280125440
[ 2653.462301][T14875] inactive_file 28672
[ 2653.462301][T14875] active_file 61440
[ 2653.462301][T14875] unevictable 0
[ 2653.462301][T14875] slab_reclaimable 946176
[ 2653.462301][T14875] slab_unreclaimable 5222400
[ 2653.462301][T14875] pgfault 332838
[ 2653.462301][T14875] pgmajfault 0
[ 2653.462301][T14875] workingset_refault 0
[ 2653.462301][T14875] workingset_activate 0
03:55:15 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:15 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x6000000}, 0x0, 0x0)

[ 2653.462301][T14875] workingset_nodereclaim 0
[ 2653.462301][T14875] pgrefill 832
[ 2653.462301][T14875] pgscan 17181
[ 2653.462301][T14875] pgsteal 16620
03:55:15 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4", 0x72, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2653.860930][T14875] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=14874,uid=0
[ 2653.932848][T14875] Memory cgroup out of memory: Killed process 14875 (syz-executor.4) total-vm:72716kB, anon-rss:2492kB, file-rss:35816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000
[ 2653.971094][ T1069] oom_reaper: reaped process 14875 (syz-executor.4), now anon-rss:0kB, file-rss:34856kB, shmem-rss:0kB
[ 2653.972902][T14887] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2654.000114][T14887] CPU: 1 PID: 14887 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2654.008838][T14887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2654.018903][T14887] Call Trace:
[ 2654.022215][T14887]  dump_stack+0x11d/0x181
[ 2654.026554][T14887]  dump_header+0xaa/0x39c
[ 2654.030899][T14887]  oom_kill_process.cold+0x10/0x15
[ 2654.036047][T14887]  out_of_memory+0x231/0xa60
[ 2654.040735][T14887]  mem_cgroup_out_of_memory+0x128/0x150
[ 2654.046286][T14887]  try_charge+0xb6c/0xbf0
[ 2654.050638][T14887]  ? __rcu_read_unlock+0x66/0x3d0
[ 2654.055673][T14887]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2654.061205][T14887]  __memcg_kmem_charge+0xcf/0x1b0
[ 2654.066248][T14887]  __alloc_pages_nodemask+0x26c/0x310
[ 2654.071653][T14887]  alloc_pages_current+0xd1/0x170
[ 2654.076692][T14887]  pte_alloc_one+0x18/0x50
[ 2654.081155][T14887]  __pte_alloc+0x2d/0x220
[ 2654.085570][T14887]  copy_page_range+0x135a/0x19b0
[ 2654.090567][T14887]  ? apic_timer_interrupt+0xa/0x20
[ 2654.095710][T14887]  ? __vma_link_rb+0x3f4/0x440
[ 2654.100495][T14887]  dup_mm+0x74a/0xba0
[ 2654.104621][T14887]  copy_process+0x3138/0x3c40
[ 2654.109378][T14887]  _do_fork+0xfe/0x7a0
[ 2654.113617][T14887]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2654.119661][T14887]  ? __read_once_size+0x5a/0xe0
[ 2654.124532][T14887]  __x64_sys_clone+0x130/0x170
[ 2654.129322][T14887]  do_syscall_64+0xcc/0x3a0
[ 2654.133842][T14887]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2654.139753][T14887] RIP: 0033:0x45b399
[ 2654.143660][T14887] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2654.163276][T14887] RSP: 002b:00007ffac9a53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2654.172828][T14887] RAX: ffffffffffffffda RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2654.180984][T14887] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2654.188967][T14887] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2654.196955][T14887] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2654.204937][T14887] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2654.295627][T14887] memory: usage 307056kB, limit 307200kB, failcnt 991
[ 2654.311981][T14887] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2654.352207][T14887] Memory cgroup stats for /syz0:
[ 2654.361304][T14887] anon 286064640
[ 2654.361304][T14887] file 28672
[ 2654.361304][T14887] kernel_stack 2654208
[ 2654.361304][T14887] slab 5079040
[ 2654.361304][T14887] sock 81920
[ 2654.361304][T14887] shmem 8192
[ 2654.361304][T14887] file_mapped 0
[ 2654.361304][T14887] file_dirty 0
[ 2654.361304][T14887] file_writeback 0
[ 2654.361304][T14887] anon_thp 266338304
[ 2654.361304][T14887] inactive_anon 0
[ 2654.361304][T14887] active_anon 286064640
[ 2654.361304][T14887] inactive_file 4096
[ 2654.361304][T14887] active_file 49152
[ 2654.361304][T14887] unevictable 0
[ 2654.361304][T14887] slab_reclaimable 540672
[ 2654.361304][T14887] slab_unreclaimable 4538368
[ 2654.361304][T14887] pgfault 271194
[ 2654.361304][T14887] pgmajfault 0
[ 2654.361304][T14887] workingset_refault 0
[ 2654.361304][T14887] workingset_activate 0
[ 2654.361304][T14887] workingset_nodereclaim 0
[ 2654.361304][T14887] pgrefill 555
[ 2654.361304][T14887] pgscan 8729
[ 2654.361304][T14887] pgsteal 8360
[ 2654.483909][T14887] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25748,uid=0
[ 2654.503305][T14887] Memory cgroup out of memory: Killed process 25748 (syz-executor.0) total-vm:72716kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
03:55:16 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:16 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(0x0, 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:16 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:16 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, 0x0)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:16 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4", 0x72, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:16 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x7000000}, 0x0, 0x0)

[ 2654.810046][   T26] audit: type=1804 audit(2000001316.929:61077): pid=15023 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3738/bus" dev="sda1" ino=17397 res=1
03:55:17 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:17 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, &(0x7f000095dffc))
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={0x0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r2 = socket$packet(0x11, 0x2, 0x300)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:17 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x8000000}, 0x0, 0x0)

[ 2655.694801][T15021] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
03:55:17 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e4", 0xab, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2655.749060][T15021] CPU: 1 PID: 15021 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2655.757780][T15021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2655.767890][T15021] Call Trace:
[ 2655.771191][T15021]  dump_stack+0x11d/0x181
[ 2655.775559][T15021]  dump_header+0xaa/0x39c
[ 2655.779962][T15021]  oom_kill_process.cold+0x10/0x15
[ 2655.789004][T15021]  out_of_memory+0x231/0xa60
[ 2655.793656][T15021]  ? __rcu_read_unlock+0x66/0x3d0
[ 2655.798706][T15021]  mem_cgroup_out_of_memory+0x128/0x150
[ 2655.804271][T15021]  try_charge+0xb6c/0xbf0
[ 2655.808689][T15021]  ? rcu_note_context_switch+0x720/0x760
[ 2655.814411][T15021]  mem_cgroup_try_charge+0xd2/0x260
[ 2655.819669][T15021]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2655.825312][T15021]  wp_page_copy+0x322/0x1040
[ 2655.829935][T15021]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2655.835957][T15021]  do_wp_page+0x192/0xeb0
[ 2655.840311][T15021]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2655.846224][T15021]  __handle_mm_fault+0x1d16/0x2e00
[ 2655.851364][T15021]  handle_mm_fault+0x21b/0x530
[ 2655.856463][T15021]  __do_page_fault+0x456/0x8d0
[ 2655.861251][T15021]  do_page_fault+0x38/0x194
[ 2655.865772][T15021]  page_fault+0x34/0x40
[ 2655.869944][T15021] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2655.876549][T15021] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2655.896173][T15021] RSP: 0018:ffffc90015b4f630 EFLAGS: 00010206
[ 2655.902315][T15021] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2655.910993][T15021] RDX: 0000000000001000 RSI: ffff888091d20000 RDI: 00000000009b0000
[ 2655.918975][T15021] RBP: ffffc90015b4f668 R08: ffff888121a39040 R09: 0000888121a39b90
[ 2655.926948][T15021] R10: 0000c90015b4f738 R11: 0000888121a39b97 R12: 00000000009b0000
[ 2655.934926][T15021] R13: 00000000009b1000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2655.942932][T15021]  ? copyout+0xa5/0xb0
03:55:18 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(0x0, 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2655.947017][T15021]  copy_page_to_iter+0x252/0x8d0
[ 2655.951988][T15021]  bio_uncopy_user+0x253/0x2f0
[ 2655.956782][T15021]  __blk_rq_unmap_user+0x78/0x80
[ 2655.961750][T15021]  blk_rq_map_user_iov+0x30b/0x420
[ 2655.967039][T15021]  blk_rq_map_user+0x90/0xd0
[ 2655.971654][T15021]  sg_common_write.isra.0+0xc64/0x12c0
[ 2655.977138][T15021]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2655.983418][T15021]  ? _copy_from_user+0x98/0xf0
[ 2655.988193][T15021]  sg_new_write.isra.0+0x2bd/0x520
[ 2655.993335][T15021]  ? apic_timer_interrupt+0xa/0x20
[ 2655.998584][T15021]  sg_write.part.0+0x73e/0x8c0
[ 2656.003367][T15021]  ? common_file_perm+0x15a/0x490
[ 2656.008417][T15021]  ? __tsan_read8+0x8a/0x100
[ 2656.013032][T15021]  ? common_file_perm+0x1d5/0x490
[ 2656.018138][T15021]  ? apparmor_file_permission+0x38/0x50
[ 2656.023788][T15021]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2656.029541][T15021]  ? iov_iter_advance+0x216/0x940
[ 2656.034585][T15021]  sg_write+0x65/0x88
[ 2656.038594][T15021]  do_iter_write+0x34b/0x3c0
[ 2656.043237][T15021]  vfs_writev+0x118/0x1c0
[ 2656.047621][T15021]  ? __fget_light+0xaf/0x190
[ 2656.053104][T15021]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2656.059376][T15021]  do_writev+0xe3/0x250
[ 2656.063557][T15021]  __x64_sys_writev+0x4e/0x60
[ 2656.068952][T15021]  do_syscall_64+0xcc/0x3a0
[ 2656.073478][T15021]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2656.079373][T15021] RIP: 0033:0x45b399
[ 2656.083337][T15021] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2656.102953][T15021] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2656.111598][T15021] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2656.119599][T15021] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000008
[ 2656.127605][T15021] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 2656.135583][T15021] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
03:55:18 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x0, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2656.144065][T15021] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bf2c
[ 2656.160610][T15021] memory: usage 307168kB, limit 307200kB, failcnt 1473
[ 2656.168669][T15021] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2656.176250][T15021] Memory cgroup stats for /syz4:
[ 2656.177654][T15021] anon 279896064
[ 2656.177654][T15021] file 53248
[ 2656.177654][T15021] kernel_stack 3133440
[ 2656.177654][T15021] slab 6168576
[ 2656.177654][T15021] sock 8192
[ 2656.177654][T15021] shmem 0
[ 2656.177654][T15021] file_mapped 135168
[ 2656.177654][T15021] file_dirty 0
[ 2656.177654][T15021] file_writeback 0
[ 2656.177654][T15021] anon_thp 257949696
[ 2656.177654][T15021] inactive_anon 0
[ 2656.177654][T15021] active_anon 279896064
[ 2656.177654][T15021] inactive_file 28672
[ 2656.177654][T15021] active_file 61440
[ 2656.177654][T15021] unevictable 0
[ 2656.177654][T15021] slab_reclaimable 946176
[ 2656.177654][T15021] slab_unreclaimable 5222400
[ 2656.177654][T15021] pgfault 333102
[ 2656.177654][T15021] pgmajfault 0
[ 2656.177654][T15021] workingset_refault 0
[ 2656.177654][T15021] workingset_activate 0
[ 2656.177654][T15021] workingset_nodereclaim 0
[ 2656.177654][T15021] pgrefill 969
[ 2656.177654][T15021] pgscan 17349
[ 2656.177654][T15021] pgsteal 16620
[ 2656.274196][T15021] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=15015,uid=0
[ 2656.291115][T15021] Memory cgroup out of memory: Killed process 15021 (syz-executor.4) total-vm:72716kB, anon-rss:2228kB, file-rss:35816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000
[ 2656.366103][ T1069] oom_reaper: reaped process 15021 (syz-executor.4), now anon-rss:0kB, file-rss:34856kB, shmem-rss:0kB
[ 2656.384672][T15152] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2656.430418][T15152] CPU: 0 PID: 15152 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2656.439168][T15152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2656.449231][T15152] Call Trace:
[ 2656.452610][T15152]  dump_stack+0x11d/0x181
[ 2656.456985][T15152]  dump_header+0xaa/0x39c
[ 2656.461371][T15152]  oom_kill_process.cold+0x10/0x15
[ 2656.466667][T15152]  out_of_memory+0x231/0xa60
[ 2656.471288][T15152]  mem_cgroup_out_of_memory+0x128/0x150
[ 2656.476863][T15152]  try_charge+0xb6c/0xbf0
[ 2656.481231][T15152]  ? apic_timer_interrupt+0xa/0x20
[ 2656.486517][T15152]  ? __rcu_read_unlock+0x66/0x3d0
[ 2656.491582][T15152]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2656.497193][T15152]  __memcg_kmem_charge+0xcf/0x1b0
[ 2656.502242][T15152]  __alloc_pages_nodemask+0x26c/0x310
[ 2656.507764][T15152]  alloc_pages_current+0xd1/0x170
[ 2656.512847][T15152]  pte_alloc_one+0x18/0x50
[ 2656.517324][T15152]  __pte_alloc+0x2d/0x220
[ 2656.521673][T15152]  copy_page_range+0x135a/0x19b0
[ 2656.522679][   T26] audit: type=1804 audit(2000001318.549:61078): pid=15161 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3739/bus" dev="sda1" ino=17458 res=1
[ 2656.526643][T15152]  ? __vma_link_rb+0x3f4/0x440
[ 2656.526697][T15152]  dup_mm+0x74a/0xba0
[ 2656.526730][T15152]  copy_process+0x3138/0x3c40
[ 2656.565215][T15152]  _do_fork+0xfe/0x7a0
[ 2656.569302][T15152]  ? __x64_sys_clone+0x119/0x170
[ 2656.574269][T15152]  __x64_sys_clone+0x130/0x170
[ 2656.579070][T15152]  do_syscall_64+0xcc/0x3a0
[ 2656.583675][T15152]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2656.589925][T15152] RIP: 0033:0x45b399
[ 2656.593835][T15152] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2656.613579][T15152] RSP: 002b:00007ffac9a53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2656.622027][T15152] RAX: ffffffffffffffda RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2656.630098][T15152] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2656.638105][T15152] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2656.646098][T15152] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2656.654082][T15152] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2656.765868][T15152] memory: usage 307148kB, limit 307200kB, failcnt 1009
[ 2656.772808][T15152] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2656.817624][T15152] Memory cgroup stats for /syz0:
[ 2656.822682][T15152] anon 286064640
[ 2656.822682][T15152] file 28672
[ 2656.822682][T15152] kernel_stack 2654208
[ 2656.822682][T15152] slab 5079040
[ 2656.822682][T15152] sock 81920
[ 2656.822682][T15152] shmem 8192
[ 2656.822682][T15152] file_mapped 0
[ 2656.822682][T15152] file_dirty 0
[ 2656.822682][T15152] file_writeback 0
[ 2656.822682][T15152] anon_thp 264241152
[ 2656.822682][T15152] inactive_anon 0
[ 2656.822682][T15152] active_anon 285982720
[ 2656.822682][T15152] inactive_file 4096
[ 2656.822682][T15152] active_file 49152
[ 2656.822682][T15152] unevictable 0
[ 2656.822682][T15152] slab_reclaimable 540672
[ 2656.822682][T15152] slab_unreclaimable 4538368
[ 2656.822682][T15152] pgfault 271392
[ 2656.822682][T15152] pgmajfault 0
[ 2656.822682][T15152] workingset_refault 0
[ 2656.822682][T15152] workingset_activate 0
[ 2656.822682][T15152] workingset_nodereclaim 0
[ 2656.822682][T15152] pgrefill 623
[ 2656.822682][T15152] pgscan 8795
[ 2656.822682][T15152] pgsteal 8360
[ 2656.955773][    C1] net_ratelimit: 20 callbacks suppressed
[ 2656.961537][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2656.968669][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2656.975568][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2656.982491][    C1] protocol 88fb is buggy, dev hsr_slave_1
03:55:19 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x9000000}, 0x0, 0x0)

03:55:19 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, 0x0)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2657.229916][T15021] syz-executor.4 (15021) used greatest stack depth: 9128 bytes left
03:55:19 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e4", 0xab, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:19 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x0, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2657.435546][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2657.442170][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2657.525864][T15152] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=25286,uid=0
[ 2657.574403][   T26] audit: type=1804 audit(2000001319.689:61079): pid=15280 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3740/bus" dev="sda1" ino=17458 res=1
[ 2657.582438][T15152] Memory cgroup out of memory: Killed process 25286 (syz-executor.0) total-vm:72716kB, anon-rss:2216kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
03:55:19 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x0)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2657.788268][T15277] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2657.789395][ T1069] oom_reaper: reaped process 25286 (syz-executor.0), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
[ 2657.855846][T15277] CPU: 0 PID: 15277 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2657.864554][T15277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2657.874636][T15277] Call Trace:
[ 2657.877983][T15277]  dump_stack+0x11d/0x181
[ 2657.882378][T15277]  dump_header+0xaa/0x39c
[ 2657.886885][T15277]  oom_kill_process.cold+0x10/0x15
[ 2657.892011][T15277]  out_of_memory+0x231/0xa60
[ 2657.896628][T15277]  mem_cgroup_out_of_memory+0x128/0x150
[ 2657.902194][T15277]  try_charge+0xb6c/0xbf0
[ 2657.906586][T15277]  ? __rcu_read_unlock+0x66/0x3d0
[ 2657.911713][T15277]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2657.917249][T15277]  __memcg_kmem_charge+0xcf/0x1b0
[ 2657.922666][T15277]  __alloc_pages_nodemask+0x26c/0x310
[ 2657.928054][T15277]  alloc_pages_current+0xd1/0x170
[ 2657.933147][T15277]  pte_alloc_one+0x18/0x50
[ 2657.937572][T15277]  __pte_alloc+0x2d/0x220
[ 2657.941912][T15277]  copy_page_range+0x135a/0x19b0
[ 2657.946885][T15277]  ? __vma_link_rb+0x3f4/0x440
[ 2657.951695][T15277]  dup_mm+0x74a/0xba0
[ 2657.955696][T15277]  copy_process+0x3138/0x3c40
[ 2657.960409][T15277]  _do_fork+0xfe/0x7a0
[ 2657.964670][T15277]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2657.970575][T15277]  ? __read_once_size+0x5a/0xe0
[ 2657.975447][T15277]  __x64_sys_clone+0x130/0x170
[ 2657.980234][T15277]  do_syscall_64+0xcc/0x3a0
[ 2657.984749][T15277]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2657.990698][T15277] RIP: 0033:0x45b399
[ 2657.994604][T15277] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2658.014657][T15277] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2658.023374][T15277] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2658.031361][T15277] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2658.039343][T15277] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2658.047374][T15277] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2658.055455][T15277] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:55:20 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xa000000}, 0x0, 0x0)

[ 2658.142219][T15277] memory: usage 307200kB, limit 307200kB, failcnt 1513
[ 2658.174526][T15277] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2658.214056][T15277] Memory cgroup stats for /syz4:
[ 2658.220813][T15277] anon 279896064
[ 2658.220813][T15277] file 53248
[ 2658.220813][T15277] kernel_stack 3133440
[ 2658.220813][T15277] slab 6168576
[ 2658.220813][T15277] sock 8192
[ 2658.220813][T15277] shmem 0
[ 2658.220813][T15277] file_mapped 135168
[ 2658.220813][T15277] file_dirty 0
[ 2658.220813][T15277] file_writeback 0
[ 2658.220813][T15277] anon_thp 257949696
[ 2658.220813][T15277] inactive_anon 0
[ 2658.220813][T15277] active_anon 279896064
[ 2658.220813][T15277] inactive_file 28672
[ 2658.220813][T15277] active_file 61440
[ 2658.220813][T15277] unevictable 0
[ 2658.220813][T15277] slab_reclaimable 946176
[ 2658.220813][T15277] slab_unreclaimable 5222400
[ 2658.220813][T15277] pgfault 333168
[ 2658.220813][T15277] pgmajfault 0
[ 2658.220813][T15277] workingset_refault 0
[ 2658.220813][T15277] workingset_activate 0
[ 2658.220813][T15277] workingset_nodereclaim 0
[ 2658.220813][T15277] pgrefill 1105
[ 2658.220813][T15277] pgscan 17450
[ 2658.220813][T15277] pgsteal 16620
[ 2658.318776][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2658.325237][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2658.331674][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2658.338416][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2658.445771][T15277] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=22122,uid=0
03:55:20 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e4", 0xab, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2658.535902][T15277] Memory cgroup out of memory: Killed process 22122 (syz-executor.4) total-vm:72584kB, anon-rss:2200kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
03:55:20 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, &(0x7f000095dffc))
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={0x0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r2 = socket$packet(0x11, 0x2, 0x300)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2658.717152][T15279] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2658.737887][   T26] audit: type=1804 audit(2000001320.859:61080): pid=15406 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3741/bus" dev="sda1" ino=17458 res=1
[ 2658.759351][T15279] CPU: 1 PID: 15279 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0
[ 2658.772671][T15279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2658.782725][T15279] Call Trace:
[ 2658.786025][T15279]  dump_stack+0x11d/0x181
[ 2658.790390][T15279]  dump_header+0xaa/0x39c
[ 2658.795533][T15279]  oom_kill_process.cold+0x10/0x15
[ 2658.800660][T15279]  out_of_memory+0x231/0xa60
[ 2658.805268][T15279]  mem_cgroup_out_of_memory+0x128/0x150
[ 2658.810830][T15279]  try_charge+0xb6c/0xbf0
[ 2658.815173][T15279]  ? rcu_note_context_switch+0x720/0x760
[ 2658.820827][T15279]  mem_cgroup_try_charge+0xd2/0x260
[ 2658.826033][T15279]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2658.831739][T15279]  wp_page_copy+0x322/0x1040
[ 2658.836343][T15279]  ? __read_once_size+0x41/0xe0
[ 2658.841293][T15279]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2658.847272][T15279]  do_wp_page+0x192/0xeb0
[ 2658.851744][T15279]  ? record_times+0x16/0x90
[ 2658.856266][T15279]  __handle_mm_fault+0x1d16/0x2e00
[ 2658.861396][T15279]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2658.867538][T15279]  handle_mm_fault+0x21b/0x530
[ 2658.872318][T15279]  __do_page_fault+0x456/0x8d0
[ 2658.877151][T15279]  do_page_fault+0x38/0x194
[ 2658.881671][T15279]  page_fault+0x34/0x40
[ 2658.885827][T15279] RIP: 0033:0x40e520
[ 2658.889820][T15279] Code: 50 80 60 20 01 48 89 48 10 48 8b 4c 24 60 48 89 48 18 8b 4c 24 68 89 48 24 8b 4c 24 28 89 48 28 31 c0 48 8b 8c 04 20 01 00 00 <48> 89 8c 02 50 bf 75 00 48 83 c0 08 48 83 f8 48 75 e6 49 63 c6 0f
[ 2658.909432][T15279] RSP: 002b:00007fffffab9d60 EFLAGS: 00010287
[ 2658.915506][T15279] RAX: 0000000000000008 RBX: 0000000000000000 RCX: 0000000000000084
[ 2658.923517][T15279] RDX: 00000000000000a8 RSI: 00007f44caba8db0 RDI: 000000000075bfd0
[ 2658.931596][T15279] RBP: 000000000075bfd4 R08: 0000000000000000 R09: 00007f44caba9700
[ 2658.939655][T15279] R10: 00007f44caba99d0 R11: 0000000000000202 R12: 000000000075bfc8
[ 2658.947630][T15279] R13: 0000000000000005 R14: 0000000000000001 R15: 000000000075bfd4
[ 2659.085670][T15279] memory: usage 307200kB, limit 307200kB, failcnt 492
[ 2659.100474][T15279] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2659.133849][T15279] Memory cgroup stats for /syz1:
[ 2659.134098][T15279] anon 288010240
[ 2659.134098][T15279] file 81920
[ 2659.134098][T15279] kernel_stack 2359296
[ 2659.134098][T15279] slab 4927488
[ 2659.134098][T15279] sock 0
[ 2659.134098][T15279] shmem 28672
[ 2659.134098][T15279] file_mapped 0
[ 2659.134098][T15279] file_dirty 0
[ 2659.134098][T15279] file_writeback 0
[ 2659.134098][T15279] anon_thp 270532608
[ 2659.134098][T15279] inactive_anon 14594048
[ 2659.134098][T15279] active_anon 269291520
03:55:21 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x0)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:21 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xb000000}, 0x0, 0x0)

[ 2659.134098][T15279] inactive_file 0
[ 2659.134098][T15279] active_file 81920
[ 2659.134098][T15279] unevictable 4288512
[ 2659.134098][T15279] slab_reclaimable 1081344
[ 2659.134098][T15279] slab_unreclaimable 3846144
[ 2659.134098][T15279] pgfault 301191
[ 2659.134098][T15279] pgmajfault 0
[ 2659.134098][T15279] workingset_refault 0
[ 2659.134098][T15279] workingset_activate 0
[ 2659.134098][T15279] workingset_nodereclaim 0
[ 2659.134098][T15279] pgrefill 713
[ 2659.134098][T15279] pgscan 12985
[ 2659.134098][T15279] pgsteal 12402
[ 2659.269676][T15279] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=11273,uid=0
[ 2659.399951][T15279] Memory cgroup out of memory: Killed process 11273 (syz-executor.1) total-vm:72716kB, anon-rss:18204kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:155648kB oom_score_adj:1000
[ 2659.510772][T15286] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2659.624878][T15286] CPU: 0 PID: 15286 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2659.633862][T15286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2659.644012][T15286] Call Trace:
[ 2659.647319][T15286]  dump_stack+0x11d/0x181
[ 2659.651666][T15286]  dump_header+0xaa/0x39c
[ 2659.657217][T15286]  oom_kill_process.cold+0x10/0x15
[ 2659.662423][T15286]  out_of_memory+0x231/0xa60
[ 2659.667172][T15286]  mem_cgroup_out_of_memory+0x128/0x150
[ 2659.672767][T15286]  try_charge+0xb6c/0xbf0
[ 2659.677187][T15286]  ? __rcu_read_unlock+0x66/0x3d0
[ 2659.682235][T15286]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2659.687835][T15286]  __memcg_kmem_charge+0xcf/0x1b0
[ 2659.692962][T15286]  __alloc_pages_nodemask+0x26c/0x310
[ 2659.698366][T15286]  alloc_pages_current+0xd1/0x170
[ 2659.703959][T15286]  pte_alloc_one+0x18/0x50
[ 2659.708396][T15286]  __handle_mm_fault+0x2be6/0x2e00
[ 2659.713575][T15286]  handle_mm_fault+0x21b/0x530
[ 2659.718409][T15286]  __do_page_fault+0x456/0x8d0
[ 2659.723283][T15286]  do_page_fault+0x38/0x194
[ 2659.727801][T15286]  page_fault+0x34/0x40
[ 2659.731969][T15286] RIP: 0033:0x45b399
[ 2659.735876][T15286] Code: Bad RIP value.
[ 2659.739958][T15286] RSP: 002b:00007ffac9a53c78 EFLAGS: 00010246
[ 2659.746035][T15286] RAX: 0000000000000000 RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2659.754017][T15286] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2659.762008][T15286] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
03:55:21 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a", 0xc8, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:21 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, 0x0)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2659.769995][T15286] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2659.778029][T15286] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2659.809897][T15277] syz-executor.4 (15277) used greatest stack depth: 9064 bytes left
[ 2659.824950][T15286] memory: usage 307200kB, limit 307200kB, failcnt 1245
[ 2659.834338][T15286] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2659.843593][T15286] Memory cgroup stats for /syz0:
[ 2659.843854][T15286] anon 286072832
[ 2659.843854][T15286] file 28672
[ 2659.843854][T15286] kernel_stack 2654208
[ 2659.843854][T15286] slab 5079040
[ 2659.843854][T15286] sock 81920
[ 2659.843854][T15286] shmem 8192
[ 2659.843854][T15286] file_mapped 0
[ 2659.843854][T15286] file_dirty 0
[ 2659.843854][T15286] file_writeback 0
[ 2659.843854][T15286] anon_thp 266338304
[ 2659.843854][T15286] inactive_anon 0
[ 2659.843854][T15286] active_anon 286072832
[ 2659.843854][T15286] inactive_file 4096
[ 2659.843854][T15286] active_file 49152
[ 2659.843854][T15286] unevictable 0
[ 2659.843854][T15286] slab_reclaimable 540672
[ 2659.843854][T15286] slab_unreclaimable 4538368
[ 2659.843854][T15286] pgfault 271722
[ 2659.843854][T15286] pgmajfault 0
[ 2659.843854][T15286] workingset_refault 0
[ 2659.843854][T15286] workingset_activate 0
[ 2659.843854][T15286] workingset_nodereclaim 0
[ 2659.843854][T15286] pgrefill 690
[ 2659.843854][T15286] pgscan 8861
[ 2659.843854][T15286] pgsteal 8360
[ 2659.964086][T15286] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15419,uid=0
[ 2659.981606][T15286] Memory cgroup out of memory: Killed process 15419 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2660.121522][   T26] audit: type=1804 audit(2000001322.239:61081): pid=15529 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3742/bus" dev="sda1" ino=17468 res=1
[ 2660.127023][T15409] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2660.236665][T15409] CPU: 1 PID: 15409 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2660.245376][T15409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2660.255426][T15409] Call Trace:
[ 2660.258729][T15409]  dump_stack+0x11d/0x181
[ 2660.263102][T15409]  dump_header+0xaa/0x39c
[ 2660.267475][T15409]  oom_kill_process.cold+0x10/0x15
[ 2660.273032][T15409]  out_of_memory+0x231/0xa60
[ 2660.277682][T15409]  mem_cgroup_out_of_memory+0x128/0x150
[ 2660.283233][T15409]  try_charge+0x800/0xbf0
[ 2660.287578][T15409]  ? rcu_note_context_switch+0x720/0x760
[ 2660.293273][T15409]  mem_cgroup_try_charge+0xd2/0x260
[ 2660.298586][T15409]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2660.304222][T15409]  wp_page_copy+0x322/0x1040
[ 2660.308855][T15409]  ? __read_once_size+0x41/0xe0
[ 2660.313757][T15409]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2660.319661][T15409]  do_wp_page+0x192/0xeb0
[ 2660.324004][T15409]  ? record_times+0x16/0x90
[ 2660.328522][T15409]  __handle_mm_fault+0x1d16/0x2e00
[ 2660.333692][T15409]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2660.339802][T15409]  handle_mm_fault+0x21b/0x530
[ 2660.344574][T15409]  __do_page_fault+0x456/0x8d0
[ 2660.349360][T15409]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2660.355631][T15409]  do_page_fault+0x38/0x194
[ 2660.360248][T15409]  page_fault+0x34/0x40
[ 2660.364405][T15409] RIP: 0033:0x432476
03:55:22 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xb000200}, 0x0, 0x0)

[ 2660.368455][T15409] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 e6 71 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 cc 4c 64 00 85 c0 0f 84
[ 2660.388156][T15409] RSP: 002b:00007ffdda484680 EFLAGS: 00010206
[ 2660.394296][T15409] RAX: 0000000000020491 RBX: 000000000071e640 RCX: 0000000000000121
[ 2660.402268][T15409] RDX: 00000000026e8a50 RSI: 00000000026e8b70 RDI: 0000000000000000
[ 2660.410243][T15409] RBP: 0000000000000121 R08: ffffffffffffffff R09: 0000000000000000
[ 2660.418316][T15409] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000071e698
[ 2660.426293][T15409] R13: 000000000071e698 R14: 0000000000000001 R15: 0000000000002710
[ 2660.484919][T15409] memory: usage 307040kB, limit 307200kB, failcnt 1245
[ 2660.494184][T15409] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2660.507486][T15409] Memory cgroup stats for /syz0:
[ 2660.519511][T15409] anon 286072832
[ 2660.519511][T15409] file 28672
[ 2660.519511][T15409] kernel_stack 2654208
03:55:22 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r0 = socket$packet(0x11, 0x0, 0x300)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2660.519511][T15409] slab 5079040
[ 2660.519511][T15409] sock 81920
[ 2660.519511][T15409] shmem 8192
[ 2660.519511][T15409] file_mapped 0
[ 2660.519511][T15409] file_dirty 0
[ 2660.519511][T15409] file_writeback 0
[ 2660.519511][T15409] anon_thp 266338304
[ 2660.519511][T15409] inactive_anon 0
[ 2660.519511][T15409] active_anon 286072832
[ 2660.519511][T15409] inactive_file 4096
[ 2660.519511][T15409] active_file 49152
[ 2660.519511][T15409] unevictable 0
[ 2660.519511][T15409] slab_reclaimable 540672
[ 2660.519511][T15409] slab_unreclaimable 4538368
[ 2660.519511][T15409] pgfault 271722
[ 2660.519511][T15409] pgmajfault 0
[ 2660.519511][T15409] workingset_refault 0
[ 2660.519511][T15409] workingset_activate 0
[ 2660.519511][T15409] workingset_nodereclaim 0
[ 2660.519511][T15409] pgrefill 690
[ 2660.519511][T15409] pgscan 8861
[ 2660.519511][T15409] pgsteal 8360
[ 2660.624537][T15409] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15142,uid=0
[ 2660.645363][T15409] Memory cgroup out of memory: Killed process 15142 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
03:55:22 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x0)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2660.839830][T15528] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2660.870338][T15528] CPU: 1 PID: 15528 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2660.879046][T15528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2660.889140][T15528] Call Trace:
[ 2660.892506][T15528]  dump_stack+0x11d/0x181
[ 2660.896890][T15528]  dump_header+0xaa/0x39c
[ 2660.901237][T15528]  oom_kill_process.cold+0x10/0x15
[ 2660.906439][T15528]  out_of_memory+0x231/0xa60
[ 2660.911501][T15528]  mem_cgroup_out_of_memory+0x128/0x150
[ 2660.917111][T15528]  try_charge+0xb6c/0xbf0
[ 2660.921458][T15528]  ? __rcu_read_unlock+0x66/0x3d0
[ 2660.926559][T15528]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2660.932031][T15528]  __memcg_kmem_charge+0xcf/0x1b0
[ 2660.937093][T15528]  __alloc_pages_nodemask+0x26c/0x310
[ 2660.942474][T15528]  alloc_pages_current+0xd1/0x170
[ 2660.947570][T15528]  pte_alloc_one+0x18/0x50
[ 2660.952091][T15528]  __pte_alloc+0x2d/0x220
[ 2660.956434][T15528]  copy_page_range+0x135a/0x19b0
[ 2660.961442][T15528]  ? apic_timer_interrupt+0xa/0x20
[ 2660.967188][T15528]  ? __vma_link_rb+0x3f4/0x440
[ 2660.972045][T15528]  dup_mm+0x74a/0xba0
[ 2660.976068][T15528]  copy_process+0x3138/0x3c40
[ 2660.980860][T15528]  _do_fork+0xfe/0x7a0
[ 2660.984942][T15528]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2660.990949][T15528]  ? __read_once_size+0x5a/0xe0
[ 2660.995821][T15528]  __x64_sys_clone+0x130/0x170
[ 2661.000609][T15528]  do_syscall_64+0xcc/0x3a0
[ 2661.005291][T15528]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2661.011193][T15528] RIP: 0033:0x45b399
[ 2661.015110][T15528] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2661.034774][T15528] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2661.043196][T15528] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2661.051174][T15528] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2661.059152][T15528] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2661.067132][T15528] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2661.075153][T15528] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2661.098034][T15528] memory: usage 307200kB, limit 307200kB, failcnt 1741
[ 2661.112656][T15528] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
03:55:23 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2661.140860][T15528] Memory cgroup stats for /syz4:
[ 2661.149131][T15528] anon 279969792
[ 2661.149131][T15528] file 53248
[ 2661.149131][T15528] kernel_stack 3133440
[ 2661.149131][T15528] slab 6168576
[ 2661.149131][T15528] sock 8192
[ 2661.149131][T15528] shmem 0
[ 2661.149131][T15528] file_mapped 135168
[ 2661.149131][T15528] file_dirty 0
[ 2661.149131][T15528] file_writeback 0
[ 2661.149131][T15528] anon_thp 257949696
[ 2661.149131][T15528] inactive_anon 0
[ 2661.149131][T15528] active_anon 279969792
[ 2661.149131][T15528] inactive_file 28672
[ 2661.149131][T15528] active_file 61440
[ 2661.149131][T15528] unevictable 0
[ 2661.149131][T15528] slab_reclaimable 946176
[ 2661.149131][T15528] slab_unreclaimable 5222400
[ 2661.149131][T15528] pgfault 333498
[ 2661.149131][T15528] pgmajfault 0
[ 2661.149131][T15528] workingset_refault 0
[ 2661.149131][T15528] workingset_activate 0
[ 2661.149131][T15528] workingset_nodereclaim 0
[ 2661.149131][T15528] pgrefill 1174
[ 2661.149131][T15528] pgscan 17518
[ 2661.149131][T15528] pgsteal 16620
03:55:23 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a", 0xc8, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2661.251896][T15528] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10859,uid=0
[ 2661.273130][T15528] Memory cgroup out of memory: Killed process 10859 (syz-executor.4) total-vm:72584kB, anon-rss:2200kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
03:55:23 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xc000000}, 0x0, 0x0)

03:55:23 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, &(0x7f000095dffc))
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={0x0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r2 = socket$packet(0x11, 0x2, 0x300)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2661.567218][   T26] audit: type=1804 audit(2000001323.689:61082): pid=15649 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3743/bus" dev="sda1" ino=17464 res=1
[ 2662.239493][T15657] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2662.265662][T15657] CPU: 0 PID: 15657 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2662.274376][T15657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2662.284430][T15657] Call Trace:
[ 2662.287772][T15657]  dump_stack+0x11d/0x181
[ 2662.292114][T15657]  dump_header+0xaa/0x39c
[ 2662.296460][T15657]  oom_kill_process.cold+0x10/0x15
[ 2662.301581][T15657]  out_of_memory+0x231/0xa60
[ 2662.306229][T15657]  mem_cgroup_out_of_memory+0x128/0x150
[ 2662.311983][T15657]  try_charge+0xb6c/0xbf0
[ 2662.316325][T15657]  ? rcu_note_context_switch+0x720/0x760
[ 2662.321974][T15657]  mem_cgroup_try_charge+0xd2/0x260
[ 2662.327189][T15657]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2662.332932][T15657]  wp_page_copy+0x322/0x1040
[ 2662.337547][T15657]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2662.343274][T15657]  do_wp_page+0x192/0xeb0
[ 2662.347618][T15657]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2662.353522][T15657]  __handle_mm_fault+0x1d16/0x2e00
[ 2662.358666][T15657]  handle_mm_fault+0x21b/0x530
[ 2662.363482][T15657]  __do_page_fault+0x456/0x8d0
[ 2662.368265][T15657]  do_page_fault+0x38/0x194
[ 2662.372820][T15657]  page_fault+0x34/0x40
[ 2662.377035][T15657] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2662.383721][T15657] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2662.403441][T15657] RSP: 0018:ffffc90015c77630 EFLAGS: 00010206
[ 2662.409541][T15657] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2662.417521][T15657] RDX: 0000000000001000 RSI: ffff88808ec56000 RDI: 00000000009c6000
[ 2662.425499][T15657] RBP: ffffc90015c77668 R08: ffff8880890db000 R09: 00008880890dbb50
[ 2662.433472][T15657] R10: 0000c90015c77738 R11: 00008880890dbb57 R12: 00000000009c6000
[ 2662.441492][T15657] R13: 00000000009c7000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2662.449484][T15657]  ? copyout+0xa5/0xb0
[ 2662.453562][T15657]  copy_page_to_iter+0x252/0x8d0
[ 2662.458538][T15657]  ? bio_uncopy_user+0x1fe/0x2f0
[ 2662.463494][T15657]  bio_uncopy_user+0x253/0x2f0
[ 2662.468288][T15657]  __blk_rq_unmap_user+0x78/0x80
[ 2662.473239][T15657]  blk_rq_map_user_iov+0x30b/0x420
[ 2662.478375][T15657]  blk_rq_map_user+0x90/0xd0
[ 2662.483000][T15657]  sg_common_write.isra.0+0xc64/0x12c0
[ 2662.488504][T15657]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2662.494851][T15657]  ? _copy_from_user+0x98/0xf0
[ 2662.499656][T15657]  sg_new_write.isra.0+0x2bd/0x520
[ 2662.504800][T15657]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2662.511135][T15657]  ? scsi_block_when_processing_errors+0x19f/0x1d0
[ 2662.517653][T15657]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2662.523983][T15657]  sg_write.part.0+0x73e/0x8c0
[ 2662.528760][T15657]  ? apic_timer_interrupt+0xa/0x20
[ 2662.533888][T15657]  ? common_file_perm+0x1d5/0x490
[ 2662.538930][T15657]  ? apparmor_file_permission+0x38/0x50
[ 2662.544491][T15657]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2662.550616][T15657]  ? iov_iter_advance+0x216/0x940
[ 2662.555658][T15657]  sg_write+0x65/0x88
[ 2662.559653][T15657]  do_iter_write+0x34b/0x3c0
[ 2662.564326][T15657]  vfs_writev+0x118/0x1c0
[ 2662.568675][T15657]  ? __fget_light+0xaf/0x190
[ 2662.573282][T15657]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2662.579533][T15657]  do_writev+0xe3/0x250
[ 2662.583702][T15657]  __x64_sys_writev+0x4e/0x60
[ 2662.588400][T15657]  do_syscall_64+0xcc/0x3a0
[ 2662.592980][T15657]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2662.598885][T15657] RIP: 0033:0x45b399
[ 2662.602838][T15657] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2662.622490][T15657] RSP: 002b:00007ffac9a53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2662.630909][T15657] RAX: ffffffffffffffda RBX: 00007ffac9a546d4 RCX: 000000000045b399
03:55:24 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:24 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xd000000}, 0x0, 0x0)

03:55:24 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2662.638933][T15657] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000007
[ 2662.646941][T15657] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 2662.654918][T15657] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2662.662895][T15657] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bf2c
[ 2662.679130][    C1] net_ratelimit: 20 callbacks suppressed
[ 2662.679167][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2662.691370][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2662.695291][T15657] memory: usage 307200kB, limit 307200kB, failcnt 1367
[ 2662.697850][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2662.707167][T15657] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2662.710789][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2662.718340][T15657] Memory cgroup stats for /syz0:
[ 2662.719895][T15657] anon 286236672
[ 2662.719895][T15657] file 28672
[ 2662.719895][T15657] kernel_stack 2654208
[ 2662.719895][T15657] slab 5079040
[ 2662.719895][T15657] sock 81920
[ 2662.719895][T15657] shmem 8192
[ 2662.719895][T15657] file_mapped 0
[ 2662.719895][T15657] file_dirty 0
[ 2662.719895][T15657] file_writeback 0
[ 2662.719895][T15657] anon_thp 266338304
[ 2662.719895][T15657] inactive_anon 0
[ 2662.719895][T15657] active_anon 286236672
[ 2662.719895][T15657] inactive_file 4096
[ 2662.719895][T15657] active_file 49152
[ 2662.719895][T15657] unevictable 0
[ 2662.719895][T15657] slab_reclaimable 540672
[ 2662.719895][T15657] slab_unreclaimable 4538368
[ 2662.719895][T15657] pgfault 272316
[ 2662.719895][T15657] pgmajfault 0
[ 2662.719895][T15657] workingset_refault 0
[ 2662.719895][T15657] workingset_activate 0
[ 2662.719895][T15657] workingset_nodereclaim 0
[ 2662.719895][T15657] pgrefill 789
[ 2662.719895][T15657] pgscan 8927
[ 2662.719895][T15657] pgsteal 8360
[ 2662.819204][T15657] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15655,uid=0
[ 2662.836551][T15657] Memory cgroup out of memory: Killed process 15655 (syz-executor.0) total-vm:72716kB, anon-rss:2228kB, file-rss:35784kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2662.874726][ T1069] oom_reaper: reaped process 15655 (syz-executor.0), now anon-rss:0kB, file-rss:34824kB, shmem-rss:0kB
[ 2662.885886][    C0] protocol 88fb is buggy, dev hsr_slave_0
03:55:25 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(0x0, 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2662.885964][    C0] protocol 88fb is buggy, dev hsr_slave_1
03:55:25 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a", 0xc8, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:25 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8), &(0x7f000095dffc)=0x4)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={0x0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r2 = socket$packet(0x11, 0x2, 0x300)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2663.195557][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2663.201435][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2663.207263][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2663.213026][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2663.304327][   T26] audit: type=1804 audit(2000001325.419:61083): pid=15778 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3744/bus" dev="sda1" ino=17471 res=1
[ 2663.309645][T15669] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2663.481709][T15669] CPU: 0 PID: 15669 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2663.490429][T15669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2663.500552][T15669] Call Trace:
[ 2663.503931][T15669]  dump_stack+0x11d/0x181
[ 2663.508321][T15669]  dump_header+0xaa/0x39c
[ 2663.512683][T15669]  oom_kill_process.cold+0x10/0x15
[ 2663.517951][T15669]  out_of_memory+0x231/0xa60
[ 2663.522561][T15669]  mem_cgroup_out_of_memory+0x128/0x150
[ 2663.528125][T15669]  try_charge+0xb6c/0xbf0
[ 2663.532503][T15669]  ? __rcu_read_unlock+0x66/0x3d0
[ 2663.537577][T15669]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2663.543046][T15669]  __memcg_kmem_charge+0xcf/0x1b0
[ 2663.548088][T15669]  __alloc_pages_nodemask+0x26c/0x310
[ 2663.553474][T15669]  alloc_pages_current+0xd1/0x170
[ 2663.558535][T15669]  pte_alloc_one+0x18/0x50
[ 2663.562972][T15669]  __pte_alloc+0x2d/0x220
[ 2663.567321][T15669]  copy_page_range+0x135a/0x19b0
[ 2663.572301][T15669]  ? __vma_link_rb+0x3f4/0x440
[ 2663.577078][T15669]  dup_mm+0x74a/0xba0
[ 2663.581186][T15669]  copy_process+0x3138/0x3c40
[ 2663.585922][T15669]  _do_fork+0xfe/0x7a0
[ 2663.590053][T15669]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2663.595958][T15669]  ? __read_once_size+0x5a/0xe0
[ 2663.600827][T15669]  __x64_sys_clone+0x130/0x170
[ 2663.605614][T15669]  do_syscall_64+0xcc/0x3a0
[ 2663.610138][T15669]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2663.616036][T15669] RIP: 0033:0x45b399
[ 2663.619971][T15669] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2663.639641][T15669] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2663.648064][T15669] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2663.656097][T15669] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2663.664075][T15669] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2663.672062][T15669] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2663.680047][T15669] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:55:25 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x10000000}, 0x0, 0x0)

03:55:26 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:26 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5", 0xd6, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2664.052345][T15669] memory: usage 307196kB, limit 307200kB, failcnt 1782
[ 2664.068095][T15669] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2664.079724][T15669] Memory cgroup stats for /syz4:
[ 2664.091685][T15669] anon 279965696
[ 2664.091685][T15669] file 53248
[ 2664.091685][T15669] kernel_stack 3133440
[ 2664.091685][T15669] slab 6168576
[ 2664.091685][T15669] sock 8192
[ 2664.091685][T15669] shmem 0
[ 2664.091685][T15669] file_mapped 135168
[ 2664.091685][T15669] file_dirty 0
[ 2664.091685][T15669] file_writeback 0
[ 2664.091685][T15669] anon_thp 257949696
[ 2664.091685][T15669] inactive_anon 0
[ 2664.091685][T15669] active_anon 279965696
[ 2664.091685][T15669] inactive_file 28672
[ 2664.091685][T15669] active_file 61440
[ 2664.091685][T15669] unevictable 0
[ 2664.091685][T15669] slab_reclaimable 946176
[ 2664.091685][T15669] slab_unreclaimable 5222400
[ 2664.091685][T15669] pgfault 333894
[ 2664.091685][T15669] pgmajfault 0
[ 2664.091685][T15669] workingset_refault 0
[ 2664.091685][T15669] workingset_activate 0
[ 2664.091685][T15669] workingset_nodereclaim 0
[ 2664.091685][T15669] pgrefill 1242
[ 2664.091685][T15669] pgscan 17586
[ 2664.091685][T15669] pgsteal 16620
03:55:26 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2664.270633][T15669] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=17819,uid=0
[ 2664.294925][T15669] Memory cgroup out of memory: Killed process 17819 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34832kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000
[ 2664.309236][   T26] audit: type=1804 audit(2000001326.409:61084): pid=15864 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3745/bus" dev="sda1" ino=17477 res=1
[ 2664.386016][T15781] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2664.410864][T15781] CPU: 1 PID: 15781 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2664.419564][T15781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2664.429618][T15781] Call Trace:
[ 2664.432921][T15781]  dump_stack+0x11d/0x181
[ 2664.437265][T15781]  dump_header+0xaa/0x39c
[ 2664.441751][T15781]  oom_kill_process.cold+0x10/0x15
[ 2664.446881][T15781]  out_of_memory+0x231/0xa60
[ 2664.451638][T15781]  mem_cgroup_out_of_memory+0x128/0x150
[ 2664.457197][T15781]  try_charge+0xb6c/0xbf0
[ 2664.461555][T15781]  ? __rcu_read_unlock+0x66/0x3d0
[ 2664.466586][T15781]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2664.472049][T15781]  __memcg_kmem_charge+0xcf/0x1b0
[ 2664.477100][T15781]  copy_process+0x11d2/0x3c40
[ 2664.481788][T15781]  ? record_times+0x16/0x90
[ 2664.486312][T15781]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2664.492397][T15781]  _do_fork+0xfe/0x7a0
[ 2664.496479][T15781]  ? cgroup_file_notify+0xff/0x130
[ 2664.501659][T15781]  ? blkcg_maybe_throttle_current+0x23d/0x580
[ 2664.507803][T15781]  __x64_sys_clone+0x130/0x170
[ 2664.512583][T15781]  do_syscall_64+0xcc/0x3a0
[ 2664.517103][T15781]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2664.522995][T15781] RIP: 0033:0x45dd69
[ 2664.526903][T15781] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 2664.546561][T15781] RSP: 002b:00007ffdda484758 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2664.555499][T15781] RAX: ffffffffffffffda RBX: 00007ffac9a33700 RCX: 000000000045dd69
[ 2664.563473][T15781] RDX: 00007ffac9a339d0 RSI: 00007ffac9a32db0 RDI: 00000000003d0f00
[ 2664.571450][T15781] RBP: 00007ffdda484970 R08: 00007ffac9a33700 R09: 00007ffac9a33700
[ 2664.579530][T15781] R10: 00007ffac9a339d0 R11: 0000000000000202 R12: 0000000000000000
[ 2664.587507][T15781] R13: 00007ffdda48480f R14: 00007ffac9a339c0 R15: 000000000075bfd4
[ 2664.625670][T15781] memory: usage 307200kB, limit 307200kB, failcnt 1425
[ 2664.648033][T15781] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2664.698763][T15781] Memory cgroup stats for /syz0:
[ 2664.699033][T15781] anon 286121984
[ 2664.699033][T15781] file 28672
[ 2664.699033][T15781] kernel_stack 2691072
[ 2664.699033][T15781] slab 5079040
[ 2664.699033][T15781] sock 81920
[ 2664.699033][T15781] shmem 8192
[ 2664.699033][T15781] file_mapped 0
[ 2664.699033][T15781] file_dirty 0
[ 2664.699033][T15781] file_writeback 0
[ 2664.699033][T15781] anon_thp 266338304
[ 2664.699033][T15781] inactive_anon 0
[ 2664.699033][T15781] active_anon 286121984
[ 2664.699033][T15781] inactive_file 4096
[ 2664.699033][T15781] active_file 49152
[ 2664.699033][T15781] unevictable 0
[ 2664.699033][T15781] slab_reclaimable 540672
[ 2664.699033][T15781] slab_unreclaimable 4538368
[ 2664.699033][T15781] pgfault 272415
[ 2664.699033][T15781] pgmajfault 0
[ 2664.699033][T15781] workingset_refault 0
[ 2664.699033][T15781] workingset_activate 0
[ 2664.699033][T15781] workingset_nodereclaim 0
[ 2664.699033][T15781] pgrefill 890
[ 2664.699033][T15781] pgscan 9061
[ 2664.699033][T15781] pgsteal 8360
03:55:27 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x11000000}, 0x0, 0x0)

03:55:27 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:27 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5", 0xd6, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:27 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:27 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(0x0, 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2665.465524][T15781] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15660,uid=0
[ 2665.481841][   T26] audit: type=1804 audit(2000001327.599:61085): pid=15910 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3746/bus" dev="sda1" ino=17060 res=1
[ 2665.534439][T15781] Memory cgroup out of memory: Killed process 15660 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2665.626797][ T1069] oom_reaper: reaped process 15660 (syz-executor.0), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
[ 2665.765321][T15782] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2665.875008][T15782] CPU: 0 PID: 15782 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2665.883719][T15782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2665.893910][T15782] Call Trace:
[ 2665.897214][T15782]  dump_stack+0x11d/0x181
[ 2665.901578][T15782]  dump_header+0xaa/0x39c
[ 2665.905942][T15782]  oom_kill_process.cold+0x10/0x15
[ 2665.911084][T15782]  out_of_memory+0x231/0xa60
[ 2665.915698][T15782]  mem_cgroup_out_of_memory+0x128/0x150
[ 2665.921275][T15782]  try_charge+0x800/0xbf0
[ 2665.925735][T15782]  ? rcu_note_context_switch+0x720/0x760
[ 2665.931394][T15782]  mem_cgroup_try_charge+0xd2/0x260
[ 2665.936615][T15782]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2665.942301][T15782]  wp_page_copy+0x322/0x1040
[ 2665.946903][T15782]  ? __read_once_size+0x41/0xe0
[ 2665.951764][T15782]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2665.957782][T15782]  do_wp_page+0x192/0xeb0
[ 2665.962275][T15782]  __handle_mm_fault+0x1d16/0x2e00
[ 2665.967401][T15782]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
03:55:28 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x13000000}, 0x0, 0x0)

[ 2665.973549][T15782]  handle_mm_fault+0x21b/0x530
[ 2665.978336][T15782]  __do_page_fault+0x456/0x8d0
[ 2665.983119][T15782]  do_page_fault+0x38/0x194
[ 2665.987689][T15782]  page_fault+0x34/0x40
[ 2665.991853][T15782] RIP: 0033:0x403f80
[ 2665.995870][T15782] Code: 80 3d fb e6 66 00 00 c6 85 84 00 00 00 00 74 0f 8b 05 e8 e6 66 00 39 45 24 0f 84 46 02 00 00 44 8b a5 80 00 00 00 48 8b 5d 78 <e8> fb e6 ff ff 48 2b 05 84 40 33 00 8b 75 00 4c 89 f1 45 89 e1 49
[ 2666.015595][T15782] RSP: 002b:00007ffac9a53c90 EFLAGS: 00010246
[ 2666.021709][T15782] RAX: 00007ffacba55000 RBX: 000000000000271d RCX: 0000000000000000
[ 2666.029772][T15782] RDX: 000000000003ffff RSI: 0000000000403ecc RDI: 0000000000000000
[ 2666.037754][T15782] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2666.045734][T15782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2666.053897][T15782] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2666.134010][T15782] memory: usage 305512kB, limit 307200kB, failcnt 1427
[ 2666.192424][T15782] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2666.200235][T15782] Memory cgroup stats for /syz0:
[ 2666.202062][T15782] anon 284315648
[ 2666.202062][T15782] file 28672
[ 2666.202062][T15782] kernel_stack 2691072
[ 2666.202062][T15782] slab 5079040
[ 2666.202062][T15782] sock 81920
[ 2666.202062][T15782] shmem 8192
[ 2666.202062][T15782] file_mapped 0
[ 2666.202062][T15782] file_dirty 0
[ 2666.202062][T15782] file_writeback 0
[ 2666.202062][T15782] anon_thp 264241152
[ 2666.202062][T15782] inactive_anon 0
[ 2666.202062][T15782] active_anon 284315648
[ 2666.202062][T15782] inactive_file 4096
[ 2666.202062][T15782] active_file 49152
[ 2666.202062][T15782] unevictable 0
[ 2666.202062][T15782] slab_reclaimable 540672
[ 2666.202062][T15782] slab_unreclaimable 4538368
[ 2666.202062][T15782] pgfault 272646
[ 2666.202062][T15782] pgmajfault 0
[ 2666.202062][T15782] workingset_refault 0
[ 2666.202062][T15782] workingset_activate 0
[ 2666.202062][T15782] workingset_nodereclaim 0
[ 2666.202062][T15782] pgrefill 890
[ 2666.202062][T15782] pgscan 9061
[ 2666.202062][T15782] pgsteal 8360
[ 2666.304119][T15782] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15781,uid=0
[ 2666.330446][T15782] Memory cgroup out of memory: Killed process 15782 (syz-executor.0) total-vm:72716kB, anon-rss:2500kB, file-rss:35804kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2666.371526][T15960] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2666.373752][ T1069] oom_reaper: reaped process 15782 (syz-executor.0), now anon-rss:0kB, file-rss:34844kB, shmem-rss:0kB
[ 2666.388827][T15960] CPU: 1 PID: 15960 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2666.401629][T15960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2666.411693][T15960] Call Trace:
[ 2666.415121][T15960]  dump_stack+0x11d/0x181
[ 2666.419487][T15960]  dump_header+0xaa/0x39c
[ 2666.423874][T15960]  oom_kill_process.cold+0x10/0x15
[ 2666.429129][T15960]  out_of_memory+0x231/0xa60
[ 2666.433746][T15960]  mem_cgroup_out_of_memory+0x128/0x150
[ 2666.439310][T15960]  try_charge+0xb6c/0xbf0
[ 2666.443663][T15960]  ? rcu_note_context_switch+0x720/0x760
[ 2666.449317][T15960]  mem_cgroup_try_charge+0xd2/0x260
[ 2666.454578][T15960]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2666.460325][T15960]  wp_page_copy+0x322/0x1040
[ 2666.464983][T15960]  ? __read_once_size+0x41/0xe0
[ 2666.469960][T15960]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2666.475863][T15960]  do_wp_page+0x192/0xeb0
[ 2666.480211][T15960]  ? record_times+0x16/0x90
[ 2666.484835][T15960]  __handle_mm_fault+0x1d16/0x2e00
[ 2666.490001][T15960]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2666.496185][T15960]  handle_mm_fault+0x21b/0x530
[ 2666.501015][T15960]  __do_page_fault+0x456/0x8d0
[ 2666.505805][T15960]  do_page_fault+0x38/0x194
[ 2666.510322][T15960]  page_fault+0x34/0x40
[ 2666.514478][T15960] RIP: 0033:0x41245c
[ 2666.518556][T15960] Code: 66 00 48 f7 d0 49 21 c5 4b 8d 8c 28 00 08 00 00 4c 89 ad 70 ff ff ff 48 21 c8 48 39 c3 0f 82 1b 04 00 00 be 01 00 00 00 31 c0 <f0> 0f b1 35 34 02 66 00 74 1a 48 8d 3d 2b 02 66 00 48 81 ec 80 00
[ 2666.540082][T15960] RSP: 002b:00007ffd378c3f90 EFLAGS: 00010246
[ 2666.546156][T15960] RAX: 0000000000000000 RBX: 0000000000020000 RCX: 0000000000003a3f
[ 2666.554203][T15960] RDX: 0000000000001000 RSI: 0000000000000001 RDI: 00007ffd378c4148
[ 2666.562274][T15960] RBP: 00007ffd378c4070 R08: 000000000000223f R09: ffffffffffffffff
03:55:28 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2666.570250][T15960] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd378c4160
[ 2666.578227][T15960] R13: 0000000000001000 R14: 0000000000000001 R15: 000000000075bfd4
03:55:28 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8), &(0x7f000095dffc)=0x4)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={0x0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r2 = socket$packet(0x11, 0x2, 0x300)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:28 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2666.642504][T15960] memory: usage 307200kB, limit 307200kB, failcnt 2060
[ 2666.671168][T15960] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2666.735588][T15960] Memory cgroup stats for /syz4:
[ 2666.735837][T15960] anon 279957504
[ 2666.735837][T15960] file 53248
[ 2666.735837][T15960] kernel_stack 3133440
[ 2666.735837][T15960] slab 6168576
[ 2666.735837][T15960] sock 8192
[ 2666.735837][T15960] shmem 0
[ 2666.735837][T15960] file_mapped 135168
[ 2666.735837][T15960] file_dirty 0
[ 2666.735837][T15960] file_writeback 0
[ 2666.735837][T15960] anon_thp 257949696
[ 2666.735837][T15960] inactive_anon 0
[ 2666.735837][T15960] active_anon 279961600
[ 2666.735837][T15960] inactive_file 28672
03:55:28 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5", 0xd6, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2666.735837][T15960] active_file 61440
[ 2666.735837][T15960] unevictable 0
[ 2666.735837][T15960] slab_reclaimable 946176
[ 2666.735837][T15960] slab_unreclaimable 5222400
[ 2666.735837][T15960] pgfault 334257
[ 2666.735837][T15960] pgmajfault 0
[ 2666.735837][T15960] workingset_refault 0
[ 2666.735837][T15960] workingset_activate 0
[ 2666.735837][T15960] workingset_nodereclaim 0
[ 2666.735837][T15960] pgrefill 1341
[ 2666.735837][T15960] pgscan 17687
[ 2666.735837][T15960] pgsteal 16620
[ 2666.859100][T15960] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=17761,uid=0
[ 2666.875163][T15960] Memory cgroup out of memory: Killed process 17761 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34832kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000
[ 2666.894593][ T1069] oom_reaper: reaped process 17761 (syz-executor.4), now anon-rss:0kB, file-rss:34832kB, shmem-rss:0kB
[ 2666.907094][T16018] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2666.920275][T16018] CPU: 0 PID: 16018 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2666.928971][T16018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2666.939063][T16018] Call Trace:
[ 2666.942433][T16018]  dump_stack+0x11d/0x181
[ 2666.946862][T16018]  dump_header+0xaa/0x39c
[ 2666.951370][T16018]  oom_kill_process.cold+0x10/0x15
[ 2666.956845][T16018]  out_of_memory+0x231/0xa60
[ 2666.961470][T16018]  mem_cgroup_out_of_memory+0x128/0x150
[ 2666.967025][T16018]  try_charge+0x800/0xbf0
[ 2666.971464][T16018]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2666.977368][T16018]  ? __rcu_read_unlock+0x66/0x3d0
[ 2666.982399][T16018]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2666.987979][T16018]  __memcg_kmem_charge+0xcf/0x1b0
[ 2666.993024][T16018]  __alloc_pages_nodemask+0x26c/0x310
[ 2666.998536][T16018]  alloc_pages_current+0xd1/0x170
[ 2667.003578][T16018]  pte_alloc_one+0x18/0x50
[ 2667.008005][T16018]  __handle_mm_fault+0x2be6/0x2e00
[ 2667.013196][T16018]  handle_mm_fault+0x21b/0x530
[ 2667.017979][T16018]  __do_page_fault+0x456/0x8d0
[ 2667.022768][T16018]  do_page_fault+0x38/0x194
[ 2667.027385][T16018]  page_fault+0x34/0x40
[ 2667.031551][T16018] RIP: 0033:0x45b399
[ 2667.035451][T16018] Code: Bad RIP value.
[ 2667.039528][T16018] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00010246
[ 2667.045598][T16018] RAX: 0000000000000000 RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
03:55:29 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x14000000}, 0x0, 0x0)

[ 2667.053573][T16018] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2667.061561][T16018] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2667.069542][T16018] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2667.077614][T16018] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2667.151231][   T26] audit: type=1804 audit(2000001329.269:61086): pid=16135 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3747/bus" dev="sda1" ino=17060 res=1
[ 2667.196938][T16018] memory: usage 305032kB, limit 307200kB, failcnt 2060
[ 2667.241499][T16018] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2667.328700][T16018] Memory cgroup stats for /syz4:
[ 2667.329029][T16018] anon 277733376
[ 2667.329029][T16018] file 53248
[ 2667.329029][T16018] kernel_stack 3133440
[ 2667.329029][T16018] slab 6168576
[ 2667.329029][T16018] sock 8192
[ 2667.329029][T16018] shmem 0
[ 2667.329029][T16018] file_mapped 135168
[ 2667.329029][T16018] file_dirty 0
[ 2667.329029][T16018] file_writeback 0
[ 2667.329029][T16018] anon_thp 255852544
[ 2667.329029][T16018] inactive_anon 0
[ 2667.329029][T16018] active_anon 277733376
[ 2667.329029][T16018] inactive_file 28672
[ 2667.329029][T16018] active_file 61440
[ 2667.329029][T16018] unevictable 0
[ 2667.329029][T16018] slab_reclaimable 946176
[ 2667.329029][T16018] slab_unreclaimable 5222400
[ 2667.329029][T16018] pgfault 334257
[ 2667.329029][T16018] pgmajfault 0
[ 2667.329029][T16018] workingset_refault 0
[ 2667.329029][T16018] workingset_activate 0
[ 2667.329029][T16018] workingset_nodereclaim 0
[ 2667.329029][T16018] pgrefill 1341
[ 2667.329029][T16018] pgscan 17687
[ 2667.329029][T16018] pgsteal 16620
03:55:29 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x5)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2667.691816][T16018] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=15897,uid=0
[ 2667.718856][T16018] Memory cgroup out of memory: Killed process 15897 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
[ 2667.835905][    C0] net_ratelimit: 24 callbacks suppressed
[ 2667.835929][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2667.847898][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2667.913125][T16000] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2667.966344][T16000] CPU: 0 PID: 16000 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2667.975061][T16000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2667.985116][T16000] Call Trace:
[ 2667.988421][T16000]  dump_stack+0x11d/0x181
[ 2667.992810][T16000]  dump_header+0xaa/0x39c
[ 2667.997842][T16000]  oom_kill_process.cold+0x10/0x15
[ 2668.002970][T16000]  out_of_memory+0x231/0xa60
[ 2668.007625][T16000]  mem_cgroup_out_of_memory+0x128/0x150
[ 2668.013207][T16000]  try_charge+0x800/0xbf0
[ 2668.017602][T16000]  ? rcu_note_context_switch+0x720/0x760
[ 2668.023375][T16000]  mem_cgroup_try_charge+0xd2/0x260
[ 2668.028604][T16000]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2668.034368][T16000]  wp_page_copy+0x322/0x1040
[ 2668.038967][T16000]  ? preempt_schedule+0x30/0x40
[ 2668.043895][T16000]  ? ___preempt_schedule+0x16/0x18
[ 2668.049097][T16000]  do_wp_page+0x192/0xeb0
[ 2668.053512][T16000]  __handle_mm_fault+0x1d16/0x2e00
[ 2668.058650][T16000]  handle_mm_fault+0x21b/0x530
[ 2668.063444][T16000]  __do_page_fault+0x456/0x8d0
[ 2668.068228][T16000]  do_page_fault+0x38/0x194
[ 2668.072830][T16000]  page_fault+0x34/0x40
[ 2668.076988][T16000] RIP: 0033:0x403f80
[ 2668.080913][T16000] Code: 80 3d fb e6 66 00 00 c6 85 84 00 00 00 00 74 0f 8b 05 e8 e6 66 00 39 45 24 0f 84 46 02 00 00 44 8b a5 80 00 00 00 48 8b 5d 78 <e8> fb e6 ff ff 48 2b 05 84 40 33 00 8b 75 00 4c 89 f1 45 89 e1 49
[ 2668.100639][T16000] RSP: 002b:00007f0b9e6acc90 EFLAGS: 00010246
[ 2668.106739][T16000] RAX: 00007f0ba06ae000 RBX: 00000000000028f8 RCX: 0000000000000000
03:55:30 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2668.114721][T16000] RDX: 000000000003ffff RSI: 0000000000403ecc RDI: 0000000000000000
[ 2668.126275][T16000] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2668.134256][T16000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2668.142305][T16000] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2668.181822][T16000] memory: usage 302588kB, limit 307200kB, failcnt 2060
03:55:30 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x15000000}, 0x0, 0x0)

[ 2668.222643][T16000] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2668.244909][T16000] Memory cgroup stats for /syz4:
[ 2668.260767][T16000] anon 275562496
[ 2668.260767][T16000] file 53248
[ 2668.260767][T16000] kernel_stack 3133440
[ 2668.260767][T16000] slab 6168576
[ 2668.260767][T16000] sock 8192
[ 2668.260767][T16000] shmem 0
[ 2668.260767][T16000] file_mapped 135168
[ 2668.260767][T16000] file_dirty 0
[ 2668.260767][T16000] file_writeback 0
[ 2668.260767][T16000] anon_thp 253755392
[ 2668.260767][T16000] inactive_anon 0
[ 2668.260767][T16000] active_anon 275562496
[ 2668.260767][T16000] inactive_file 28672
[ 2668.260767][T16000] active_file 61440
[ 2668.260767][T16000] unevictable 0
[ 2668.260767][T16000] slab_reclaimable 946176
03:55:30 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327", 0xdd, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2668.260767][T16000] slab_unreclaimable 5222400
[ 2668.260767][T16000] pgfault 334257
[ 2668.260767][T16000] pgmajfault 0
[ 2668.260767][T16000] workingset_refault 0
[ 2668.260767][T16000] workingset_activate 0
[ 2668.260767][T16000] workingset_nodereclaim 0
[ 2668.260767][T16000] pgrefill 1341
[ 2668.260767][T16000] pgscan 17687
[ 2668.260767][T16000] pgsteal 16620
[ 2668.555829][   T26] audit: type=1804 audit(2000001330.679:61087): pid=16256 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3748/bus" dev="sda1" ino=17062 res=1
03:55:30 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x5)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2668.787448][T16000] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=15654,uid=0
[ 2668.925026][T16000] Memory cgroup out of memory: Killed process 15654 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
[ 2668.958325][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2668.964672][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2668.970764][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2668.977080][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2669.115781][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2669.122358][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2669.146474][T16136] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2669.205573][T16136] CPU: 0 PID: 16136 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2669.214296][T16136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2669.224348][T16136] Call Trace:
[ 2669.227716][T16136]  dump_stack+0x11d/0x181
[ 2669.232134][T16136]  dump_header+0xaa/0x39c
[ 2669.236483][T16136]  oom_kill_process.cold+0x10/0x15
[ 2669.241606][T16136]  out_of_memory+0x231/0xa60
[ 2669.246214][T16136]  mem_cgroup_out_of_memory+0x128/0x150
[ 2669.251782][T16136]  try_charge+0xb6c/0xbf0
[ 2669.256162][T16136]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2669.262064][T16136]  ? __rcu_read_unlock+0x66/0x3d0
[ 2669.267122][T16136]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2669.272714][T16136]  __memcg_kmem_charge+0xcf/0x1b0
[ 2669.277758][T16136]  __alloc_pages_nodemask+0x26c/0x310
[ 2669.283219][T16136]  alloc_pages_current+0xd1/0x170
[ 2669.288256][T16136]  pte_alloc_one+0x18/0x50
[ 2669.292753][T16136]  __handle_mm_fault+0x2be6/0x2e00
[ 2669.297875][T16136]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2669.304094][T16136]  handle_mm_fault+0x21b/0x530
[ 2669.308913][T16136]  __do_page_fault+0x456/0x8d0
[ 2669.313692][T16136]  do_page_fault+0x38/0x194
[ 2669.318204][T16136]  page_fault+0x34/0x40
[ 2669.322361][T16136] RIP: 0033:0x45b399
[ 2669.326282][T16136] Code: Bad RIP value.
[ 2669.330343][T16136] RSP: 002b:00007ffac9a53c78 EFLAGS: 00010246
[ 2669.336407][T16136] RAX: 0000000000000000 RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2669.344378][T16136] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2669.352358][T16136] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2669.360532][T16136] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2669.368499][T16136] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2669.384931][T16136] memory: usage 307196kB, limit 307200kB, failcnt 1482
[ 2669.391845][T16136] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2669.401883][T16136] Memory cgroup stats for /syz0:
[ 2669.402075][T16136] anon 286134272
[ 2669.402075][T16136] file 28672
[ 2669.402075][T16136] kernel_stack 2691072
[ 2669.402075][T16136] slab 5079040
[ 2669.402075][T16136] sock 81920
[ 2669.402075][T16136] shmem 8192
[ 2669.402075][T16136] file_mapped 0
[ 2669.402075][T16136] file_dirty 0
[ 2669.402075][T16136] file_writeback 0
[ 2669.402075][T16136] anon_thp 266338304
[ 2669.402075][T16136] inactive_anon 0
[ 2669.402075][T16136] active_anon 286220288
[ 2669.402075][T16136] inactive_file 4096
[ 2669.402075][T16136] active_file 49152
03:55:31 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(0x0, 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:31 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:31 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x20000000}, 0x0, 0x0)

[ 2669.402075][T16136] unevictable 0
[ 2669.402075][T16136] slab_reclaimable 540672
[ 2669.402075][T16136] slab_unreclaimable 4538368
[ 2669.402075][T16136] pgfault 272745
[ 2669.402075][T16136] pgmajfault 0
[ 2669.402075][T16136] workingset_refault 0
[ 2669.402075][T16136] workingset_activate 0
[ 2669.402075][T16136] workingset_nodereclaim 0
[ 2669.402075][T16136] pgrefill 923
[ 2669.402075][T16136] pgscan 9094
[ 2669.402075][T16136] pgsteal 8360
[ 2669.501792][T16136] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15784,uid=0
[ 2669.505535][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2669.523041][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2669.523527][T16136] Memory cgroup out of memory: Killed process 15784 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2669.576958][T16027] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2669.587852][T16027] CPU: 1 PID: 16027 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2669.596528][T16027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2669.606722][T16027] Call Trace:
[ 2669.610016][T16027]  dump_stack+0x11d/0x181
[ 2669.614359][T16027]  dump_header+0xaa/0x39c
[ 2669.618780][T16027]  oom_kill_process.cold+0x10/0x15
[ 2669.623899][T16027]  out_of_memory+0x231/0xa60
[ 2669.628510][T16027]  mem_cgroup_out_of_memory+0x128/0x150
[ 2669.634067][T16027]  try_charge+0x800/0xbf0
[ 2669.638473][T16027]  ? rcu_note_context_switch+0x720/0x760
[ 2669.644117][T16027]  mem_cgroup_try_charge+0xd2/0x260
[ 2669.649373][T16027]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2669.655005][T16027]  wp_page_copy+0x322/0x1040
[ 2669.659683][T16027]  ? __read_once_size+0x41/0xe0
[ 2669.664541][T16027]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2669.670440][T16027]  do_wp_page+0x192/0xeb0
[ 2669.674780][T16027]  __handle_mm_fault+0x1d16/0x2e00
[ 2669.679920][T16027]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2669.685998][T16027]  handle_mm_fault+0x21b/0x530
[ 2669.691018][T16027]  __do_page_fault+0x456/0x8d0
[ 2669.695797][T16027]  do_page_fault+0x38/0x194
[ 2669.700506][T16027]  page_fault+0x34/0x40
[ 2669.704667][T16027] RIP: 0033:0x40e520
[ 2669.708587][T16027] Code: 50 80 60 20 01 48 89 48 10 48 8b 4c 24 60 48 89 48 18 8b 4c 24 68 89 48 24 8b 4c 24 28 89 48 28 31 c0 48 8b 8c 04 20 01 00 00 <48> 89 8c 02 50 bf 75 00 48 83 c0 08 48 83 f8 48 75 e6 49 63 c6 0f
[ 2669.728242][T16027] RSP: 002b:00007ffdda484890 EFLAGS: 00010287
[ 2669.734345][T16027] RAX: 0000000000000008 RBX: 0000000000000000 RCX: 0000000000000000
[ 2669.742318][T16027] RDX: 00000000000000a8 RSI: 00007ffac9a32db0 RDI: 000000000075bfd0
[ 2669.750342][T16027] RBP: 000000000075bfd4 R08: 0000000000000000 R09: 00007ffac9a33700
[ 2669.758362][T16027] R10: 00007ffac9a339d0 R11: 0000000000000202 R12: 000000000075bfc8
[ 2669.766415][T16027] R13: 0000000000000001 R14: 0000000000000001 R15: 000000000075bfd4
[ 2669.792477][T16027] memory: usage 304996kB, limit 307200kB, failcnt 1482
[ 2669.810866][T16027] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2669.828820][T16027] Memory cgroup stats for /syz0:
[ 2669.829243][T16027] anon 283914240
[ 2669.829243][T16027] file 28672
[ 2669.829243][T16027] kernel_stack 2691072
[ 2669.829243][T16027] slab 5079040
[ 2669.829243][T16027] sock 81920
[ 2669.829243][T16027] shmem 8192
[ 2669.829243][T16027] file_mapped 0
[ 2669.829243][T16027] file_dirty 0
[ 2669.829243][T16027] file_writeback 0
[ 2669.829243][T16027] anon_thp 264241152
[ 2669.829243][T16027] inactive_anon 0
[ 2669.829243][T16027] active_anon 283914240
[ 2669.829243][T16027] inactive_file 4096
[ 2669.829243][T16027] active_file 49152
[ 2669.829243][T16027] unevictable 0
[ 2669.829243][T16027] slab_reclaimable 540672
[ 2669.829243][T16027] slab_unreclaimable 4538368
[ 2669.829243][T16027] pgfault 272745
[ 2669.829243][T16027] pgmajfault 0
[ 2669.829243][T16027] workingset_refault 0
[ 2669.829243][T16027] workingset_activate 0
[ 2669.829243][T16027] workingset_nodereclaim 0
[ 2669.829243][T16027] pgrefill 923
[ 2669.829243][T16027] pgscan 9094
[ 2669.829243][T16027] pgsteal 8360
[ 2669.943483][T16027] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14497,uid=0
[ 2669.960183][T16027] Memory cgroup out of memory: Killed process 14497 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2670.018498][T16259] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2670.040778][T16259] CPU: 1 PID: 16259 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0
[ 2670.049470][T16259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2670.059618][T16259] Call Trace:
[ 2670.062966][T16259]  dump_stack+0x11d/0x181
[ 2670.067333][T16259]  dump_header+0xaa/0x39c
[ 2670.071673][T16259]  oom_kill_process.cold+0x10/0x15
[ 2670.076810][T16259]  out_of_memory+0x231/0xa60
[ 2670.081419][T16259]  mem_cgroup_out_of_memory+0x128/0x150
[ 2670.086992][T16259]  try_charge+0xb6c/0xbf0
[ 2670.091391][T16259]  ? __rcu_read_unlock+0x66/0x3d0
[ 2670.096486][T16259]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2670.101956][T16259]  __memcg_kmem_charge+0xcf/0x1b0
[ 2670.107009][T16259]  __alloc_pages_nodemask+0x26c/0x310
[ 2670.112387][T16259]  alloc_pages_current+0xd1/0x170
[ 2670.117491][T16259]  pte_alloc_one+0x18/0x50
[ 2670.121911][T16259]  copy_huge_pmd+0x8f/0x7b0
[ 2670.126420][T16259]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2670.132738][T16259]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2670.138985][T16259]  copy_page_range+0x6a2/0x19b0
[ 2670.143844][T16259]  ? __read_once_size.constprop.0+0x12/0x20
[ 2670.149754][T16259]  ? vma_gap_callbacks_rotate+0x126/0x190
[ 2670.155551][T16259]  dup_mm+0x74a/0xba0
[ 2670.159570][T16259]  copy_process+0x3138/0x3c40
[ 2670.164268][T16259]  _do_fork+0xfe/0x7a0
[ 2670.168341][T16259]  ? __x64_sys_clone+0x127/0x170
[ 2670.173281][T16259]  __x64_sys_clone+0x130/0x170
[ 2670.178080][T16259]  do_syscall_64+0xcc/0x3a0
[ 2670.182592][T16259]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2670.188494][T16259] RIP: 0033:0x45b399
[ 2670.192429][T16259] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2670.212074][T16259] RSP: 002b:00007f44cabc9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2670.220491][T16259] RAX: ffffffffffffffda RBX: 00007f44cabca6d4 RCX: 000000000045b399
[ 2670.228464][T16259] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2670.236470][T16259] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2670.244443][T16259] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2670.252464][T16259] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:55:32 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8), &(0x7f000095dffc)=0x4)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={0x0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r2 = socket$packet(0x11, 0x2, 0x300)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:32 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327", 0xdd, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:32 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x0, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2670.267930][T16259] memory: usage 307200kB, limit 307200kB, failcnt 522
[ 2670.294107][T16259] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2670.331118][   T26] audit: type=1804 audit(2000001332.449:61088): pid=16374 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3749/bus" dev="sda1" ino=17025 res=1
[ 2670.385866][T16259] Memory cgroup stats for /syz1:
[ 2670.387400][T16259] anon 287059968
[ 2670.387400][T16259] file 81920
[ 2670.387400][T16259] kernel_stack 2506752
[ 2670.387400][T16259] slab 5062656
[ 2670.387400][T16259] sock 0
[ 2670.387400][T16259] shmem 28672
[ 2670.387400][T16259] file_mapped 0
[ 2670.387400][T16259] file_dirty 0
[ 2670.387400][T16259] file_writeback 0
[ 2670.387400][T16259] anon_thp 270532608
[ 2670.387400][T16259] inactive_anon 253952
[ 2670.387400][T16259] active_anon 286982144
[ 2670.387400][T16259] inactive_file 0
[ 2670.387400][T16259] active_file 81920
[ 2670.387400][T16259] unevictable 0
[ 2670.387400][T16259] slab_reclaimable 1081344
[ 2670.387400][T16259] slab_unreclaimable 3981312
[ 2670.387400][T16259] pgfault 302709
[ 2670.387400][T16259] pgmajfault 0
[ 2670.387400][T16259] workingset_refault 0
[ 2670.387400][T16259] workingset_activate 0
[ 2670.387400][T16259] workingset_nodereclaim 0
[ 2670.387400][T16259] pgrefill 713
[ 2670.387400][T16259] pgscan 13020
[ 2670.387400][T16259] pgsteal 12402
03:55:32 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x40000000}, 0x0, 0x0)

[ 2670.525654][T16259] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=25380,uid=0
[ 2670.587209][T16259] Memory cgroup out of memory: Killed process 25380 (syz-executor.1) total-vm:72584kB, anon-rss:4248kB, file-rss:35840kB, shmem-rss:0kB, UID:0 pgtables:163840kB oom_score_adj:1000
03:55:33 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x0)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:33 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327", 0xdd, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2671.207819][T16382] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2671.267337][T16382] CPU: 0 PID: 16382 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2671.276083][T16382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2671.286237][T16382] Call Trace:
[ 2671.289533][T16382]  dump_stack+0x11d/0x181
[ 2671.293917][T16382]  dump_header+0xaa/0x39c
[ 2671.298254][T16382]  oom_kill_process.cold+0x10/0x15
[ 2671.303464][T16382]  out_of_memory+0x231/0xa60
[ 2671.308128][T16382]  ? __rcu_read_unlock+0x66/0x3d0
[ 2671.313168][T16382]  mem_cgroup_out_of_memory+0x128/0x150
[ 2671.318741][T16382]  try_charge+0xb6c/0xbf0
[ 2671.323084][T16382]  ? rcu_note_context_switch+0x720/0x760
[ 2671.328753][T16382]  mem_cgroup_try_charge+0xd2/0x260
[ 2671.333972][T16382]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2671.339617][T16382]  wp_page_copy+0x322/0x1040
[ 2671.344305][T16382]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2671.350140][T16382]  do_wp_page+0x192/0xeb0
[ 2671.354488][T16382]  ? __handle_mm_fault+0x2cb/0x2e00
[ 2671.359702][T16382]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2671.365693][T16382]  __handle_mm_fault+0x1d16/0x2e00
[ 2671.370832][T16382]  handle_mm_fault+0x21b/0x530
[ 2671.375613][T16382]  __do_page_fault+0x456/0x8d0
[ 2671.380393][T16382]  do_page_fault+0x38/0x194
[ 2671.384999][T16382]  page_fault+0x34/0x40
[ 2671.389168][T16382] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2671.395775][T16382] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2671.415487][T16382] RSP: 0018:ffffc900165cf630 EFLAGS: 00010206
[ 2671.421561][T16382] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2671.429614][T16382] RDX: 0000000000001000 RSI: ffff888091d36000 RDI: 000000000098e000
[ 2671.437696][T16382] RBP: ffffc900165cf668 R08: ffff88808f6ce000 R09: 000088808f6ceb50
[ 2671.445674][T16382] R10: 0000c900165cf738 R11: 000088808f6ceb57 R12: 000000000098e000
[ 2671.453660][T16382] R13: 000000000098f000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2671.461664][T16382]  ? copyout+0xa5/0xb0
[ 2671.465753][T16382]  copy_page_to_iter+0x252/0x8d0
[ 2671.470817][T16382]  ? copy_page_to_iter+0x343/0x8d0
[ 2671.475978][T16382]  bio_uncopy_user+0x253/0x2f0
[ 2671.480834][T16382]  __blk_rq_unmap_user+0x78/0x80
[ 2671.485892][T16382]  blk_rq_map_user_iov+0x319/0x420
[ 2671.491165][T16382]  blk_rq_map_user+0x90/0xd0
[ 2671.495775][T16382]  sg_common_write.isra.0+0xc64/0x12c0
[ 2671.501262][T16382]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2671.507512][T16382]  ? _copy_from_user+0x98/0xf0
[ 2671.512285][T16382]  sg_new_write.isra.0+0x2bd/0x520
[ 2671.517547][T16382]  ? scsi_block_when_processing_errors+0x16e/0x1d0
[ 2671.524250][T16382]  ? __sanitizer_cov_trace_pc+0x1/0x50
[ 2671.529727][T16382]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2671.536070][T16382]  ? scsi_block_when_processing_errors+0x19f/0x1d0
[ 2671.542594][T16382]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2671.548912][T16382]  sg_write.part.0+0x73e/0x8c0
[ 2671.553696][T16382]  ? common_file_perm+0x66/0x490
[ 2671.558668][T16382]  ? apic_timer_interrupt+0xa/0x20
[ 2671.563878][T16382]  ? apic_timer_interrupt+0xa/0x20
[ 2671.569062][T16382]  ? sg_write+0x22/0x88
[ 2671.573287][T16382]  sg_write+0x65/0x88
[ 2671.577287][T16382]  do_iter_write+0x34b/0x3c0
[ 2671.581898][T16382]  vfs_writev+0x118/0x1c0
[ 2671.586375][T16382]  do_writev+0xe3/0x250
[ 2671.590624][T16382]  __x64_sys_writev+0x4e/0x60
[ 2671.595318][T16382]  do_syscall_64+0xcc/0x3a0
[ 2671.599862][T16382]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2671.605855][T16382] RIP: 0033:0x45b399
03:55:33 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x401f0000}, 0x0, 0x0)

[ 2671.609768][T16382] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2671.629565][T16382] RSP: 002b:00007ffac9a53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2671.637996][T16382] RAX: ffffffffffffffda RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2671.646013][T16382] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000007
[ 2671.654030][T16382] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 2671.662031][T16382] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2671.670013][T16382] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bf2c
03:55:33 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x0, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2671.785571][T16382] memory: usage 307148kB, limit 307200kB, failcnt 1516
[ 2671.793935][T16382] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2671.803614][T16382] Memory cgroup stats for /syz0:
[ 2671.820684][T16382] anon 286412800
[ 2671.820684][T16382] file 28672
[ 2671.820684][T16382] kernel_stack 2654208
[ 2671.820684][T16382] slab 5079040
[ 2671.820684][T16382] sock 81920
[ 2671.820684][T16382] shmem 8192
[ 2671.820684][T16382] file_mapped 0
[ 2671.820684][T16382] file_dirty 0
[ 2671.820684][T16382] file_writeback 0
[ 2671.820684][T16382] anon_thp 266338304
[ 2671.820684][T16382] inactive_anon 0
[ 2671.820684][T16382] active_anon 286412800
[ 2671.820684][T16382] inactive_file 4096
[ 2671.820684][T16382] active_file 49152
[ 2671.820684][T16382] unevictable 0
[ 2671.820684][T16382] slab_reclaimable 540672
[ 2671.820684][T16382] slab_unreclaimable 4538368
[ 2671.820684][T16382] pgfault 273108
[ 2671.820684][T16382] pgmajfault 0
[ 2671.820684][T16382] workingset_refault 0
[ 2671.820684][T16382] workingset_activate 0
[ 2671.820684][T16382] workingset_nodereclaim 0
[ 2671.820684][T16382] pgrefill 923
[ 2671.820684][T16382] pgscan 9094
[ 2671.820684][T16382] pgsteal 8360
[ 2671.959276][T16382] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16378,uid=0
[ 2671.979627][T16382] Memory cgroup out of memory: Killed process 16382 (syz-executor.0) total-vm:72716kB, anon-rss:4540kB, file-rss:35812kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2672.057075][ T1069] oom_reaper: reaped process 16382 (syz-executor.0), now anon-rss:0kB, file-rss:34852kB, shmem-rss:0kB
03:55:34 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x5)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:34 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59", 0xe1, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2672.461180][   T26] audit: type=1804 audit(2000001334.579:61089): pid=16609 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3751/bus" dev="sda1" ino=17020 res=1
03:55:34 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x0)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:34 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x4d010000}, 0x0, 0x0)

03:55:34 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2673.118673][    C1] net_ratelimit: 16 callbacks suppressed
[ 2673.118696][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2673.130914][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2673.137849][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2673.144767][    C1] protocol 88fb is buggy, dev hsr_slave_1
03:55:35 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x0, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2673.275902][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2673.282761][    C0] protocol 88fb is buggy, dev hsr_slave_1
03:55:35 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, 0x0, 0x0)

03:55:35 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59", 0xe1, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2673.765696][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2673.769845][   T26] audit: type=1804 audit(2000001335.889:61090): pid=16750 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3752/bus" dev="sda1" ino=16974 res=1
[ 2673.772181][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2673.802955][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2673.809793][    C1] protocol 88fb is buggy, dev hsr_slave_1
03:55:35 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x7c150000}, 0x0, 0x0)

03:55:36 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, 0x0, 0x0)

03:55:36 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x0)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:36 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:36 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
socket$packet(0x11, 0x3, 0x300)
r3 = dup3(0xffffffffffffffff, r2, 0x0)
dup3(r3, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r4 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r4, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, r4, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:36 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59", 0xe1, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2674.741132][T16759] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
03:55:36 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x9a020000}, 0x0, 0x0)

[ 2674.838152][T16759] CPU: 1 PID: 16759 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2674.846931][T16759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2674.857012][T16759] Call Trace:
[ 2674.860313][T16759]  dump_stack+0x11d/0x181
[ 2674.865278][T16759]  dump_header+0xaa/0x39c
[ 2674.869628][T16759]  oom_kill_process.cold+0x10/0x15
[ 2674.874803][T16759]  out_of_memory+0x231/0xa60
[ 2674.879485][T16759]  mem_cgroup_out_of_memory+0x128/0x150
[ 2674.885048][T16759]  try_charge+0xb6c/0xbf0
[ 2674.889405][T16759]  ? __rcu_read_unlock+0x66/0x3d0
[ 2674.894452][T16759]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2674.899980][T16759]  __memcg_kmem_charge+0xcf/0x1b0
[ 2674.905059][T16759]  __alloc_pages_nodemask+0x26c/0x310
[ 2674.910444][T16759]  alloc_pages_current+0xd1/0x170
[ 2674.915535][T16759]  __pmd_alloc+0x4b/0x2b0
[ 2674.919883][T16759]  copy_page_range+0x1529/0x19b0
[ 2674.925546][T16759]  ? __write_once_size.constprop.0+0x20/0x20
[ 2674.931681][T16759]  ? vma_gap_callbacks_rotate+0x126/0x190
[ 2674.937963][T16759]  ? __rb_insert_augmented+0x11a/0x370
[ 2674.943439][T16759]  ? vm_get_page_prot+0x90/0x90
[ 2674.948386][T16759]  dup_mm+0x74a/0xba0
[ 2674.952393][T16759]  copy_process+0x3138/0x3c40
[ 2674.957151][T16759]  _do_fork+0xfe/0x7a0
[ 2674.961364][T16759]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2674.967321][T16759]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2674.973599][T16759]  __x64_sys_clone+0x130/0x170
[ 2674.978389][T16759]  do_syscall_64+0xcc/0x3a0
[ 2674.982967][T16759]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2674.988988][T16759] RIP: 0033:0x45b399
[ 2674.992903][T16759] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2675.012770][T16759] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2675.021346][T16759] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2675.030424][T16759] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2675.038486][T16759] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2675.046581][T16759] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2675.054735][T16759] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:55:37 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, 0x0, 0x0)

[ 2675.116658][   T26] audit: type=1804 audit(2000001337.239:61091): pid=16827 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3753/bus" dev="sda1" ino=17018 res=1
[ 2675.138568][T16759] memory: usage 307200kB, limit 307200kB, failcnt 2156
[ 2675.164381][T16759] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2675.185785][T16759] Memory cgroup stats for /syz4:
[ 2675.189776][T16759] anon 280010752
[ 2675.189776][T16759] file 53248
[ 2675.189776][T16759] kernel_stack 3170304
[ 2675.189776][T16759] slab 6168576
[ 2675.189776][T16759] sock 8192
[ 2675.189776][T16759] shmem 0
[ 2675.189776][T16759] file_mapped 135168
[ 2675.189776][T16759] file_dirty 0
[ 2675.189776][T16759] file_writeback 0
[ 2675.189776][T16759] anon_thp 257949696
[ 2675.189776][T16759] inactive_anon 0
[ 2675.189776][T16759] active_anon 279932928
[ 2675.189776][T16759] inactive_file 28672
[ 2675.189776][T16759] active_file 61440
[ 2675.189776][T16759] unevictable 0
[ 2675.189776][T16759] slab_reclaimable 946176
[ 2675.189776][T16759] slab_unreclaimable 5222400
[ 2675.189776][T16759] pgfault 335115
[ 2675.189776][T16759] pgmajfault 0
[ 2675.189776][T16759] workingset_refault 0
[ 2675.189776][T16759] workingset_activate 0
[ 2675.189776][T16759] workingset_nodereclaim 0
[ 2675.189776][T16759] pgrefill 1374
[ 2675.189776][T16759] pgscan 17721
[ 2675.189776][T16759] pgsteal 16620
[ 2675.295179][T16759] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=16622,uid=0
[ 2675.330756][T16759] Memory cgroup out of memory: Killed process 16622 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
[ 2675.633463][T16761] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2675.655650][T16761] CPU: 0 PID: 16761 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2675.664357][T16761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2675.675033][T16761] Call Trace:
[ 2675.678363][T16761]  dump_stack+0x11d/0x181
[ 2675.682712][T16761]  dump_header+0xaa/0x39c
[ 2675.687086][T16761]  oom_kill_process.cold+0x10/0x15
[ 2675.692286][T16761]  out_of_memory+0x231/0xa60
[ 2675.696921][T16761]  mem_cgroup_out_of_memory+0x128/0x150
[ 2675.702480][T16761]  try_charge+0xb6c/0xbf0
[ 2675.706825][T16761]  ? __mod_lruvec_state+0xc0/0x1e0
[ 2675.711962][T16761]  ? __rcu_read_unlock+0x66/0x3d0
[ 2675.717000][T16761]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2675.722476][T16761]  __memcg_kmem_charge+0xcf/0x1b0
[ 2675.727522][T16761]  copy_process+0x11d2/0x3c40
[ 2675.732218][T16761]  ? record_times+0x16/0x90
[ 2675.736744][T16761]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2675.742946][T16761]  _do_fork+0xfe/0x7a0
[ 2675.747026][T16761]  ? cgroup_file_notify+0xff/0x130
[ 2675.752282][T16761]  ? blkcg_maybe_throttle_current+0x23d/0x580
[ 2675.758365][T16761]  __x64_sys_clone+0x130/0x170
[ 2675.763155][T16761]  do_syscall_64+0xcc/0x3a0
[ 2675.767691][T16761]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2675.773582][T16761] RIP: 0033:0x45dd69
[ 2675.777508][T16761] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 2675.797193][T16761] RSP: 002b:00007ffdda484758 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2675.805620][T16761] RAX: ffffffffffffffda RBX: 00007ffac9a33700 RCX: 000000000045dd69
[ 2675.813687][T16761] RDX: 00007ffac9a339d0 RSI: 00007ffac9a32db0 RDI: 00000000003d0f00
[ 2675.821719][T16761] RBP: 00007ffdda484970 R08: 00007ffac9a33700 R09: 00007ffac9a33700
03:55:37 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
socket$packet(0x11, 0x3, 0x300)
r3 = dup3(0xffffffffffffffff, r2, 0x0)
dup3(r3, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r4 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r4, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, r4, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2675.829802][T16761] R10: 00007ffac9a339d0 R11: 0000000000000202 R12: 0000000000000000
[ 2675.837780][T16761] R13: 00007ffdda48480f R14: 00007ffac9a339c0 R15: 000000000075bfd4
[ 2675.861375][T16761] memory: usage 307200kB, limit 307200kB, failcnt 1558
[ 2675.868571][T16761] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2675.877754][T16761] Memory cgroup stats for /syz0:
[ 2675.878112][T16761] anon 286191616
[ 2675.878112][T16761] file 28672
[ 2675.878112][T16761] kernel_stack 2654208
[ 2675.878112][T16761] slab 5079040
[ 2675.878112][T16761] sock 81920
[ 2675.878112][T16761] shmem 8192
[ 2675.878112][T16761] file_mapped 0
[ 2675.878112][T16761] file_dirty 0
[ 2675.878112][T16761] file_writeback 0
[ 2675.878112][T16761] anon_thp 266338304
[ 2675.878112][T16761] inactive_anon 0
[ 2675.878112][T16761] active_anon 286113792
[ 2675.878112][T16761] inactive_file 4096
[ 2675.878112][T16761] active_file 49152
[ 2675.878112][T16761] unevictable 0
[ 2675.878112][T16761] slab_reclaimable 540672
[ 2675.878112][T16761] slab_unreclaimable 4538368
[ 2675.878112][T16761] pgfault 273306
[ 2675.878112][T16761] pgmajfault 0
[ 2675.878112][T16761] workingset_refault 0
[ 2675.878112][T16761] workingset_activate 0
[ 2675.878112][T16761] workingset_nodereclaim 0
[ 2675.878112][T16761] pgrefill 956
[ 2675.878112][T16761] pgscan 9127
[ 2675.878112][T16761] pgsteal 8360
[ 2676.055505][T16761] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16630,uid=0
03:55:38 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xa00f0000}, 0x0, 0x0)

[ 2676.119253][T16761] Memory cgroup out of memory: Killed process 16630 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
03:55:38 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f349", 0xe3, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2676.374295][   T26] audit: type=1804 audit(2000001338.489:61092): pid=16937 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3754/bus" dev="sda1" ino=17046 res=1
03:55:38 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}], 0x1)

[ 2676.478405][T16769] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2676.588592][T16769] CPU: 0 PID: 16769 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2676.597306][T16769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2676.607366][T16769] Call Trace:
[ 2676.610673][T16769]  dump_stack+0x11d/0x181
[ 2676.615030][T16769]  dump_header+0xaa/0x39c
[ 2676.619734][T16769]  oom_kill_process.cold+0x10/0x15
[ 2676.624922][T16769]  out_of_memory+0x231/0xa60
[ 2676.629699][T16769]  mem_cgroup_out_of_memory+0x128/0x150
[ 2676.635371][T16769]  try_charge+0x800/0xbf0
[ 2676.639717][T16769]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2676.645652][T16769]  ? __rcu_read_unlock+0x66/0x3d0
[ 2676.650785][T16769]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2676.656382][T16769]  __memcg_kmem_charge+0xcf/0x1b0
[ 2676.661429][T16769]  __alloc_pages_nodemask+0x26c/0x310
[ 2676.666818][T16769]  alloc_pages_current+0xd1/0x170
[ 2676.671872][T16769]  pte_alloc_one+0x18/0x50
[ 2676.676299][T16769]  __handle_mm_fault+0x2be6/0x2e00
[ 2676.681424][T16769]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2676.687559][T16769]  handle_mm_fault+0x21b/0x530
[ 2676.692336][T16769]  __do_page_fault+0x456/0x8d0
[ 2676.697117][T16769]  do_page_fault+0x38/0x194
[ 2676.701715][T16769]  page_fault+0x34/0x40
[ 2676.705982][T16769] RIP: 0033:0x45b399
[ 2676.709973][T16769] Code: Bad RIP value.
[ 2676.714040][T16769] RSP: 002b:00007ffac9a53c78 EFLAGS: 00010246
[ 2676.720210][T16769] RAX: 0000000000000000 RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2676.728233][T16769] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2676.736213][T16769] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2676.744192][T16769] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2676.752169][T16769] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:55:38 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2676.938705][T16769] memory: usage 307200kB, limit 307200kB, failcnt 1582
[ 2677.033256][T16769] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
03:55:39 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
socket$packet(0x11, 0x3, 0x300)
r3 = dup3(0xffffffffffffffff, r2, 0x0)
dup3(r3, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r4 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r4, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, r4, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2677.122860][T16769] Memory cgroup stats for /syz0:
[ 2677.123227][T16769] anon 286175232
[ 2677.123227][T16769] file 28672
[ 2677.123227][T16769] kernel_stack 2654208
[ 2677.123227][T16769] slab 5079040
[ 2677.123227][T16769] sock 81920
[ 2677.123227][T16769] shmem 8192
[ 2677.123227][T16769] file_mapped 0
[ 2677.123227][T16769] file_dirty 0
[ 2677.123227][T16769] file_writeback 0
[ 2677.123227][T16769] anon_thp 266338304
[ 2677.123227][T16769] inactive_anon 0
[ 2677.123227][T16769] active_anon 286175232
[ 2677.123227][T16769] inactive_file 4096
[ 2677.123227][T16769] active_file 49152
[ 2677.123227][T16769] unevictable 0
[ 2677.123227][T16769] slab_reclaimable 540672
[ 2677.123227][T16769] slab_unreclaimable 4538368
[ 2677.123227][T16769] pgfault 273504
[ 2677.123227][T16769] pgmajfault 0
[ 2677.123227][T16769] workingset_refault 0
[ 2677.123227][T16769] workingset_activate 0
[ 2677.123227][T16769] workingset_nodereclaim 0
[ 2677.123227][T16769] pgrefill 956
[ 2677.123227][T16769] pgscan 9127
[ 2677.123227][T16769] pgsteal 8360
[ 2677.225890][T16769] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16761,uid=0
03:55:39 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xfeffffff}, 0x0, 0x0)

[ 2677.461088][T17016] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2677.527317][T17016] CPU: 0 PID: 17016 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2677.536030][T17016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2677.546082][T17016] Call Trace:
[ 2677.549377][T17016]  dump_stack+0x11d/0x181
[ 2677.553723][T17016]  dump_header+0xaa/0x39c
[ 2677.558189][T17016]  oom_kill_process.cold+0x10/0x15
[ 2677.563343][T17016]  out_of_memory+0x231/0xa60
[ 2677.567963][T17016]  mem_cgroup_out_of_memory+0x128/0x150
[ 2677.573516][T17016]  try_charge+0xb6c/0xbf0
[ 2677.577935][T17016]  ? __rcu_read_unlock+0x66/0x3d0
[ 2677.583001][T17016]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2677.588508][T17016]  __memcg_kmem_charge+0xcf/0x1b0
[ 2677.593541][T17016]  __alloc_pages_nodemask+0x26c/0x310
[ 2677.598938][T17016]  alloc_pages_current+0xd1/0x170
[ 2677.604038][T17016]  pte_alloc_one+0x18/0x50
[ 2677.608509][T17016]  __pte_alloc+0x2d/0x220
[ 2677.612844][T17016]  copy_page_range+0x135a/0x19b0
[ 2677.617861][T17016]  ? debug_smp_processor_id+0x3e/0x137
[ 2677.623479][T17016]  ? vma_gap_callbacks_rotate+0x126/0x190
[ 2677.629221][T17016]  dup_mm+0x74a/0xba0
[ 2677.633340][T17016]  copy_process+0x3138/0x3c40
[ 2677.638051][T17016]  _do_fork+0xfe/0x7a0
[ 2677.642212][T17016]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2677.648113][T17016]  ? __read_once_size+0x5a/0xe0
[ 2677.652970][T17016]  __x64_sys_clone+0x130/0x170
[ 2677.657750][T17016]  do_syscall_64+0xcc/0x3a0
[ 2677.662267][T17016]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2677.668164][T17016] RIP: 0033:0x45b399
[ 2677.672125][T17016] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2677.691729][T17016] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2677.700334][T17016] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2677.708400][T17016] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2677.716373][T17016] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
03:55:39 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:39 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f349", 0xe3, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:39 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}], 0x1)

[ 2677.724513][T17016] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2677.732496][T17016] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2677.848518][   T26] audit: type=1804 audit(2000001339.959:61093): pid=17140 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3755/bus" dev="sda1" ino=17037 res=1
[ 2678.109137][T17016] memory: usage 307200kB, limit 307200kB, failcnt 2194
[ 2678.141292][T17016] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2678.191462][T17016] Memory cgroup stats for /syz4:
[ 2678.194722][T17016] anon 280014848
[ 2678.194722][T17016] file 53248
[ 2678.194722][T17016] kernel_stack 3170304
[ 2678.194722][T17016] slab 6168576
[ 2678.194722][T17016] sock 8192
[ 2678.194722][T17016] shmem 0
[ 2678.194722][T17016] file_mapped 135168
[ 2678.194722][T17016] file_dirty 0
[ 2678.194722][T17016] file_writeback 0
[ 2678.194722][T17016] anon_thp 257949696
[ 2678.194722][T17016] inactive_anon 0
[ 2678.194722][T17016] active_anon 279937024
[ 2678.194722][T17016] inactive_file 28672
[ 2678.194722][T17016] active_file 61440
[ 2678.194722][T17016] unevictable 0
[ 2678.194722][T17016] slab_reclaimable 946176
[ 2678.194722][T17016] slab_unreclaimable 5222400
[ 2678.194722][T17016] pgfault 335247
[ 2678.194722][T17016] pgmajfault 0
[ 2678.194722][T17016] workingset_refault 0
[ 2678.194722][T17016] workingset_activate 0
[ 2678.194722][T17016] workingset_nodereclaim 0
[ 2678.194722][T17016] pgrefill 1374
[ 2678.194722][T17016] pgscan 17721
[ 2678.194722][T17016] pgsteal 16620
[ 2678.235722][    C0] net_ratelimit: 24 callbacks suppressed
[ 2678.235745][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2678.301983][    C0] protocol 88fb is buggy, dev hsr_slave_1
03:55:40 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}], 0x1)

[ 2678.541867][T17016] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=16890,uid=0
[ 2678.560291][T17016] Memory cgroup out of memory: Killed process 16890 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
03:55:40 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xffffff7f}, 0x0, 0x0)

03:55:40 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, 0xffffffffffffffff, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2678.721457][T17141] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2678.740768][T17141] CPU: 1 PID: 17141 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2678.749470][T17141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2678.759530][T17141] Call Trace:
[ 2678.762835][T17141]  dump_stack+0x11d/0x181
[ 2678.767196][T17141]  dump_header+0xaa/0x39c
[ 2678.771588][T17141]  oom_kill_process.cold+0x10/0x15
[ 2678.776770][T17141]  out_of_memory+0x231/0xa60
[ 2678.781464][T17141]  mem_cgroup_out_of_memory+0x128/0x150
[ 2678.787042][T17141]  try_charge+0xb6c/0xbf0
[ 2678.791397][T17141]  ? rcu_note_context_switch+0x720/0x760
[ 2678.797094][T17141]  mem_cgroup_try_charge+0xd2/0x260
[ 2678.802315][T17141]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2678.808177][T17141]  wp_page_copy+0x322/0x1040
[ 2678.812785][T17141]  ? __read_once_size+0x41/0xe0
[ 2678.817694][T17141]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2678.823689][T17141]  do_wp_page+0x192/0xeb0
[ 2678.828031][T17141]  ? record_times+0x16/0x90
[ 2678.832647][T17141]  __handle_mm_fault+0x1d16/0x2e00
[ 2678.837925][T17141]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2678.844107][T17141]  handle_mm_fault+0x21b/0x530
[ 2678.848856][T17141]  __do_page_fault+0x456/0x8d0
[ 2678.853691][T17141]  do_page_fault+0x38/0x194
[ 2678.858288][T17141]  page_fault+0x34/0x40
[ 2678.862516][T17141] RIP: 0033:0x412bba
[ 2678.866536][T17141] Code: 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41 c7 45 18 01 00 00 00 49 89 85 10 05 00 00 48 8b 05 8e 58 66 00 <c7> 00 01 00 00 00 c7 05 9a 58 66 00 01 00 00 00 41 c7 85 1c 06 00
[ 2678.887307][T17141] RSP: 002b:00007ffdda4847a0 EFLAGS: 00010206
[ 2678.893355][T17141] RAX: 0000000000a78928 RBX: 0000000000020000 RCX: 000000000045b3ea
[ 2678.901494][T17141] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000
[ 2678.909513][T17141] RBP: 00007ffdda484880 R08: ffffffffffffffff R09: 0000000000000000
03:55:41 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f349", 0xe3, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2678.917470][T17141] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdda484970
[ 2678.925445][T17141] R13: 00007ffac9a33700 R14: 0000000000000001 R15: 000000000075bfd4
[ 2678.936263][T17141] memory: usage 307200kB, limit 307200kB, failcnt 1780
[ 2678.943125][T17141] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2678.967375][T17141] Memory cgroup stats for /syz0:
[ 2678.967565][T17141] anon 285995008
[ 2678.967565][T17141] file 28672
[ 2678.967565][T17141] kernel_stack 2654208
[ 2678.967565][T17141] slab 5079040
[ 2678.967565][T17141] sock 81920
[ 2678.967565][T17141] shmem 8192
[ 2678.967565][T17141] file_mapped 0
[ 2678.967565][T17141] file_dirty 0
[ 2678.967565][T17141] file_writeback 0
[ 2678.967565][T17141] anon_thp 266338304
[ 2678.967565][T17141] inactive_anon 0
[ 2678.967565][T17141] active_anon 285995008
[ 2678.967565][T17141] inactive_file 4096
[ 2678.967565][T17141] active_file 49152
[ 2678.967565][T17141] unevictable 0
[ 2678.967565][T17141] slab_reclaimable 540672
[ 2678.967565][T17141] slab_unreclaimable 4538368
[ 2678.967565][T17141] pgfault 273636
[ 2678.967565][T17141] pgmajfault 0
[ 2678.967565][T17141] workingset_refault 0
[ 2678.967565][T17141] workingset_activate 0
[ 2678.967565][T17141] workingset_nodereclaim 0
[ 2678.967565][T17141] pgrefill 989
[ 2678.967565][T17141] pgscan 9160
[ 2678.967565][T17141] pgsteal 8360
03:55:41 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {0x0}], 0x2)

[ 2679.085557][T17141] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16769,uid=0
[ 2679.119582][T17141] Memory cgroup out of memory: Killed process 16769 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2679.171490][   T26] audit: type=1804 audit(2000001341.289:61094): pid=17163 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3756/bus" dev="sda1" ino=17025 res=1
03:55:41 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2679.266971][T17147] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2679.345975][T17147] CPU: 1 PID: 17147 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2679.354850][T17147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2679.364997][T17147] Call Trace:
[ 2679.368308][T17147]  dump_stack+0x11d/0x181
[ 2679.372660][T17147]  dump_header+0xaa/0x39c
[ 2679.377025][T17147]  oom_kill_process.cold+0x10/0x15
[ 2679.382160][T17147]  out_of_memory+0x231/0xa60
[ 2679.386774][T17147]  mem_cgroup_out_of_memory+0x128/0x150
[ 2679.392380][T17147]  try_charge+0x800/0xbf0
[ 2679.396745][T17147]  ? __rcu_read_unlock+0x66/0x3d0
[ 2679.401783][T17147]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2679.407262][T17147]  __memcg_kmem_charge+0xcf/0x1b0
[ 2679.412306][T17147]  __alloc_pages_nodemask+0x26c/0x310
[ 2679.417722][T17147]  alloc_pages_current+0xd1/0x170
[ 2679.422858][T17147]  pte_alloc_one+0x18/0x50
[ 2679.427290][T17147]  __handle_mm_fault+0x2be6/0x2e00
[ 2679.432423][T17147]  handle_mm_fault+0x21b/0x530
[ 2679.437224][T17147]  __do_page_fault+0x456/0x8d0
[ 2679.441999][T17147]  do_page_fault+0x38/0x194
[ 2679.446606][T17147]  page_fault+0x34/0x40
[ 2679.450762][T17147] RIP: 0033:0x45b399
[ 2679.454728][T17147] Code: Bad RIP value.
[ 2679.458805][T17147] RSP: 002b:00007ffac9a53c78 EFLAGS: 00010246
[ 2679.465030][T17147] RAX: 0000000000000000 RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2679.473012][T17147] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2679.480992][T17147] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2679.488976][T17147] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2679.496956][T17147] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2679.505595][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2679.511644][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2679.515768][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2679.517526][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2679.523759][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2679.528909][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2679.636022][T17147] memory: usage 304932kB, limit 307200kB, failcnt 1780
[ 2679.650353][T17147] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2679.703657][T17147] Memory cgroup stats for /syz0:
[ 2679.703965][T17147] anon 283926528
[ 2679.703965][T17147] file 28672
[ 2679.703965][T17147] kernel_stack 2654208
[ 2679.703965][T17147] slab 5079040
[ 2679.703965][T17147] sock 81920
[ 2679.703965][T17147] shmem 8192
[ 2679.703965][T17147] file_mapped 0
[ 2679.703965][T17147] file_dirty 0
[ 2679.703965][T17147] file_writeback 0
[ 2679.703965][T17147] anon_thp 264241152
[ 2679.703965][T17147] inactive_anon 0
[ 2679.703965][T17147] active_anon 283926528
[ 2679.703965][T17147] inactive_file 4096
[ 2679.703965][T17147] active_file 49152
[ 2679.703965][T17147] unevictable 0
[ 2679.703965][T17147] slab_reclaimable 540672
[ 2679.703965][T17147] slab_unreclaimable 4538368
[ 2679.703965][T17147] pgfault 273636
[ 2679.703965][T17147] pgmajfault 0
[ 2679.703965][T17147] workingset_refault 0
[ 2679.703965][T17147] workingset_activate 0
[ 2679.703965][T17147] workingset_nodereclaim 0
[ 2679.703965][T17147] pgrefill 989
[ 2679.703965][T17147] pgscan 9160
[ 2679.703965][T17147] pgsteal 8360
03:55:42 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xfffffffe}, 0x0, 0x0)

[ 2679.904980][T17147] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16409,uid=0
[ 2679.941352][T17147] Memory cgroup out of memory: Killed process 16409 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2679.995524][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2680.001434][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2680.047548][T17142] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2680.062828][T17142] CPU: 1 PID: 17142 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2680.071533][T17142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2680.081673][T17142] Call Trace:
[ 2680.084977][T17142]  dump_stack+0x11d/0x181
[ 2680.089428][T17142]  dump_header+0xaa/0x39c
[ 2680.093883][T17142]  oom_kill_process.cold+0x10/0x15
[ 2680.099017][T17142]  out_of_memory+0x231/0xa60
[ 2680.103651][T17142]  mem_cgroup_out_of_memory+0x128/0x150
[ 2680.109215][T17142]  try_charge+0x800/0xbf0
[ 2680.113569][T17142]  ? rcu_note_context_switch+0x720/0x760
[ 2680.119377][T17142]  mem_cgroup_try_charge+0xd2/0x260
[ 2680.124604][T17142]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2680.130251][T17142]  wp_page_copy+0x322/0x1040
[ 2680.135010][T17142]  ? __read_once_size+0x41/0xe0
[ 2680.139910][T17142]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2680.145961][T17142]  do_wp_page+0x192/0xeb0
[ 2680.150324][T17142]  __handle_mm_fault+0x1d16/0x2e00
[ 2680.155524][T17142]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2680.161656][T17142]  handle_mm_fault+0x21b/0x530
[ 2680.166431][T17142]  __do_page_fault+0x456/0x8d0
[ 2680.171360][T17142]  do_page_fault+0x38/0x194
[ 2680.175882][T17142]  page_fault+0x34/0x40
[ 2680.180049][T17142] RIP: 0033:0x403f80
[ 2680.184012][T17142] Code: 80 3d fb e6 66 00 00 c6 85 84 00 00 00 00 74 0f 8b 05 e8 e6 66 00 39 45 24 0f 84 46 02 00 00 44 8b a5 80 00 00 00 48 8b 5d 78 <e8> fb e6 ff ff 48 2b 05 84 40 33 00 8b 75 00 4c 89 f1 45 89 e1 49
[ 2680.203682][T17142] RSP: 002b:00007ffac9a53c90 EFLAGS: 00010246
[ 2680.209890][T17142] RAX: 00007ffacba55000 RBX: 0000000000002731 RCX: 0000000000000000
[ 2680.217981][T17142] RDX: 000000000003ffff RSI: 0000000000403ecc RDI: 0000000000000000
[ 2680.225966][T17142] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2680.233961][T17142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
03:55:42 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {0x0}], 0x2)

03:55:42 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2680.241970][T17142] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2680.300355][T17142] memory: usage 302636kB, limit 307200kB, failcnt 1780
[ 2680.311745][T17142] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2680.323531][T17142] Memory cgroup stats for /syz0:
[ 2680.339923][T17142] anon 281776128
[ 2680.339923][T17142] file 28672
[ 2680.339923][T17142] kernel_stack 2654208
[ 2680.339923][T17142] slab 5079040
[ 2680.339923][T17142] sock 81920
[ 2680.339923][T17142] shmem 8192
[ 2680.339923][T17142] file_mapped 0
[ 2680.339923][T17142] file_dirty 0
[ 2680.339923][T17142] file_writeback 0
[ 2680.339923][T17142] anon_thp 262144000
[ 2680.339923][T17142] inactive_anon 0
[ 2680.339923][T17142] active_anon 281776128
[ 2680.339923][T17142] inactive_file 4096
[ 2680.339923][T17142] active_file 49152
[ 2680.339923][T17142] unevictable 0
[ 2680.339923][T17142] slab_reclaimable 540672
[ 2680.339923][T17142] slab_unreclaimable 4538368
[ 2680.339923][T17142] pgfault 273636
[ 2680.339923][T17142] pgmajfault 0
[ 2680.339923][T17142] workingset_refault 0
[ 2680.339923][T17142] workingset_activate 0
[ 2680.339923][T17142] workingset_nodereclaim 0
[ 2680.339923][T17142] pgrefill 989
[ 2680.339923][T17142] pgscan 9160
[ 2680.339923][T17142] pgsteal 8360
[ 2680.447171][T17142] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14244,uid=0
[ 2680.453933][   T26] audit: type=1804 audit(2000001342.569:61095): pid=17290 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3757/bus" dev="sda1" ino=17018 res=1
[ 2680.477480][T17142] Memory cgroup out of memory: Killed process 14244 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2680.593732][ T1069] oom_reaper: reaped process 14244 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 2680.602619][T17283] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2680.643851][T17283] CPU: 1 PID: 17283 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2680.652567][T17283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2680.663234][T17283] Call Trace:
[ 2680.666550][T17283]  dump_stack+0x11d/0x181
[ 2680.670898][T17283]  dump_header+0xaa/0x39c
[ 2680.675381][T17283]  oom_kill_process.cold+0x10/0x15
[ 2680.680509][T17283]  out_of_memory+0x231/0xa60
[ 2680.685159][T17283]  mem_cgroup_out_of_memory+0x128/0x150
[ 2680.690732][T17283]  try_charge+0xb6c/0xbf0
[ 2680.695162][T17283]  ? entry_INT80_compat+0x70/0x76
[ 2680.700230][T17283]  ? __rcu_read_unlock+0x66/0x3d0
[ 2680.705268][T17283]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2680.710813][T17283]  __memcg_kmem_charge+0xcf/0x1b0
[ 2680.715861][T17283]  __alloc_pages_nodemask+0x26c/0x310
[ 2680.721375][T17283]  alloc_pages_current+0xd1/0x170
[ 2680.726454][T17283]  pte_alloc_one+0x18/0x50
[ 2680.730953][T17283]  __pte_alloc+0x2d/0x220
[ 2680.735290][T17283]  copy_page_range+0x135a/0x19b0
[ 2680.740257][T17283]  ? __vma_link_rb+0x3f4/0x440
[ 2680.745045][T17283]  dup_mm+0x74a/0xba0
[ 2680.749053][T17283]  copy_process+0x3138/0x3c40
[ 2680.753782][T17283]  _do_fork+0xfe/0x7a0
[ 2680.757868][T17283]  __x64_sys_clone+0x130/0x170
[ 2680.762724][T17283]  do_syscall_64+0xcc/0x3a0
[ 2680.767247][T17283]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2680.773143][T17283] RIP: 0033:0x45b399
[ 2680.777068][T17283] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2680.796673][T17283] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2680.805096][T17283] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2680.813078][T17283] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2680.821039][T17283] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2680.829072][T17283] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2680.837033][T17283] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2680.860746][T17283] memory: usage 307192kB, limit 307200kB, failcnt 2431
[ 2680.871428][T17283] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2680.879357][T17283] Memory cgroup stats for /syz4:
[ 2680.905154][T17283] anon 279953408
[ 2680.905154][T17283] file 53248
[ 2680.905154][T17283] kernel_stack 3170304
[ 2680.905154][T17283] slab 6168576
[ 2680.905154][T17283] sock 8192
[ 2680.905154][T17283] shmem 0
[ 2680.905154][T17283] file_mapped 135168
[ 2680.905154][T17283] file_dirty 0
[ 2680.905154][T17283] file_writeback 0
[ 2680.905154][T17283] anon_thp 257949696
[ 2680.905154][T17283] inactive_anon 0
[ 2680.905154][T17283] active_anon 279957504
[ 2680.905154][T17283] inactive_file 28672
[ 2680.905154][T17283] active_file 61440
[ 2680.905154][T17283] unevictable 0
[ 2680.905154][T17283] slab_reclaimable 946176
[ 2680.905154][T17283] slab_unreclaimable 5222400
[ 2680.905154][T17283] pgfault 335610
[ 2680.905154][T17283] pgmajfault 0
[ 2680.905154][T17283] workingset_refault 0
[ 2680.905154][T17283] workingset_activate 0
[ 2680.905154][T17283] workingset_nodereclaim 0
[ 2680.905154][T17283] pgrefill 1374
[ 2680.905154][T17283] pgscan 17721
[ 2680.905154][T17283] pgsteal 16653
[ 2681.009700][T17283] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=17151,uid=0
[ 2681.032400][T17283] Memory cgroup out of memory: Killed process 17151 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
[ 2681.093552][T17287] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2681.127603][T17287] CPU: 0 PID: 17287 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0
[ 2681.136316][T17287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2681.146422][T17287] Call Trace:
[ 2681.149724][T17287]  dump_stack+0x11d/0x181
[ 2681.154137][T17287]  dump_header+0xaa/0x39c
[ 2681.159473][T17287]  oom_kill_process.cold+0x10/0x15
[ 2681.164634][T17287]  out_of_memory+0x231/0xa60
[ 2681.169318][T17287]  mem_cgroup_out_of_memory+0x128/0x150
[ 2681.174880][T17287]  try_charge+0xb6c/0xbf0
[ 2681.179280][T17287]  ? rcu_note_context_switch+0x720/0x760
[ 2681.184927][T17287]  mem_cgroup_try_charge+0xd2/0x260
[ 2681.190146][T17287]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2681.195791][T17287]  wp_page_copy+0x322/0x1040
[ 2681.200403][T17287]  ? get_futex_key+0x55e/0xa10
[ 2681.205176][T17287]  ? __read_once_size+0x41/0xe0
[ 2681.210034][T17287]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2681.216297][T17287]  do_wp_page+0x192/0xeb0
[ 2681.220696][T17287]  __handle_mm_fault+0x1d16/0x2e00
[ 2681.225895][T17287]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2681.231974][T17287]  handle_mm_fault+0x21b/0x530
[ 2681.236811][T17287]  __do_page_fault+0x456/0x8d0
03:55:43 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:43 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, 0xffffffffffffffff, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:43 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x16e01054320}, 0x0, 0x0)

[ 2681.241583][T17287]  do_page_fault+0x38/0x194
[ 2681.246115][T17287]  page_fault+0x34/0x40
[ 2681.250274][T17287] RIP: 0033:0x41245c
[ 2681.254181][T17287] Code: 66 00 48 f7 d0 49 21 c5 4b 8d 8c 28 00 08 00 00 4c 89 ad 70 ff ff ff 48 21 c8 48 39 c3 0f 82 1b 04 00 00 be 01 00 00 00 31 c0 <f0> 0f b1 35 34 02 66 00 74 1a 48 8d 3d 2b 02 66 00 48 81 ec 80 00
[ 2681.274312][T17287] RSP: 002b:00007fffffab9c70 EFLAGS: 00010246
[ 2681.280458][T17287] RAX: 0000000000000000 RBX: 0000000000020000 RCX: 0000000000003a3f
[ 2681.288435][T17287] RDX: 0000000000001000 RSI: 0000000000000001 RDI: 00007fffffab9e28
[ 2681.296411][T17287] RBP: 00007fffffab9d50 R08: 000000000000223f R09: ffffffffffffffff
[ 2681.304391][T17287] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffffab9e40
[ 2681.312446][T17287] R13: 0000000000001000 R14: 0000000000000001 R15: 000000000075bfd4
[ 2681.436084][T17287] memory: usage 307200kB, limit 307200kB, failcnt 579
[ 2681.443032][T17287] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2681.518883][T17287] Memory cgroup stats for /syz1:
[ 2681.519107][T17287] anon 285745152
[ 2681.519107][T17287] file 81920
[ 2681.519107][T17287] kernel_stack 2617344
[ 2681.519107][T17287] slab 5197824
[ 2681.519107][T17287] sock 0
[ 2681.519107][T17287] shmem 28672
[ 2681.519107][T17287] file_mapped 0
[ 2681.519107][T17287] file_dirty 0
[ 2681.519107][T17287] file_writeback 0
[ 2681.519107][T17287] anon_thp 268435456
[ 2681.519107][T17287] inactive_anon 253952
[ 2681.519107][T17287] active_anon 285667328
[ 2681.519107][T17287] inactive_file 0
03:55:43 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2681.519107][T17287] active_file 81920
[ 2681.519107][T17287] unevictable 0
[ 2681.519107][T17287] slab_reclaimable 946176
[ 2681.519107][T17287] slab_unreclaimable 4251648
[ 2681.519107][T17287] pgfault 303567
[ 2681.519107][T17287] pgmajfault 0
[ 2681.519107][T17287] workingset_refault 0
[ 2681.519107][T17287] workingset_activate 0
[ 2681.519107][T17287] workingset_nodereclaim 0
[ 2681.519107][T17287] pgrefill 846
[ 2681.519107][T17287] pgscan 13121
[ 2681.519107][T17287] pgsteal 12402
[ 2681.660571][T17287] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=25469,uid=0
[ 2681.702538][T17287] Memory cgroup out of memory: Killed process 25469 (syz-executor.1) total-vm:72584kB, anon-rss:4248kB, file-rss:35836kB, shmem-rss:0kB, UID:0 pgtables:163840kB oom_score_adj:1000
[ 2681.745504][   T26] audit: type=1804 audit(2000001343.859:61096): pid=17415 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3758/bus" dev="sda1" ino=17074 res=1
[ 2681.807579][ T1069] oom_reaper: reaped process 25469 (syz-executor.1), now anon-rss:0kB, file-rss:34876kB, shmem-rss:0kB
[ 2681.951958][T17302] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2681.990863][T17302] CPU: 1 PID: 17302 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2681.999679][T17302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2682.009761][T17302] Call Trace:
[ 2682.013067][T17302]  dump_stack+0x11d/0x181
[ 2682.017501][T17302]  dump_header+0xaa/0x39c
[ 2682.021930][T17302]  oom_kill_process.cold+0x10/0x15
[ 2682.027145][T17302]  out_of_memory+0x231/0xa60
[ 2682.031748][T17302]  ? __rcu_read_unlock+0x66/0x3d0
[ 2682.036853][T17302]  mem_cgroup_out_of_memory+0x128/0x150
[ 2682.042507][T17302]  try_charge+0xb6c/0xbf0
[ 2682.046848][T17302]  ? rcu_note_context_switch+0x720/0x760
[ 2682.052563][T17302]  mem_cgroup_try_charge+0xd2/0x260
[ 2682.057789][T17302]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2682.063436][T17302]  wp_page_copy+0x322/0x1040
[ 2682.068928][T17302]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2682.074662][T17302]  do_wp_page+0x192/0xeb0
[ 2682.079076][T17302]  __handle_mm_fault+0x1d16/0x2e00
[ 2682.084216][T17302]  handle_mm_fault+0x21b/0x530
[ 2682.089000][T17302]  __do_page_fault+0x456/0x8d0
[ 2682.093830][T17302]  do_page_fault+0x38/0x194
[ 2682.098358][T17302]  page_fault+0x34/0x40
[ 2682.102532][T17302] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2682.109140][T17302] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2682.128878][T17302] RSP: 0018:ffffc90016bdf630 EFLAGS: 00010206
[ 2682.134971][T17302] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2682.144241][T17302] RDX: 0000000000001000 RSI: ffff88808ef00000 RDI: 0000000000990000
[ 2682.152853][T17302] RBP: ffffc90016bdf668 R08: ffff88809a6d6080 R09: 000088809a6d6bd0
[ 2682.160913][T17302] R10: 0000c90016bdf738 R11: 000088809a6d6bd7 R12: 0000000000990000
[ 2682.168895][T17302] R13: 0000000000991000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2682.176954][T17302]  ? copyout+0xa5/0xb0
[ 2682.181031][T17302]  copy_page_to_iter+0x252/0x8d0
[ 2682.186021][T17302]  ? bio_uncopy_user+0x187/0x2f0
[ 2682.190976][T17302]  bio_uncopy_user+0x253/0x2f0
[ 2682.195761][T17302]  __blk_rq_unmap_user+0x78/0x80
[ 2682.200781][T17302]  blk_rq_map_user_iov+0x319/0x420
[ 2682.205907][T17302]  blk_rq_map_user+0x90/0xd0
[ 2682.210534][T17302]  sg_common_write.isra.0+0xc64/0x12c0
[ 2682.216023][T17302]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2682.222309][T17302]  ? _copy_from_user+0x98/0xf0
[ 2682.227101][T17302]  sg_new_write.isra.0+0x2bd/0x520
[ 2682.232328][T17302]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2682.238589][T17302]  ? scsi_block_when_processing_errors+0x19f/0x1d0
[ 2682.245107][T17302]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2682.251362][T17302]  sg_write.part.0+0x73e/0x8c0
[ 2682.256223][T17302]  ? common_file_perm+0x66/0x490
[ 2682.261172][T17302]  ? common_file_perm+0x1d5/0x490
[ 2682.267868][T17302]  ? apparmor_file_permission+0x38/0x50
[ 2682.273471][T17302]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2682.279194][T17302]  ? iov_iter_advance+0x216/0x940
[ 2682.284255][T17302]  sg_write+0x65/0x88
[ 2682.288350][T17302]  do_iter_write+0x34b/0x3c0
[ 2682.292957][T17302]  vfs_writev+0x118/0x1c0
[ 2682.297322][T17302]  ? __fget_light+0xaf/0x190
[ 2682.302003][T17302]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2682.308252][T17302]  do_writev+0xe3/0x250
[ 2682.312504][T17302]  __x64_sys_writev+0x4e/0x60
[ 2682.317284][T17302]  do_syscall_64+0xcc/0x3a0
[ 2682.321801][T17302]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2682.327703][T17302] RIP: 0033:0x45b399
[ 2682.331628][T17302] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:55:44 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x1000000000000}, 0x0, 0x0)

03:55:44 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:44 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, 0xffffffffffffffff, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2682.351244][T17302] RSP: 002b:00007ffac9a53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2682.359665][T17302] RAX: ffffffffffffffda RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2682.367643][T17302] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000007
[ 2682.375617][T17302] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 2682.383721][T17302] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2682.391822][T17302] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bf2c
[ 2682.513392][T17302] memory: usage 307168kB, limit 307200kB, failcnt 1814
03:55:44 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c5698f9c2adfa04", 0xf0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2682.568835][T17302] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2682.712153][   T26] audit: type=1804 audit(2000001344.829:61097): pid=17431 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3759/bus" dev="sda1" ino=17074 res=1
03:55:44 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {0x0}], 0x2)

[ 2682.917403][T17302] Memory cgroup stats for /syz0:
[ 2682.923930][T17302] anon 286392320
[ 2682.923930][T17302] file 28672
[ 2682.923930][T17302] kernel_stack 2617344
[ 2682.923930][T17302] slab 5079040
[ 2682.923930][T17302] sock 81920
[ 2682.923930][T17302] shmem 8192
[ 2682.923930][T17302] file_mapped 0
[ 2682.923930][T17302] file_dirty 0
[ 2682.923930][T17302] file_writeback 0
[ 2682.923930][T17302] anon_thp 266338304
[ 2682.923930][T17302] inactive_anon 0
[ 2682.923930][T17302] active_anon 286392320
[ 2682.923930][T17302] inactive_file 4096
[ 2682.923930][T17302] active_file 49152
[ 2682.923930][T17302] unevictable 0
[ 2682.923930][T17302] slab_reclaimable 540672
[ 2682.923930][T17302] slab_unreclaimable 4538368
[ 2682.923930][T17302] pgfault 274263
[ 2682.923930][T17302] pgmajfault 0
[ 2682.923930][T17302] workingset_refault 0
[ 2682.923930][T17302] workingset_activate 0
[ 2682.923930][T17302] workingset_nodereclaim 0
[ 2682.923930][T17302] pgrefill 989
[ 2682.923930][T17302] pgscan 9160
[ 2682.923930][T17302] pgsteal 8360
[ 2683.026558][T17302] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17299,uid=0
[ 2683.065026][T17302] Memory cgroup out of memory: Killed process 17302 (syz-executor.0) total-vm:72716kB, anon-rss:4540kB, file-rss:35816kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2683.124832][ T1069] oom_reaper: reaped process 17302 (syz-executor.0), now anon-rss:0kB, file-rss:34856kB, shmem-rss:0kB
[ 2683.142730][T17422] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2683.208300][T17422] CPU: 0 PID: 17422 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2683.217012][T17422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2683.227069][T17422] Call Trace:
[ 2683.230441][T17422]  dump_stack+0x11d/0x181
[ 2683.234800][T17422]  dump_header+0xaa/0x39c
[ 2683.239154][T17422]  oom_kill_process.cold+0x10/0x15
[ 2683.244287][T17422]  out_of_memory+0x231/0xa60
[ 2683.248948][T17422]  mem_cgroup_out_of_memory+0x128/0x150
[ 2683.254516][T17422]  try_charge+0xb6c/0xbf0
[ 2683.258860][T17422]  ? apic_timer_interrupt+0xa/0x20
[ 2683.263980][T17422]  ? __rcu_read_unlock+0x66/0x3d0
[ 2683.269174][T17422]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2683.274654][T17422]  __memcg_kmem_charge+0xcf/0x1b0
[ 2683.279756][T17422]  __alloc_pages_nodemask+0x26c/0x310
[ 2683.285149][T17422]  alloc_pages_current+0xd1/0x170
[ 2683.290188][T17422]  __pmd_alloc+0x4b/0x2b0
[ 2683.294579][T17422]  copy_page_range+0x1529/0x19b0
[ 2683.299570][T17422]  ? __rcu_read_unlock+0x66/0x3d0
[ 2683.304633][T17422]  ? __write_once_size.constprop.0+0x20/0x20
[ 2683.310635][T17422]  ? vma_gap_callbacks_rotate+0x126/0x190
[ 2683.316427][T17422]  ? __rb_insert_augmented+0x11a/0x370
[ 2683.321904][T17422]  ? vm_get_page_prot+0x90/0x90
[ 2683.326821][T17422]  dup_mm+0x74a/0xba0
[ 2683.330887][T17422]  copy_process+0x3138/0x3c40
[ 2683.335592][T17422]  _do_fork+0xfe/0x7a0
[ 2683.339679][T17422]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2683.345586][T17422]  ? __read_once_size+0x5a/0xe0
[ 2683.350459][T17422]  __x64_sys_clone+0x130/0x170
[ 2683.355255][T17422]  do_syscall_64+0xcc/0x3a0
[ 2683.359859][T17422]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2683.365772][T17422] RIP: 0033:0x45b399
[ 2683.369829][T17422] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2683.389993][T17422] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2683.398504][T17422] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2683.406498][T17422] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2683.415000][T17422] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2683.423215][T17422] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2683.431205][T17422] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2683.541621][T17422] memory: usage 307200kB, limit 307200kB, failcnt 2469
[ 2683.549458][T17422] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2683.567686][T17422] Memory cgroup stats for /syz4:
[ 2683.573448][T17422] anon 279891968
[ 2683.573448][T17422] file 53248
[ 2683.573448][T17422] kernel_stack 3133440
[ 2683.573448][T17422] slab 6168576
[ 2683.573448][T17422] sock 8192
[ 2683.573448][T17422] shmem 0
[ 2683.573448][T17422] file_mapped 135168
[ 2683.573448][T17422] file_dirty 0
[ 2683.573448][T17422] file_writeback 0
[ 2683.573448][T17422] anon_thp 257949696
[ 2683.573448][T17422] inactive_anon 0
[ 2683.573448][T17422] active_anon 279891968
[ 2683.573448][T17422] inactive_file 28672
[ 2683.573448][T17422] active_file 61440
[ 2683.573448][T17422] unevictable 0
[ 2683.573448][T17422] slab_reclaimable 946176
[ 2683.573448][T17422] slab_unreclaimable 5222400
03:55:45 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x100000000000000}, 0x0, 0x0)

[ 2683.573448][T17422] pgfault 335973
[ 2683.573448][T17422] pgmajfault 0
[ 2683.573448][T17422] workingset_refault 0
[ 2683.573448][T17422] workingset_activate 0
[ 2683.573448][T17422] workingset_nodereclaim 0
[ 2683.573448][T17422] pgrefill 1374
[ 2683.573448][T17422] pgscan 17721
[ 2683.573448][T17422] pgsteal 16653
[ 2683.675736][    C0] net_ratelimit: 16 callbacks suppressed
[ 2683.675760][    C0] protocol 88fb is buggy, dev hsr_slave_0
03:55:45 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x6, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2683.676073][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2683.682000][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2683.687331][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2683.704589][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2683.710404][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2683.728696][T17422] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=17296,uid=0
[ 2683.884552][   T26] audit: type=1804 audit(2000001345.999:61098): pid=17546 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3760/bus" dev="sda1" ino=17074 res=1
03:55:46 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:46 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2684.005945][T17422] Memory cgroup out of memory: Killed process 17296 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
[ 2684.107161][ T1069] oom_reaper: reaped process 17296 (syz-executor.4), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
03:55:46 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)}], 0x2)

[ 2684.444289][T17557] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2684.475526][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2684.475561][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2684.481392][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2684.487094][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2684.536666][T17557] CPU: 1 PID: 17557 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0
[ 2684.545480][T17557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2684.556142][T17557] Call Trace:
[ 2684.559514][T17557]  dump_stack+0x11d/0x181
[ 2684.563864][T17557]  dump_header+0xaa/0x39c
[ 2684.568214][T17557]  oom_kill_process.cold+0x10/0x15
[ 2684.573409][T17557]  out_of_memory+0x231/0xa60
[ 2684.578013][T17557]  ? __rcu_read_unlock+0x66/0x3d0
[ 2684.583063][T17557]  mem_cgroup_out_of_memory+0x128/0x150
[ 2684.588631][T17557]  try_charge+0xb6c/0xbf0
[ 2684.592975][T17557]  ? __mod_lruvec_state+0xc0/0x1e0
[ 2684.598100][T17557]  ? __rcu_read_unlock+0x66/0x3d0
[ 2684.603138][T17557]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2684.608713][T17557]  __memcg_kmem_charge+0xcf/0x1b0
[ 2684.613747][T17557]  copy_process+0x11d2/0x3c40
[ 2684.618455][T17557]  ? record_times+0x16/0x90
[ 2684.623047][T17557]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2684.629128][T17557]  _do_fork+0xfe/0x7a0
[ 2684.633276][T17557]  ? cgroup_file_notify+0xff/0x130
[ 2684.638458][T17557]  ? blkcg_maybe_throttle_current+0x23d/0x580
[ 2684.644555][T17557]  __x64_sys_clone+0x130/0x170
[ 2684.649355][T17557]  do_syscall_64+0xcc/0x3a0
[ 2684.653935][T17557]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2684.659833][T17557] RIP: 0033:0x45dd69
[ 2684.663744][T17557] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 2684.683424][T17557] RSP: 002b:00007fffffab9c28 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2684.691953][T17557] RAX: ffffffffffffffda RBX: 00007f44cabca700 RCX: 000000000045dd69
[ 2684.699930][T17557] RDX: 00007f44cabca9d0 RSI: 00007f44cabc9db0 RDI: 00000000003d0f00
[ 2684.708096][T17557] RBP: 00007fffffab9e40 R08: 00007f44cabca700 R09: 00007f44cabca700
[ 2684.716075][T17557] R10: 00007f44cabca9d0 R11: 0000000000000202 R12: 0000000000000000
[ 2684.724051][T17557] R13: 00007fffffab9cdf R14: 00007f44cabca9c0 R15: 000000000075bf2c
03:55:46 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x200000000000000}, 0x0, 0x0)

03:55:46 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x6, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2684.805806][T17557] memory: usage 307200kB, limit 307200kB, failcnt 597
[ 2684.827972][T17557] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2684.878298][T17557] Memory cgroup stats for /syz1:
[ 2684.878449][T17557] anon 285806592
[ 2684.878449][T17557] file 81920
[ 2684.878449][T17557] kernel_stack 2617344
[ 2684.878449][T17557] slab 5197824
[ 2684.878449][T17557] sock 0
[ 2684.878449][T17557] shmem 28672
[ 2684.878449][T17557] file_mapped 0
[ 2684.878449][T17557] file_dirty 0
[ 2684.878449][T17557] file_writeback 0
[ 2684.878449][T17557] anon_thp 268435456
[ 2684.878449][T17557] inactive_anon 253952
[ 2684.878449][T17557] active_anon 285806592
[ 2684.878449][T17557] inactive_file 0
[ 2684.878449][T17557] active_file 81920
[ 2684.878449][T17557] unevictable 0
[ 2684.878449][T17557] slab_reclaimable 946176
[ 2684.878449][T17557] slab_unreclaimable 4251648
[ 2684.878449][T17557] pgfault 303732
[ 2684.878449][T17557] pgmajfault 0
[ 2684.878449][T17557] workingset_refault 0
[ 2684.878449][T17557] workingset_activate 0
[ 2684.878449][T17557] workingset_nodereclaim 0
[ 2684.878449][T17557] pgrefill 914
[ 2684.878449][T17557] pgscan 13188
[ 2684.878449][T17557] pgsteal 12402
[ 2684.981158][   T26] audit: type=1804 audit(2000001347.099:61099): pid=17677 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3761/bus" dev="sda1" ino=17081 res=1
03:55:47 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2685.403442][T17557] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=25362,uid=0
[ 2685.487199][T17557] Memory cgroup out of memory: Killed process 25362 (syz-executor.1) total-vm:72848kB, anon-rss:4264kB, file-rss:35808kB, shmem-rss:0kB, UID:0 pgtables:163840kB oom_score_adj:1000
03:55:47 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:47 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2685.761866][T17679] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
03:55:47 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x300000000000000}, 0x0, 0x0)

03:55:48 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x6, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2685.968746][T17679] CPU: 1 PID: 17679 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2685.977470][T17679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2685.987530][T17679] Call Trace:
[ 2685.990863][T17679]  dump_stack+0x11d/0x181
[ 2685.995208][T17679]  dump_header+0xaa/0x39c
[ 2685.999553][T17679]  oom_kill_process.cold+0x10/0x15
[ 2686.004688][T17679]  out_of_memory+0x231/0xa60
[ 2686.009405][T17679]  mem_cgroup_out_of_memory+0x128/0x150
[ 2686.015010][T17679]  try_charge+0xb6c/0xbf0
[ 2686.019357][T17679]  ? rcu_note_context_switch+0x720/0x760
[ 2686.025026][T17679]  mem_cgroup_try_charge+0xd2/0x260
[ 2686.030292][T17679]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2686.035929][T17679]  wp_page_copy+0x322/0x1040
[ 2686.040568][T17679]  ? __this_cpu_preempt_check+0x45/0x140
[ 2686.046240][T17679]  ? __read_once_size+0x41/0xe0
[ 2686.051103][T17679]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2686.057073][T17679]  do_wp_page+0x192/0xeb0
[ 2686.061436][T17679]  __handle_mm_fault+0x1d16/0x2e00
[ 2686.066564][T17679]  handle_mm_fault+0x21b/0x530
[ 2686.071394][T17679]  __do_page_fault+0x456/0x8d0
[ 2686.076174][T17679]  do_page_fault+0x38/0x194
[ 2686.080742][T17679]  page_fault+0x34/0x40
[ 2686.084899][T17679] RIP: 0033:0x416a23
[ 2686.088796][T17679] Code: e9 4c 89 e2 ff 74 24 48 4c 8b 4c 24 10 89 ee 4c 8b 44 24 18 48 89 df e8 cb f7 ff ff 66 2e 0f 1f 84 00 00 00 00 00 90 48 f7 d8 <64> 89 04 25 d4 ff ff ff 48 83 c8 ff c3 48 81 ec 98 00 00 00 31 ff
[ 2686.108502][T17679] RSP: 002b:00007ffd378c4078 EFLAGS: 00010213
[ 2686.114576][T17679] RAX: 000000000000006e RBX: 00000000000003e8 RCX: 000000000045b399
[ 2686.122588][T17679] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000075bf2c
[ 2686.130628][T17679] RBP: 000000000000002d R08: ffffffffffffffff R09: ffffffffffffffff
[ 2686.138609][T17679] R10: 00007ffd378c4150 R11: 0000000000000246 R12: 000000000075bf20
[ 2686.146588][T17679] R13: 000000000028fa38 R14: 000000000028fa65 R15: 000000000075bf2c
[ 2686.276482][   T26] audit: type=1804 audit(2000001348.399:61100): pid=17806 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3762/bus" dev="sda1" ino=17102 res=1
03:55:48 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)}], 0x2)

[ 2686.323672][T17679] memory: usage 307200kB, limit 307200kB, failcnt 2504
[ 2686.335386][T17679] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2686.343033][T17679] Memory cgroup stats for /syz4:
[ 2686.343370][T17679] anon 279801856
[ 2686.343370][T17679] file 53248
[ 2686.343370][T17679] kernel_stack 3133440
[ 2686.343370][T17679] slab 6168576
[ 2686.343370][T17679] sock 8192
[ 2686.343370][T17679] shmem 0
[ 2686.343370][T17679] file_mapped 135168
[ 2686.343370][T17679] file_dirty 0
[ 2686.343370][T17679] file_writeback 0
[ 2686.343370][T17679] anon_thp 257949696
[ 2686.343370][T17679] inactive_anon 0
[ 2686.343370][T17679] active_anon 279801856
[ 2686.343370][T17679] inactive_file 28672
[ 2686.343370][T17679] active_file 61440
[ 2686.343370][T17679] unevictable 0
[ 2686.343370][T17679] slab_reclaimable 946176
[ 2686.343370][T17679] slab_unreclaimable 5222400
[ 2686.343370][T17679] pgfault 336336
[ 2686.343370][T17679] pgmajfault 0
[ 2686.343370][T17679] workingset_refault 0
[ 2686.343370][T17679] workingset_activate 0
[ 2686.343370][T17679] workingset_nodereclaim 0
[ 2686.343370][T17679] pgrefill 1374
[ 2686.343370][T17679] pgscan 17721
[ 2686.343370][T17679] pgsteal 16653
[ 2686.442355][T17679] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=17552,uid=0
[ 2686.462731][T17679] Memory cgroup out of memory: Killed process 17552 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
[ 2686.518995][ T1069] oom_reaper: reaped process 17552 (syz-executor.4), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 2686.525405][T17689] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2686.678044][T17689] CPU: 1 PID: 17689 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2686.686852][T17689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2686.696905][T17689] Call Trace:
[ 2686.700204][T17689]  dump_stack+0x11d/0x181
[ 2686.704543][T17689]  dump_header+0xaa/0x39c
[ 2686.709318][T17689]  oom_kill_process.cold+0x10/0x15
[ 2686.714464][T17689]  out_of_memory+0x231/0xa60
[ 2686.719158][T17689]  mem_cgroup_out_of_memory+0x128/0x150
[ 2686.724770][T17689]  try_charge+0x800/0xbf0
[ 2686.729171][T17689]  ? __rcu_read_unlock+0x66/0x3d0
[ 2686.734201][T17689]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2686.739663][T17689]  __memcg_kmem_charge+0xcf/0x1b0
[ 2686.744696][T17689]  __alloc_pages_nodemask+0x26c/0x310
[ 2686.750099][T17689]  alloc_pages_current+0xd1/0x170
[ 2686.755125][T17689]  pte_alloc_one+0x18/0x50
[ 2686.759611][T17689]  __handle_mm_fault+0x2be6/0x2e00
[ 2686.764834][T17689]  handle_mm_fault+0x21b/0x530
[ 2686.770305][T17689]  __do_page_fault+0x456/0x8d0
[ 2686.775120][T17689]  do_page_fault+0x38/0x194
[ 2686.779672][T17689]  page_fault+0x34/0x40
[ 2686.783832][T17689] RIP: 0033:0x45b399
[ 2686.787735][T17689] Code: Bad RIP value.
[ 2686.791803][T17689] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00010246
[ 2686.797874][T17689] RAX: 0000000000000000 RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2686.805889][T17689] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2686.813872][T17689] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
03:55:48 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2686.822087][T17689] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2686.830214][T17689] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2686.855937][T17689] memory: usage 304924kB, limit 307200kB, failcnt 2505
[ 2686.863435][T17689] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2686.871031][T17689] Memory cgroup stats for /syz4:
[ 2686.892420][T17689] anon 277749760
[ 2686.892420][T17689] file 53248
[ 2686.892420][T17689] kernel_stack 3133440
[ 2686.892420][T17689] slab 6168576
[ 2686.892420][T17689] sock 8192
[ 2686.892420][T17689] shmem 0
[ 2686.892420][T17689] file_mapped 135168
[ 2686.892420][T17689] file_dirty 0
[ 2686.892420][T17689] file_writeback 0
[ 2686.892420][T17689] anon_thp 255852544
[ 2686.892420][T17689] inactive_anon 0
[ 2686.892420][T17689] active_anon 277749760
[ 2686.892420][T17689] inactive_file 28672
[ 2686.892420][T17689] active_file 61440
[ 2686.892420][T17689] unevictable 0
[ 2686.892420][T17689] slab_reclaimable 946176
[ 2686.892420][T17689] slab_unreclaimable 5222400
[ 2686.892420][T17689] pgfault 336336
[ 2686.892420][T17689] pgmajfault 0
[ 2686.892420][T17689] workingset_refault 0
[ 2686.892420][T17689] workingset_activate 0
[ 2686.892420][T17689] workingset_nodereclaim 0
[ 2686.892420][T17689] pgrefill 1374
[ 2686.892420][T17689] pgscan 17721
[ 2686.892420][T17689] pgsteal 16653
03:55:49 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x400000000000000}, 0x0, 0x0)

[ 2687.019510][T17689] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=16493,uid=0
03:55:49 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {0x0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:49 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)}], 0x2)

[ 2687.379560][T17689] Memory cgroup out of memory: Killed process 16493 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
[ 2687.420515][   T26] audit: type=1804 audit(2000001349.539:61101): pid=17922 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3763/bus" dev="sda1" ino=17102 res=1
[ 2687.488623][ T1069] oom_reaper: reaped process 16493 (syz-executor.4), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 2687.503401][T17685] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2687.535739][T17685] CPU: 0 PID: 17685 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2687.544454][T17685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2687.554536][T17685] Call Trace:
[ 2687.557839][T17685]  dump_stack+0x11d/0x181
[ 2687.562237][T17685]  dump_header+0xaa/0x39c
[ 2687.566584][T17685]  oom_kill_process.cold+0x10/0x15
[ 2687.571737][T17685]  out_of_memory+0x231/0xa60
[ 2687.576350][T17685]  mem_cgroup_out_of_memory+0x128/0x150
[ 2687.582085][T17685]  try_charge+0xb6c/0xbf0
[ 2687.586477][T17685]  ? rcu_note_context_switch+0x720/0x760
[ 2687.592132][T17685]  mem_cgroup_try_charge+0xd2/0x260
[ 2687.597431][T17685]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2687.603120][T17685]  __handle_mm_fault+0x197f/0x2e00
[ 2687.608268][T17685]  handle_mm_fault+0x21b/0x530
[ 2687.613086][T17685]  __do_page_fault+0x456/0x8d0
[ 2687.617865][T17685]  do_page_fault+0x38/0x194
[ 2687.622514][T17685]  page_fault+0x34/0x40
[ 2687.626671][T17685] RIP: 0033:0x45dd4d
[ 2687.630586][T17685] Code: 5b 5d f3 c3 66 0f 1f 84 00 00 00 00 00 48 c7 c0 ea ff ff ff 48 85 ff 0f 84 e0 8c fb ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 <48> 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8
[ 2687.650209][T17685] RSP: 002b:00007ffdda484758 EFLAGS: 00010202
[ 2687.656286][T17685] RAX: ffffffffffffffea RBX: 00007ffac9a33700 RCX: 00007ffac9a33700
[ 2687.664292][T17685] RDX: 00000000003d0f00 RSI: 00007ffac9a32db0 RDI: 0000000000411f80
[ 2687.672336][T17685] RBP: 00007ffdda484970 R08: 00007ffac9a339d0 R09: 00007ffac9a33700
[ 2687.680387][T17685] R10: 00007ffac9a32dc0 R11: 0000000000000246 R12: 0000000000000000
[ 2687.688445][T17685] R13: 00007ffdda48480f R14: 00007ffac9a339c0 R15: 000000000075bfd4
[ 2687.787974][T17685] memory: usage 307200kB, limit 307200kB, failcnt 2052
[ 2687.846524][T17685] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2687.884184][T17685] Memory cgroup stats for /syz0:
[ 2687.884336][T17685] anon 286142464
[ 2687.884336][T17685] file 28672
[ 2687.884336][T17685] kernel_stack 2654208
[ 2687.884336][T17685] slab 5079040
[ 2687.884336][T17685] sock 81920
[ 2687.884336][T17685] shmem 8192
[ 2687.884336][T17685] file_mapped 0
[ 2687.884336][T17685] file_dirty 0
[ 2687.884336][T17685] file_writeback 0
[ 2687.884336][T17685] anon_thp 266338304
[ 2687.884336][T17685] inactive_anon 0
[ 2687.884336][T17685] active_anon 286142464
[ 2687.884336][T17685] inactive_file 4096
[ 2687.884336][T17685] active_file 49152
[ 2687.884336][T17685] unevictable 0
[ 2687.884336][T17685] slab_reclaimable 540672
03:55:50 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2687.884336][T17685] slab_unreclaimable 4538368
[ 2687.884336][T17685] pgfault 274692
[ 2687.884336][T17685] pgmajfault 0
[ 2687.884336][T17685] workingset_refault 0
[ 2687.884336][T17685] workingset_activate 0
[ 2687.884336][T17685] workingset_nodereclaim 0
[ 2687.884336][T17685] pgrefill 1123
[ 2687.884336][T17685] pgscan 9294
[ 2687.884336][T17685] pgsteal 8360
03:55:50 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x500000000000000}, 0x0, 0x0)

[ 2688.034802][T17685] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17620,uid=0
[ 2688.195008][T17685] Memory cgroup out of memory: Killed process 17620 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2688.276876][T17805] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2688.325335][T17805] CPU: 1 PID: 17805 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2688.334050][T17805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2688.344105][T17805] Call Trace:
[ 2688.347410][T17805]  dump_stack+0x11d/0x181
[ 2688.351801][T17805]  dump_header+0xaa/0x39c
[ 2688.356148][T17805]  oom_kill_process.cold+0x10/0x15
[ 2688.361295][T17805]  out_of_memory+0x231/0xa60
[ 2688.365941][T17805]  mem_cgroup_out_of_memory+0x128/0x150
[ 2688.371571][T17805]  try_charge+0x800/0xbf0
[ 2688.375923][T17805]  ? __rcu_read_unlock+0x66/0x3d0
[ 2688.380964][T17805]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2688.386441][T17805]  __memcg_kmem_charge+0xcf/0x1b0
[ 2688.391541][T17805]  __alloc_pages_nodemask+0x26c/0x310
[ 2688.397024][T17805]  alloc_pages_current+0xd1/0x170
[ 2688.402204][T17805]  pte_alloc_one+0x18/0x50
[ 2688.406700][T17805]  __handle_mm_fault+0x2be6/0x2e00
[ 2688.411852][T17805]  handle_mm_fault+0x21b/0x530
[ 2688.416634][T17805]  __do_page_fault+0x456/0x8d0
[ 2688.421683][T17805]  do_page_fault+0x38/0x194
[ 2688.426204][T17805]  page_fault+0x34/0x40
[ 2688.430366][T17805] RIP: 0033:0x45b399
[ 2688.434265][T17805] Code: Bad RIP value.
[ 2688.438358][T17805] RSP: 002b:00007ffac9a53c78 EFLAGS: 00010246
[ 2688.444427][T17805] RAX: 0000000000000000 RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2688.452399][T17805] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2688.460386][T17805] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2688.468460][T17805] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2688.476435][T17805] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2688.528647][T17805] memory: usage 305248kB, limit 307200kB, failcnt 2054
[ 2688.539250][T17805] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2688.546880][T17805] Memory cgroup stats for /syz0:
[ 2688.547055][T17805] anon 284098560
[ 2688.547055][T17805] file 28672
[ 2688.547055][T17805] kernel_stack 2654208
[ 2688.547055][T17805] slab 5079040
[ 2688.547055][T17805] sock 81920
[ 2688.547055][T17805] shmem 8192
[ 2688.547055][T17805] file_mapped 0
[ 2688.547055][T17805] file_dirty 0
[ 2688.547055][T17805] file_writeback 0
[ 2688.547055][T17805] anon_thp 264241152
[ 2688.547055][T17805] inactive_anon 0
[ 2688.547055][T17805] active_anon 284098560
[ 2688.547055][T17805] inactive_file 4096
[ 2688.547055][T17805] active_file 49152
[ 2688.547055][T17805] unevictable 0
[ 2688.547055][T17805] slab_reclaimable 540672
[ 2688.547055][T17805] slab_unreclaimable 4538368
[ 2688.547055][T17805] pgfault 274890
[ 2688.547055][T17805] pgmajfault 0
[ 2688.547055][T17805] workingset_refault 0
[ 2688.547055][T17805] workingset_activate 0
[ 2688.547055][T17805] workingset_nodereclaim 0
[ 2688.547055][T17805] pgrefill 1123
[ 2688.547055][T17805] pgscan 9294
[ 2688.547055][T17805] pgsteal 8360
[ 2688.682303][T17805] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17411,uid=0
[ 2688.701713][T17805] Memory cgroup out of memory: Killed process 17411 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2688.773422][T17686] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2688.789197][T17686] CPU: 1 PID: 17686 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2688.797998][T17686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2688.808054][T17686] Call Trace:
[ 2688.811364][T17686]  dump_stack+0x11d/0x181
[ 2688.815708][T17686]  dump_header+0xaa/0x39c
[ 2688.820070][T17686]  oom_kill_process.cold+0x10/0x15
[ 2688.825269][T17686]  out_of_memory+0x231/0xa60
[ 2688.829998][T17686]  mem_cgroup_out_of_memory+0x128/0x150
[ 2688.835562][T17686]  try_charge+0x800/0xbf0
[ 2688.840044][T17686]  ? rcu_note_context_switch+0x720/0x760
[ 2688.845697][T17686]  mem_cgroup_try_charge+0xd2/0x260
[ 2688.850923][T17686]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2688.856572][T17686]  wp_page_copy+0x322/0x1040
[ 2688.861266][T17686]  ? preempt_schedule+0x30/0x40
[ 2688.866172][T17686]  ? ___preempt_schedule+0x16/0x18
[ 2688.871297][T17686]  do_wp_page+0x192/0xeb0
[ 2688.875632][T17686]  ? record_times+0x16/0x90
[ 2688.880237][T17686]  __handle_mm_fault+0x1d16/0x2e00
[ 2688.885378][T17686]  handle_mm_fault+0x21b/0x530
[ 2688.890184][T17686]  __do_page_fault+0x456/0x8d0
[ 2688.894970][T17686]  do_page_fault+0x38/0x194
[ 2688.899487][T17686]  page_fault+0x34/0x40
[ 2688.903677][T17686] RIP: 0033:0x403f80
[ 2688.907589][T17686] Code: 80 3d fb e6 66 00 00 c6 85 84 00 00 00 00 74 0f 8b 05 e8 e6 66 00 39 45 24 0f 84 46 02 00 00 44 8b a5 80 00 00 00 48 8b 5d 78 <e8> fb e6 ff ff 48 2b 05 84 40 33 00 8b 75 00 4c 89 f1 45 89 e1 49
[ 2688.927201][T17686] RSP: 002b:00007ffac9a53c90 EFLAGS: 00010246
[ 2688.933276][T17686] RAX: 00007ffacba55000 RBX: 000000000000273d RCX: 0000000000000000
[ 2688.941255][T17686] RDX: 000000000003ffff RSI: 0000000000403ecc RDI: 0000000000000000
[ 2688.949239][T17686] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2688.957237][T17686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
03:55:51 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2688.966662][T17686] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2688.986191][T17686] memory: usage 303296kB, limit 307200kB, failcnt 2054
[ 2688.999916][T17686] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2689.011350][T17686] Memory cgroup stats for /syz0:
[ 2689.025418][T17686] anon 282341376
[ 2689.025418][T17686] file 28672
[ 2689.025418][T17686] kernel_stack 2617344
[ 2689.025418][T17686] slab 5079040
[ 2689.025418][T17686] sock 81920
[ 2689.025418][T17686] shmem 8192
[ 2689.025418][T17686] file_mapped 0
[ 2689.025418][T17686] file_dirty 0
[ 2689.025418][T17686] file_writeback 0
[ 2689.025418][T17686] anon_thp 262144000
[ 2689.025418][T17686] inactive_anon 0
[ 2689.025418][T17686] active_anon 282341376
[ 2689.025418][T17686] inactive_file 4096
[ 2689.025418][T17686] active_file 49152
[ 2689.025418][T17686] unevictable 0
[ 2689.025418][T17686] slab_reclaimable 540672
[ 2689.025418][T17686] slab_unreclaimable 4538368
[ 2689.025418][T17686] pgfault 274989
[ 2689.025418][T17686] pgmajfault 0
[ 2689.025418][T17686] workingset_refault 0
[ 2689.025418][T17686] workingset_activate 0
[ 2689.025418][T17686] workingset_nodereclaim 0
[ 2689.025418][T17686] pgrefill 1123
[ 2689.025418][T17686] pgscan 9294
[ 2689.025418][T17686] pgsteal 8360
[ 2689.126934][T17686] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17685,uid=0
[ 2689.143607][T17686] Memory cgroup out of memory: Killed process 17686 (syz-executor.0) total-vm:72716kB, anon-rss:2732kB, file-rss:35804kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2689.208440][ T1069] oom_reaper: reaped process 17686 (syz-executor.0), now anon-rss:0kB, file-rss:34844kB, shmem-rss:0kB
03:55:51 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x0, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:51 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff77000000000020000000", 0x12}], 0x2)

03:55:51 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {0x0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:51 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:51 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x600000000000000}, 0x0, 0x0)

[ 2689.496156][T18038] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2689.550134][   T26] audit: type=1804 audit(2000001351.669:61102): pid=18049 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3764/bus" dev="sda1" ino=17114 res=1
[ 2689.569776][T18038] CPU: 1 PID: 18038 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2689.583704][T18038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2689.593819][T18038] Call Trace:
[ 2689.597120][T18038]  dump_stack+0x11d/0x181
[ 2689.601463][T18038]  dump_header+0xaa/0x39c
[ 2689.605819][T18038]  oom_kill_process.cold+0x10/0x15
[ 2689.610961][T18038]  out_of_memory+0x231/0xa60
[ 2689.615591][T18038]  mem_cgroup_out_of_memory+0x128/0x150
[ 2689.621388][T18038]  try_charge+0xb6c/0xbf0
[ 2689.625945][T18038]  ? rcu_note_context_switch+0x720/0x760
[ 2689.631605][T18038]  mem_cgroup_try_charge+0xd2/0x260
[ 2689.636825][T18038]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2689.642480][T18038]  wp_page_copy+0x322/0x1040
[ 2689.647092][T18038]  ? do_wp_page+0x1f5/0xeb0
[ 2689.651612][T18038]  ? __tsan_read8+0xd1/0x100
[ 2689.656294][T18038]  do_wp_page+0x192/0xeb0
[ 2689.660636][T18038]  ? __handle_mm_fault+0xc6f/0x2e00
[ 2689.665949][T18038]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2689.671858][T18038]  __handle_mm_fault+0x1d16/0x2e00
[ 2689.677000][T18038]  handle_mm_fault+0x21b/0x530
[ 2689.681878][T18038]  __do_page_fault+0x456/0x8d0
[ 2689.686652][T18038]  do_page_fault+0x38/0x194
[ 2689.691168][T18038]  page_fault+0x34/0x40
[ 2689.695425][T18038] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2689.702028][T18038] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2689.721679][T18038] RSP: 0018:ffffc90016f3f630 EFLAGS: 00010206
[ 2689.727756][T18038] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2689.736440][T18038] RDX: 0000000000001000 RSI: ffff888089278000 RDI: 0000000000980000
[ 2689.744504][T18038] RBP: ffffc90016f3f668 R08: ffff88808edc0000 R09: 000088808edc0b50
[ 2689.752486][T18038] R10: 0000c90016f3f738 R11: 000088808edc0b57 R12: 0000000000980000
[ 2689.760463][T18038] R13: 0000000000981000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2689.768462][T18038]  ? copyout+0xa5/0xb0
[ 2689.772544][T18038]  copy_page_to_iter+0x252/0x8d0
[ 2689.777504][T18038]  bio_uncopy_user+0x253/0x2f0
[ 2689.782400][T18038]  __blk_rq_unmap_user+0x78/0x80
[ 2689.787347][T18038]  blk_rq_map_user_iov+0x319/0x420
[ 2689.792505][T18038]  blk_rq_map_user+0x90/0xd0
[ 2689.797115][T18038]  sg_common_write.isra.0+0xc64/0x12c0
[ 2689.802649][T18038]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2689.808897][T18038]  ? _copy_from_user+0x98/0xf0
[ 2689.813745][T18038]  sg_new_write.isra.0+0x2bd/0x520
[ 2689.818924][T18038]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2689.825189][T18038]  ? scsi_block_when_processing_errors+0x19f/0x1d0
[ 2689.831717][T18038]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2689.837978][T18038]  sg_write.part.0+0x73e/0x8c0
[ 2689.842790][T18038]  ? common_file_perm+0x1d5/0x490
[ 2689.847831][T18038]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2689.854382][T18038]  ? check_stack_object+0xda/0x110
[ 2689.859516][T18038]  ? apparmor_file_permission+0x38/0x50
[ 2689.865085][T18038]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2689.870853][T18038]  ? iov_iter_advance+0x216/0x940
[ 2689.875916][T18038]  sg_write+0x65/0x88
[ 2689.879910][T18038]  do_iter_write+0x34b/0x3c0
[ 2689.884517][T18038]  vfs_writev+0x118/0x1c0
[ 2689.888916][T18038]  ? __fget_light+0xaf/0x190
[ 2689.893586][T18038]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2689.899934][T18038]  do_writev+0xe3/0x250
[ 2689.904113][T18038]  __x64_sys_writev+0x4e/0x60
[ 2689.908800][T18038]  do_syscall_64+0xcc/0x3a0
[ 2689.913459][T18038]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2689.915841][    C0] net_ratelimit: 26 callbacks suppressed
[ 2689.915868][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2689.919378][T18038] RIP: 0033:0x45b399
[ 2689.919470][T18038] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2689.919489][T18038] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2689.925652][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2689.930822][T18038] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2689.930833][T18038] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000008
[ 2689.930856][T18038] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 2689.992494][T18038] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2690.000479][T18038] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bf2c
[ 2690.009201][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2690.015696][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2690.022309][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2690.028947][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2690.095763][T18038] memory: usage 307200kB, limit 307200kB, failcnt 2539
[ 2690.148508][T18038] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2690.244278][T18038] Memory cgroup stats for /syz4:
[ 2690.255210][T18038] anon 280174592
[ 2690.255210][T18038] file 53248
[ 2690.255210][T18038] kernel_stack 3133440
[ 2690.255210][T18038] slab 6168576
[ 2690.255210][T18038] sock 8192
[ 2690.255210][T18038] shmem 0
[ 2690.255210][T18038] file_mapped 135168
[ 2690.255210][T18038] file_dirty 0
[ 2690.255210][T18038] file_writeback 0
[ 2690.255210][T18038] anon_thp 257949696
[ 2690.255210][T18038] inactive_anon 0
[ 2690.255210][T18038] active_anon 280092672
[ 2690.255210][T18038] inactive_file 28672
[ 2690.255210][T18038] active_file 61440
[ 2690.255210][T18038] unevictable 0
[ 2690.255210][T18038] slab_reclaimable 946176
[ 2690.255210][T18038] slab_unreclaimable 5222400
[ 2690.255210][T18038] pgfault 336666
[ 2690.255210][T18038] pgmajfault 0
[ 2690.255210][T18038] workingset_refault 0
[ 2690.255210][T18038] workingset_activate 0
[ 2690.255210][T18038] workingset_nodereclaim 0
[ 2690.255210][T18038] pgrefill 1374
[ 2690.255210][T18038] pgscan 17721
[ 2690.255210][T18038] pgsteal 16653
03:55:52 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff77000000000020000000", 0x12}], 0x2)

03:55:52 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x700000000000000}, 0x0, 0x0)

03:55:52 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {0x0}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2690.446119][T18038] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=18037,uid=0
[ 2690.612156][T18038] Memory cgroup out of memory: Killed process 18038 (syz-executor.4) total-vm:72716kB, anon-rss:4536kB, file-rss:35812kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000
[ 2690.661729][   T26] audit: type=1804 audit(2000001352.779:61103): pid=18163 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3765/bus" dev="sda1" ino=17118 res=1
[ 2690.715544][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2690.715694][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2690.721381][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2690.727453][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2690.809121][ T1069] oom_reaper: reaped process 18038 (syz-executor.4), now anon-rss:0kB, file-rss:34852kB, shmem-rss:0kB
[ 2690.826123][T18054] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2690.836636][T18054] CPU: 0 PID: 18054 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2690.845408][T18054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2690.855461][T18054] Call Trace:
[ 2690.858765][T18054]  dump_stack+0x11d/0x181
[ 2690.863116][T18054]  dump_header+0xaa/0x39c
[ 2690.867546][T18054]  oom_kill_process.cold+0x10/0x15
[ 2690.872674][T18054]  out_of_memory+0x231/0xa60
[ 2690.877288][T18054]  mem_cgroup_out_of_memory+0x128/0x150
[ 2690.882847][T18054]  try_charge+0xb6c/0xbf0
[ 2690.887206][T18054]  ? rcu_note_context_switch+0x720/0x760
[ 2690.892856][T18054]  mem_cgroup_try_charge+0xd2/0x260
[ 2690.898124][T18054]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2690.903776][T18054]  wp_page_copy+0x322/0x1040
[ 2690.908378][T18054]  ? apic_timer_interrupt+0xa/0x20
[ 2690.913538][T18054]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2690.919303][T18054]  do_wp_page+0x192/0xeb0
[ 2690.923641][T18054]  ? __sanitizer_cov_trace_pc+0x14/0x50
[ 2690.929203][T18054]  __handle_mm_fault+0x1d16/0x2e00
[ 2690.934342][T18054]  handle_mm_fault+0x21b/0x530
[ 2690.939148][T18054]  __do_page_fault+0x456/0x8d0
[ 2690.943999][T18054]  do_page_fault+0x38/0x194
[ 2690.948592][T18054]  page_fault+0x34/0x40
[ 2690.952766][T18054] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2690.959394][T18054] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2690.979003][T18054] RSP: 0018:ffffc90017003630 EFLAGS: 00010206
[ 2690.985075][T18054] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2690.993053][T18054] RDX: 0000000000001000 RSI: ffff88809150a000 RDI: 00000000009c2000
[ 2691.001217][T18054] RBP: ffffc90017003668 R08: ffff88808ecbb0c0 R09: 000088808ecbbc10
[ 2691.009194][T18054] R10: 0000c90017003738 R11: 000088808ecbbc17 R12: 00000000009c2000
[ 2691.017166][T18054] R13: 00000000009c3000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2691.025167][T18054]  ? copyout+0xa5/0xb0
[ 2691.029294][T18054]  copy_page_to_iter+0x252/0x8d0
[ 2691.034273][T18054]  ? copy_page_to_iter+0x343/0x8d0
[ 2691.039407][T18054]  bio_uncopy_user+0x253/0x2f0
[ 2691.044248][T18054]  __blk_rq_unmap_user+0x78/0x80
[ 2691.049252][T18054]  blk_rq_map_user_iov+0x30b/0x420
[ 2691.054531][T18054]  blk_rq_map_user+0x90/0xd0
[ 2691.059142][T18054]  sg_common_write.isra.0+0xc64/0x12c0
[ 2691.064633][T18054]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2691.070927][T18054]  ? _copy_from_user+0x98/0xf0
[ 2691.075710][T18054]  sg_new_write.isra.0+0x2bd/0x520
[ 2691.080892][T18054]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2691.087151][T18054]  ? scsi_block_when_processing_errors+0x19f/0x1d0
[ 2691.093716][T18054]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2691.099958][T18054]  sg_write.part.0+0x73e/0x8c0
[ 2691.104819][T18054]  ? common_file_perm+0x1d5/0x490
[ 2691.109856][T18054]  ? apic_timer_interrupt+0xa/0x20
[ 2691.114984][T18054]  sg_write+0x65/0x88
[ 2691.119110][T18054]  do_iter_write+0x34b/0x3c0
[ 2691.123724][T18054]  vfs_writev+0x118/0x1c0
[ 2691.128121][T18054]  ? __fget_light+0xaf/0x190
[ 2691.132731][T18054]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2691.138980][T18054]  do_writev+0xe3/0x250
[ 2691.143156][T18054]  __x64_sys_writev+0x4e/0x60
[ 2691.147843][T18054]  do_syscall_64+0xcc/0x3a0
[ 2691.152400][T18054]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2691.158297][T18054] RIP: 0033:0x45b399
[ 2691.162636][T18054] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2691.182249][T18054] RSP: 002b:00007ffac9a53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2691.190758][T18054] RAX: ffffffffffffffda RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2691.198775][T18054] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000006
03:55:53 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:53 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2691.206800][T18054] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 2691.214780][T18054] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2691.222807][T18054] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bf2c
[ 2691.238162][T18054] memory: usage 307200kB, limit 307200kB, failcnt 2068
[ 2691.250859][T18054] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2691.277718][T18054] Memory cgroup stats for /syz0:
[ 2691.284111][T18054] anon 286273536
[ 2691.284111][T18054] file 28672
[ 2691.284111][T18054] kernel_stack 2691072
[ 2691.284111][T18054] slab 5079040
[ 2691.284111][T18054] sock 81920
[ 2691.284111][T18054] shmem 8192
[ 2691.284111][T18054] file_mapped 0
[ 2691.284111][T18054] file_dirty 0
[ 2691.284111][T18054] file_writeback 0
[ 2691.284111][T18054] anon_thp 266338304
[ 2691.284111][T18054] inactive_anon 0
[ 2691.284111][T18054] active_anon 286273536
[ 2691.284111][T18054] inactive_file 4096
03:55:53 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff77000000000020000000", 0x12}], 0x2)

[ 2691.284111][T18054] active_file 49152
[ 2691.284111][T18054] unevictable 0
[ 2691.284111][T18054] slab_reclaimable 540672
[ 2691.284111][T18054] slab_unreclaimable 4538368
[ 2691.284111][T18054] pgfault 275253
[ 2691.284111][T18054] pgmajfault 0
[ 2691.284111][T18054] workingset_refault 0
[ 2691.284111][T18054] workingset_activate 0
[ 2691.284111][T18054] workingset_nodereclaim 0
[ 2691.284111][T18054] pgrefill 1156
[ 2691.284111][T18054] pgscan 9327
[ 2691.284111][T18054] pgsteal 8360
03:55:53 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x800000000000000}, 0x0, 0x0)

[ 2691.535971][T18054] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=18051,uid=0
[ 2691.557287][T18054] Memory cgroup out of memory: Killed process 18054 (syz-executor.0) total-vm:72716kB, anon-rss:2232kB, file-rss:35816kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2691.606033][ T1069] oom_reaper: reaped process 18054 (syz-executor.0), now anon-rss:0kB, file-rss:34856kB, shmem-rss:0kB
[ 2691.713778][T18169] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2691.753558][T18169] CPU: 1 PID: 18169 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2691.762277][T18169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2691.772345][T18169] Call Trace:
[ 2691.775651][T18169]  dump_stack+0x11d/0x181
[ 2691.780054][T18169]  dump_header+0xaa/0x39c
[ 2691.784398][T18169]  oom_kill_process.cold+0x10/0x15
[ 2691.789532][T18169]  out_of_memory+0x231/0xa60
[ 2691.794271][T18169]  ? __rcu_read_unlock+0x66/0x3d0
[ 2691.799403][T18169]  mem_cgroup_out_of_memory+0x128/0x150
[ 2691.805012][T18169]  try_charge+0xb6c/0xbf0
[ 2691.809360][T18169]  ? rcu_note_context_switch+0x720/0x760
[ 2691.815112][T18169]  mem_cgroup_try_charge+0xd2/0x260
[ 2691.820335][T18169]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2691.825979][T18169]  wp_page_copy+0x322/0x1040
[ 2691.830582][T18169]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2691.836843][T18169]  ? apic_timer_interrupt+0xa/0x20
[ 2691.842004][T18169]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2691.847786][T18169]  do_wp_page+0x192/0xeb0
[ 2691.852117][T18169]  ? pmd_val+0x17/0x60
[ 2691.856196][T18169]  ? __tsan_read8+0x8a/0x100
[ 2691.860880][T18169]  __handle_mm_fault+0x1d16/0x2e00
[ 2691.866019][T18169]  handle_mm_fault+0x21b/0x530
[ 2691.870840][T18169]  __do_page_fault+0x456/0x8d0
[ 2691.875621][T18169]  do_page_fault+0x38/0x194
[ 2691.880180][T18169]  page_fault+0x34/0x40
[ 2691.884346][T18169] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2691.890945][T18169] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2691.911034][T18169] RSP: 0018:ffffc90016ff3630 EFLAGS: 00010206
[ 2691.917104][T18169] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2691.925076][T18169] RDX: 0000000000001000 RSI: ffff88809148d000 RDI: 00000000009bd000
[ 2691.933088][T18169] RBP: ffffc90016ff3668 R08: ffff88808e12c000 R09: 000088808e12cb50
[ 2691.941249][T18169] R10: 0000c90016ff3738 R11: 000088808e12cb57 R12: 00000000009bd000
[ 2691.949234][T18169] R13: 00000000009be000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2691.957340][T18169]  ? copyout+0xa5/0xb0
[ 2691.961508][T18169]  copy_page_to_iter+0x252/0x8d0
[ 2691.966577][T18169]  bio_uncopy_user+0x253/0x2f0
[ 2691.971367][T18169]  __blk_rq_unmap_user+0x78/0x80
[ 2691.976314][T18169]  blk_rq_map_user_iov+0x30b/0x420
[ 2691.981487][T18169]  blk_rq_map_user+0x90/0xd0
[ 2691.986095][T18169]  sg_common_write.isra.0+0xc64/0x12c0
[ 2691.991624][T18169]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2691.998068][T18169]  ? _copy_from_user+0x98/0xf0
[ 2692.002843][T18169]  sg_new_write.isra.0+0x2bd/0x520
[ 2692.008023][T18169]  ? copy_user_generic_unrolled+0x89/0xc0
[ 2692.013817][T18169]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2692.020073][T18169]  sg_write.part.0+0x73e/0x8c0
[ 2692.024866][T18169]  ? common_file_perm+0x1d5/0x490
[ 2692.029900][T18169]  ? common_file_perm+0xb/0x490
[ 2692.034771][T18169]  ? apparmor_file_permission+0x38/0x50
[ 2692.040327][T18169]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2692.046059][T18169]  ? iov_iter_advance+0x216/0x940
[ 2692.051120][T18169]  sg_write+0x65/0x88
[ 2692.055211][T18169]  do_iter_write+0x34b/0x3c0
[ 2692.059818][T18169]  vfs_writev+0x118/0x1c0
[ 2692.064173][T18169]  ? __fget_light+0xaf/0x190
[ 2692.068787][T18169]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2692.075202][T18169]  do_writev+0xe3/0x250
[ 2692.079396][T18169]  __x64_sys_writev+0x4e/0x60
[ 2692.084122][T18169]  do_syscall_64+0xcc/0x3a0
[ 2692.088636][T18169]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2692.094606][T18169] RIP: 0033:0x45b399
[ 2692.098539][T18169] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2692.118257][T18169] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2692.126718][T18169] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2692.134691][T18169] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000008
[ 2692.142761][T18169] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 2692.150738][T18169] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2692.158723][T18169] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bf2c
03:55:54 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x0, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:54 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2692.200539][T18169] memory: usage 307200kB, limit 307200kB, failcnt 2577
[ 2692.208839][T18169] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2692.220416][T18169] Memory cgroup stats for /syz4:
[ 2692.224335][T18169] anon 279916544
[ 2692.224335][T18169] file 53248
[ 2692.224335][T18169] kernel_stack 3133440
[ 2692.224335][T18169] slab 6168576
[ 2692.224335][T18169] sock 8192
[ 2692.224335][T18169] shmem 0
[ 2692.224335][T18169] file_mapped 135168
[ 2692.224335][T18169] file_dirty 0
[ 2692.224335][T18169] file_writeback 0
[ 2692.224335][T18169] anon_thp 257949696
[ 2692.224335][T18169] inactive_anon 0
[ 2692.224335][T18169] active_anon 279916544
[ 2692.224335][T18169] inactive_file 28672
[ 2692.224335][T18169] active_file 61440
[ 2692.224335][T18169] unevictable 0
[ 2692.224335][T18169] slab_reclaimable 946176
[ 2692.224335][T18169] slab_unreclaimable 5222400
[ 2692.224335][T18169] pgfault 336930
[ 2692.224335][T18169] pgmajfault 0
[ 2692.224335][T18169] workingset_refault 0
[ 2692.224335][T18169] workingset_activate 0
[ 2692.224335][T18169] workingset_nodereclaim 0
[ 2692.224335][T18169] pgrefill 1374
[ 2692.224335][T18169] pgscan 17721
[ 2692.224335][T18169] pgsteal 16653
[ 2692.415955][T18169] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=18168,uid=0
[ 2692.460794][   T26] audit: type=1804 audit(2000001354.579:61104): pid=18286 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3766/bus" dev="sda1" ino=17155 res=1
[ 2692.603787][T18169] Memory cgroup out of memory: Killed process 18168 (syz-executor.4) total-vm:72716kB, anon-rss:2224kB, file-rss:35784kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000
03:55:54 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x900000000000000}, 0x0, 0x0)

03:55:54 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4", 0x1b}], 0x2)

03:55:54 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, 0x0, 0x0)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2692.815596][ T1069] oom_reaper: reaped process 18168 (syz-executor.4), now anon-rss:0kB, file-rss:34852kB, shmem-rss:0kB
[ 2692.861065][T18285] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2692.875825][T18285] CPU: 0 PID: 18285 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2692.884759][T18285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2692.894837][T18285] Call Trace:
[ 2692.898136][T18285]  dump_stack+0x11d/0x181
[ 2692.902547][T18285]  dump_header+0xaa/0x39c
[ 2692.906927][T18285]  oom_kill_process.cold+0x10/0x15
[ 2692.912052][T18285]  out_of_memory+0x231/0xa60
[ 2692.916845][T18285]  mem_cgroup_out_of_memory+0x128/0x150
[ 2692.922405][T18285]  try_charge+0xb6c/0xbf0
[ 2692.926753][T18285]  ? rcu_note_context_switch+0x720/0x760
[ 2692.932487][T18285]  mem_cgroup_try_charge+0xd2/0x260
[ 2692.937796][T18285]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2692.943441][T18285]  wp_page_copy+0x322/0x1040
[ 2692.948046][T18285]  ? __read_once_size+0x41/0xe0
[ 2692.952948][T18285]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2692.958863][T18285]  do_wp_page+0x192/0xeb0
[ 2692.963246][T18285]  ? record_times+0x16/0x90
[ 2692.967782][T18285]  __handle_mm_fault+0x1d16/0x2e00
[ 2692.972963][T18285]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2692.979049][T18285]  handle_mm_fault+0x21b/0x530
[ 2692.983822][T18285]  __do_page_fault+0x456/0x8d0
[ 2692.988615][T18285]  do_page_fault+0x38/0x194
[ 2692.993182][T18285]  page_fault+0x34/0x40
[ 2692.997346][T18285] RIP: 0033:0x412bba
[ 2693.001276][T18285] Code: 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41 c7 45 18 01 00 00 00 49 89 85 10 05 00 00 48 8b 05 8e 58 66 00 <c7> 00 01 00 00 00 c7 05 9a 58 66 00 01 00 00 00 41 c7 85 1c 06 00
[ 2693.020885][T18285] RSP: 002b:00007ffdda4847a0 EFLAGS: 00010206
[ 2693.027023][T18285] RAX: 0000000000a78928 RBX: 0000000000020000 RCX: 000000000045b3ea
[ 2693.035103][T18285] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000
[ 2693.043082][T18285] RBP: 00007ffdda484880 R08: ffffffffffffffff R09: 0000000000000000
[ 2693.051071][T18285] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdda484970
[ 2693.059144][T18285] R13: 00007ffac9a33700 R14: 0000000000000001 R15: 000000000075bfd4
[ 2693.135750][T18285] memory: usage 307200kB, limit 307200kB, failcnt 2112
[ 2693.143563][T18285] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2693.162080][T18285] Memory cgroup stats for /syz0:
[ 2693.162234][T18285] anon 286134272
[ 2693.162234][T18285] file 28672
[ 2693.162234][T18285] kernel_stack 2691072
[ 2693.162234][T18285] slab 5079040
[ 2693.162234][T18285] sock 81920
[ 2693.162234][T18285] shmem 8192
[ 2693.162234][T18285] file_mapped 0
[ 2693.162234][T18285] file_dirty 0
[ 2693.162234][T18285] file_writeback 0
[ 2693.162234][T18285] anon_thp 266338304
[ 2693.162234][T18285] inactive_anon 0
[ 2693.162234][T18285] active_anon 286134272
[ 2693.162234][T18285] inactive_file 4096
[ 2693.162234][T18285] active_file 49152
[ 2693.162234][T18285] unevictable 0
[ 2693.162234][T18285] slab_reclaimable 540672
[ 2693.162234][T18285] slab_unreclaimable 4538368
[ 2693.162234][T18285] pgfault 275319
[ 2693.162234][T18285] pgmajfault 0
[ 2693.162234][T18285] workingset_refault 0
[ 2693.162234][T18285] workingset_activate 0
[ 2693.162234][T18285] workingset_nodereclaim 0
[ 2693.162234][T18285] pgrefill 1256
[ 2693.162234][T18285] pgscan 9393
[ 2693.162234][T18285] pgsteal 8360
03:55:55 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:55:55 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x0, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2693.393952][T18285] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=18157,uid=0
[ 2693.414005][T18285] Memory cgroup out of memory: Killed process 18157 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2693.606930][   T26] audit: type=1804 audit(2000001355.729:61105): pid=18402 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3767/bus" dev="sda1" ino=17119 res=1
[ 2693.616175][T18291] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2693.665680][T18291] CPU: 0 PID: 18291 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2693.674396][T18291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2693.684454][T18291] Call Trace:
[ 2693.687881][T18291]  dump_stack+0x11d/0x181
[ 2693.692321][T18291]  dump_header+0xaa/0x39c
[ 2693.696743][T18291]  oom_kill_process.cold+0x10/0x15
[ 2693.701912][T18291]  out_of_memory+0x231/0xa60
[ 2693.706541][T18291]  mem_cgroup_out_of_memory+0x128/0x150
[ 2693.712209][T18291]  try_charge+0x800/0xbf0
[ 2693.716566][T18291]  ? __rcu_read_unlock+0x66/0x3d0
[ 2693.721599][T18291]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2693.727097][T18291]  __memcg_kmem_charge+0xcf/0x1b0
[ 2693.732246][T18291]  __alloc_pages_nodemask+0x26c/0x310
[ 2693.737666][T18291]  alloc_pages_current+0xd1/0x170
[ 2693.742746][T18291]  pte_alloc_one+0x18/0x50
[ 2693.747175][T18291]  __handle_mm_fault+0x2be6/0x2e00
[ 2693.752342][T18291]  handle_mm_fault+0x21b/0x530
[ 2693.757224][T18291]  __do_page_fault+0x456/0x8d0
[ 2693.762007][T18291]  do_page_fault+0x38/0x194
[ 2693.766656][T18291]  page_fault+0x34/0x40
[ 2693.770841][T18291] RIP: 0033:0x45b399
[ 2693.774785][T18291] Code: Bad RIP value.
[ 2693.778847][T18291] RSP: 002b:00007ffac9a53c78 EFLAGS: 00010246
[ 2693.784914][T18291] RAX: 0000000000000000 RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2693.792895][T18291] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2693.800893][T18291] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
03:55:55 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4", 0x1b}], 0x2)

[ 2693.809484][T18291] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2693.817497][T18291] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:55:56 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xa00000000000000}, 0x0, 0x0)

03:55:56 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, 0x0, 0x0)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2694.080175][T18291] memory: usage 304924kB, limit 307200kB, failcnt 2112
[ 2694.094949][T18291] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2694.113398][T18291] Memory cgroup stats for /syz0:
[ 2694.116873][T18291] anon 283967488
[ 2694.116873][T18291] file 28672
[ 2694.116873][T18291] kernel_stack 2691072
[ 2694.116873][T18291] slab 5079040
[ 2694.116873][T18291] sock 81920
[ 2694.116873][T18291] shmem 8192
[ 2694.116873][T18291] file_mapped 0
[ 2694.116873][T18291] file_dirty 0
[ 2694.116873][T18291] file_writeback 0
[ 2694.116873][T18291] anon_thp 264241152
[ 2694.116873][T18291] inactive_anon 0
[ 2694.116873][T18291] active_anon 283967488
[ 2694.116873][T18291] inactive_file 4096
[ 2694.116873][T18291] active_file 49152
[ 2694.116873][T18291] unevictable 0
[ 2694.116873][T18291] slab_reclaimable 540672
[ 2694.116873][T18291] slab_unreclaimable 4538368
[ 2694.116873][T18291] pgfault 275352
[ 2694.116873][T18291] pgmajfault 0
[ 2694.116873][T18291] workingset_refault 0
[ 2694.116873][T18291] workingset_activate 0
[ 2694.116873][T18291] workingset_nodereclaim 0
[ 2694.116873][T18291] pgrefill 1256
[ 2694.116873][T18291] pgscan 9393
[ 2694.116873][T18291] pgsteal 8360
[ 2694.280067][T18291] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17805,uid=0
[ 2694.299780][T18291] Memory cgroup out of memory: Killed process 17805 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
03:55:56 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2694.471363][T18287] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2694.487325][T18287] CPU: 1 PID: 18287 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2694.496068][T18287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2694.506123][T18287] Call Trace:
[ 2694.509521][T18287]  dump_stack+0x11d/0x181
[ 2694.513862][T18287]  dump_header+0xaa/0x39c
[ 2694.518289][T18287]  oom_kill_process.cold+0x10/0x15
[ 2694.523420][T18287]  out_of_memory+0x231/0xa60
[ 2694.528087][T18287]  mem_cgroup_out_of_memory+0x128/0x150
[ 2694.533645][T18287]  try_charge+0x800/0xbf0
[ 2694.538062][T18287]  ? rcu_note_context_switch+0x720/0x760
[ 2694.543826][T18287]  mem_cgroup_try_charge+0xd2/0x260
[ 2694.549056][T18287]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2694.554790][T18287]  wp_page_copy+0x322/0x1040
[ 2694.559481][T18287]  ? __read_once_size+0x41/0xe0
[ 2694.564340][T18287]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2694.570259][T18287]  do_wp_page+0x192/0xeb0
[ 2694.574601][T18287]  __handle_mm_fault+0x1d16/0x2e00
[ 2694.579739][T18287]  handle_mm_fault+0x21b/0x530
[ 2694.584536][T18287]  __do_page_fault+0x456/0x8d0
[ 2694.589317][T18287]  do_page_fault+0x38/0x194
[ 2694.593850][T18287]  page_fault+0x34/0x40
[ 2694.598020][T18287] RIP: 0033:0x403f80
[ 2694.601978][T18287] Code: 80 3d fb e6 66 00 00 c6 85 84 00 00 00 00 74 0f 8b 05 e8 e6 66 00 39 45 24 0f 84 46 02 00 00 44 8b a5 80 00 00 00 48 8b 5d 78 <e8> fb e6 ff ff 48 2b 05 84 40 33 00 8b 75 00 4c 89 f1 45 89 e1 49
[ 2694.621591][T18287] RSP: 002b:00007ffac9a53c90 EFLAGS: 00010246
[ 2694.627731][T18287] RAX: 00007ffacba55000 RBX: 0000000000002745 RCX: 0000000000000000
[ 2694.635780][T18287] RDX: 000000000003ffff RSI: 0000000000403ecc RDI: 0000000000000000
[ 2694.643763][T18287] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2694.651740][T18287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2694.659721][T18287] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2694.705454][T18287] memory: usage 302636kB, limit 307200kB, failcnt 2112
[ 2694.740946][T18287] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2694.756864][T18287] Memory cgroup stats for /syz0:
[ 2694.758138][T18287] anon 281755648
[ 2694.758138][T18287] file 28672
[ 2694.758138][T18287] kernel_stack 2654208
[ 2694.758138][T18287] slab 5079040
[ 2694.758138][T18287] sock 81920
[ 2694.758138][T18287] shmem 8192
[ 2694.758138][T18287] file_mapped 0
[ 2694.758138][T18287] file_dirty 0
[ 2694.758138][T18287] file_writeback 0
[ 2694.758138][T18287] anon_thp 262144000
[ 2694.758138][T18287] inactive_anon 0
[ 2694.758138][T18287] active_anon 281755648
[ 2694.758138][T18287] inactive_file 4096
[ 2694.758138][T18287] active_file 49152
[ 2694.758138][T18287] unevictable 0
[ 2694.758138][T18287] slab_reclaimable 540672
[ 2694.758138][T18287] slab_unreclaimable 4538368
[ 2694.758138][T18287] pgfault 275352
[ 2694.758138][T18287] pgmajfault 0
[ 2694.758138][T18287] workingset_refault 0
[ 2694.758138][T18287] workingset_activate 0
[ 2694.758138][T18287] workingset_nodereclaim 0
[ 2694.758138][T18287] pgrefill 1256
[ 2694.758138][T18287] pgscan 9393
[ 2694.758138][T18287] pgsteal 8360
[ 2694.787852][   T26] audit: type=1804 audit(2000001356.879:61106): pid=18518 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3768/bus" dev="sda1" ino=17116 res=1
[ 2694.995749][T18287] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17147,uid=0
03:55:57 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xb00000000000000}, 0x0, 0x0)

[ 2695.089680][T18287] Memory cgroup out of memory: Killed process 17147 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2695.169114][ T1069] oom_reaper: reaped process 17147 (syz-executor.0), now anon-rss:0kB, file-rss:34688kB, shmem-rss:0kB
[ 2695.186545][T18404] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2695.255576][T18404] CPU: 0 PID: 18404 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2695.264287][T18404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2695.274430][T18404] Call Trace:
[ 2695.277738][T18404]  dump_stack+0x11d/0x181
[ 2695.282131][T18404]  dump_header+0xaa/0x39c
[ 2695.286479][T18404]  oom_kill_process.cold+0x10/0x15
[ 2695.291643][T18404]  out_of_memory+0x231/0xa60
[ 2695.296249][T18404]  ? __tsan_func_entry+0x10/0x10
[ 2695.301239][T18404]  mem_cgroup_out_of_memory+0x128/0x150
[ 2695.306885][T18404]  try_charge+0xb6c/0xbf0
[ 2695.311232][T18404]  ? __rcu_read_unlock+0x66/0x3d0
[ 2695.316325][T18404]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2695.321838][T18404]  __memcg_kmem_charge+0xcf/0x1b0
[ 2695.326918][T18404]  __alloc_pages_nodemask+0x26c/0x310
[ 2695.332296][T18404]  alloc_pages_current+0xd1/0x170
[ 2695.337413][T18404]  pte_alloc_one+0x18/0x50
[ 2695.341851][T18404]  __pte_alloc+0x2d/0x220
[ 2695.346386][T18404]  copy_page_range+0x135a/0x19b0
[ 2695.351377][T18404]  ? __vma_link_rb+0x3f4/0x440
[ 2695.356159][T18404]  dup_mm+0x74a/0xba0
[ 2695.360296][T18404]  copy_process+0x3138/0x3c40
[ 2695.365012][T18404]  _do_fork+0xfe/0x7a0
[ 2695.369164][T18404]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2695.375074][T18404]  ? __read_once_size+0x5a/0xe0
[ 2695.379951][T18404]  __x64_sys_clone+0x130/0x170
[ 2695.384821][T18404]  do_syscall_64+0xcc/0x3a0
[ 2695.389343][T18404]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2695.395240][T18404] RIP: 0033:0x45b399
[ 2695.399332][T18404] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2695.418944][T18404] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2695.427377][T18404] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2695.435359][T18404] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2695.443392][T18404] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2695.451384][T18404] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2695.459395][T18404] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2695.556217][T18404] memory: usage 307200kB, limit 307200kB, failcnt 2614
[ 2695.563461][T18404] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2695.570996][T18404] Memory cgroup stats for /syz4:
[ 2695.572764][T18404] anon 279949312
[ 2695.572764][T18404] file 53248
[ 2695.572764][T18404] kernel_stack 3133440
[ 2695.572764][T18404] slab 6168576
[ 2695.572764][T18404] sock 8192
[ 2695.572764][T18404] shmem 0
[ 2695.572764][T18404] file_mapped 135168
[ 2695.572764][T18404] file_dirty 0
[ 2695.572764][T18404] file_writeback 0
[ 2695.572764][T18404] anon_thp 257949696
[ 2695.572764][T18404] inactive_anon 0
[ 2695.572764][T18404] active_anon 279949312
[ 2695.572764][T18404] inactive_file 28672
[ 2695.572764][T18404] active_file 61440
[ 2695.572764][T18404] unevictable 0
[ 2695.572764][T18404] slab_reclaimable 946176
[ 2695.572764][T18404] slab_unreclaimable 5222400
[ 2695.572764][T18404] pgfault 336996
[ 2695.572764][T18404] pgmajfault 0
[ 2695.572764][T18404] workingset_refault 0
[ 2695.572764][T18404] workingset_activate 0
03:55:57 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x0, 0x300)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r3 = socket$packet(0x11, 0x2, 0x300)
dup3(r3, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:57 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4", 0x1b}], 0x2)

03:55:57 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, 0x0, 0x0)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:57 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394", 0x78}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2695.572764][T18404] workingset_nodereclaim 0
[ 2695.572764][T18404] pgrefill 1407
[ 2695.572764][T18404] pgscan 17787
[ 2695.572764][T18404] pgsteal 16653
[ 2695.687222][T18404] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=18174,uid=0
[ 2695.710005][T18404] Memory cgroup out of memory: Killed process 18174 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
[ 2695.893107][ T1069] oom_reaper: reaped process 18174 (syz-executor.4), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 2695.904296][   T26] audit: type=1804 audit(2000001358.009:61107): pid=18534 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3769/bus" dev="sda1" ino=17234 res=1
[ 2696.001591][T18527] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2696.060293][T18527] CPU: 0 PID: 18527 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0
[ 2696.069082][T18527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2696.079140][T18527] Call Trace:
[ 2696.082508][T18527]  dump_stack+0x11d/0x181
[ 2696.086866][T18527]  dump_header+0xaa/0x39c
[ 2696.091290][T18527]  oom_kill_process.cold+0x10/0x15
[ 2696.096416][T18527]  out_of_memory+0x231/0xa60
[ 2696.101064][T18527]  ? __rcu_read_unlock+0x66/0x3d0
[ 2696.106108][T18527]  mem_cgroup_out_of_memory+0x128/0x150
[ 2696.111676][T18527]  try_charge+0xb6c/0xbf0
[ 2696.116047][T18527]  ? __rcu_read_unlock+0x66/0x3d0
[ 2696.121093][T18527]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2696.126582][T18527]  __memcg_kmem_charge+0xcf/0x1b0
[ 2696.131691][T18527]  __alloc_pages_nodemask+0x26c/0x310
[ 2696.137231][T18527]  alloc_pages_current+0xd1/0x170
[ 2696.142327][T18527]  pte_alloc_one+0x18/0x50
[ 2696.146800][T18527]  __pte_alloc+0x2d/0x220
[ 2696.151143][T18527]  copy_page_range+0x135a/0x19b0
[ 2696.156089][T18527]  ? apic_timer_interrupt+0xa/0x20
[ 2696.161232][T18527]  ? __vma_link_rb+0x3f4/0x440
[ 2696.166014][T18527]  dup_mm+0x74a/0xba0
[ 2696.170028][T18527]  copy_process+0x3138/0x3c40
[ 2696.174738][T18527]  _do_fork+0xfe/0x7a0
[ 2696.178926][T18527]  ? __x64_sys_clone+0x127/0x170
[ 2696.183925][T18527]  __x64_sys_clone+0x130/0x170
[ 2696.188934][T18527]  do_syscall_64+0xcc/0x3a0
[ 2696.193462][T18527]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2696.199358][T18527] RIP: 0033:0x45b399
[ 2696.203262][T18527] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2696.223234][T18527] RSP: 002b:00007f44cabc9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2696.231655][T18527] RAX: ffffffffffffffda RBX: 00007f44cabca6d4 RCX: 000000000045b399
[ 2696.239672][T18527] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2696.247673][T18527] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
03:55:58 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xb00020000000000}, 0x0, 0x0)

[ 2696.255649][T18527] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2696.263708][T18527] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2696.272330][    C0] net_ratelimit: 26 callbacks suppressed
[ 2696.272366][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2696.284808][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2696.315844][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2696.323089][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2696.330310][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2696.336821][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2696.479635][T18527] memory: usage 307188kB, limit 307200kB, failcnt 618
[ 2696.491841][T18527] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2696.525351][T18527] Memory cgroup stats for /syz1:
[ 2696.530826][T18527] anon 284557312
[ 2696.530826][T18527] file 81920
[ 2696.530826][T18527] kernel_stack 2727936
[ 2696.530826][T18527] slab 5337088
[ 2696.530826][T18527] sock 0
[ 2696.530826][T18527] shmem 28672
[ 2696.530826][T18527] file_mapped 0
[ 2696.530826][T18527] file_dirty 0
[ 2696.530826][T18527] file_writeback 0
[ 2696.530826][T18527] anon_thp 266338304
[ 2696.530826][T18527] inactive_anon 253952
[ 2696.530826][T18527] active_anon 284598272
[ 2696.530826][T18527] inactive_file 0
[ 2696.530826][T18527] active_file 81920
[ 2696.530826][T18527] unevictable 0
[ 2696.530826][T18527] slab_reclaimable 946176
[ 2696.530826][T18527] slab_unreclaimable 4390912
[ 2696.530826][T18527] pgfault 304524
[ 2696.530826][T18527] pgmajfault 0
[ 2696.530826][T18527] workingset_refault 0
[ 2696.530826][T18527] workingset_activate 0
[ 2696.530826][T18527] workingset_nodereclaim 0
[ 2696.530826][T18527] pgrefill 1220
[ 2696.530826][T18527] pgscan 13498
[ 2696.530826][T18527] pgsteal 12402
03:55:58 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394", 0x78}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2696.899280][   T26] audit: type=1804 audit(2000001359.019:61108): pid=18651 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3770/bus" dev="sda1" ino=17217 res=1
[ 2696.955829][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2696.955871][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2696.962184][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2696.967820][    C1] protocol 88fb is buggy, dev hsr_slave_1
03:55:59 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x0, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2697.049219][T18527] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=12111,uid=0
03:55:59 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0x0, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:59 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
socket$packet(0x11, 0x3, 0x300)
r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r2 = socket$packet(0x11, 0x2, 0x300)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:55:59 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xc00000000000000}, 0x0, 0x0)

[ 2697.266644][T18527] Memory cgroup out of memory: Killed process 12111 (syz-executor.1) total-vm:72848kB, anon-rss:4272kB, file-rss:35796kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000
[ 2697.578798][T18654] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2697.665922][T18654] CPU: 1 PID: 18654 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2697.674673][T18654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2697.684790][T18654] Call Trace:
[ 2697.688086][T18654]  dump_stack+0x11d/0x181
[ 2697.692427][T18654]  dump_header+0xaa/0x39c
[ 2697.696767][T18654]  oom_kill_process.cold+0x10/0x15
[ 2697.701888][T18654]  out_of_memory+0x231/0xa60
[ 2697.706601][T18654]  mem_cgroup_out_of_memory+0x128/0x150
[ 2697.712161][T18654]  try_charge+0xb6c/0xbf0
[ 2697.716514][T18654]  ? __rcu_read_unlock+0x66/0x3d0
[ 2697.721553][T18654]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2697.727042][T18654]  __memcg_kmem_charge+0xcf/0x1b0
[ 2697.732091][T18654]  __alloc_pages_nodemask+0x26c/0x310
[ 2697.737468][T18654]  alloc_pages_current+0xd1/0x170
[ 2697.742495][T18654]  pte_alloc_one+0x18/0x50
[ 2697.747011][T18654]  __pte_alloc+0x2d/0x220
[ 2697.751350][T18654]  copy_page_range+0x135a/0x19b0
[ 2697.756288][T18654]  ? apic_timer_interrupt+0xa/0x20
[ 2697.761550][T18654]  ? __vma_link_rb+0x3f4/0x440
[ 2697.766324][T18654]  dup_mm+0x74a/0xba0
[ 2697.770337][T18654]  copy_process+0x3138/0x3c40
[ 2697.775119][T18654]  _do_fork+0xfe/0x7a0
[ 2697.779199][T18654]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2697.785144][T18654]  ? __read_once_size+0x5a/0xe0
[ 2697.790054][T18654]  __x64_sys_clone+0x130/0x170
[ 2697.794827][T18654]  do_syscall_64+0xcc/0x3a0
[ 2697.799403][T18654]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2697.805298][T18654] RIP: 0033:0x45b399
[ 2697.809222][T18654] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2697.828889][T18654] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2697.837384][T18654] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2697.845357][T18654] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2697.853449][T18654] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2697.861432][T18654] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2697.869413][T18654] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:56:00 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394", 0x78}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2697.915173][T18654] memory: usage 307200kB, limit 307200kB, failcnt 2638
[ 2697.927619][T18654] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2697.935006][T18654] Memory cgroup stats for /syz4:
[ 2697.942725][T18654] anon 279949312
[ 2697.942725][T18654] file 53248
[ 2697.942725][T18654] kernel_stack 3170304
[ 2697.942725][T18654] slab 6168576
[ 2697.942725][T18654] sock 8192
[ 2697.942725][T18654] shmem 0
[ 2697.942725][T18654] file_mapped 135168
[ 2697.942725][T18654] file_dirty 0
[ 2697.942725][T18654] file_writeback 0
[ 2697.942725][T18654] anon_thp 257949696
[ 2697.942725][T18654] inactive_anon 0
[ 2697.942725][T18654] active_anon 279957504
[ 2697.942725][T18654] inactive_file 28672
[ 2697.942725][T18654] active_file 61440
[ 2697.942725][T18654] unevictable 0
[ 2697.942725][T18654] slab_reclaimable 946176
[ 2697.942725][T18654] slab_unreclaimable 5222400
[ 2697.942725][T18654] pgfault 337392
[ 2697.942725][T18654] pgmajfault 0
[ 2697.942725][T18654] workingset_refault 0
[ 2697.942725][T18654] workingset_activate 0
[ 2697.942725][T18654] workingset_nodereclaim 0
[ 2697.942725][T18654] pgrefill 1440
[ 2697.942725][T18654] pgscan 17787
[ 2697.942725][T18654] pgsteal 16653
03:56:00 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a40000000000", 0x20}], 0x2)

[ 2698.080803][T18654] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=18612,uid=0
[ 2698.104301][T18654] Memory cgroup out of memory: Killed process 18612 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
[ 2698.135273][   T26] audit: type=1804 audit(2000001360.249:61109): pid=18778 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3771/bus" dev="sda1" ino=17075 res=1
[ 2698.240001][T18664] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2698.304778][T18664] CPU: 0 PID: 18664 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2698.313486][T18664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2698.323543][T18664] Call Trace:
[ 2698.326877][T18664]  dump_stack+0x11d/0x181
[ 2698.331219][T18664]  dump_header+0xaa/0x39c
[ 2698.335605][T18664]  oom_kill_process.cold+0x10/0x15
[ 2698.340787][T18664]  out_of_memory+0x231/0xa60
[ 2698.345406][T18664]  mem_cgroup_out_of_memory+0x128/0x150
[ 2698.350969][T18664]  try_charge+0xb6c/0xbf0
[ 2698.355316][T18664]  ? rcu_note_context_switch+0x720/0x760
[ 2698.361053][T18664]  mem_cgroup_try_charge+0xd2/0x260
[ 2698.366273][T18664]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2698.371923][T18664]  wp_page_copy+0x322/0x1040
[ 2698.376577][T18664]  ? __schedule+0x30e/0x690
[ 2698.381221][T18664]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2698.386958][T18664]  do_wp_page+0x192/0xeb0
[ 2698.391371][T18664]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2698.397320][T18664]  __handle_mm_fault+0x1d16/0x2e00
[ 2698.402461][T18664]  handle_mm_fault+0x21b/0x530
[ 2698.407243][T18664]  __do_page_fault+0x456/0x8d0
[ 2698.412058][T18664]  do_page_fault+0x38/0x194
[ 2698.416599][T18664]  page_fault+0x34/0x40
[ 2698.420788][T18664] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2698.427390][T18664] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2698.447246][T18664] RSP: 0018:ffffc90017433630 EFLAGS: 00010206
[ 2698.453327][T18664] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2698.461373][T18664] RDX: 0000000000001000 RSI: ffff888089296000 RDI: 00000000009be000
[ 2698.469448][T18664] RBP: ffffc90017433668 R08: ffff8880898fd040 R09: 00008880898fdb90
[ 2698.477429][T18664] R10: 0000c90017433738 R11: 00008880898fdb97 R12: 00000000009be000
[ 2698.485440][T18664] R13: 00000000009bf000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2698.493457][T18664]  ? copyout+0xa5/0xb0
[ 2698.497609][T18664]  copy_page_to_iter+0x252/0x8d0
[ 2698.502574][T18664]  bio_uncopy_user+0x253/0x2f0
[ 2698.507417][T18664]  __blk_rq_unmap_user+0x78/0x80
[ 2698.512414][T18664]  blk_rq_map_user_iov+0x30b/0x420
[ 2698.517590][T18664]  blk_rq_map_user+0x90/0xd0
[ 2698.522214][T18664]  sg_common_write.isra.0+0xc64/0x12c0
[ 2698.527941][T18664]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2698.534195][T18664]  ? _copy_from_user+0x98/0xf0
[ 2698.539089][T18664]  sg_new_write.isra.0+0x2bd/0x520
[ 2698.544308][T18664]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2698.550566][T18664]  ? scsi_block_when_processing_errors+0x19f/0x1d0
[ 2698.557170][T18664]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2698.563473][T18664]  sg_write.part.0+0x73e/0x8c0
[ 2698.568266][T18664]  ? common_file_perm+0x1d5/0x490
[ 2698.573295][T18664]  ? apic_timer_interrupt+0xa/0x20
[ 2698.578465][T18664]  ? check_stack_object+0xda/0x110
[ 2698.583638][T18664]  ? apic_timer_interrupt+0xa/0x20
[ 2698.588785][T18664]  ? apic_timer_interrupt+0xa/0x20
[ 2698.593927][T18664]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2698.599780][T18664]  ? iov_iter_advance+0x216/0x940
[ 2698.604817][T18664]  sg_write+0x65/0x88
[ 2698.608816][T18664]  do_iter_write+0x34b/0x3c0
[ 2698.613583][T18664]  vfs_writev+0x118/0x1c0
[ 2698.617936][T18664]  ? __fget_light+0xaf/0x190
[ 2698.622647][T18664]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2698.628926][T18664]  do_writev+0xe3/0x250
[ 2698.633124][T18664]  __x64_sys_writev+0x4e/0x60
[ 2698.637818][T18664]  do_syscall_64+0xcc/0x3a0
[ 2698.642349][T18664]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2698.648324][T18664] RIP: 0033:0x45b399
[ 2698.652355][T18664] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2698.672056][T18664] RSP: 002b:00007ffac9a53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2698.680486][T18664] RAX: ffffffffffffffda RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2698.688467][T18664] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000007
[ 2698.698550][T18664] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 2698.706635][T18664] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2698.714669][T18664] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bf2c
03:56:00 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0xd00000000000000}, 0x0, 0x0)

03:56:01 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a40000000000", 0x20}], 0x2)

[ 2698.925908][T18664] memory: usage 307200kB, limit 307200kB, failcnt 2194
[ 2698.933499][T18664] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2698.976917][T18664] Memory cgroup stats for /syz0:
[ 2698.978812][T18664] anon 286105600
[ 2698.978812][T18664] file 28672
[ 2698.978812][T18664] kernel_stack 2654208
[ 2698.978812][T18664] slab 5079040
[ 2698.978812][T18664] sock 81920
[ 2698.978812][T18664] shmem 8192
[ 2698.978812][T18664] file_mapped 0
[ 2698.978812][T18664] file_dirty 0
[ 2698.978812][T18664] file_writeback 0
[ 2698.978812][T18664] anon_thp 266338304
[ 2698.978812][T18664] inactive_anon 0
[ 2698.978812][T18664] active_anon 286105600
03:56:01 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318c", 0xb4}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:56:01 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0x0, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2698.978812][T18664] inactive_file 4096
[ 2698.978812][T18664] active_file 49152
[ 2698.978812][T18664] unevictable 0
[ 2698.978812][T18664] slab_reclaimable 540672
[ 2698.978812][T18664] slab_unreclaimable 4538368
[ 2698.978812][T18664] pgfault 276276
[ 2698.978812][T18664] pgmajfault 0
[ 2698.978812][T18664] workingset_refault 0
[ 2698.978812][T18664] workingset_activate 0
[ 2698.978812][T18664] workingset_nodereclaim 0
[ 2698.978812][T18664] pgrefill 1324
[ 2698.978812][T18664] pgscan 9460
[ 2698.978812][T18664] pgsteal 8360
03:56:01 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x0, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2699.172730][T18664] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=18662,uid=0
[ 2699.189899][T18664] Memory cgroup out of memory: Killed process 18664 (syz-executor.0) total-vm:72716kB, anon-rss:2232kB, file-rss:35812kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2699.227059][ T1069] oom_reaper: reaped process 18664 (syz-executor.0), now anon-rss:0kB, file-rss:34852kB, shmem-rss:0kB
[ 2699.308019][   T26] audit: type=1804 audit(2000001361.429:61110): pid=18799 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3772/bus" dev="sda1" ino=17218 res=1
[ 2699.726410][T18798] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
03:56:01 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
socket$packet(0x11, 0x3, 0x300)
r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r2 = socket$packet(0x11, 0x2, 0x300)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2699.820275][T18798] CPU: 0 PID: 18798 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2699.829064][T18798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2699.839196][T18798] Call Trace:
[ 2699.842574][T18798]  dump_stack+0x11d/0x181
[ 2699.846926][T18798]  dump_header+0xaa/0x39c
[ 2699.851272][T18798]  oom_kill_process.cold+0x10/0x15
[ 2699.856408][T18798]  out_of_memory+0x231/0xa60
[ 2699.861017][T18798]  ? __rcu_read_unlock+0x66/0x3d0
[ 2699.866159][T18798]  mem_cgroup_out_of_memory+0x128/0x150
[ 2699.871835][T18798]  try_charge+0xb6c/0xbf0
[ 2699.876186][T18798]  ? __rcu_read_unlock+0x66/0x3d0
[ 2699.881268][T18798]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2699.886819][T18798]  __memcg_kmem_charge+0xcf/0x1b0
[ 2699.891854][T18798]  __alloc_pages_nodemask+0x26c/0x310
[ 2699.897250][T18798]  alloc_pages_current+0xd1/0x170
[ 2699.902303][T18798]  pte_alloc_one+0x18/0x50
[ 2699.906750][T18798]  __pte_alloc+0x2d/0x220
[ 2699.911092][T18798]  copy_page_range+0x135a/0x19b0
[ 2699.916108][T18798]  ? retint_kernel+0x1b/0x1b
[ 2699.920729][T18798]  ? __vma_link_rb+0x3f4/0x440
[ 2699.925563][T18798]  dup_mm+0x74a/0xba0
[ 2699.929564][T18798]  copy_process+0x3138/0x3c40
[ 2699.934326][T18798]  _do_fork+0xfe/0x7a0
[ 2699.938421][T18798]  __x64_sys_clone+0x130/0x170
[ 2699.943259][T18798]  do_syscall_64+0xcc/0x3a0
[ 2699.947784][T18798]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2699.953678][T18798] RIP: 0033:0x45b399
[ 2699.957768][T18798] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2699.977390][T18798] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2699.985788][T18798] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2699.993888][T18798] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2700.001876][T18798] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2700.009855][T18798] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
03:56:02 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x1000000000000000}, 0x0, 0x0)

03:56:02 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a40000000000", 0x20}], 0x2)

[ 2700.017833][T18798] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:56:02 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318c", 0xb4}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2700.425777][T18798] memory: usage 307200kB, limit 307200kB, failcnt 2659
[ 2700.443188][T18798] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2700.484070][T18798] Memory cgroup stats for /syz4:
[ 2700.489384][T18798] anon 279945216
[ 2700.489384][T18798] file 53248
[ 2700.489384][T18798] kernel_stack 3133440
[ 2700.489384][T18798] slab 6168576
[ 2700.489384][T18798] sock 8192
[ 2700.489384][T18798] shmem 0
[ 2700.489384][T18798] file_mapped 135168
[ 2700.489384][T18798] file_dirty 0
[ 2700.489384][T18798] file_writeback 0
[ 2700.489384][T18798] anon_thp 257949696
[ 2700.489384][T18798] inactive_anon 0
[ 2700.489384][T18798] active_anon 279945216
[ 2700.489384][T18798] inactive_file 28672
03:56:02 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0x0, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2700.489384][T18798] active_file 61440
[ 2700.489384][T18798] unevictable 0
[ 2700.489384][T18798] slab_reclaimable 946176
[ 2700.489384][T18798] slab_unreclaimable 5222400
[ 2700.489384][T18798] pgfault 337755
[ 2700.489384][T18798] pgmajfault 0
[ 2700.489384][T18798] workingset_refault 0
[ 2700.489384][T18798] workingset_activate 0
[ 2700.489384][T18798] workingset_nodereclaim 0
[ 2700.489384][T18798] pgrefill 1440
[ 2700.489384][T18798] pgscan 17787
[ 2700.489384][T18798] pgsteal 16653
[ 2700.614818][   T26] audit: type=1804 audit(2000001362.729:61111): pid=18922 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3773/bus" dev="sda1" ino=17218 res=1
03:56:03 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a400000000000000", 0x22}], 0x2)

[ 2700.926038][T18798] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=18783,uid=0
03:56:03 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x1100000000000000}, 0x0, 0x0)

[ 2700.979764][T18798] Memory cgroup out of memory: Killed process 18783 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
[ 2701.150223][T18918] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2701.218791][T18918] CPU: 1 PID: 18918 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2701.227517][T18918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2701.237575][T18918] Call Trace:
[ 2701.240875][T18918]  dump_stack+0x11d/0x181
[ 2701.245286][T18918]  dump_header+0xaa/0x39c
[ 2701.249627][T18918]  oom_kill_process.cold+0x10/0x15
[ 2701.254880][T18918]  out_of_memory+0x231/0xa60
[ 2701.259485][T18918]  mem_cgroup_out_of_memory+0x128/0x150
[ 2701.265089][T18918]  try_charge+0xb6c/0xbf0
[ 2701.269436][T18918]  ? __this_cpu_preempt_check+0x45/0x140
[ 2701.275117][T18918]  ? __rcu_read_unlock+0x66/0x3d0
[ 2701.280171][T18918]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2701.285641][T18918]  __memcg_kmem_charge+0xcf/0x1b0
[ 2701.290681][T18918]  __alloc_pages_nodemask+0x26c/0x310
[ 2701.296171][T18918]  alloc_pages_current+0xd1/0x170
[ 2701.301205][T18918]  __pmd_alloc+0x4b/0x2b0
[ 2701.305543][T18918]  copy_page_range+0x1529/0x19b0
[ 2701.310497][T18918]  ? __read_once_size.constprop.0+0x12/0x20
[ 2701.316408][T18918]  ? __rcu_read_unlock+0x66/0x3d0
[ 2701.321440][T18918]  ? __write_once_size.constprop.0+0x20/0x20
[ 2701.327428][T18918]  ? vma_gap_callbacks_rotate+0x126/0x190
[ 2701.333168][T18918]  ? __rb_insert_augmented+0x11a/0x370
[ 2701.338644][T18918]  ? vm_get_page_prot+0x90/0x90
[ 2701.343547][T18918]  dup_mm+0x74a/0xba0
[ 2701.347628][T18918]  copy_process+0x3138/0x3c40
[ 2701.352369][T18918]  _do_fork+0xfe/0x7a0
[ 2701.356585][T18918]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2701.362603][T18918]  ? __read_once_size+0x5a/0xe0
[ 2701.367466][T18918]  __x64_sys_clone+0x130/0x170
[ 2701.372262][T18918]  do_syscall_64+0xcc/0x3a0
[ 2701.376786][T18918]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2701.382705][T18918] RIP: 0033:0x45b399
[ 2701.386655][T18918] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2701.406316][T18918] RSP: 002b:00007ffac9a53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2701.414812][T18918] RAX: ffffffffffffffda RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2701.422828][T18918] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2701.430802][T18918] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2701.438779][T18918] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2701.446815][T18918] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2701.487348][T18918] memory: usage 307200kB, limit 307200kB, failcnt 2236
[ 2701.510765][T18918] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2701.554904][T18918] Memory cgroup stats for /syz0:
[ 2701.578289][T18918] anon 286130176
[ 2701.578289][T18918] file 28672
[ 2701.578289][T18918] kernel_stack 2654208
[ 2701.578289][T18918] slab 5079040
[ 2701.578289][T18918] sock 81920
[ 2701.578289][T18918] shmem 8192
[ 2701.578289][T18918] file_mapped 0
[ 2701.578289][T18918] file_dirty 0
[ 2701.578289][T18918] file_writeback 0
[ 2701.578289][T18918] anon_thp 266338304
[ 2701.578289][T18918] inactive_anon 0
[ 2701.578289][T18918] active_anon 286130176
[ 2701.578289][T18918] inactive_file 4096
03:56:03 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318c", 0xb4}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2701.578289][T18918] active_file 49152
[ 2701.578289][T18918] unevictable 0
[ 2701.578289][T18918] slab_reclaimable 540672
[ 2701.578289][T18918] slab_unreclaimable 4538368
[ 2701.578289][T18918] pgfault 276342
[ 2701.578289][T18918] pgmajfault 0
[ 2701.578289][T18918] workingset_refault 0
[ 2701.578289][T18918] workingset_activate 0
[ 2701.578289][T18918] workingset_nodereclaim 0
[ 2701.578289][T18918] pgrefill 1357
[ 2701.578289][T18918] pgscan 9494
[ 2701.578289][T18918] pgsteal 8360
[ 2701.693696][T18918] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=18776,uid=0
[ 2701.734486][T18918] Memory cgroup out of memory: Killed process 18776 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2701.824127][   T26] audit: type=1804 audit(2000001363.939:61112): pid=19045 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3774/bus" dev="sda1" ino=17218 res=1
03:56:04 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x0, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:56:04 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a400000000000000", 0x22}], 0x2)

03:56:04 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x1300000000000000}, 0x0, 0x0)

03:56:04 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
socket$packet(0x11, 0x3, 0x300)
r3 = dup3(0xffffffffffffffff, r2, 0x0)
dup3(r3, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r4 = socket$packet(0x11, 0x2, 0x300)
dup3(r4, 0xffffffffffffffff, 0x0)
r5 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r5, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:56:04 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
socket$packet(0x11, 0x3, 0x300)
r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r2 = socket$packet(0x11, 0x2, 0x300)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:56:04 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a400000000000000", 0x22}], 0x2)

03:56:04 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f37", 0xd2}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2702.742895][T19160] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2702.832802][T19160] CPU: 1 PID: 19160 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2702.841542][T19160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2702.851600][T19160] Call Trace:
[ 2702.854902][T19160]  dump_stack+0x11d/0x181
[ 2702.859247][T19160]  dump_header+0xaa/0x39c
[ 2702.863594][T19160]  oom_kill_process.cold+0x10/0x15
[ 2702.868709][T19160]  out_of_memory+0x231/0xa60
[ 2702.873323][T19160]  mem_cgroup_out_of_memory+0x128/0x150
[ 2702.875922][    C0] net_ratelimit: 26 callbacks suppressed
[ 2702.875967][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2702.878873][T19160]  try_charge+0xb6c/0xbf0
[ 2702.878911][T19160]  ? rcu_note_context_switch+0x720/0x760
[ 2702.885250][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2702.890237][T19160]  mem_cgroup_try_charge+0xd2/0x260
[ 2702.890262][T19160]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2702.890280][T19160]  wp_page_copy+0x322/0x1040
[ 2702.890309][T19160]  ? __read_once_size+0x41/0xe0
[ 2702.926248][T19160]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2702.932303][T19160]  do_wp_page+0x192/0xeb0
[ 2702.936692][T19160]  ? switch_mm_irqs_off+0x37/0x5f0
[ 2702.941839][T19160]  __handle_mm_fault+0x1d16/0x2e00
[ 2702.946966][T19160]  handle_mm_fault+0x21b/0x530
[ 2702.951737][T19160]  __do_page_fault+0x456/0x8d0
[ 2702.956537][T19160]  do_page_fault+0x38/0x194
[ 2702.961054][T19160]  page_fault+0x34/0x40
[ 2702.965210][T19160] RIP: 0033:0x416a23
[ 2702.969121][T19160] Code: e9 4c 89 e2 ff 74 24 48 4c 8b 4c 24 10 89 ee 4c 8b 44 24 18 48 89 df e8 cb f7 ff ff 66 2e 0f 1f 84 00 00 00 00 00 90 48 f7 d8 <64> 89 04 25 d4 ff ff ff 48 83 c8 ff c3 48 81 ec 98 00 00 00 31 ff
[ 2702.988870][T19160] RSP: 002b:00007ffd378c4078 EFLAGS: 00010213
[ 2702.994982][T19160] RAX: 000000000000006e RBX: 00000000000003e8 RCX: 000000000045b399
[ 2703.002999][T19160] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000075bf2c
[ 2703.010993][T19160] RBP: 000000000000002d R08: ffffffffffffffff R09: ffffffffffffffff
[ 2703.018970][T19160] R10: 00007ffd378c4150 R11: 0000000000000246 R12: 000000000075bf20
[ 2703.026947][T19160] R13: 0000000000293ce0 R14: 0000000000293d0d R15: 000000000075bf2c
[ 2703.035136][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2703.040932][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2703.046736][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2703.052612][    C1] protocol 88fb is buggy, dev hsr_slave_1
03:56:05 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x1400000000000000}, 0x0, 0x0)

03:56:05 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x0, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2703.171935][T19160] memory: usage 307200kB, limit 307200kB, failcnt 2924
[ 2703.180511][T19160] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2703.193623][   T26] audit: type=1804 audit(2000001365.309:61113): pid=19169 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3775/bus" dev="sda1" ino=17220 res=1
[ 2703.201292][T19160] Memory cgroup stats for /syz4:
[ 2703.201537][T19160] anon 279949312
[ 2703.201537][T19160] file 53248
[ 2703.201537][T19160] kernel_stack 3133440
[ 2703.201537][T19160] slab 6168576
[ 2703.201537][T19160] sock 8192
[ 2703.201537][T19160] shmem 0
[ 2703.201537][T19160] file_mapped 135168
[ 2703.201537][T19160] file_dirty 0
[ 2703.201537][T19160] file_writeback 0
[ 2703.201537][T19160] anon_thp 257949696
[ 2703.201537][T19160] inactive_anon 0
[ 2703.201537][T19160] active_anon 279953408
[ 2703.201537][T19160] inactive_file 28672
[ 2703.201537][T19160] active_file 61440
[ 2703.201537][T19160] unevictable 0
[ 2703.201537][T19160] slab_reclaimable 946176
[ 2703.201537][T19160] slab_unreclaimable 5222400
[ 2703.201537][T19160] pgfault 338118
[ 2703.201537][T19160] pgmajfault 0
[ 2703.201537][T19160] workingset_refault 0
[ 2703.201537][T19160] workingset_activate 0
[ 2703.201537][T19160] workingset_nodereclaim 0
[ 2703.201537][T19160] pgrefill 1473
[ 2703.201537][T19160] pgscan 17853
[ 2703.201537][T19160] pgsteal 16653
[ 2703.218755][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2703.218811][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2703.219058][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2703.219110][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2703.340082][T19160] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=19041,uid=0
[ 2703.357178][T19160] Memory cgroup out of memory: Killed process 19041 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
[ 2703.384027][ T1069] oom_reaper: reaped process 19041 (syz-executor.4), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 2703.407561][T19164] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2703.456580][T19164] CPU: 0 PID: 19164 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2703.465480][T19164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2703.475637][T19164] Call Trace:
[ 2703.478932][T19164]  dump_stack+0x11d/0x181
[ 2703.483324][T19164]  dump_header+0xaa/0x39c
[ 2703.487813][T19164]  oom_kill_process.cold+0x10/0x15
[ 2703.492989][T19164]  out_of_memory+0x231/0xa60
[ 2703.497602][T19164]  mem_cgroup_out_of_memory+0x128/0x150
[ 2703.503165][T19164]  try_charge+0xb6c/0xbf0
[ 2703.507520][T19164]  ? entry_INT80_compat+0x70/0x76
[ 2703.512559][T19164]  ? __rcu_read_unlock+0x66/0x3d0
[ 2703.517602][T19164]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2703.523074][T19164]  __memcg_kmem_charge+0xcf/0x1b0
[ 2703.528123][T19164]  __alloc_pages_nodemask+0x26c/0x310
[ 2703.533551][T19164]  alloc_pages_current+0xd1/0x170
[ 2703.538685][T19164]  pte_alloc_one+0x18/0x50
[ 2703.543173][T19164]  __pte_alloc+0x2d/0x220
[ 2703.547551][T19164]  copy_page_range+0x135a/0x19b0
[ 2703.552533][T19164]  ? __vma_link_rb+0x3f4/0x440
[ 2703.557358][T19164]  dup_mm+0x74a/0xba0
[ 2703.561361][T19164]  copy_process+0x3138/0x3c40
[ 2703.566180][T19164]  _do_fork+0xfe/0x7a0
[ 2703.570316][T19164]  __x64_sys_clone+0x130/0x170
[ 2703.575105][T19164]  do_syscall_64+0xcc/0x3a0
[ 2703.579625][T19164]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2703.585585][T19164] RIP: 0033:0x45b399
[ 2703.589495][T19164] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2703.609179][T19164] RSP: 002b:00007ffac9a53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2703.617655][T19164] RAX: ffffffffffffffda RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2703.625685][T19164] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2703.633801][T19164] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2703.641804][T19164] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2703.649787][T19164] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:56:05 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a40000000000000000", 0x23}], 0x2)

[ 2703.751745][T19164] memory: usage 307196kB, limit 307200kB, failcnt 2256
[ 2703.785377][T19164] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2703.799491][T19164] Memory cgroup stats for /syz0:
[ 2703.807683][T19164] anon 286109696
[ 2703.807683][T19164] file 28672
[ 2703.807683][T19164] kernel_stack 2654208
[ 2703.807683][T19164] slab 5079040
[ 2703.807683][T19164] sock 81920
[ 2703.807683][T19164] shmem 8192
[ 2703.807683][T19164] file_mapped 0
[ 2703.807683][T19164] file_dirty 0
[ 2703.807683][T19164] file_writeback 0
[ 2703.807683][T19164] anon_thp 266338304
[ 2703.807683][T19164] inactive_anon 0
[ 2703.807683][T19164] active_anon 286109696
[ 2703.807683][T19164] inactive_file 4096
[ 2703.807683][T19164] active_file 49152
[ 2703.807683][T19164] unevictable 0
[ 2703.807683][T19164] slab_reclaimable 540672
[ 2703.807683][T19164] slab_unreclaimable 4538368
[ 2703.807683][T19164] pgfault 276441
[ 2703.807683][T19164] pgmajfault 0
[ 2703.807683][T19164] workingset_refault 0
[ 2703.807683][T19164] workingset_activate 0
[ 2703.807683][T19164] workingset_nodereclaim 0
[ 2703.807683][T19164] pgrefill 1425
[ 2703.807683][T19164] pgscan 9563
[ 2703.807683][T19164] pgsteal 8360
[ 2703.917938][T19164] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19046,uid=0
[ 2703.942968][T19164] Memory cgroup out of memory: Killed process 19046 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
03:56:06 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f37", 0xd2}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2704.115659][T19165] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2704.154424][T19165] CPU: 0 PID: 19165 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2704.163125][T19165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2704.173443][T19165] Call Trace:
[ 2704.176927][T19165]  dump_stack+0x11d/0x181
[ 2704.181275][T19165]  dump_header+0xaa/0x39c
[ 2704.185627][T19165]  oom_kill_process.cold+0x10/0x15
[ 2704.190873][T19165]  out_of_memory+0x231/0xa60
[ 2704.195594][T19165]  mem_cgroup_out_of_memory+0x128/0x150
[ 2704.201202][T19165]  try_charge+0x800/0xbf0
[ 2704.205606][T19165]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2704.211612][T19165]  ? __rcu_read_unlock+0x66/0x3d0
[ 2704.216656][T19165]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2704.222128][T19165]  __memcg_kmem_charge+0xcf/0x1b0
[ 2704.227171][T19165]  __alloc_pages_nodemask+0x26c/0x310
[ 2704.232560][T19165]  alloc_pages_current+0xd1/0x170
[ 2704.237657][T19165]  pte_alloc_one+0x18/0x50
[ 2704.242092][T19165]  __handle_mm_fault+0x2be6/0x2e00
[ 2704.247224][T19165]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2704.253334][T19165]  handle_mm_fault+0x21b/0x530
[ 2704.258209][T19165]  __do_page_fault+0x456/0x8d0
[ 2704.263092][T19165]  do_page_fault+0x38/0x194
[ 2704.267650][T19165]  page_fault+0x34/0x40
[ 2704.271870][T19165] RIP: 0033:0x45b399
[ 2704.275772][T19165] Code: Bad RIP value.
[ 2704.279840][T19165] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00010246
[ 2704.285978][T19165] RAX: 0000000000000000 RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2704.293955][T19165] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2704.301986][T19165] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2704.309976][T19165] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2704.317955][T19165] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:56:06 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x1500000000000000}, 0x0, 0x0)

[ 2704.396227][T19165] memory: usage 304920kB, limit 307200kB, failcnt 2925
[ 2704.405752][T19165] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2704.415158][T19165] Memory cgroup stats for /syz4:
[ 2704.415451][T19165] anon 277762048
[ 2704.415451][T19165] file 53248
[ 2704.415451][T19165] kernel_stack 3133440
[ 2704.415451][T19165] slab 6168576
[ 2704.415451][T19165] sock 8192
[ 2704.415451][T19165] shmem 0
[ 2704.415451][T19165] file_mapped 135168
[ 2704.415451][T19165] file_dirty 0
[ 2704.415451][T19165] file_writeback 0
[ 2704.415451][T19165] anon_thp 255852544
[ 2704.415451][T19165] inactive_anon 0
[ 2704.415451][T19165] active_anon 277766144
[ 2704.415451][T19165] inactive_file 28672
[ 2704.415451][T19165] active_file 61440
[ 2704.415451][T19165] unevictable 0
[ 2704.415451][T19165] slab_reclaimable 946176
[ 2704.415451][T19165] slab_unreclaimable 5222400
[ 2704.415451][T19165] pgfault 338118
[ 2704.415451][T19165] pgmajfault 0
[ 2704.415451][T19165] workingset_refault 0
[ 2704.415451][T19165] workingset_activate 0
[ 2704.415451][T19165] workingset_nodereclaim 0
[ 2704.415451][T19165] pgrefill 1473
[ 2704.415451][T19165] pgscan 17853
[ 2704.415451][T19165] pgsteal 16653
[ 2704.457776][   T26] audit: type=1804 audit(2000001366.579:61114): pid=19288 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3776/bus" dev="sda1" ino=17175 res=1
03:56:06 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x0, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:56:06 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a40000000000000000", 0x23}], 0x2)

[ 2704.844274][T19165] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=18041,uid=0
[ 2704.864345][T19165] Memory cgroup out of memory: Killed process 18041 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
03:56:07 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r2 = socket$packet(0x11, 0x2, 0x300)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2705.195572][T19162] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2705.219425][T19162] CPU: 1 PID: 19162 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2705.228155][T19162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2705.238207][T19162] Call Trace:
[ 2705.241539][T19162]  dump_stack+0x11d/0x181
[ 2705.245875][T19162]  dump_header+0xaa/0x39c
[ 2705.250249][T19162]  oom_kill_process.cold+0x10/0x15
[ 2705.255369][T19162]  out_of_memory+0x231/0xa60
[ 2705.259977][T19162]  mem_cgroup_out_of_memory+0x128/0x150
[ 2705.265540][T19162]  try_charge+0x800/0xbf0
[ 2705.269897][T19162]  ? rcu_note_context_switch+0x720/0x760
[ 2705.275543][T19162]  mem_cgroup_try_charge+0xd2/0x260
[ 2705.280755][T19162]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2705.286474][T19162]  wp_page_copy+0x322/0x1040
[ 2705.291072][T19162]  ? __read_once_size+0x41/0xe0
[ 2705.295934][T19162]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2705.301939][T19162]  do_wp_page+0x192/0xeb0
[ 2705.306280][T19162]  __handle_mm_fault+0x1d16/0x2e00
[ 2705.311395][T19162]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2705.317510][T19162]  handle_mm_fault+0x21b/0x530
[ 2705.322366][T19162]  __do_page_fault+0x456/0x8d0
[ 2705.327141][T19162]  do_page_fault+0x38/0x194
[ 2705.331647][T19162]  page_fault+0x34/0x40
[ 2705.335829][T19162] RIP: 0033:0x40419e
[ 2705.339729][T19162] Code: 48 dc ff ff 0f 1f 84 00 00 00 00 00 0f b6 b5 84 00 00 00 bf a1 02 4c 00 31 c0 e8 0d dd ff ff e9 30 fe ff ff 8b 0b 48 83 f8 ff <48> 89 45 78 89 8d 80 00 00 00 0f 85 8d fd ff ff 85 c9 0f 85 85 fd
[ 2705.359382][T19162] RSP: 002b:00007f0b9e6acc90 EFLAGS: 00010217
[ 2705.365449][T19162] RAX: 000000000000292c RBX: 00007f0b9e6ad6d4 RCX: 0000000000000000
[ 2705.373452][T19162] RDX: 0000000000000001 RSI: 0000000000403ecc RDI: 0000000000000000
[ 2705.381431][T19162] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2705.389412][T19162] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2705.397387][T19162] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2705.473203][T19162] memory: usage 302600kB, limit 307200kB, failcnt 2925
[ 2705.486599][T19162] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2705.498572][T19162] Memory cgroup stats for /syz4:
[ 2705.511439][T19162] anon 275554304
[ 2705.511439][T19162] file 53248
[ 2705.511439][T19162] kernel_stack 3133440
[ 2705.511439][T19162] slab 6168576
[ 2705.511439][T19162] sock 8192
[ 2705.511439][T19162] shmem 0
[ 2705.511439][T19162] file_mapped 135168
[ 2705.511439][T19162] file_dirty 0
[ 2705.511439][T19162] file_writeback 0
[ 2705.511439][T19162] anon_thp 253755392
[ 2705.511439][T19162] inactive_anon 0
[ 2705.511439][T19162] active_anon 275554304
[ 2705.511439][T19162] inactive_file 28672
[ 2705.511439][T19162] active_file 61440
[ 2705.511439][T19162] unevictable 0
[ 2705.511439][T19162] slab_reclaimable 946176
[ 2705.511439][T19162] slab_unreclaimable 5222400
[ 2705.511439][T19162] pgfault 338118
[ 2705.511439][T19162] pgmajfault 0
[ 2705.511439][T19162] workingset_refault 0
[ 2705.511439][T19162] workingset_activate 0
[ 2705.511439][T19162] workingset_nodereclaim 0
[ 2705.511439][T19162] pgrefill 1473
[ 2705.511439][T19162] pgscan 17853
[ 2705.511439][T19162] pgsteal 16653
[ 2705.645544][T19162] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=19165,uid=0
[ 2705.736283][T19401] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2705.805592][T19401] CPU: 0 PID: 19401 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2705.814355][T19401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2705.824576][T19401] Call Trace:
[ 2705.827936][T19401]  dump_stack+0x11d/0x181
[ 2705.832374][T19401]  dump_header+0xaa/0x39c
[ 2705.836874][T19401]  oom_kill_process.cold+0x10/0x15
[ 2705.842006][T19401]  out_of_memory+0x231/0xa60
[ 2705.846758][T19401]  mem_cgroup_out_of_memory+0x128/0x150
[ 2705.852322][T19401]  try_charge+0xb6c/0xbf0
[ 2705.856682][T19401]  ? switch_mm_irqs_off+0x1a1/0x5f0
[ 2705.861948][T19401]  ? __rcu_read_unlock+0x66/0x3d0
[ 2705.867044][T19401]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2705.872571][T19401]  __memcg_kmem_charge+0xcf/0x1b0
[ 2705.877608][T19401]  copy_process+0x11d2/0x3c40
[ 2705.882294][T19401]  ? record_times+0x16/0x90
[ 2705.886856][T19401]  ? try_to_free_mem_cgroup_pages+0x258/0x4d0
[ 2705.893024][T19401]  _do_fork+0xfe/0x7a0
[ 2705.897182][T19401]  ? cgroup_file_notify+0xff/0x130
[ 2705.902308][T19401]  ? blkcg_maybe_throttle_current+0x23d/0x580
[ 2705.908388][T19401]  __x64_sys_clone+0x130/0x170
[ 2705.913172][T19401]  do_syscall_64+0xcc/0x3a0
[ 2705.917695][T19401]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2705.923641][T19401] RIP: 0033:0x45dd69
[ 2705.927625][T19401] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 2705.947452][T19401] RSP: 002b:00007ffdda484758 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
03:56:08 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
socket$packet(0x11, 0x3, 0x300)
r3 = dup3(0xffffffffffffffff, r2, 0x0)
dup3(r3, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r4 = socket$packet(0x11, 0x2, 0x300)
dup3(r4, 0xffffffffffffffff, 0x0)
r5 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r5, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:56:08 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x2000000000000000}, 0x0, 0x0)

03:56:08 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f37", 0xd2}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:56:08 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a40000000000000000", 0x23}], 0x2)

[ 2705.955871][T19401] RAX: ffffffffffffffda RBX: 00007ffac9a33700 RCX: 000000000045dd69
[ 2705.963909][T19401] RDX: 00007ffac9a339d0 RSI: 00007ffac9a32db0 RDI: 00000000003d0f00
[ 2705.972021][T19401] RBP: 00007ffdda484970 R08: 00007ffac9a33700 R09: 00007ffac9a33700
[ 2705.979994][T19401] R10: 00007ffac9a339d0 R11: 0000000000000202 R12: 0000000000000000
[ 2705.987976][T19401] R13: 00007ffdda48480f R14: 00007ffac9a339c0 R15: 000000000075bfd4
03:56:08 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x0, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2706.032540][   T26] audit: type=1804 audit(2000001368.149:61115): pid=19409 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3777/bus" dev="sda1" ino=17140 res=1
[ 2706.319827][T19401] memory: usage 307200kB, limit 307200kB, failcnt 2516
[ 2706.334296][T19401] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2706.342536][T19401] Memory cgroup stats for /syz0:
[ 2706.342753][T19401] anon 286003200
[ 2706.342753][T19401] file 28672
[ 2706.342753][T19401] kernel_stack 2654208
[ 2706.342753][T19401] slab 5079040
[ 2706.342753][T19401] sock 81920
[ 2706.342753][T19401] shmem 8192
[ 2706.342753][T19401] file_mapped 0
[ 2706.342753][T19401] file_dirty 0
[ 2706.342753][T19401] file_writeback 0
[ 2706.342753][T19401] anon_thp 266338304
[ 2706.342753][T19401] inactive_anon 0
[ 2706.342753][T19401] active_anon 286003200
[ 2706.342753][T19401] inactive_file 4096
[ 2706.342753][T19401] active_file 49152
[ 2706.342753][T19401] unevictable 0
[ 2706.342753][T19401] slab_reclaimable 540672
[ 2706.342753][T19401] slab_unreclaimable 4538368
[ 2706.342753][T19401] pgfault 276804
[ 2706.342753][T19401] pgmajfault 0
[ 2706.342753][T19401] workingset_refault 0
[ 2706.342753][T19401] workingset_activate 0
[ 2706.342753][T19401] workingset_nodereclaim 0
[ 2706.342753][T19401] pgrefill 1560
[ 2706.342753][T19401] pgscan 9697
[ 2706.342753][T19401] pgsteal 8360
[ 2706.550207][T19401] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19283,uid=0
[ 2706.569574][T19401] Memory cgroup out of memory: Killed process 19283 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2706.608833][T19404] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2706.679295][T19404] CPU: 0 PID: 19404 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2706.687996][T19404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2706.698053][T19404] Call Trace:
[ 2706.701367][T19404]  dump_stack+0x11d/0x181
[ 2706.705868][T19404]  dump_header+0xaa/0x39c
[ 2706.710340][T19404]  oom_kill_process.cold+0x10/0x15
[ 2706.715459][T19404]  out_of_memory+0x231/0xa60
[ 2706.720072][T19404]  mem_cgroup_out_of_memory+0x128/0x150
[ 2706.725747][T19404]  try_charge+0x800/0xbf0
[ 2706.730090][T19404]  ? __rcu_read_unlock+0x66/0x3d0
[ 2706.735154][T19404]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2706.740697][T19404]  __memcg_kmem_charge+0xcf/0x1b0
[ 2706.745740][T19404]  __alloc_pages_nodemask+0x26c/0x310
[ 2706.751169][T19404]  alloc_pages_current+0xd1/0x170
[ 2706.756202][T19404]  pte_alloc_one+0x18/0x50
[ 2706.760659][T19404]  __handle_mm_fault+0x2be6/0x2e00
[ 2706.765807][T19404]  handle_mm_fault+0x21b/0x530
[ 2706.770645][T19404]  __do_page_fault+0x456/0x8d0
[ 2706.775419][T19404]  do_page_fault+0x38/0x194
[ 2706.779941][T19404]  page_fault+0x34/0x40
[ 2706.784099][T19404] RIP: 0033:0x45b399
[ 2706.788005][T19404] Code: Bad RIP value.
[ 2706.792124][T19404] RSP: 002b:00007ffac9a53c78 EFLAGS: 00010246
[ 2706.798253][T19404] RAX: 0000000000000000 RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2706.806245][T19404] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2706.814221][T19404] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2706.822227][T19404] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2706.830207][T19404] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2706.852639][T19404] memory: usage 307200kB, limit 307200kB, failcnt 2539
[ 2706.878232][T19404] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
03:56:09 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r2 = socket$packet(0x11, 0x2, 0x300)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2706.925729][T19404] Memory cgroup stats for /syz0:
[ 2706.925976][T19404] anon 283942912
[ 2706.925976][T19404] file 28672
[ 2706.925976][T19404] kernel_stack 2617344
[ 2706.925976][T19404] slab 5079040
[ 2706.925976][T19404] sock 81920
[ 2706.925976][T19404] shmem 8192
[ 2706.925976][T19404] file_mapped 0
[ 2706.925976][T19404] file_dirty 0
[ 2706.925976][T19404] file_writeback 0
[ 2706.925976][T19404] anon_thp 264241152
[ 2706.925976][T19404] inactive_anon 0
[ 2706.925976][T19404] active_anon 283942912
[ 2706.925976][T19404] inactive_file 4096
03:56:09 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x204305016e010000}, 0x0, 0x0)

03:56:09 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f6", 0xe1}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2706.925976][T19404] active_file 49152
[ 2706.925976][T19404] unevictable 0
[ 2706.925976][T19404] slab_reclaimable 540672
[ 2706.925976][T19404] slab_unreclaimable 4538368
[ 2706.925976][T19404] pgfault 277068
[ 2706.925976][T19404] pgmajfault 0
[ 2706.925976][T19404] workingset_refault 0
[ 2706.925976][T19404] workingset_activate 0
[ 2706.925976][T19404] workingset_nodereclaim 0
[ 2706.925976][T19404] pgrefill 1560
[ 2706.925976][T19404] pgscan 9697
[ 2706.925976][T19404] pgsteal 8360
03:56:09 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
socket$packet(0x11, 0x3, 0x300)
r3 = dup3(0xffffffffffffffff, r2, 0x0)
dup3(r3, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r4 = socket$packet(0x11, 0x2, 0x300)
dup3(r4, 0xffffffffffffffff, 0x0)
r5 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r5, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2707.103070][T19404] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=18644,uid=0
[ 2707.119311][T19404] Memory cgroup out of memory: Killed process 18644 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2707.179169][T19406] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2707.215613][T19406] CPU: 1 PID: 19406 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0
03:56:09 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x0, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2707.224332][T19406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2707.234437][T19406] Call Trace:
[ 2707.237729][T19406]  dump_stack+0x11d/0x181
[ 2707.242103][T19406]  dump_header+0xaa/0x39c
[ 2707.246446][T19406]  oom_kill_process.cold+0x10/0x15
[ 2707.251595][T19406]  out_of_memory+0x231/0xa60
[ 2707.256233][T19406]  mem_cgroup_out_of_memory+0x128/0x150
[ 2707.261814][T19406]  try_charge+0xb6c/0xbf0
[ 2707.266148][T19406]  ? rcu_note_context_switch+0x720/0x760
[ 2707.271783][T19406]  mem_cgroup_try_charge+0xd2/0x260
[ 2707.277120][T19406]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2707.282831][T19406]  __handle_mm_fault+0x197f/0x2e00
[ 2707.287953][T19406]  handle_mm_fault+0x21b/0x530
[ 2707.292725][T19406]  __do_page_fault+0x456/0x8d0
[ 2707.297508][T19406]  do_page_fault+0x38/0x194
[ 2707.302004][T19406]  page_fault+0x34/0x40
[ 2707.306149][T19406] RIP: 0033:0x412b8f
[ 2707.310115][T19406] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41
[ 2707.329713][T19406] RSP: 002b:00007fffffab9c70 EFLAGS: 00010206
[ 2707.335786][T19406] RAX: 00007f44cab89000 RBX: 0000000000020000 RCX: 000000000045b3ea
[ 2707.343753][T19406] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000
[ 2707.351713][T19406] RBP: 00007fffffab9d50 R08: ffffffffffffffff R09: 0000000000000000
[ 2707.359692][T19406] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffffab9e40
[ 2707.367720][T19406] R13: 00007f44caba9700 R14: 0000000000000001 R15: 000000000075bfd4
[ 2707.378878][T19406] memory: usage 307200kB, limit 307200kB, failcnt 695
[ 2707.441523][T19406] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2707.473693][T19406] Memory cgroup stats for /syz1:
[ 2707.473943][T19406] anon 283394048
[ 2707.473943][T19406] file 81920
[ 2707.473943][T19406] kernel_stack 2838528
[ 2707.473943][T19406] slab 5607424
[ 2707.473943][T19406] sock 0
[ 2707.473943][T19406] shmem 28672
[ 2707.473943][T19406] file_mapped 0
[ 2707.473943][T19406] file_dirty 0
[ 2707.473943][T19406] file_writeback 0
[ 2707.473943][T19406] anon_thp 264241152
[ 2707.473943][T19406] inactive_anon 253952
[ 2707.473943][T19406] active_anon 283394048
[ 2707.473943][T19406] inactive_file 0
[ 2707.473943][T19406] active_file 81920
[ 2707.473943][T19406] unevictable 0
[ 2707.473943][T19406] slab_reclaimable 946176
[ 2707.473943][T19406] slab_unreclaimable 4661248
[ 2707.473943][T19406] pgfault 305415
[ 2707.473943][T19406] pgmajfault 0
[ 2707.473943][T19406] workingset_refault 0
[ 2707.473943][T19406] workingset_activate 0
[ 2707.473943][T19406] workingset_nodereclaim 0
[ 2707.473943][T19406] pgrefill 1467
[ 2707.473943][T19406] pgscan 13751
[ 2707.473943][T19406] pgsteal 12437
[ 2707.579489][T19406] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=18554,uid=0
[ 2707.747344][T19406] Memory cgroup out of memory: Killed process 18554 (syz-executor.1) total-vm:72980kB, anon-rss:2224kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
03:56:09 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f6", 0xe1}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2707.800516][ T1069] oom_reaper: reaped process 18554 (syz-executor.1), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB
[ 2707.919867][T19529] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2707.964588][   T26] audit: type=1804 audit(2000001370.079:61116): pid=19641 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3779/bus" dev="sda1" ino=17172 res=1
[ 2708.003043][T19529] CPU: 1 PID: 19529 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2708.011750][T19529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2708.021809][T19529] Call Trace:
[ 2708.025112][T19529]  dump_stack+0x11d/0x181
[ 2708.029505][T19529]  dump_header+0xaa/0x39c
[ 2708.033869][T19529]  oom_kill_process.cold+0x10/0x15
[ 2708.039036][T19529]  out_of_memory+0x231/0xa60
[ 2708.043643][T19529]  ? __rcu_read_unlock+0x66/0x3d0
[ 2708.048675][T19529]  ? apic_timer_interrupt+0xa/0x20
[ 2708.053828][T19529]  mem_cgroup_out_of_memory+0x128/0x150
[ 2708.059488][T19529]  try_charge+0xb6c/0xbf0
[ 2708.063833][T19529]  ? rcu_note_context_switch+0x720/0x760
[ 2708.069484][T19529]  mem_cgroup_try_charge+0xd2/0x260
[ 2708.074689][T19529]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2708.080397][T19529]  wp_page_copy+0x322/0x1040
[ 2708.085034][T19529]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2708.090865][T19529]  do_wp_page+0x192/0xeb0
[ 2708.095218][T19529]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2708.101126][T19529]  __handle_mm_fault+0x1d16/0x2e00
[ 2708.106264][T19529]  handle_mm_fault+0x21b/0x530
[ 2708.111037][T19529]  __do_page_fault+0x456/0x8d0
[ 2708.115808][T19529]  do_page_fault+0x38/0x194
[ 2708.120320][T19529]  page_fault+0x34/0x40
[ 2708.124509][T19529] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2708.131115][T19529] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2708.150764][T19529] RSP: 0018:ffffc900178db630 EFLAGS: 00010206
[ 2708.156826][T19529] RAX: 0000000000040000 RBX: 0000000000001000 RCX: 0000000000001000
[ 2708.164898][T19529] RDX: 0000000000001000 RSI: ffff88808ef67000 RDI: 00000000009c7000
[ 2708.172876][T19529] RBP: ffffc900178db668 R08: ffff888093ca9040 R09: 0000888093ca9b90
[ 2708.181310][T19529] R10: 0000c900178db738 R11: 0000888093ca9b97 R12: 00000000009c7000
[ 2708.189290][T19529] R13: 00000000009c8000 R14: 0000000000000000 R15: 00007ffffffff000
[ 2708.197290][T19529]  ? copyout+0xa5/0xb0
[ 2708.201373][T19529]  copy_page_to_iter+0x252/0x8d0
[ 2708.206434][T19529]  bio_uncopy_user+0x253/0x2f0
[ 2708.211228][T19529]  __blk_rq_unmap_user+0x78/0x80
[ 2708.216258][T19529]  blk_rq_map_user_iov+0x30b/0x420
[ 2708.221466][T19529]  blk_rq_map_user+0x90/0xd0
[ 2708.226070][T19529]  sg_common_write.isra.0+0xc64/0x12c0
[ 2708.231612][T19529]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2708.237875][T19529]  ? _copy_from_user+0x98/0xf0
[ 2708.242649][T19529]  sg_new_write.isra.0+0x2bd/0x520
[ 2708.247815][T19529]  ? copy_user_enhanced_fast_string+0x3/0x30
[ 2708.253815][T19529]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2708.260239][T19529]  sg_write.part.0+0x73e/0x8c0
[ 2708.265019][T19529]  ? apic_timer_interrupt+0xa/0x20
[ 2708.270148][T19529]  ? iov_iter_advance+0x168/0x940
[ 2708.275206][T19529]  ? __sanitizer_cov_trace_pc+0x48/0x50
[ 2708.280852][T19529]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 2708.286594][T19529]  ? iov_iter_advance+0x216/0x940
[ 2708.291633][T19529]  sg_write+0x65/0x88
[ 2708.295725][T19529]  do_iter_write+0x34b/0x3c0
[ 2708.300334][T19529]  vfs_writev+0x118/0x1c0
[ 2708.304684][T19529]  ? __fget_light+0xaf/0x190
[ 2708.309391][T19529]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2708.315679][T19529]  do_writev+0xe3/0x250
[ 2708.319848][T19529]  __x64_sys_writev+0x4e/0x60
[ 2708.324534][T19529]  do_syscall_64+0xcc/0x3a0
[ 2708.329151][T19529]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2708.335082][T19529] RIP: 0033:0x45b399
[ 2708.338992][T19529] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:56:10 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x4000000000000000}, 0x0, 0x0)

[ 2708.358598][T19529] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2708.367019][T19529] RAX: ffffffffffffffda RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2708.375092][T19529] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000008
[ 2708.383067][T19529] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 2708.391129][T19529] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2708.399148][T19529] R13: 0000000000000cdc R14: 00000000004c9ca0 R15: 000000000075bf2c
[ 2708.451185][T19529] memory: usage 307200kB, limit 307200kB, failcnt 3016
[ 2708.483603][T19529] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2708.551212][T19529] Memory cgroup stats for /syz4:
[ 2708.557430][T19529] anon 280064000
[ 2708.557430][T19529] file 53248
[ 2708.557430][T19529] kernel_stack 3133440
[ 2708.557430][T19529] slab 6168576
[ 2708.557430][T19529] sock 8192
[ 2708.557430][T19529] shmem 0
[ 2708.557430][T19529] file_mapped 135168
[ 2708.557430][T19529] file_dirty 0
[ 2708.557430][T19529] file_writeback 0
[ 2708.557430][T19529] anon_thp 257949696
[ 2708.557430][T19529] inactive_anon 0
[ 2708.557430][T19529] active_anon 280064000
[ 2708.557430][T19529] inactive_file 28672
[ 2708.557430][T19529] active_file 61440
[ 2708.557430][T19529] unevictable 0
[ 2708.557430][T19529] slab_reclaimable 946176
[ 2708.557430][T19529] slab_unreclaimable 5222400
[ 2708.557430][T19529] pgfault 338778
[ 2708.557430][T19529] pgmajfault 0
[ 2708.557430][T19529] workingset_refault 0
[ 2708.557430][T19529] workingset_activate 0
[ 2708.557430][T19529] workingset_nodereclaim 0
[ 2708.557430][T19529] pgrefill 1539
[ 2708.557430][T19529] pgscan 17886
[ 2708.557430][T19529] pgsteal 16653
03:56:10 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0x24}], 0x1)

03:56:10 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x0, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:56:10 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x401f000000000000}, 0x0, 0x0)

03:56:11 executing program 0:
mkdir(0x0, 0x0)
getpid()
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r0=>0x0]}, &(0x7f000095dffc)=0x8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
dup3(r1, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r0, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r0, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r2 = socket$packet(0x11, 0x2, 0x300)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:56:11 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f6", 0xe1}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2708.924798][T19529] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=19525,uid=0
[ 2709.023011][T19529] Memory cgroup out of memory: Killed process 19529 (syz-executor.4) total-vm:72716kB, anon-rss:2228kB, file-rss:35816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000
[ 2709.115584][    C0] net_ratelimit: 26 callbacks suppressed
[ 2709.115594][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2709.127643][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2709.158859][ T1069] oom_reaper: reaped process 19529 (syz-executor.4), now anon-rss:0kB, file-rss:34856kB, shmem-rss:0kB
[ 2709.170866][T19648] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2709.231608][T19648] CPU: 1 PID: 19648 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0
[ 2709.240327][T19648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2709.250411][T19648] Call Trace:
[ 2709.253762][T19648]  dump_stack+0x11d/0x181
[ 2709.258138][T19648]  dump_header+0xaa/0x39c
[ 2709.262618][T19648]  oom_kill_process.cold+0x10/0x15
[ 2709.267744][T19648]  out_of_memory+0x231/0xa60
[ 2709.272384][T19648]  mem_cgroup_out_of_memory+0x128/0x150
[ 2709.277956][T19648]  try_charge+0xb6c/0xbf0
[ 2709.282298][T19648]  ? rcu_note_context_switch+0x720/0x760
[ 2709.287989][T19648]  mem_cgroup_try_charge+0xd2/0x260
[ 2709.293211][T19648]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2709.298866][T19648]  __handle_mm_fault+0x197f/0x2e00
[ 2709.303998][T19648]  handle_mm_fault+0x21b/0x530
[ 2709.308777][T19648]  __do_page_fault+0x456/0x8d0
[ 2709.313557][T19648]  do_page_fault+0x38/0x194
[ 2709.318076][T19648]  page_fault+0x34/0x40
[ 2709.322234][T19648] RIP: 0033:0x412b8f
[ 2709.326144][T19648] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41
[ 2709.345763][T19648] RSP: 002b:00007fffffab9c70 EFLAGS: 00010206
[ 2709.351834][T19648] RAX: 00007f44cab89000 RBX: 0000000000020000 RCX: 000000000045b3ea
[ 2709.359894][T19648] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000
[ 2709.367872][T19648] RBP: 00007fffffab9d50 R08: ffffffffffffffff R09: 0000000000000000
[ 2709.375892][T19648] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffffab9e40
[ 2709.383891][T19648] R13: 00007f44caba9700 R14: 0000000000000001 R15: 000000000075bfd4
[ 2709.392116][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2709.398009][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2709.403846][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2709.409664][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2709.436292][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 2709.442987][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 2709.515558][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 2709.521441][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 2709.596153][T19648] memory: usage 307184kB, limit 307200kB, failcnt 720
[ 2709.602947][T19648] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2709.650124][T19648] Memory cgroup stats for /syz1:
[ 2709.650396][T19648] anon 283299840
[ 2709.650396][T19648] file 81920
[ 2709.650396][T19648] kernel_stack 2838528
[ 2709.650396][T19648] slab 5607424
[ 2709.650396][T19648] sock 0
[ 2709.650396][T19648] shmem 28672
[ 2709.650396][T19648] file_mapped 0
[ 2709.650396][T19648] file_dirty 0
[ 2709.650396][T19648] file_writeback 0
[ 2709.650396][T19648] anon_thp 264241152
[ 2709.650396][T19648] inactive_anon 253952
[ 2709.650396][T19648] active_anon 283299840
[ 2709.650396][T19648] inactive_file 0
03:56:11 executing program 4:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, 0xffffffffffffffff, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x9, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
r5 = socket$packet(0x11, 0x2, 0x300)
dup3(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

03:56:11 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c", 0xe9}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

[ 2709.650396][T19648] active_file 81920
[ 2709.650396][T19648] unevictable 0
[ 2709.650396][T19648] slab_reclaimable 946176
[ 2709.650396][T19648] slab_unreclaimable 4661248
[ 2709.650396][T19648] pgfault 305481
[ 2709.650396][T19648] pgmajfault 0
[ 2709.650396][T19648] workingset_refault 0
[ 2709.650396][T19648] workingset_activate 0
[ 2709.650396][T19648] workingset_nodereclaim 0
[ 2709.650396][T19648] pgrefill 1500
[ 2709.650396][T19648] pgscan 13751
[ 2709.650396][T19648] pgsteal 12437
03:56:11 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x4d01000000000000}, 0x0, 0x0)

03:56:12 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x0, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2709.862592][T19648] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=9494,uid=0
[ 2709.895830][   T26] audit: type=1804 audit(2000001372.019:61117): pid=19768 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3781/bus" dev="sda1" ino=17172 res=1
[ 2709.989548][T19648] Memory cgroup out of memory: Killed process 9494 (syz-executor.1) total-vm:72848kB, anon-rss:2216kB, file-rss:35796kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000
[ 2710.069190][ T1069] oom_reaper: reaped process 9494 (syz-executor.1), now anon-rss:0kB, file-rss:34836kB, shmem-rss:0kB
[ 2710.107768][T19774] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2710.187480][T19774] CPU: 1 PID: 19774 Comm: syz-executor.4 Not tainted 5.5.0-rc1-syzkaller #0
[ 2710.196179][T19774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2710.206229][T19774] Call Trace:
[ 2710.209526][T19774]  dump_stack+0x11d/0x181
[ 2710.213940][T19774]  dump_header+0xaa/0x39c
[ 2710.218289][T19774]  oom_kill_process.cold+0x10/0x15
[ 2710.223417][T19774]  out_of_memory+0x231/0xa60
[ 2710.228133][T19774]  mem_cgroup_out_of_memory+0x128/0x150
[ 2710.233700][T19774]  try_charge+0x800/0xbf0
[ 2710.238052][T19774]  ? __rcu_read_unlock+0x66/0x3d0
[ 2710.243094][T19774]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2710.248566][T19774]  __memcg_kmem_charge+0xcf/0x1b0
[ 2710.253613][T19774]  __alloc_pages_nodemask+0x26c/0x310
[ 2710.258999][T19774]  alloc_pages_current+0xd1/0x170
[ 2710.264035][T19774]  pte_alloc_one+0x18/0x50
[ 2710.268525][T19774]  __handle_mm_fault+0x2be6/0x2e00
[ 2710.273655][T19774]  handle_mm_fault+0x21b/0x530
[ 2710.278471][T19774]  __do_page_fault+0x456/0x8d0
[ 2710.283290][T19774]  do_page_fault+0x38/0x194
[ 2710.287825][T19774]  page_fault+0x34/0x40
[ 2710.291981][T19774] RIP: 0033:0x45b399
[ 2710.295880][T19774] Code: Bad RIP value.
[ 2710.300051][T19774] RSP: 002b:00007f0b9e6acc78 EFLAGS: 00010246
[ 2710.306120][T19774] RAX: 0000000000000000 RBX: 00007f0b9e6ad6d4 RCX: 000000000045b399
[ 2710.314092][T19774] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2710.322066][T19774] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2710.330084][T19774] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2710.338057][T19774] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
03:56:12 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0x24}], 0x1)

[ 2710.456513][T19774] memory: usage 307200kB, limit 307200kB, failcnt 3057
[ 2710.486471][T19774] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2710.505763][T19774] Memory cgroup stats for /syz4:
[ 2710.506091][T19774] anon 279961600
[ 2710.506091][T19774] file 53248
[ 2710.506091][T19774] kernel_stack 3170304
[ 2710.506091][T19774] slab 6168576
[ 2710.506091][T19774] sock 8192
[ 2710.506091][T19774] shmem 0
[ 2710.506091][T19774] file_mapped 135168
[ 2710.506091][T19774] file_dirty 0
[ 2710.506091][T19774] file_writeback 0
[ 2710.506091][T19774] anon_thp 257949696
[ 2710.506091][T19774] inactive_anon 0
[ 2710.506091][T19774] active_anon 279961600
[ 2710.506091][T19774] inactive_file 28672
[ 2710.506091][T19774] active_file 61440
[ 2710.506091][T19774] unevictable 0
[ 2710.506091][T19774] slab_reclaimable 946176
[ 2710.506091][T19774] slab_unreclaimable 5222400
[ 2710.506091][T19774] pgfault 338844
[ 2710.506091][T19774] pgmajfault 0
[ 2710.506091][T19774] workingset_refault 0
[ 2710.506091][T19774] workingset_activate 0
[ 2710.506091][T19774] workingset_nodereclaim 0
[ 2710.506091][T19774] pgrefill 1572
[ 2710.506091][T19774] pgscan 17919
[ 2710.506091][T19774] pgsteal 16653
[ 2710.615527][T19774] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=19534,uid=0
[ 2710.637098][T19774] Memory cgroup out of memory: Killed process 19534 (syz-executor.4) total-vm:72584kB, anon-rss:2208kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000
03:56:12 executing program 2:
r0 = creat(&(0x7f00000006c0)='./bus\x00', 0x50)
truncate(&(0x7f00000000c0)='./bus\x00', 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x7fffdf00f000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000300)={0x100000011, @multicast2, 0x1100, 0x0, 'lblc\x00'}, 0x2c)
syz_mount_image$ext4(&(0x7f00000001c0)='ext3\x00', &(0x7f0000000200)='./bus\x00', 0x2f, 0x7, &(0x7f0000000700)=[{&(0x7f00000002c0)="1ba7043a5cc639c4b5988799f5e0150b4e16b82aadcd99ffc78dc9f2807764", 0x1f, 0x8001}, {&(0x7f0000000340)="828e6058ff8238a36d610d5e2368cf620864da17ad0eddd89fd12718c2a84ba9e0d2d2e53eca4634c61a6dce9e0642f4b2dc09e8811198f5958ff3abfc877e58055467a83cb8592098ece4ed6e969c0c9cb2cf9f943625be6dc932cb33af8f33fa04b723540fad40107689f8a2bad4ba5e4d99996074b427", 0x78, 0x2}, {&(0x7f00000004c0)="e884a859e9088662fa1f4280c3b22ee81cb379db9ff5c83c1c10d5f626bc07c723f5d5be9b4bbbca940a8daa0d8d77d8f12695b563c0d430e894ca019b61686b0999292e24e9f2fc135598bcf728af8fc55de9c492ed4846971457fa9ee800b061aec6f3d4746b1dc413dc74fba422a40fa2fff66b5fb394f20997ad844cf2dbc2f1509436ff5a6cde91b0beb19ced4c75d54197de258324914ab5c14ae5c5ecd2c1101ecad986c585a802445f1155a9a876318ce16419ffaaf80d47ed73f97f845a35767229038df562bb65de91241f6f370680b9719856ced3ec321740a847f63e81120e0acc744c", 0xe9}, {&(0x7f00000005c0)="d8569931592a51f0f47d702c8cee7cdc080c240c1debd3a9ece980ec826efbea9743e81f25af557afbee56dffba1abdb396ef3f81f1fcd00930cbfa5e4fda8cc657e087afd9911a94e2b01a3c83e845d8f8b0635a1c34edd72a5eb377bde537f983eb90f4e43418985ac95d4440e65eb86b4bc6b986987ddd3927bd9591ccc9207892926185cf944bfaf64a7a8be04a63681f5802fc65b6f738f2196a6924b7b2171d256bf4008ae4fb5e443021a4d2259eb44598eb343b0f5f7165235ac1af0a6e02dad3da1254a1a5f41fecb81c17a254dc0b038f5ba0cf947122327f6e98d59f34906", 0xe4, 0xf3ae}, {&(0x7f0000000400)="a93cc32fe14a56800f0a4f5b1999c01ce7a4131d7db0bb6bf9a4e5261a88ce4b74189f700600f73093e4a75a79150dff15d19d9c17b81a725202f1", 0x3b, 0x5}, {&(0x7f0000000440)="3030cd0c9346f28698a026", 0xb, 0x100000001}, {&(0x7f00000006c0), 0x0, 0x7}], 0x80020, &(0x7f00000007c0)={[{@dax='dax'}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@noacl='noacl'}, {@test_dummy_encryption='test_dummy_encryption'}, {@nobarrier='nobarrier'}, {@sb={'sb'}}, {@barrier='barrier'}, {@prjquota='prjquota'}], [{@obj_type={'obj_type', 0x3d, '/'}}]})
r4 = socket(0xa, 0x4000000001, 0x0)
ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000880)={0x1, 0x0, {0x7, 0x81, 0x4, 0x6}})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x11, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x1000000, 'lblcr\x00'}, 0x2c)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = dup3(r6, r5, 0x0)
dup3(r7, 0xffffffffffffffff, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r7, 0x800c5011, &(0x7f00000008c0))
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001580)={<r8=>0x0, @dev, @broadcast}, &(0x7f00000015c0)=0xc)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={r8, @loopback, @remote}, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000000c0)={<r9=>0x0, @remote, @empty}, &(0x7f0000000180)=0xfffffffffffffdf1)
ioctl$sock_inet_SIOCGIFPFLAGS(r4, 0x8935, &(0x7f00000003c0)={'veth1_to_team\x00', 0x9})
setsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000140)={r9, @remote, @loopback}, 0xc)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r3)
syz_genetlink_get_family_id$team(&(0x7f0000000840)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', r9})
bind$alg(0xffffffffffffffff, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r10, 0x4, 0x42000)
sendfile(r0, r1, 0x0, 0x20008)

03:56:12 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000240)='/dev/v4l-subdev#\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x7c15000000000000}, 0x0, 0x0)

03:56:12 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x0, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2710.772412][T19656] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2710.820275][T19656] CPU: 0 PID: 19656 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2710.828986][T19656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2710.839096][T19656] Call Trace:
[ 2710.842395][T19656]  dump_stack+0x11d/0x181
[ 2710.846785][T19656]  dump_header+0xaa/0x39c
[ 2710.851133][T19656]  oom_kill_process.cold+0x10/0x15
[ 2710.856262][T19656]  out_of_memory+0x231/0xa60
[ 2710.860881][T19656]  mem_cgroup_out_of_memory+0x128/0x150
[ 2710.866533][T19656]  try_charge+0xb6c/0xbf0
[ 2710.870936][T19656]  ? rcu_note_context_switch+0x720/0x760
[ 2710.876588][T19656]  mem_cgroup_try_charge+0xd2/0x260
[ 2710.881802][T19656]  mem_cgroup_try_charge_delay+0x3a/0x80
[ 2710.887441][T19656]  __handle_mm_fault+0x197f/0x2e00
[ 2710.892710][T19656]  handle_mm_fault+0x21b/0x530
[ 2710.897488][T19656]  __do_page_fault+0x456/0x8d0
[ 2710.902270][T19656]  do_page_fault+0x38/0x194
[ 2710.906799][T19656]  page_fault+0x34/0x40
[ 2710.910954][T19656] RIP: 0033:0x45dd4d
[ 2710.914895][T19656] Code: 5b 5d f3 c3 66 0f 1f 84 00 00 00 00 00 48 c7 c0 ea ff ff ff 48 85 ff 0f 84 e0 8c fb ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 <48> 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8
[ 2710.934597][T19656] RSP: 002b:00007ffdda484758 EFLAGS: 00010202
[ 2710.940685][T19656] RAX: ffffffffffffffea RBX: 00007ffac9a33700 RCX: 00007ffac9a33700
[ 2710.948669][T19656] RDX: 00000000003d0f00 RSI: 00007ffac9a32db0 RDI: 0000000000411f80
[ 2710.956649][T19656] RBP: 00007ffdda484970 R08: 00007ffac9a339d0 R09: 00007ffac9a33700
[ 2710.964624][T19656] R10: 00007ffac9a32dc0 R11: 0000000000000246 R12: 0000000000000000
[ 2710.972595][T19656] R13: 00007ffdda48480f R14: 00007ffac9a339c0 R15: 000000000075bfd4
[ 2710.982755][   T26] audit: type=1804 audit(2000001372.939:61118): pid=19887 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir375364990/syzkaller.NYbT2N/3782/bus" dev="sda1" ino=17172 res=1
03:56:13 executing program 1:
perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0x24}], 0x1)

[ 2711.198148][T19656] memory: usage 307200kB, limit 307200kB, failcnt 2961
[ 2711.205425][T19656] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2711.216960][T19656] Memory cgroup stats for /syz0:
[ 2711.217197][T19656] anon 286060544
[ 2711.217197][T19656] file 28672
[ 2711.217197][T19656] kernel_stack 2654208
[ 2711.217197][T19656] slab 5079040
[ 2711.217197][T19656] sock 81920
[ 2711.217197][T19656] shmem 8192
[ 2711.217197][T19656] file_mapped 0
[ 2711.217197][T19656] file_dirty 0
[ 2711.217197][T19656] file_writeback 0
[ 2711.217197][T19656] anon_thp 266338304
[ 2711.217197][T19656] inactive_anon 0
[ 2711.217197][T19656] active_anon 286060544
[ 2711.217197][T19656] inactive_file 4096
[ 2711.217197][T19656] active_file 49152
[ 2711.217197][T19656] unevictable 0
[ 2711.217197][T19656] slab_reclaimable 540672
[ 2711.217197][T19656] slab_unreclaimable 4538368
[ 2711.217197][T19656] pgfault 277563
[ 2711.217197][T19656] pgmajfault 0
[ 2711.217197][T19656] workingset_refault 0
[ 2711.217197][T19656] workingset_activate 0
[ 2711.217197][T19656] workingset_nodereclaim 0
[ 2711.217197][T19656] pgrefill 1593
[ 2711.217197][T19656] pgscan 9730
[ 2711.217197][T19656] pgsteal 8360
[ 2711.399809][T19656] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19537,uid=0
[ 2711.418768][T19656] Memory cgroup out of memory: Killed process 19537 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2711.474028][T19762] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 2711.497254][T19762] CPU: 0 PID: 19762 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0
[ 2711.506073][T19762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2711.516129][T19762] Call Trace:
[ 2711.519431][T19762]  dump_stack+0x11d/0x181
[ 2711.523813][T19762]  dump_header+0xaa/0x39c
[ 2711.528276][T19762]  oom_kill_process.cold+0x10/0x15
[ 2711.533403][T19762]  out_of_memory+0x231/0xa60
[ 2711.538033][T19762]  mem_cgroup_out_of_memory+0x128/0x150
[ 2711.543637][T19762]  try_charge+0x800/0xbf0
[ 2711.548014][T19762]  ? __rcu_read_unlock+0x66/0x3d0
[ 2711.553053][T19762]  __memcg_kmem_charge_memcg+0x4a/0xe0
[ 2711.558542][T19762]  __memcg_kmem_charge+0xcf/0x1b0
[ 2711.563585][T19762]  __alloc_pages_nodemask+0x26c/0x310
[ 2711.569059][T19762]  alloc_pages_current+0xd1/0x170
[ 2711.574097][T19762]  pte_alloc_one+0x18/0x50
[ 2711.578524][T19762]  __handle_mm_fault+0x2be6/0x2e00
[ 2711.583662][T19762]  handle_mm_fault+0x21b/0x530
[ 2711.588499][T19762]  __do_page_fault+0x456/0x8d0
[ 2711.593274][T19762]  do_page_fault+0x38/0x194
[ 2711.597858][T19762]  page_fault+0x34/0x40
[ 2711.602021][T19762] RIP: 0033:0x45b399
[ 2711.605920][T19762] Code: Bad RIP value.
[ 2711.609996][T19762] RSP: 002b:00007ffac9a53c78 EFLAGS: 00010246
[ 2711.616120][T19762] RAX: 0000000000000000 RBX: 00007ffac9a546d4 RCX: 000000000045b399
[ 2711.624092][T19762] RDX: 9999999999999999 RSI: 0000000000000000 RDI: 0000000000000000
[ 2711.632146][T19762] RBP: 000000000075bf20 R08: ffffffffffffffff R09: 0000000000000000
[ 2711.640122][T19762] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2711.648105][T19762] R13: 0000000000000070 R14: 00000000004c1c24 R15: 000000000075bf2c
[ 2711.667043][ T7840] ==================================================================
[ 2711.674025][T19762] memory: usage 307200kB, limit 307200kB, failcnt 2998
[ 2711.675356][ T7840] BUG: KCSAN: data-race in deadline_remove_request / ll_back_merge_fn
[ 2711.685551][T19762] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2711.690414][ T7840] 
[ 2711.690433][ T7840] read to 0xffff888129d38440 of 8 bytes by task 19993 on cpu 0:
[ 2711.690456][ T7840]  ll_back_merge_fn+0xa63/0xd80
[ 2711.690484][ T7840]  blk_rq_append_bio+0x231/0x450
[ 2711.700251][T19762] Memory cgroup stats for /syz0:
[ 2711.700489][T19762] anon 286191616
[ 2711.700489][T19762] file 28672
[ 2711.700489][T19762] kernel_stack 2654208
[ 2711.700489][T19762] slab 5079040
[ 2711.700489][T19762] sock 81920
[ 2711.700489][T19762] shmem 8192
[ 2711.700489][T19762] file_mapped 0
[ 2711.700489][T19762] file_dirty 0
[ 2711.700489][T19762] file_writeback 0
[ 2711.700489][T19762] anon_thp 266338304
[ 2711.700489][T19762] inactive_anon 0
[ 2711.700489][T19762] active_anon 286191616
[ 2711.700489][T19762] inactive_file 4096
[ 2711.700489][T19762] active_file 49152
[ 2711.700489][T19762] unevictable 0
[ 2711.700489][T19762] slab_reclaimable 540672
[ 2711.700489][T19762] slab_unreclaimable 4538368
[ 2711.700489][T19762] pgfault 277728
[ 2711.700489][T19762] pgmajfault 0
[ 2711.700489][T19762] workingset_refault 0
[ 2711.700489][T19762] workingset_activate 0
[ 2711.700489][T19762] workingset_nodereclaim 0
[ 2711.700489][T19762] pgrefill 1593
[ 2711.700489][T19762] pgscan 9763
[ 2711.700489][T19762] pgsteal 8360
[ 2711.707251][ T7840]  blk_rq_map_user_iov+0x1a8/0x420
[ 2711.707267][ T7840]  blk_rq_map_user+0x90/0xd0
[ 2711.707285][ T7840]  sg_common_write.isra.0+0xc64/0x12c0
[ 2711.707300][ T7840]  sg_new_write.isra.0+0x2bd/0x520
[ 2711.707314][ T7840]  sg_write.part.0+0x73e/0x8c0
[ 2711.707336][ T7840]  sg_write+0x65/0x88
[ 2711.712423][T19762] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19404,uid=0
[ 2711.717194][ T7840]  do_iter_write+0x34b/0x3c0
[ 2711.717214][ T7840]  vfs_writev+0x118/0x1c0
[ 2711.717231][ T7840]  do_writev+0xe3/0x250
[ 2711.717250][ T7840]  __x64_sys_writev+0x4e/0x60
[ 2711.717278][ T7840]  do_syscall_64+0xcc/0x3a0
[ 2711.738358][T19762] Memory cgroup out of memory: Killed process 19404 (syz-executor.0) total-vm:72584kB, anon-rss:2212kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000
[ 2711.811095][ T7840]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2711.811099][ T7840] 
[ 2711.811116][ T7840] write to 0xffff888129d38440 of 8 bytes by task 7840 on cpu 1:
[ 2711.811136][ T7840]  deadline_remove_request+0x1e5/0x260
[ 2711.811152][ T7840]  dd_dispatch_request+0x421/0x500
[ 2711.811171][ T7840]  blk_mq_do_dispatch_sched+0x1e3/0x260
[ 2711.811191][ T7840]  blk_mq_sched_dispatch_requests+0x2b4/0x380
[ 2711.811206][ T7840]  __blk_mq_run_hw_queue+0xb7/0x160
[ 2711.811222][ T7840]  __blk_mq_delay_run_hw_queue+0x31b/0x3a0
[ 2711.811235][ T7840]  blk_mq_run_hw_queue+0xfd/0x1c0
[ 2711.811262][ T7840]  blk_mq_sched_insert_requests+0x198/0x260
[ 2711.955185][ T7840]  blk_mq_flush_plug_list+0x572/0x6c0
[ 2711.960564][ T7840]  blk_flush_plug_list+0x271/0x2a0
[ 2711.965685][ T7840]  blk_finish_plug+0x60/0x84
[ 2711.970275][ T7840]  ext4_writepages+0xe32/0x2500
03:56:14 executing program 5:
mkdir(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffff000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca, 0x80001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3, 0x0, 0x9, 0x0, 0xff80}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe(0x0)
write$nbd(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="67446698000000000000010004000000171ec2b68c6e9bb8ed753725f323c8e29621d8e25028553a4c6d61d83f07cb21b52eb9a66cdcf77440459db3f423f15f2909a404b0b8425311edd6e8887b479ddc43e003fde4bb7d9dcd70b61ce549a2cb174749f6d4540453cc7d3b210f5398fe44190a51a8568d9ce82612bdff0d545ed9739ff672d1bac8defd108a7dfb66c0e85c0d92f816b0e8fde9b1e6220100010001c4f2a5304f3652eb1600b4ab6625ec0867"], 0x2e)
add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r1=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000580)=@sack_info={r1, 0xfffffffc, 0x81}, &(0x7f00000003c0)=0xc)
r2 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r2, 0x409, 0x8)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = dup3(r3, r2, 0x0)
dup3(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0xf7, 0x41, 0x4, 0x0, 0x9, 0x0, 0x7, 0x3f, 0x0, 0x8, 0xc4, 0x4a, 0x1f, 0x48}, 0xe)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000240)={0x9, 0x3ff, {0x52, 0x4, 0x7, {0xc41, 0xffff}, {0x8, 0xe1c}, @cond=[{0xffff, 0x5, 0x101, 0x2, 0x5, 0x10}, {0x9, 0xd81, 0xc39, 0x3f, 0x7}]}, {0x56, 0xb96, 0x7f, {0x3f, 0x5676}, {0x6, 0xe9}, @period={0x5d, 0x75eb, 0x7, 0xfffc, 0x200, {0x7, 0x7fff, 0xe762, 0x401}, 0x1, &(0x7f0000000140)=[0x5]}}})
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={r1, 0x8, 0x2, [0x0, 0x5]}, &(0x7f0000000200)=0xc)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000080)=@assoc_id=r1, &(0x7f00000000c0)=0x4)
syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000500)='+\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x2)
fcntl$addseals(r5, 0x409, 0x8)
r6 = socket$packet(0x11, 0x2, 0x300)
dup3(r6, r5, 0x0)
r7 = syz_open_dev$sg(0x0, 0x0, 0x5)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff824f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff770000000000200000009600000000000000a4000000000000000000", 0xffffffe5}], 0x2)

[ 2711.975126][ T7840]  do_writepages+0x6b/0x170
[ 2711.979633][ T7840]  __filemap_fdatawrite_range+0x1c5/0x230
[ 2711.985361][ T7840]  file_write_and_wait_range+0xfd/0x160
[ 2711.990927][ T7840]  ext4_sync_file+0x266/0xaf0
[ 2711.995613][ T7840]  vfs_fsync_range+0x82/0x150
[ 2712.000293][ T7840]  ext4_buffered_write_iter+0x222/0x290
[ 2712.005843][ T7840]  ext4_file_write_iter+0xf4/0xd40
[ 2712.010956][ T7840]  new_sync_write+0x388/0x4a0
[ 2712.015638][ T7840]  __vfs_write+0xb1/0xc0
[ 2712.019895][ T7840]  vfs_write+0x18a/0x390
[ 2712.024142][ T7840]  ksys_write+0xd5/0x1b0
[ 2712.028379][ T7840]  __x64_sys_write+0x4c/0x60
[ 2712.032958][ T7840]  do_syscall_64+0xcc/0x3a0
[ 2712.037457][ T7840]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2712.043340][ T7840] 
[ 2712.045647][ T7840] Reported by Kernel Concurrency Sanitizer on:
[ 2712.051790][ T7840] CPU: 1 PID: 7840 Comm: rs:main Q:Reg Not tainted 5.5.0-rc1-syzkaller #0
[ 2712.060268][ T7840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2712.070305][ T7840] ==================================================================
[ 2712.078352][ T7840] Kernel panic - not syncing: panic_on_warn set ...
[ 2712.084929][ T7840] CPU: 1 PID: 7840 Comm: rs:main Q:Reg Not tainted 5.5.0-rc1-syzkaller #0
[ 2712.093404][ T7840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2712.103485][ T7840] Call Trace:
[ 2712.106772][ T7840]  dump_stack+0x11d/0x181
[ 2712.111180][ T7840]  panic+0x210/0x640
[ 2712.115071][ T7840]  ? vprintk_func+0x8d/0x140
[ 2712.119646][ T7840]  kcsan_report.cold+0xc/0xd
[ 2712.124279][ T7840]  kcsan_setup_watchpoint+0x3fe/0x460
[ 2712.129643][ T7840]  __tsan_unaligned_write8+0xc7/0x110
[ 2712.135010][ T7840]  deadline_remove_request+0x1e5/0x260
[ 2712.140458][ T7840]  ? deadline_fifo_request+0xca/0x240
[ 2712.145828][ T7840]  dd_dispatch_request+0x421/0x500
[ 2712.150935][ T7840]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 2712.156652][ T7840]  blk_mq_do_dispatch_sched+0x1e3/0x260
[ 2712.162200][ T7840]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2712.168448][ T7840]  blk_mq_sched_dispatch_requests+0x2b4/0x380
[ 2712.174517][ T7840]  ? rb_insert_color+0x10a/0x350
[ 2712.179445][ T7840]  __blk_mq_run_hw_queue+0xb7/0x160
[ 2712.184631][ T7840]  __blk_mq_delay_run_hw_queue+0x31b/0x3a0
[ 2712.190429][ T7840]  blk_mq_run_hw_queue+0xfd/0x1c0
[ 2712.195458][ T7840]  ? dd_merged_requests+0x250/0x250
[ 2712.200697][ T7840]  blk_mq_sched_insert_requests+0x198/0x260
[ 2712.206594][ T7840]  blk_mq_flush_plug_list+0x572/0x6c0
[ 2712.211999][ T7840]  ? __pagevec_release+0x63/0x90
[ 2712.216928][ T7840]  blk_flush_plug_list+0x271/0x2a0
[ 2712.222029][ T7840]  ? __sanitizer_cov_trace_switch+0x49/0x80
[ 2712.227917][ T7840]  blk_finish_plug+0x60/0x84
[ 2712.232503][ T7840]  ext4_writepages+0xe32/0x2500
[ 2712.237355][ T7840]  ? ext4_mark_inode_dirty+0x420/0x420
[ 2712.242808][ T7840]  do_writepages+0x6b/0x170
[ 2712.247302][ T7840]  ? do_writepages+0x6b/0x170
[ 2712.251967][ T7840]  ? wbc_attach_and_unlock_inode+0xdd/0x3b0
[ 2712.257859][ T7840]  __filemap_fdatawrite_range+0x1c5/0x230
[ 2712.263573][ T7840]  file_write_and_wait_range+0xfd/0x160
[ 2712.269112][ T7840]  ext4_sync_file+0x266/0xaf0
[ 2712.273779][ T7840]  ? generic_perform_write+0x274/0x320
[ 2712.279230][ T7840]  ? __read_once_size.constprop.0+0x20/0x20
[ 2712.285238][ T7840]  vfs_fsync_range+0x82/0x150
[ 2712.289903][ T7840]  ext4_buffered_write_iter+0x222/0x290
[ 2712.295442][ T7840]  ext4_file_write_iter+0xf4/0xd40
[ 2712.300559][ T7840]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 2712.306794][ T7840]  ? iov_iter_init+0xe2/0x120
[ 2712.311466][ T7840]  new_sync_write+0x388/0x4a0
[ 2712.316140][ T7840]  __vfs_write+0xb1/0xc0
[ 2712.320470][ T7840]  vfs_write+0x18a/0x390
[ 2712.324705][ T7840]  ksys_write+0xd5/0x1b0
[ 2712.329067][ T7840]  __x64_sys_write+0x4c/0x60
[ 2712.333641][ T7840]  do_syscall_64+0xcc/0x3a0
[ 2712.338148][ T7840]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2712.344026][ T7840] RIP: 0033:0x7efc22a5419d
[ 2712.348432][ T7840] Code: d1 20 00 00 75 10 b8 01 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 be fa ff ff 48 89 04 24 b8 01 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 07 fb ff ff 48 89 d0 48 83 c4 08 48 3d 01
[ 2712.368232][ T7840] RSP: 002b:00007efc20ff4f90 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 2712.376641][ T7840] RAX: ffffffffffffffda RBX: 0000000000000400 RCX: 00007efc22a5419d
[ 2712.384599][ T7840] RDX: 0000000000000400 RSI: 0000000000cce340 RDI: 0000000000000001
[ 2712.392559][ T7840] RBP: 0000000000cce340 R08: 31313732205b203a R09: 5d3733363334352e
[ 2712.400521][ T7840] R10: 5d3236373931545b R11: 0000000000000293 R12: 0000000000000000
[ 2712.408499][ T7840] R13: 00007efc20ff5410 R14: 0000000000cf25f0 R15: 0000000000cce140
[ 2712.417890][ T7840] Kernel Offset: disabled
[ 2712.422211][ T7840] Rebooting in 86400 seconds..