0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x60}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3336.587540][ T8081] __nla_validate_parse: 72 callbacks suppressed
[ 3336.587561][ T8081] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3336.737697][ T8084] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3336.765351][ T8023] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3336.789937][ T8023] CPU: 0 PID: 8023 Comm: syz-executor.3 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3336.799973][ T8023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3336.810073][ T8023] Call Trace:
[ 3336.813378][ T8023]  <TASK>
[ 3336.816329][ T8023]  dump_stack_lvl+0x1e7/0x2e0
[ 3336.821037][ T8023]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3336.826262][ T8023]  ? __pfx__printk+0x10/0x10
[ 3336.830866][ T8023]  ? ___ratelimit+0x4c4/0x670
[ 3336.835572][ T8023]  ? __pfx____ratelimit+0x10/0x10
[ 3336.840667][ T8023]  dump_header+0xda/0x6a0
[ 3336.845018][ T8023]  oom_kill_process+0x3a7/0x930
[ 3336.849895][ T8023]  out_of_memory+0xf67/0x1320
[ 3336.852004][ T8088] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3336.854577][ T8023]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3336.854707][ T8023]  ? __pfx___mutex_lock+0x10/0x10
[ 3336.854736][ T8023]  ? __pfx_out_of_memory+0x10/0x10
[ 3336.854769][ T8023]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3336.854791][ T8023]  ? __pfx_lock_release+0x10/0x10
[ 3336.854817][ T8023]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3336.896746][ T8023]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3336.901949][ T8023]  ? mem_cgroup_iter+0x422/0x560
[ 3336.906885][ T8023]  try_charge_memcg+0xda2/0x18a0
[ 3336.911837][ T8023]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3336.917206][ T8023]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3336.922918][ T8023]  ? __pfx_lock_release+0x10/0x10
[ 3336.927941][ T8023]  ? memcg_account_kmem+0x1e7/0x210
[ 3336.933141][ T8023]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3336.938942][ T8023]  __memcg_kmem_charge_page+0xe1/0x250
[ 3336.944575][ T8023]  memcg_charge_kernel_stack+0x304/0x550
[ 3336.950208][ T8023]  dup_task_struct+0x15d/0x7d0
[ 3336.954975][ T8023]  copy_process+0x5d0/0x3fc0
[ 3336.959698][ T8023]  ? __pfx_lock_release+0x10/0x10
[ 3336.964727][ T8023]  ? __pfx_copy_process+0x10/0x10
[ 3336.969745][ T8023]  ? __might_fault+0xc5/0x120
[ 3336.974421][ T8023]  ? __asan_memset+0x23/0x50
[ 3336.979011][ T8023]  kernel_clone+0x21d/0x8d0
[ 3336.983616][ T8023]  ? __pfx_kernel_clone+0x10/0x10
[ 3336.988666][ T8023]  __se_sys_clone3+0x2cb/0x350
[ 3336.993437][ T8023]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3336.998766][ T8023]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3337.004780][ T8023]  ? exc_page_fault+0x587/0x870
[ 3337.009640][ T8023]  ? do_syscall_64+0xb4/0x240
[ 3337.014314][ T8023]  do_syscall_64+0xf9/0x240
[ 3337.018815][ T8023]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3337.024705][ T8023] RIP: 0033:0x7f35906a9b99
[ 3337.029116][ T8023] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3337.048986][ T8023] RSP: 002b:00007f35908cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3337.057403][ T8023] RAX: ffffffffffffffda RBX: 00007f3590652270 RCX: 00007f35906a9b99
[ 3337.065460][ T8023] RDX: 00007f3590652270 RSI: 0000000000000058 RDI: 00007f35908cf960
[ 3337.073442][ T8023] RBP: 00007f359148d6c0 R08: 00007f359148d6c0 R09: 00007f35908cfa47
[ 3337.081424][ T8023] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3337.089399][ T8023] R13: 000000000000006e R14: 00007f35908cf960 R15: 00007f35908cfa48
[ 3337.097384][ T8023]  </TASK>
[ 3337.189156][ T8090] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 3337.204600][ T8023] memory: usage 307200kB, limit 307200kB, failcnt 20054
[ 3337.219507][ T8023] memory+swap: usage 308304kB, limit 9007199254740988kB, failcnt 0
23:29:55 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x7}}}]}]}}]}, 0x74}}, 0x0)

23:29:55 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xf}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3337.239349][ T8023] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3337.257607][ T8023] Memory cgroup stats for /syz3:
[ 3337.257736][ T8023] cache 0
[ 3337.282109][ T8023] rss 0
[ 3337.289188][ T8023] rss_huge 0
[ 3337.296970][ T8023] shmem 0
[ 3337.303204][ T8023] mapped_file 0
[ 3337.310956][ T8023] dirty 0
[ 3337.318786][ T8094] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3337.334578][ T8023] writeback 0
23:29:55 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3337.337978][ T8023] workingset_refault_anon 8923
[ 3337.349837][ T8023] workingset_refault_file 0
[ 3337.361984][ T8023] swap 1130496
[ 3337.369207][ T8023] swapcached 0
[ 3337.377221][ T8023] pgpgin 628242
[ 3337.384591][ T8023] pgpgout 628242
[ 3337.391760][ T8023] pgfault 1381493
[ 3337.399113][ T8023] pgmajfault 8394
[ 3337.407566][ T8023] inactive_anon 0
[ 3337.414715][ T8023] active_anon 0
[ 3337.420195][ T8092] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3337.434480][ T8023] inactive_file 0
[ 3337.438494][ T8023] active_file 0
[ 3337.446553][ T8023] unevictable 0
[ 3337.457052][ T8023] hierarchical_memory_limit 314572800
[ 3337.469024][ T8023] hierarchical_memsw_limit 9223372036854771712
[ 3337.479039][ T8023] total_cache 0
[ 3337.486039][ T8023] total_rss 0
[ 3337.491751][ T8023] total_rss_huge 0
[ 3337.499223][ T8023] total_shmem 0
[ 3337.506822][ T8023] total_mapped_file 0
[ 3337.514677][ T8023] total_dirty 0
[ 3337.521692][ T8023] total_writeback 0
[ 3337.527211][ T8096] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3337.537661][ T8023] total_workingset_refault_anon 8923
23:29:55 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x8}}}]}]}}]}, 0x74}}, 0x0)

[ 3337.546561][ T8023] total_workingset_refault_file 0
[ 3337.552531][ T8100] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 3337.574219][ T8023] total_swap 1130496
[ 3337.578632][ T8023] total_swapcached 0
[ 3337.585775][ T8023] total_pgpgin 628242
23:29:55 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x10}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3337.596522][ T8023] total_pgpgout 628242
[ 3337.606916][ T8023] total_pgfault 1381493
[ 3337.615366][ T8023] total_pgmajfault 8394
[ 3337.623497][ T8023] total_inactive_anon 0
[ 3337.632475][ T8023] total_active_anon 0
[ 3337.646157][ T8023] total_inactive_file 0
[ 3337.657224][ T8023] total_active_file 0
[ 3337.665719][ T8023] total_unevictable 0
[ 3337.690849][ T8023] anon_cost 0
[ 3337.701412][ T8102] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3337.711036][ T8023] file_cost 0
23:29:56 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x2}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3337.734945][ T8023] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=8023,uid=0
[ 3337.768134][ T8023] Memory cgroup out of memory: Killed process 8023 (syz-executor.3) total-vm:54640kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3337.820644][ T8104] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
23:29:56 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x8, 0x2, [@TCA_BASIC_POLICE={0x4, 0x3}]}}]}, 0x38}}, 0x9e000000)

23:29:56 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x11}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:56 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x9}}}]}]}}]}, 0x74}}, 0x0)

23:29:56 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x3}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:56 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0xa}}}]}]}}]}, 0x74}}, 0x0)

23:29:56 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x12}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:56 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x4}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:56 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0xb}}}]}]}}]}, 0x74}}, 0x0)

23:29:56 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x14}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:57 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9e00}}}]}]}}]}, 0x74}}, 0x0)

23:29:57 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x5}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:57 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x15}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:57 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0xe}}}]}]}}]}, 0x74}}, 0x0)

23:29:57 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x18}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:57 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x6}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:57 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x10}}}]}]}}]}, 0x74}}, 0x0)

23:29:57 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x21}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:57 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x7}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:57 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x11}}}]}]}}]}, 0x74}}, 0x0)

23:29:57 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x25}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:58 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x8}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:58 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x48}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:58 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x14}}}]}]}}]}, 0x74}}, 0x0)

23:29:58 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x9}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:58 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x15}}}]}]}}]}, 0x74}}, 0x0)

23:29:58 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x4c}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:58 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0xa}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:58 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x16}}}]}]}}]}, 0x74}}, 0x0)

23:29:59 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0xb}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:59 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x60}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:59 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x1e}}}]}]}}]}, 0x74}}, 0x0)

23:29:59 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0xc}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:59 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x8, 0x2, [@TCA_BASIC_POLICE={0x4, 0x3}]}}]}, 0x38}}, 0x9e010000)

23:29:59 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x68}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:59 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x28}}}]}]}}]}, 0x74}}, 0x0)

23:29:59 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0xf}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:59 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x46}}}]}]}}]}, 0x74}}, 0x0)

23:29:59 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x6c}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:29:59 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x10}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3341.634749][ T8227] __nla_validate_parse: 53 callbacks suppressed
[ 3341.634770][ T8227] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:00 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xa601}}}]}]}}]}, 0x74}}, 0x0)

[ 3341.747078][ T8222] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3341.767658][ T8222] netlink: 19 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3341.786764][ T8229] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
23:30:00 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x4e}}}]}]}}]}, 0x74}}, 0x0)

23:30:00 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x74}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3341.886216][ T8224] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3341.919992][ T8234] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
23:30:00 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x11}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:00 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x5e}}}]}]}}]}, 0x74}}, 0x0)

[ 3342.062495][ T8240] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 3342.155785][ T8237] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:00 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x14}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3342.259512][ T8242] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:00 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x7a}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3342.306094][ T8245] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
23:30:00 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x6e}}}]}]}}]}, 0x74}}, 0x0)

23:30:01 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x15}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:01 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x300}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:01 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x7e}}}]}]}}]}, 0x74}}, 0x0)

23:30:01 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x48}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:01 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x500}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:01 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x96}}}]}]}}]}, 0x74}}, 0x0)

23:30:01 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x60}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:01 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x600}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:01 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x9e}}}]}]}}]}, 0x74}}, 0x0)

23:30:01 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:01 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x700}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:02 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0xa6}}}]}]}}]}, 0x74}}, 0x0)

23:30:02 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x2}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:02 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x900}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:02 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0xaa}}}]}]}}]}, 0x74}}, 0x0)

23:30:02 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x3}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:02 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x8, 0x2, [@TCA_BASIC_POLICE={0x4, 0x3}]}}]}, 0x38}}, 0xa4a8c912)

23:30:02 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xa00}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:02 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0xae}}}]}]}}]}, 0x74}}, 0x0)

23:30:02 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x4}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:02 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xb00}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:02 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0xe6}}}]}]}}]}, 0x74}}, 0x0)

23:30:02 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x5}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:03 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xc00}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:03 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xae00}}}]}]}}]}, 0x74}}, 0x0)

23:30:03 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0xf6}}}]}]}}]}, 0x74}}, 0x0)

23:30:03 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x6}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:03 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xd00}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:03 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x7}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:03 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c}]}]}}]}, 0x74}}, 0x0)

23:30:03 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xe00}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:03 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x8}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:04 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x2}}}]}]}}]}, 0x74}}, 0x0)

23:30:04 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x9}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:04 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xf00}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:04 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3}}}]}]}}]}, 0x74}}, 0x0)

23:30:04 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0xa}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:04 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x1100}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:04 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x4}}}]}]}}]}, 0x74}}, 0x0)

23:30:04 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0xb}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:04 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x1200}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3346.644759][ T8372] __nla_validate_parse: 65 callbacks suppressed
[ 3346.644782][ T8372] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3346.674882][ T8372] netlink: 19 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3346.704864][ T8379] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:05 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x1400}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:05 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x5}}}]}]}}]}, 0x74}}, 0x0)

23:30:05 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0xc}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3346.865247][ T8384] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3346.915672][ T8385] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 3347.079587][ T8386] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:05 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0xf}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:05 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x8, 0x2, [@TCA_BASIC_POLICE={0x4, 0x3}]}}]}, 0x38}}, 0xa6000000)

23:30:05 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x6}}}]}]}}]}, 0x74}}, 0x0)

[ 3347.215032][ T8389] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:05 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x1500}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3347.338022][ T8392] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 3347.457311][ T8398] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3347.573523][ T8397] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:05 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x10}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:06 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x7}}}]}]}}]}, 0x74}}, 0x0)

23:30:06 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x1800}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3347.780982][ T8391] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3347.814400][ T8391] CPU: 1 PID: 8391 Comm: syz-executor.3 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3347.824716][ T8391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3347.834803][ T8391] Call Trace:
[ 3347.838110][ T8391]  <TASK>
[ 3347.841064][ T8391]  dump_stack_lvl+0x1e7/0x2e0
[ 3347.845865][ T8391]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3347.851094][ T8391]  ? __pfx__printk+0x10/0x10
[ 3347.855709][ T8391]  ? ___ratelimit+0x4c4/0x670
[ 3347.860414][ T8391]  ? __pfx____ratelimit+0x10/0x10
[ 3347.865465][ T8391]  dump_header+0xda/0x6a0
[ 3347.869826][ T8391]  oom_kill_process+0x3a7/0x930
[ 3347.874711][ T8391]  out_of_memory+0xf67/0x1320
[ 3347.879421][ T8391]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3347.885077][ T8391]  ? __pfx___mutex_lock+0x10/0x10
[ 3347.890135][ T8391]  ? __pfx_out_of_memory+0x10/0x10
[ 3347.895297][ T8391]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3347.900873][ T8391]  ? __pfx_lock_release+0x10/0x10
[ 3347.905932][ T8391]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3347.912031][ T8391]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3347.917252][ T8391]  ? mem_cgroup_iter+0x422/0x560
[ 3347.922227][ T8391]  try_charge_memcg+0xda2/0x18a0
[ 3347.927212][ T8391]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3347.932619][ T8391]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3347.938445][ T8391]  ? __pfx_lock_release+0x10/0x10
[ 3347.943503][ T8391]  ? memcg_account_kmem+0x1e7/0x210
[ 3347.948740][ T8391]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3347.954581][ T8391]  __memcg_kmem_charge_page+0xe1/0x250
[ 3347.960084][ T8391]  memcg_charge_kernel_stack+0x304/0x550
[ 3347.965763][ T8391]  dup_task_struct+0x15d/0x7d0
[ 3347.970646][ T8391]  copy_process+0x5d0/0x3fc0
[ 3347.975294][ T8391]  ? __pfx_lock_release+0x10/0x10
23:30:06 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x11}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:06 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xb603}}}]}]}}]}, 0x74}}, 0x0)

[ 3347.980355][ T8391]  ? __lock_acquire+0x1345/0x1fd0
[ 3347.985412][ T8391]  ? __pfx_copy_process+0x10/0x10
[ 3347.990474][ T8391]  ? __might_fault+0xc5/0x120
[ 3347.995244][ T8391]  ? __asan_memset+0x23/0x50
[ 3347.999886][ T8391]  kernel_clone+0x21d/0x8d0
[ 3348.004438][ T8391]  ? __pfx_kernel_clone+0x10/0x10
[ 3348.009506][ T8391]  ? __pfx_lock_release+0x10/0x10
[ 3348.014580][ T8391]  __se_sys_clone3+0x2cb/0x350
[ 3348.019385][ T8391]  ? __might_fault+0xa9/0x120
[ 3348.024101][ T8391]  ? __pfx___se_sys_clone3+0x10/0x10
23:30:06 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x8}}}]}]}}]}, 0x74}}, 0x0)

23:30:06 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x14}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3348.029435][ T8391]  ? rcu_is_watching+0x15/0xb0
[ 3348.034259][ T8391]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3348.040299][ T8391]  ? exc_page_fault+0x587/0x870
[ 3348.045186][ T8391]  ? do_syscall_64+0xb4/0x240
[ 3348.049889][ T8391]  do_syscall_64+0xf9/0x240
[ 3348.054433][ T8391]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3348.060361][ T8391] RIP: 0033:0x7f35906a9b99
[ 3348.064808][ T8391] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3348.084465][ T8391] RSP: 002b:00007f35908cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3348.092919][ T8391] RAX: ffffffffffffffda RBX: 00007f3590652270 RCX: 00007f35906a9b99
[ 3348.100969][ T8391] RDX: 00007f3590652270 RSI: 0000000000000058 RDI: 00007f35908cf960
[ 3348.108969][ T8391] RBP: 00007f359148d6c0 R08: 00007f359148d6c0 R09: 00007f35908cfa47
[ 3348.116975][ T8391] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3348.124977][ T8391] R13: 000000000000006e R14: 00007f35908cf960 R15: 00007f35908cfa48
[ 3348.132998][ T8391]  </TASK>
23:30:06 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x2000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3348.193062][ T8391] memory: usage 307200kB, limit 307200kB, failcnt 25644
[ 3348.200664][ T8391] memory+swap: usage 308304kB, limit 9007199254740988kB, failcnt 0
23:30:06 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x15}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3348.264129][ T8391] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3348.287559][ T8391] Memory cgroup stats for /syz3:
[ 3348.287724][ T8391] cache 0
[ 3348.305828][ T8391] rss 16384
23:30:06 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x9}}}]}]}}]}, 0x74}}, 0x0)

[ 3348.312469][ T8391] rss_huge 0
[ 3348.321760][ T8391] shmem 0
[ 3348.328490][ T8391] mapped_file 0
[ 3348.335352][ T8391] dirty 0
[ 3348.338332][ T8391] writeback 0
[ 3348.341627][ T8391] workingset_refault_anon 11702
[ 3348.374533][ T8391] workingset_refault_file 0
[ 3348.379095][ T8391] swap 1187840
[ 3348.382472][ T8391] swapcached 12288
[ 3348.399321][ T8391] pgpgin 631185
[ 3348.407756][ T8391] pgpgout 631181
23:30:06 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x2100}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3348.422766][ T8391] pgfault 1385648
[ 3348.437063][ T8391] pgmajfault 11167
[ 3348.447002][ T8391] inactive_anon 0
[ 3348.455644][ T8391] active_anon 16384
23:30:06 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x48}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3348.478063][ T8391] inactive_file 0
[ 3348.490050][ T8391] active_file 0
[ 3348.502197][ T8391] unevictable 0
[ 3348.510753][ T8391] hierarchical_memory_limit 314572800
[ 3348.521505][ T8391] hierarchical_memsw_limit 9223372036854771712
[ 3348.534161][ T8391] total_cache 0
[ 3348.540981][ T8391] total_rss 16384
[ 3348.550010][ T8391] total_rss_huge 0
[ 3348.558036][ T8391] total_shmem 0
[ 3348.570773][ T8391] total_mapped_file 0
[ 3348.579100][ T8391] total_dirty 0
[ 3348.586868][ T8391] total_writeback 0
[ 3348.595994][ T8391] total_workingset_refault_anon 11702
[ 3348.608408][ T8391] total_workingset_refault_file 0
[ 3348.632019][ T8391] total_swap 1187840
23:30:07 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xa}}}]}]}}]}, 0x74}}, 0x0)

[ 3348.644781][ T8391] total_swapcached 12288
[ 3348.664172][ T8391] total_pgpgin 631185
[ 3348.668211][ T8391] total_pgpgout 631181
[ 3348.672292][ T8391] total_pgfault 1385648
[ 3348.700945][ T8391] total_pgmajfault 11167
[ 3348.715562][ T8391] total_inactive_anon 0
[ 3348.730067][ T8391] total_active_anon 16384
[ 3348.744359][ T8391] total_inactive_file 0
23:30:07 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x2500}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3348.748573][ T8391] total_active_file 0
[ 3348.752563][ T8391] total_unevictable 0
[ 3348.786059][ T8391] anon_cost 0
[ 3348.792390][ T8391] file_cost 0
[ 3348.799538][ T8391] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=8391,uid=0
23:30:07 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x60}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3348.841420][ T8391] Memory cgroup out of memory: Killed process 8391 (syz-executor.3) total-vm:54640kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
23:30:07 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x8, 0x2, [@TCA_BASIC_POLICE={0x4, 0x3}]}}]}, 0x38}}, 0xa6010000)

23:30:07 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xb}}}]}]}}]}, 0x74}}, 0x0)

23:30:07 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x4788}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:07 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x300}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:07 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xe}}}]}]}}]}, 0x74}}, 0x0)

23:30:07 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x500}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:07 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x4800}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:08 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x10}}}]}]}}]}, 0x74}}, 0x0)

23:30:08 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x600}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:08 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x4888}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:08 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x700}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:08 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x11}}}]}]}}]}, 0x74}}, 0x0)

23:30:08 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x4c00}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:08 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x14}}}]}]}}]}, 0x74}}, 0x0)

23:30:08 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x900}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:08 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x55e5}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:08 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x15}}}]}]}}]}, 0x74}}, 0x0)

23:30:09 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x5865}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:09 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0xa00}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:09 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x16}}}]}]}}]}, 0x74}}, 0x0)

23:30:09 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0xb00}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:09 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xbe01}}}]}]}}]}, 0x74}}, 0x0)

23:30:09 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x6000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:09 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x1e}}}]}]}}]}, 0x74}}, 0x0)

23:30:09 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x6558}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:09 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0xc00}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:09 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x28}}}]}]}}]}, 0x74}}, 0x0)

23:30:10 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x6800}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3351.658460][ T8532] __nla_validate_parse: 58 callbacks suppressed
[ 3351.658481][ T8532] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
23:30:10 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0xf00}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3351.786877][ T8535] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3351.928750][ T8534] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3351.952603][ T8534] netlink: 19 bytes leftover after parsing attributes in process `syz-executor.4'.
23:30:10 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x46}}}]}]}}]}, 0x74}}, 0x0)

[ 3351.976822][ T8538] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:10 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x8, 0x2, [@TCA_BASIC_POLICE={0x4, 0x3}]}}]}, 0x38}}, 0xaa000000)

23:30:10 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x6c00}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3352.033090][ T8539] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 3352.141458][ T8544] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:10 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x1100}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3352.256194][ T8542] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
23:30:10 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x4e}}}]}]}}]}, 0x74}}, 0x0)

[ 3352.371707][ T8548] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3352.388426][ T8552] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
23:30:10 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x7400}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:10 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x1400}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:11 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x5e}}}]}]}}]}, 0x74}}, 0x0)

23:30:11 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x7a00}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:11 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x1500}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:11 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x8100}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:11 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x6e}}}]}]}}]}, 0x74}}, 0x0)

23:30:11 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x1f00}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:11 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x8847}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:11 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x4788}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:11 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x7e}}}]}]}}]}, 0x74}}, 0x0)

23:30:12 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x8848}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:12 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x4800}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:12 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x96}}}]}]}}]}, 0x74}}, 0x0)

23:30:12 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xbe02}}}]}]}}]}, 0x74}}, 0x0)

23:30:12 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xe555}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:12 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x4888}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:12 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x9e}}}]}]}}]}, 0x74}}, 0x0)

23:30:12 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xe5b6}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:12 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xa6}}}]}]}}]}, 0x74}}, 0x0)

23:30:12 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x5865}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:12 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x34000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:13 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x6000}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:13 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xaa}}}]}]}}]}, 0x74}}, 0x0)

23:30:13 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x400300}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:13 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x6558}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:13 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x8, 0x2, [@TCA_BASIC_POLICE={0x4, 0x3}]}}]}, 0x38}}, 0xae000000)

23:30:13 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xae}}}]}]}}]}, 0x74}}, 0x0)

23:30:13 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x1000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:13 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x7f00}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:13 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x2000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:13 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xe6}}}]}]}}]}, 0x74}}, 0x0)

23:30:14 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x8100}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3355.910536][ T8634] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3355.935684][ T8634] CPU: 0 PID: 8634 Comm: syz-executor.3 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3355.945722][ T8634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3355.955808][ T8634] Call Trace:
[ 3355.959116][ T8634]  <TASK>
[ 3355.962064][ T8634]  dump_stack_lvl+0x1e7/0x2e0
[ 3355.966780][ T8634]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3355.972002][ T8634]  ? __pfx__printk+0x10/0x10
[ 3355.976603][ T8634]  ? ___ratelimit+0x4c4/0x670
[ 3355.981289][ T8634]  ? __pfx____ratelimit+0x10/0x10
[ 3355.986320][ T8634]  dump_header+0xda/0x6a0
[ 3355.990649][ T8634]  oom_kill_process+0x3a7/0x930
[ 3355.995498][ T8634]  out_of_memory+0xf67/0x1320
[ 3356.000177][ T8634]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3356.005809][ T8634]  ? __pfx___mutex_lock+0x10/0x10
[ 3356.010835][ T8634]  ? __pfx_out_of_memory+0x10/0x10
[ 3356.015950][ T8634]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3356.021489][ T8634]  ? __pfx_lock_release+0x10/0x10
[ 3356.026511][ T8634]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3356.032577][ T8634]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3356.037773][ T8634]  ? mem_cgroup_iter+0x422/0x560
[ 3356.042705][ T8634]  try_charge_memcg+0xda2/0x18a0
[ 3356.047655][ T8634]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3356.053020][ T8634]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3356.058731][ T8634]  ? __pfx_lock_release+0x10/0x10
[ 3356.063755][ T8634]  ? memcg_account_kmem+0x1e7/0x210
[ 3356.068952][ T8634]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3356.074751][ T8634]  __memcg_kmem_charge_page+0xe1/0x250
[ 3356.080207][ T8634]  memcg_charge_kernel_stack+0x304/0x550
[ 3356.085840][ T8634]  dup_task_struct+0x40d/0x7d0
[ 3356.090598][ T8634]  copy_process+0x5d0/0x3fc0
[ 3356.095197][ T8634]  ? __pfx_lock_release+0x10/0x10
[ 3356.100225][ T8634]  ? __pfx_copy_process+0x10/0x10
[ 3356.105246][ T8634]  ? __might_fault+0xc5/0x120
[ 3356.109920][ T8634]  ? __asan_memset+0x23/0x50
[ 3356.114508][ T8634]  kernel_clone+0x21d/0x8d0
[ 3356.119009][ T8634]  ? __pfx_kernel_clone+0x10/0x10
[ 3356.124219][ T8634]  __se_sys_clone3+0x2cb/0x350
[ 3356.128981][ T8634]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3356.134290][ T8634]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3356.140272][ T8634]  ? exc_page_fault+0x587/0x870
[ 3356.145126][ T8634]  ? do_syscall_64+0xb4/0x240
[ 3356.149802][ T8634]  do_syscall_64+0xf9/0x240
[ 3356.154303][ T8634]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3356.160189][ T8634] RIP: 0033:0x7f35906a9b99
[ 3356.165204][ T8634] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3356.184803][ T8634] RSP: 002b:00007f35908cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3356.193210][ T8634] RAX: ffffffffffffffda RBX: 00007f3590652270 RCX: 00007f35906a9b99
[ 3356.201181][ T8634] RDX: 00007f3590652270 RSI: 0000000000000058 RDI: 00007f35908cf960
[ 3356.209149][ T8634] RBP: 00007f359148d6c0 R08: 00007f359148d6c0 R09: 00007f35908cfa47
[ 3356.217116][ T8634] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3356.225089][ T8634] R13: 000000000000006e R14: 00007f35908cf960 R15: 00007f35908cfa48
[ 3356.233069][ T8634]  </TASK>
23:30:14 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x8847}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:14 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x3000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:14 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xf6}}}]}]}}]}, 0x74}}, 0x0)

[ 3356.319815][ T8634] memory: usage 307200kB, limit 307200kB, failcnt 29594
[ 3356.341460][ T8634] memory+swap: usage 308372kB, limit 9007199254740988kB, failcnt 0
[ 3356.382237][ T8634] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3356.398907][ T8634] Memory cgroup stats for /syz3:
[ 3356.399051][ T8634] cache 0
[ 3356.420240][ T8634] rss 0
[ 3356.423270][ T8634] rss_huge 0
[ 3356.427303][ T8634] shmem 0
23:30:14 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x8848}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3356.430481][ T8634] mapped_file 0
[ 3356.434891][ T8634] dirty 0
[ 3356.449776][ T8634] writeback 0
[ 3356.457956][ T8634] workingset_refault_anon 13509
[ 3356.471839][ T8634] workingset_refault_file 0
[ 3356.488842][ T8634] swap 1200128
[ 3356.496377][ T8634] swapcached 0
[ 3356.512117][ T8634] pgpgin 633116
[ 3356.526545][ T8634] pgpgout 633116
[ 3356.539447][ T8634] pgfault 1388527
[ 3356.555953][ T8634] pgmajfault 12984
[ 3356.559721][ T8634] inactive_anon 0
[ 3356.563353][ T8634] active_anon 0
23:30:14 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x4000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3356.591490][ T8634] inactive_file 0
[ 3356.601286][ T8634] active_file 0
[ 3356.610918][ T8634] unevictable 0
[ 3356.617519][ T8634] hierarchical_memory_limit 314572800
[ 3356.629124][ T8634] hierarchical_memsw_limit 9223372036854771712
[ 3356.641760][ T8634] total_cache 0
[ 3356.649396][ T8634] total_rss 0
[ 3356.659190][ T8634] total_rss_huge 0
[ 3356.667799][ T8661] __nla_validate_parse: 50 callbacks suppressed
[ 3356.667814][ T8661] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3356.686470][ T8634] total_shmem 0
[ 3356.691041][ T8634] total_mapped_file 0
[ 3356.696858][ T8634] total_dirty 0
[ 3356.702675][ T8634] total_writeback 0
[ 3356.707571][ T8661] netlink: 19 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3356.718757][ T8634] total_workingset_refault_anon 13509
[ 3356.725115][ T8634] total_workingset_refault_file 0
[ 3356.730347][ T8634] total_swap 1200128
[ 3356.735412][ T8634] total_swapcached 0
23:30:15 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x116}}}]}]}}]}, 0x74}}, 0x0)

[ 3356.739909][ T8668] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3356.746621][ T8634] total_pgpgin 633116
[ 3356.760804][ T8634] total_pgpgout 633116
[ 3356.768528][ T8634] total_pgfault 1388527
[ 3356.782019][ T8634] total_pgmajfault 12984
23:30:15 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3356.789116][ T8634] total_inactive_anon 0
[ 3356.817068][ T8634] total_active_anon 0
[ 3356.831162][ T8634] total_inactive_file 0
[ 3356.842407][ T8634] total_active_file 0
[ 3356.852576][ T8634] total_unevictable 0
[ 3356.857082][ T8634] anon_cost 0
[ 3356.860565][ T8634] file_cost 0
[ 3356.864403][ T8634] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=8634,uid=0
[ 3356.880775][ T8634] Memory cgroup out of memory: Killed process 8634 (syz-executor.3) total-vm:54640kB, anon-rss:388kB, file-rss:8800kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3356.898742][ T8669] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3356.919165][ T8674] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
23:30:15 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x5000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3356.999945][ T8675] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
23:30:15 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x8, 0x2, [@TCA_BASIC_POLICE={0x4, 0x3}]}}]}, 0x38}}, 0xae030000)

23:30:15 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x2}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:15 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x12e}}}]}]}}]}, 0x74}}, 0x0)

[ 3357.094765][ T8677] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:15 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x6000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3357.214870][ T8682] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3357.229770][ T8683] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
23:30:15 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc603}}}]}]}}]}, 0x74}}, 0x0)

[ 3357.302691][ T8681] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
23:30:15 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x3}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:15 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x13e}}}]}]}}]}, 0x74}}, 0x0)

23:30:15 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x7000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:15 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x4}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:16 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x156}}}]}]}}]}, 0x74}}, 0x0)

23:30:16 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x8000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:16 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x5}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:16 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x8000008}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:16 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x15e}}}]}]}}]}, 0x74}}, 0x0)

23:30:16 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x6}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:16 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x7}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:16 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x9000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:16 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x16e}}}]}]}}]}, 0x74}}, 0x0)

23:30:17 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xa000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:17 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x8}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:17 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x17e}}}]}]}}]}, 0x74}}, 0x0)

23:30:17 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xb000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:17 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x19e}}}]}]}}]}, 0x74}}, 0x0)

23:30:17 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x9}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:17 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xc000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:18 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x1a6}}}]}]}}]}, 0x74}}, 0x0)

23:30:18 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0xa}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:18 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xd000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:18 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x1be}}}]}]}}]}, 0x74}}, 0x0)

23:30:18 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0xb}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:18 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xe000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:18 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x8, 0x2, [@TCA_BASIC_POLICE={0x4, 0x3}]}}]}, 0x38}}, 0xb6030000)

23:30:18 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0xc}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:18 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xca01}}}]}]}}]}, 0x74}}, 0x0)

23:30:18 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x1e6}}}]}]}}]}, 0x74}}, 0x0)

23:30:18 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0xf000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:18 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0xf}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:19 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x226}}}]}]}}]}, 0x74}}, 0x0)

23:30:19 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x10}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:19 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x10000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3360.996673][ T8773] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3361.033543][ T8773] CPU: 1 PID: 8773 Comm: syz-executor.3 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3361.043584][ T8773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3361.053664][ T8773] Call Trace:
[ 3361.056965][ T8773]  <TASK>
[ 3361.059916][ T8773]  dump_stack_lvl+0x1e7/0x2e0
[ 3361.065055][ T8773]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3361.070282][ T8773]  ? __pfx__printk+0x10/0x10
[ 3361.074885][ T8773]  ? ___ratelimit+0x4c4/0x670
[ 3361.079579][ T8773]  ? __pfx____ratelimit+0x10/0x10
[ 3361.084629][ T8773]  dump_header+0xda/0x6a0
[ 3361.088983][ T8773]  oom_kill_process+0x3a7/0x930
[ 3361.093866][ T8773]  out_of_memory+0xf67/0x1320
[ 3361.098566][ T8773]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3361.104214][ T8773]  ? __pfx___mutex_lock+0x10/0x10
[ 3361.109271][ T8773]  ? __pfx_out_of_memory+0x10/0x10
[ 3361.114415][ T8773]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3361.119984][ T8773]  ? __pfx_lock_release+0x10/0x10
[ 3361.125046][ T8773]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3361.131145][ T8773]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3361.136369][ T8773]  ? mem_cgroup_iter+0x422/0x560
[ 3361.141311][ T8773]  try_charge_memcg+0xda2/0x18a0
[ 3361.146270][ T8773]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3361.151637][ T8773]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3361.157351][ T8773]  ? __pfx_lock_release+0x10/0x10
[ 3361.162370][ T8773]  ? memcg_account_kmem+0x1e7/0x210
[ 3361.167568][ T8773]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3361.173367][ T8773]  __memcg_kmem_charge_page+0xe1/0x250
[ 3361.178826][ T8773]  memcg_charge_kernel_stack+0x304/0x550
[ 3361.184462][ T8773]  dup_task_struct+0x15d/0x7d0
[ 3361.189246][ T8773]  copy_process+0x5d0/0x3fc0
[ 3361.193838][ T8773]  ? __pfx_lock_release+0x10/0x10
[ 3361.198865][ T8773]  ? __pfx_copy_process+0x10/0x10
[ 3361.203881][ T8773]  ? __might_fault+0xc5/0x120
[ 3361.208554][ T8773]  ? __asan_memset+0x23/0x50
[ 3361.213142][ T8773]  kernel_clone+0x21d/0x8d0
[ 3361.217640][ T8773]  ? __pfx_kernel_clone+0x10/0x10
[ 3361.222673][ T8773]  __se_sys_clone3+0x2cb/0x350
[ 3361.227444][ T8773]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3361.233003][ T8773]  ? do_syscall_64+0x108/0x240
[ 3361.237768][ T8773]  ? do_syscall_64+0xb4/0x240
[ 3361.242442][ T8773]  do_syscall_64+0xf9/0x240
[ 3361.246944][ T8773]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3361.252834][ T8773] RIP: 0033:0x7f35906a9b99
[ 3361.257248][ T8773] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3361.276844][ T8773] RSP: 002b:00007f35908cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3361.285254][ T8773] RAX: ffffffffffffffda RBX: 00007f3590652270 RCX: 00007f35906a9b99
23:30:19 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x11000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:19 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x2be}}}]}]}}]}, 0x74}}, 0x0)

[ 3361.293217][ T8773] RDX: 00007f3590652270 RSI: 0000000000000058 RDI: 00007f35908cf960
[ 3361.301182][ T8773] RBP: 00007f359148d6c0 R08: 00007f359148d6c0 R09: 00007f35908cfa47
[ 3361.309144][ T8773] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3361.317105][ T8773] R13: 000000000000006e R14: 00007f35908cf960 R15: 00007f35908cfa48
[ 3361.325171][ T8773]  </TASK>
23:30:19 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x11}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3361.477326][ T8773] memory: usage 307200kB, limit 307200kB, failcnt 31821
[ 3361.526605][ T8773] memory+swap: usage 308304kB, limit 9007199254740988kB, failcnt 0
[ 3361.546439][ T8773] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3361.553776][ T8773] Memory cgroup stats for /syz3:
[ 3361.553908][ T8773] cache 0
23:30:19 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x300}}}]}]}}]}, 0x74}}, 0x0)

23:30:20 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x12000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3361.574342][ T8773] rss 16384
[ 3361.577504][ T8773] rss_huge 0
[ 3361.580707][ T8773] shmem 0
[ 3361.583664][ T8773] mapped_file 0
[ 3361.598275][ T8773] dirty 0
[ 3361.603791][ T8773] writeback 0
[ 3361.611115][ T8773] workingset_refault_anon 14432
[ 3361.619980][ T8773] workingset_refault_file 0
23:30:20 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x14}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3361.664962][ T8773] swap 1114112
[ 3361.677695][ T8773] swapcached 12288
[ 3361.685281][ T8808] __nla_validate_parse: 60 callbacks suppressed
[ 3361.685299][ T8808] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3361.686179][ T8773] pgpgin 634096
[ 3361.749573][ T8773] pgpgout 634092
[ 3361.753174][ T8773] pgfault 1389990
[ 3361.760430][ T8810] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3361.775864][ T8773] pgmajfault 13892
[ 3361.785674][ T8773] inactive_anon 0
23:30:20 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x31e}}}]}]}}]}, 0x74}}, 0x0)

[ 3361.797472][ T8773] active_anon 12288
[ 3361.815818][ T8773] inactive_file 0
[ 3361.822456][ T8813] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 3361.824403][ T8773] active_file 0
[ 3361.863882][ T8773] unevictable 0
[ 3361.872372][ T8773] hierarchical_memory_limit 314572800
[ 3361.896486][ T8773] hierarchical_memsw_limit 9223372036854771712
[ 3361.902681][ T8773] total_cache 0
[ 3361.925397][ T8814] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3361.925818][ T8773] total_rss 16384
[ 3361.944760][ T8773] total_rss_huge 0
[ 3361.953079][ T8773] total_shmem 0
[ 3361.958348][ T8817] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
23:30:20 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x14000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:20 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x15}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3361.974260][ T8773] total_mapped_file 0
[ 3361.981749][ T8773] total_dirty 0
[ 3361.990264][ T8773] total_writeback 0
[ 3362.000562][ T8773] total_workingset_refault_anon 14432
[ 3362.015582][ T8773] total_workingset_refault_file 0
[ 3362.029963][ T8773] total_swap 1114112
[ 3362.041370][ T8773] total_swapcached 12288
[ 3362.050626][ T8773] total_pgpgin 634096
[ 3362.061745][ T8773] total_pgpgout 634092
[ 3362.076919][ T8773] total_pgfault 1389990
[ 3362.086973][ T8773] total_pgmajfault 13892
[ 3362.101820][ T8773] total_inactive_anon 0
[ 3362.115398][ T8773] total_active_anon 12288
[ 3362.118844][ T8823] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 3362.126756][ T8773] total_inactive_file 0
[ 3362.144209][ T8773] total_active_file 0
[ 3362.148237][ T8773] total_unevictable 0
[ 3362.152229][ T8773] anon_cost 0
23:30:20 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x336}}}]}]}}]}, 0x74}}, 0x0)

[ 3362.179654][ T8773] file_cost 0
[ 3362.196597][ T8773] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=8773,uid=0
[ 3362.213810][ T8824] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3362.226185][ T8773] Memory cgroup out of memory: Killed process 8773 (syz-executor.3) total-vm:54640kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
23:30:20 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x48}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3362.291796][ T8820] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3362.310529][ T8827] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3362.327461][ T5098] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
23:30:20 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x15000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3362.428405][ T5098] CPU: 0 PID: 5098 Comm: syz-executor.3 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3362.438472][ T5098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3362.448554][ T5098] Call Trace:
[ 3362.451853][ T5098]  <TASK>
[ 3362.454796][ T5098]  dump_stack_lvl+0x1e7/0x2e0
[ 3362.459498][ T5098]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3362.464725][ T5098]  ? __pfx__printk+0x10/0x10
[ 3362.469333][ T5098]  ? ___ratelimit+0x4c4/0x670
[ 3362.474053][ T5098]  ? __pfx____ratelimit+0x10/0x10
[ 3362.479111][ T5098]  dump_header+0xda/0x6a0
[ 3362.483545][ T5098]  oom_kill_process+0x3a7/0x930
[ 3362.488426][ T5098]  out_of_memory+0xf67/0x1320
[ 3362.493134][ T5098]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3362.498788][ T5098]  ? __pfx___mutex_lock+0x10/0x10
[ 3362.503829][ T5098]  ? __pfx_out_of_memory+0x10/0x10
[ 3362.508968][ T5098]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3362.514542][ T5098]  ? __pfx_lock_release+0x10/0x10
[ 3362.519593][ T5098]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3362.525692][ T5098]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3362.530921][ T5098]  ? mem_cgroup_iter+0x422/0x560
[ 3362.535890][ T5098]  try_charge_memcg+0xda2/0x18a0
[ 3362.540846][ T5098]  ? mark_lock+0x9a/0x350
[ 3362.545223][ T5098]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3362.550644][ T5098]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3362.556821][ T5098]  charge_memcg+0xa2/0x160
[ 3362.561269][ T5098]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3362.567370][ T5098]  __read_swap_cache_async+0x480/0x8b0
[ 3362.572856][ T5098]  ? mark_lock+0x9a/0x350
[ 3362.577223][ T5098]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3362.583326][ T5098]  swap_cluster_readahead+0x67c/0x810
[ 3362.588731][ T5098]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3362.594742][ T5098]  ? __pfx_lock_release+0x10/0x10
[ 3362.599800][ T5098]  ? xas_descend+0x37e/0x470
[ 3362.604418][ T5098]  swapin_readahead+0x1ea/0x1070
[ 3362.609371][ T5098]  ? filemap_get_entry+0x127/0x4e0
[ 3362.614526][ T5098]  ? __pfx_swapin_readahead+0x10/0x10
[ 3362.619934][ T5098]  ? __filemap_get_folio+0x935/0xbc0
[ 3362.625256][ T5098]  ? swap_cache_get_folio+0x9f/0x570
[ 3362.630574][ T5098]  do_swap_page+0x791/0x3f40
[ 3362.635192][ T5098]  ? rcu_is_watching+0x15/0xb0
[ 3362.639984][ T5098]  ? do_swap_page+0x154/0x3f40
[ 3362.644766][ T5098]  ? __pfx_do_swap_page+0x10/0x10
[ 3362.649813][ T5098]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3362.655297][ T5098]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3362.661142][ T5098]  __handle_mm_fault+0x15e8/0x72d0
[ 3362.666290][ T5098]  ? reacquire_held_locks+0x3eb/0x690
[ 3362.671679][ T5098]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3362.677175][ T5098]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3362.682935][ T5098]  ? mtree_range_walk+0x6fd/0x8e0
[ 3362.687983][ T5098]  ? lock_vma_under_rcu+0x18a/0x730
[ 3362.693196][ T5098]  ? __pfx_lock_release+0x10/0x10
[ 3362.698238][ T5098]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3362.703490][ T5098]  ? lock_vma_under_rcu+0x18a/0x730
[ 3362.708726][ T5098]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3362.714308][ T5098]  handle_mm_fault+0x3c1/0x8a0
[ 3362.719122][ T5098]  exc_page_fault+0x456/0x870
[ 3362.723851][ T5098]  asm_exc_page_fault+0x26/0x30
[ 3362.728740][ T5098] RIP: 0033:0x7f35906a91b8
[ 3362.733179][ T5098] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 3362.752901][ T5098] RSP: 002b:00007f35908cfcf0 EFLAGS: 00010293
[ 3362.759005][ T5098] RAX: 0000000000000000 RBX: 0000000000001045 RCX: 00007f35906a91b5
[ 3362.767007][ T5098] RDX: 00007f35908cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3362.775007][ T5098] RBP: 00007f35908cfdbc R08: 0000000000000000 R09: 00007ffcd15940b0
[ 3362.783008][ T5098] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3362.791008][ T5098] R13: 0000000000334626 R14: 0000000000334626 R15: 0000000000000000
[ 3362.799114][ T5098]  </TASK>
[ 3362.816879][ T8834] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
23:30:21 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x36e}}}]}]}}]}, 0x74}}, 0x0)

[ 3362.827043][ T5098] memory: usage 307144kB, limit 307200kB, failcnt 31857
[ 3362.843851][ T5098] memory+swap: usage 308244kB, limit 9007199254740988kB, failcnt 0
[ 3362.854517][ T5098] kmem: usage 307140kB, limit 9007199254740988kB, failcnt 0
[ 3362.862487][ T5098] Memory cgroup stats for /syz3:
[ 3362.862795][ T5098] cache 0
[ 3362.896810][ T5098] rss 0
[ 3362.901960][ T5098] rss_huge 0
[ 3362.909371][ T5098] shmem 0
[ 3362.917135][ T5098] mapped_file 0
[ 3362.925700][ T5098] dirty 0
[ 3362.930548][ T5098] writeback 0
[ 3362.934512][ T5098] workingset_refault_anon 14435
23:30:21 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x60}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3362.946513][ T5098] workingset_refault_file 0
[ 3362.971495][ T5098] swap 1130496
[ 3362.983463][ T5098] swapcached 0
[ 3362.995041][ T5098] pgpgin 634099
[ 3363.005621][ T5098] pgpgout 634099
[ 3363.017362][ T5098] pgfault 1389997
23:30:21 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x18000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3363.026110][ T5098] pgmajfault 13895
[ 3363.033704][ T5098] inactive_anon 0
[ 3363.041573][ T5098] active_anon 0
[ 3363.049127][ T5098] inactive_file 0
[ 3363.055652][ T5098] active_file 0
[ 3363.059282][ T5098] unevictable 0
[ 3363.063408][ T5098] hierarchical_memory_limit 314572800
[ 3363.069375][ T5098] hierarchical_memsw_limit 9223372036854771712
[ 3363.096177][ T5098] total_cache 0
[ 3363.105196][ T5098] total_rss 0
[ 3363.114877][ T5098] total_rss_huge 0
[ 3363.123302][ T5098] total_shmem 0
23:30:21 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x372}}}]}]}}]}, 0x74}}, 0x0)

[ 3363.131677][ T5098] total_mapped_file 0
[ 3363.149000][ T5098] total_dirty 0
[ 3363.161724][ T5098] total_writeback 0
[ 3363.181189][ T5098] total_workingset_refault_anon 14435
[ 3363.196119][ T5098] total_workingset_refault_file 0
[ 3363.213332][ T5098] total_swap 1130496
23:30:21 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x300}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3363.229001][ T5098] total_swapcached 0
[ 3363.238367][ T5098] total_pgpgin 634099
[ 3363.248304][ T5098] total_pgpgout 634099
[ 3363.271425][ T5098] total_pgfault 1389997
[ 3363.285709][ T5098] total_pgmajfault 13895
[ 3363.300500][ T5098] total_inactive_anon 0
[ 3363.309778][ T5098] total_active_anon 0
[ 3363.321725][ T5098] total_inactive_file 0
23:30:21 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x20000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3363.332767][ T5098] total_active_file 0
[ 3363.354368][ T5098] total_unevictable 0
[ 3363.359660][ T5098] anon_cost 0
[ 3363.371857][ T5098] file_cost 0
[ 3363.382365][ T5098] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=5098,uid=0
[ 3363.420523][ T5098] Memory cgroup out of memory: Killed process 5098 (syz-executor.3) total-vm:50536kB, anon-rss:512kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:0
23:30:21 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xe600}}}]}]}}]}, 0x74}}, 0x0)

23:30:21 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x37e}}}]}]}}]}, 0x74}}, 0x0)

23:30:21 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x500}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:22 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x8, 0x2, [@TCA_BASIC_POLICE={0x4, 0x3}]}}]}, 0x38}}, 0xbe010000)

23:30:22 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x21000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:22 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x386}}}]}]}}]}, 0x74}}, 0x0)

23:30:22 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x600}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:22 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x25000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:22 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x700}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:22 executing program 3:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x8, 0x2, [@TCA_BASIC_POLICE={0x4, 0x3}]}}]}, 0x38}}, 0xbe020000)

23:30:22 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3ae}}}]}]}}]}, 0x74}}, 0x0)

23:30:22 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x48000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:23 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x3b6}}}]}]}}]}, 0x74}}, 0x0)

23:30:23 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x900}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:23 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x4c000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:23 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x500}}}]}]}}]}, 0x74}}, 0x0)

23:30:23 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0xa00}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:23 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x5964aa93}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:23 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0xb00}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:23 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x600}}}]}]}}]}, 0x74}}, 0x0)

23:30:23 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x60000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:24 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0xc00}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:24 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x700}}}]}]}}]}, 0x74}}, 0x0)

[ 3365.936335][ T1946] tipc: Left network mode
23:30:24 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x65580000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:24 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0xf00}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:24 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x900}}}]}]}}]}, 0x74}}, 0x0)

23:30:24 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x68000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:24 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x1100}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:24 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xf2ff}}}]}]}}]}, 0x74}}, 0x0)

23:30:25 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xa00}}}]}]}}]}, 0x74}}, 0x0)

[ 3366.804813][ T8956] __nla_validate_parse: 40 callbacks suppressed
[ 3366.804833][ T8956] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:25 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x6c000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3366.896665][ T8952] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3366.919782][ T8960] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
23:30:25 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x1400}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3367.103160][ T8966] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
23:30:25 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xb00}}}]}]}}]}, 0x74}}, 0x0)

[ 3367.186389][ T8972] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3367.317128][ T8974] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:25 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x74000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3367.393457][ T8976] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
23:30:25 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x1500}}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3367.506278][ T8980] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3367.604541][ T8989] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 3367.731326][ T8985] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
23:30:26 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xe00}}}]}]}}]}, 0x74}}, 0x0)

23:30:26 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x1f00}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:26 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x7a000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:26 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x1100}}}]}]}}]}, 0x74}}, 0x0)

23:30:26 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x44a7}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:26 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x81000000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3368.298259][ T5095] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 3368.308219][ T5095] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 3368.317102][ T5095] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 3368.327302][ T5095] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 3368.336504][ T5095] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 3368.345413][ T5095] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
23:30:27 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x1400}}}]}]}}]}, 0x74}}, 0x0)

23:30:27 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x88470000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:27 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x4788}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:27 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x1500}}}]}]}}]}, 0x74}}, 0x0)

23:30:27 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x4800}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:27 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x88480000}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:27 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x4888}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:27 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x1600}}}]}]}}]}, 0x74}}, 0x0)

23:30:27 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x88a8ffff}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:28 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xf600}}}]}]}}]}, 0x74}}, 0x0)

23:30:28 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x5865}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:28 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x1601}}}]}]}}]}, 0x74}}, 0x0)

[ 3370.407638][ T5090] Bluetooth: hci1: command 0x0409 tx timeout
[ 3372.484378][ T5090] Bluetooth: hci1: command 0x041b tx timeout
23:30:31 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xfff2}}}]}]}}]}, 0x74}}, 0x0)

[ 3374.564957][ T5090] Bluetooth: hci1: command 0x040f tx timeout
23:30:34 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c}]}]}}]}, 0x74}}, 0x0)

[ 3376.646699][ T5090] Bluetooth: hci1: command 0x0419 tx timeout
[ 3378.266148][ T1946] hsr_slave_0: left promiscuous mode
[ 3378.275680][ T1946] hsr_slave_1: left promiscuous mode
[ 3378.294374][ T1946] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3378.312270][ T1946] batman_adv: batadv0: Removing interface: dvmrp1
[ 3378.689538][ T9075] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3378.703020][ T9075] CPU: 1 PID: 9075 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3378.713018][ T9075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3378.723082][ T9075] Call Trace:
[ 3378.726352][ T9075]  <TASK>
[ 3378.729286][ T9075]  dump_stack_lvl+0x1e7/0x2e0
[ 3378.733988][ T9075]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3378.739199][ T9075]  ? __pfx__printk+0x10/0x10
[ 3378.743771][ T9075]  ? ___ratelimit+0x4c4/0x670
[ 3378.748451][ T9075]  ? __pfx____ratelimit+0x10/0x10
[ 3378.753465][ T9075]  dump_header+0xda/0x6a0
[ 3378.757805][ T9075]  oom_kill_process+0x3a7/0x930
[ 3378.762685][ T9075]  out_of_memory+0xf67/0x1320
[ 3378.767386][ T9075]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3378.773027][ T9075]  ? __pfx___mutex_lock+0x10/0x10
[ 3378.778063][ T9075]  ? __pfx_out_of_memory+0x10/0x10
[ 3378.783166][ T9075]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3378.788697][ T9075]  ? __pfx_lock_release+0x10/0x10
[ 3378.793708][ T9075]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3378.799758][ T9075]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3378.804956][ T9075]  ? mem_cgroup_iter+0x422/0x560
[ 3378.809918][ T9075]  try_charge_memcg+0xda2/0x18a0
[ 3378.814867][ T9075]  ? mark_lock+0x9a/0x350
[ 3378.819214][ T9075]  ? gsc_irq_handler+0x160/0x340
[ 3378.824253][ T9075]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3378.829626][ T9075]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3378.835786][ T9075]  charge_memcg+0xa2/0x160
[ 3378.840193][ T9075]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3378.846259][ T9075]  __read_swap_cache_async+0x480/0x8b0
[ 3378.851710][ T9075]  ? mark_lock+0x9a/0x350
[ 3378.856053][ T9075]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3378.862065][ T9075]  swap_cluster_readahead+0x67c/0x810
[ 3378.867463][ T9075]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3378.873353][ T9075]  ? __pfx_lock_release+0x10/0x10
[ 3378.878402][ T9075]  ? xas_descend+0x37e/0x470
[ 3378.882998][ T9075]  swapin_readahead+0x1ea/0x1070
[ 3378.887921][ T9075]  ? filemap_get_entry+0x127/0x4e0
[ 3378.893032][ T9075]  ? __pfx_swapin_readahead+0x10/0x10
[ 3378.898416][ T9075]  ? __filemap_get_folio+0x935/0xbc0
[ 3378.903696][ T9075]  ? swap_cache_get_folio+0x9f/0x570
[ 3378.908991][ T9075]  do_swap_page+0x791/0x3f40
[ 3378.913606][ T9075]  ? rcu_is_watching+0x15/0xb0
[ 3378.918406][ T9075]  ? do_swap_page+0x154/0x3f40
[ 3378.923195][ T9075]  ? __pfx_do_swap_page+0x10/0x10
[ 3378.928239][ T9075]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3378.933727][ T9075]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3378.939551][ T9075]  __handle_mm_fault+0x15e8/0x72d0
[ 3378.944666][ T9075]  ? reacquire_held_locks+0x3eb/0x690
[ 3378.950024][ T9075]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3378.955525][ T9075]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3378.961278][ T9075]  ? mtree_range_walk+0x6fd/0x8e0
[ 3378.966322][ T9075]  ? lock_vma_under_rcu+0x18a/0x730
[ 3378.971526][ T9075]  ? __pfx_lock_release+0x10/0x10
[ 3378.976538][ T9075]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3378.981732][ T9075]  ? lock_vma_under_rcu+0x18a/0x730
[ 3378.988910][ T9075]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3378.994533][ T9075]  handle_mm_fault+0x3c1/0x8a0
[ 3378.999288][ T9075]  exc_page_fault+0x456/0x870
[ 3379.003968][ T9075]  asm_exc_page_fault+0x26/0x30
[ 3379.008836][ T9075] RIP: 0033:0x7f30cb239ac7
[ 3379.013263][ T9075] Code: 25 ff 0f 00 00 09 c5 80 3d 06 bc c9 00 00 0f 85 6f ff ff ff 44 0f b6 6c 24 0f 44 8d 55 04 89 e8 41 89 c1 41 81 e1 ff 1f 00 00 <43> 8b 14 8e 39 d5 0f 84 5e ff ff ff 85 d2 0f 84 65 01 00 00 83 c0
[ 3379.032868][ T9075] RSP: 002b:00007f30cb4cfa60 EFLAGS: 00010202
[ 3379.038928][ T9075] RAX: 0000000081405a79 RBX: 00007f30cb3ac018 RCX: 0000000000000582
[ 3379.046887][ T9075] RDX: ffffffff81405286 RSI: 0000000080000000 RDI: 00000000000007c6
[ 3379.054857][ T9075] RBP: 0000000081405a79 R08: 0000001b31820000 R09: 0000000000001a79
[ 3379.062841][ T9075] R10: 0000000081405a7d R11: 0000000000000246 R12: 0000000000000582
[ 3379.071178][ T9075] R13: 0000000000000001 R14: 00007f30cb3a0000 R15: ffffffff81405286
[ 3379.079138][ T9075]  ? unwind_next_frame+0x536/0x29e0
[ 3379.084357][ T9075]  ? unwind_next_frame+0x536/0x29e0
[ 3379.089547][ T9075]  </TASK>
[ 3379.100789][ T9075] memory: usage 307200kB, limit 307200kB, failcnt 544887
[ 3379.115681][ T9075] memory+swap: usage 309148kB, limit 9007199254740988kB, failcnt 0
[ 3379.123727][ T9075] kmem: usage 307128kB, limit 9007199254740988kB, failcnt 0
[ 3379.131514][ T9075] Memory cgroup stats for /syz0:
[ 3379.131784][ T9075] cache 0
[ 3379.141503][ T9075] rss 40960
[ 3379.148533][ T9075] rss_huge 0
[ 3379.156745][ T9075] shmem 0
[ 3379.159806][ T9075] mapped_file 0
[ 3379.163342][ T9075] dirty 0
[ 3379.166713][ T9075] writeback 0
[ 3379.170090][ T9075] workingset_refault_anon 383173
[ 3379.175495][ T9075] workingset_refault_file 25
[ 3379.180144][ T9075] swap 1998848
[ 3379.183676][ T9075] swapcached 40960
[ 3379.191944][ T9075] pgpgin 894431
[ 3379.199981][ T9075] pgpgout 894421
[ 3379.203548][ T9075] pgfault 1572282
[ 3379.208351][ T9075] pgmajfault 368615
[ 3379.212180][ T9075] inactive_anon 8192
[ 3379.216899][ T9075] active_anon 4096
[ 3379.220651][ T9075] inactive_file 0
[ 3379.224534][ T9075] active_file 0
[ 3379.228005][ T9075] unevictable 0
[ 3379.231464][ T9075] hierarchical_memory_limit 314572800
[ 3379.237126][ T9075] hierarchical_memsw_limit 9223372036854771712
[ 3379.243695][ T9075] total_cache 0
[ 3379.249381][ T9075] total_rss 40960
[ 3379.253038][ T9075] total_rss_huge 0
[ 3379.257067][ T9075] total_shmem 0
[ 3379.260570][ T9075] total_mapped_file 0
[ 3379.264856][ T9075] total_dirty 0
[ 3379.268329][ T9075] total_writeback 0
[ 3379.272156][ T9075] total_workingset_refault_anon 383173
[ 3379.278831][ T9075] total_workingset_refault_file 25
[ 3379.284642][ T9075] total_swap 1998848
[ 3379.288549][ T9075] total_swapcached 40960
[ 3379.292798][ T9075] total_pgpgin 894431
[ 3379.297332][ T9075] total_pgpgout 894421
[ 3379.301416][ T9075] total_pgfault 1572282
[ 3379.306593][ T9075] total_pgmajfault 368615
[ 3379.310978][ T9075] total_inactive_anon 8192
[ 3379.316131][ T9075] total_active_anon 4096
[ 3379.320396][ T9075] total_inactive_file 0
[ 3379.325390][ T9075] total_active_file 0
[ 3379.329381][ T9075] total_unevictable 0
[ 3379.333363][ T9075] anon_cost 0
[ 3379.337690][ T9075] file_cost 0
23:30:37 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}}]}]}}]}, 0x74}}, 0x0)

[ 3379.340991][ T9075] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9075,uid=0
[ 3379.358296][ T9075] Memory cgroup out of memory: Killed process 9075 (syz-executor.0) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3379.738046][ T9077] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3379.748859][ T9077] CPU: 1 PID: 9077 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3379.758874][ T9077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3379.768952][ T9077] Call Trace:
[ 3379.772222][ T9077]  <TASK>
[ 3379.775144][ T9077]  dump_stack_lvl+0x1e7/0x2e0
[ 3379.779828][ T9077]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3379.785033][ T9077]  ? __pfx__printk+0x10/0x10
[ 3379.789611][ T9077]  ? ___ratelimit+0x4c4/0x670
[ 3379.794284][ T9077]  ? __pfx____ratelimit+0x10/0x10
[ 3379.799316][ T9077]  dump_header+0xda/0x6a0
[ 3379.803742][ T9077]  oom_kill_process+0x3a7/0x930
[ 3379.808616][ T9077]  out_of_memory+0xf67/0x1320
[ 3379.813305][ T9077]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3379.818941][ T9077]  ? __pfx___mutex_lock+0x10/0x10
[ 3379.823969][ T9077]  ? __pfx_out_of_memory+0x10/0x10
[ 3379.829090][ T9077]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3379.834634][ T9077]  ? __pfx_lock_release+0x10/0x10
[ 3379.839656][ T9077]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3379.845738][ T9077]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3379.850961][ T9077]  ? mem_cgroup_iter+0x422/0x560
[ 3379.855922][ T9077]  try_charge_memcg+0xda2/0x18a0
[ 3379.860882][ T9077]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3379.866260][ T9077]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3379.871982][ T9077]  ? __pfx_lock_release+0x10/0x10
[ 3379.877011][ T9077]  ? memcg_account_kmem+0x1e7/0x210
[ 3379.882214][ T9077]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3379.888013][ T9077]  __memcg_kmem_charge_page+0xe1/0x250
[ 3379.893473][ T9077]  memcg_charge_kernel_stack+0x210/0x550
[ 3379.899101][ T9077]  dup_task_struct+0x15d/0x7d0
[ 3379.903858][ T9077]  copy_process+0x5d0/0x3fc0
[ 3379.908456][ T9077]  ? __pfx_lock_release+0x10/0x10
[ 3379.913482][ T9077]  ? __pfx_copy_process+0x10/0x10
[ 3379.918497][ T9077]  ? __might_fault+0xc5/0x120
[ 3379.923170][ T9077]  ? __asan_memset+0x23/0x50
[ 3379.927758][ T9077]  kernel_clone+0x21d/0x8d0
[ 3379.932358][ T9077]  ? __pfx_kernel_clone+0x10/0x10
[ 3379.937392][ T9077]  __se_sys_clone3+0x2cb/0x350
[ 3379.942151][ T9077]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3379.947439][ T9077]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3379.953426][ T9077]  ? exc_page_fault+0x587/0x870
[ 3379.958284][ T9077]  ? do_syscall_64+0xb4/0x240
[ 3379.962959][ T9077]  do_syscall_64+0xf9/0x240
[ 3379.967462][ T9077]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3379.973351][ T9077] RIP: 0033:0x7f30cb2a9b99
[ 3379.977763][ T9077] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3379.997363][ T9077] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3380.005778][ T9077] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3380.013744][ T9077] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3380.021708][ T9077] RBP: 00007f30cbf056c0 R08: 00007f30cbf056c0 R09: 00007f30cb4cfa47
[ 3380.029671][ T9077] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3380.037636][ T9077] R13: 000000000000006e R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3380.045613][ T9077]  </TASK>
[ 3380.059205][ T9077] memory: usage 307200kB, limit 307200kB, failcnt 545337
[ 3380.067802][ T9077] memory+swap: usage 309148kB, limit 9007199254740988kB, failcnt 0
[ 3380.076164][ T9077] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3380.083470][ T9077] Memory cgroup stats for /syz0:
[ 3380.083606][ T9077] cache 0
[ 3380.092030][ T9077] rss 8192
[ 3380.095458][ T9077] rss_huge 0
[ 3380.098670][ T9077] shmem 0
[ 3380.101614][ T9077] mapped_file 0
[ 3380.105472][ T9077] dirty 0
[ 3380.108428][ T9077] writeback 0
[ 3380.111732][ T9077] workingset_refault_anon 383375
[ 3380.117265][ T9077] workingset_refault_file 25
[ 3380.121866][ T9077] swap 1982464
[ 3380.125712][ T9077] swapcached 8192
[ 3380.129359][ T9077] pgpgin 894649
[ 3380.132822][ T9077] pgpgout 894646
[ 3380.136956][ T9077] pgfault 1572595
[ 3380.140594][ T9077] pgmajfault 368804
[ 3380.144968][ T9077] inactive_anon 0
[ 3380.148607][ T9077] active_anon 4096
[ 3380.152323][ T9077] inactive_file 0
[ 3380.157075][ T9077] active_file 0
[ 3380.160548][ T9077] unevictable 0
[ 3380.167235][ T9077] hierarchical_memory_limit 314572800
[ 3380.172680][ T9077] hierarchical_memsw_limit 9223372036854771712
[ 3380.179252][ T9077] total_cache 0
[ 3380.182883][ T9077] total_rss 8192
[ 3380.186933][ T9077] total_rss_huge 0
[ 3380.190665][ T9077] total_shmem 0
[ 3380.194612][ T9077] total_mapped_file 0
[ 3380.198692][ T9077] total_dirty 0
[ 3380.202145][ T9077] total_writeback 0
[ 3380.206563][ T9077] total_workingset_refault_anon 383375
[ 3380.212053][ T9077] total_workingset_refault_file 25
[ 3380.217548][ T9077] total_swap 1982464
[ 3380.221508][ T9077] total_swapcached 8192
[ 3380.226196][ T9077] total_pgpgin 894649
[ 3380.230195][ T9077] total_pgpgout 894646
[ 3380.234685][ T9077] total_pgfault 1572595
[ 3380.239029][ T9077] total_pgmajfault 368804
[ 3380.243361][ T9077] total_inactive_anon 0
[ 3380.248101][ T9077] total_active_anon 4096
[ 3380.252572][ T9077] total_inactive_file 0
[ 3380.257196][ T9077] total_active_file 0
[ 3380.261182][ T9077] total_unevictable 0
[ 3380.267713][ T9077] anon_cost 0
[ 3380.271035][ T9077] file_cost 0
23:30:38 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}}}]}]}}]}, 0x74}}, 0x0)

[ 3380.279499][ T9077] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9077,uid=0
[ 3380.301111][ T9077] Memory cgroup out of memory: Killed process 9077 (syz-executor.0) total-vm:54640kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3380.515228][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3380.526899][ T5099] CPU: 0 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3380.536898][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3380.546968][ T5099] Call Trace:
[ 3380.550280][ T5099]  <TASK>
[ 3380.553226][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3380.557928][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3380.563141][ T5099]  ? __pfx__printk+0x10/0x10
[ 3380.567740][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3380.572451][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3380.577505][ T5099]  dump_header+0xda/0x6a0
[ 3380.581858][ T5099]  oom_kill_process+0x3a7/0x930
[ 3380.586729][ T5099]  out_of_memory+0xf67/0x1320
[ 3380.591433][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3380.597087][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3380.602136][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3380.607281][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3380.612846][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3380.617892][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3380.624418][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3380.629640][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3380.634696][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3380.639651][ T5099]  ? mark_lock+0x9a/0x350
[ 3380.644016][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3380.649443][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3380.655798][ T5099]  charge_memcg+0xa2/0x160
[ 3380.660242][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3380.666341][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3380.671823][ T5099]  ? mark_lock+0x9a/0x350
[ 3380.676184][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3380.682204][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3380.687621][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3380.693544][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3380.698636][ T5099]  ? xas_descend+0x37e/0x470
[ 3380.703272][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3380.708249][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3380.713415][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3380.718833][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3380.724161][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3380.729484][ T5099]  do_swap_page+0x791/0x3f40
[ 3380.734095][ T5099]  ? __lock_acquire+0x1345/0x1fd0
[ 3380.739150][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3380.743954][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3380.748738][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3380.753787][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3380.759271][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3380.765110][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3380.770517][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3380.775689][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3380.781223][ T5099]  ? mt_find+0x226/0x850
[ 3380.785489][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3380.790565][ T5099]  ? mt_find+0x62d/0x850
[ 3380.794826][ T5099]  ? mt_find+0x226/0x850
[ 3380.799114][ T5099]  ? find_vma+0x142/0x1c0
[ 3380.803473][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3380.808176][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3380.814190][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3380.818991][ T5099]  exc_page_fault+0x2ad/0x870
[ 3380.823710][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3380.828587][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3380.833721][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3380.853354][ T5099] RSP: 0000:ffffc90003ebfd78 EFLAGS: 00050202
[ 3380.859452][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3380.867452][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3380.875449][ T5099] RBP: ffffc90003ebfec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3380.883446][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfd80
[ 3380.891443][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3380.899463][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3380.905404][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3380.911775][ T5099]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3380.917609][ T5099]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3380.923264][ T5099]  exc_page_fault+0x587/0x870
[ 3380.927971][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3380.932840][ T5099] RIP: 0033:0x7f30cb2a4c15
[ 3380.937273][ T5099] Code: 00 00 f0 83 88 08 03 00 00 10 64 48 8b 3c 25 00 03 00 00 e8 1d 13 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 e7 02 74 0b <c3> 66 2e 0f 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 8b 90
[ 3380.956904][ T5099] RSP: 002b:00007f30cb4cfce8 EFLAGS: 00010297
[ 3380.963006][ T5099] RAX: 0000000000000002 RBX: 000000000000722c RCX: 0000000000000000
[ 3380.971087][ T5099] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005555559c3788
[ 3380.979080][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3380.987075][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3380.995065][ T5099] R13: 0000000000339496 R14: 0000000000339496 R15: 0000000000000000
[ 3381.003073][ T5099]  </TASK>
[ 3381.047880][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 545982
[ 3381.060619][ T5099] memory+swap: usage 309180kB, limit 9007199254740988kB, failcnt 0
[ 3381.069007][ T5099] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3381.078393][ T5099] Memory cgroup stats for /syz0:
[ 3381.078498][ T5099] cache 0
[ 3381.088773][ T5099] rss 4096
[ 3381.091829][ T5099] rss_huge 0
[ 3381.095664][ T5099] shmem 0
[ 3381.098605][ T5099] mapped_file 0
[ 3381.102369][ T5099] dirty 0
[ 3381.105807][ T5099] writeback 0
[ 3381.109112][ T5099] workingset_refault_anon 383530
[ 3381.115261][ T5099] workingset_refault_file 25
[ 3381.119866][ T5099] swap 2027520
[ 3381.123239][ T5099] swapcached 4096
[ 3381.128245][ T5099] pgpgin 894816
[ 3381.131740][ T5099] pgpgout 894815
[ 3381.135526][ T5099] pgfault 1572837
[ 3381.139252][ T5099] pgmajfault 368953
[ 3381.143352][ T5099] inactive_anon 0
[ 3381.147489][ T5099] active_anon 4096
[ 3381.151225][ T5099] inactive_file 0
[ 3381.155817][ T5099] active_file 0
[ 3381.159293][ T5099] unevictable 0
[ 3381.162747][ T5099] hierarchical_memory_limit 314572800
[ 3381.168673][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3381.179186][ T5099] total_cache 0
[ 3381.188709][ T5099] total_rss 4096
[ 3381.192278][ T5099] total_rss_huge 0
[ 3381.196422][ T5099] total_shmem 0
[ 3381.199900][ T5099] total_mapped_file 0
[ 3381.203883][ T5099] total_dirty 0
[ 3381.208497][ T5099] total_writeback 0
[ 3381.212329][ T5099] total_workingset_refault_anon 383530
[ 3381.218841][ T5099] total_workingset_refault_file 25
[ 3381.225113][ T5099] total_swap 2027520
[ 3381.229030][ T5099] total_swapcached 4096
[ 3381.233191][ T5099] total_pgpgin 894816
[ 3381.237768][ T5099] total_pgpgout 894815
[ 3381.241847][ T5099] total_pgfault 1572837
[ 3381.254944][ T5099] total_pgmajfault 368953
[ 3381.259301][ T5099] total_inactive_anon 0
[ 3381.263460][ T5099] total_active_anon 4096
[ 3381.272869][ T5099] total_inactive_file 0
[ 3381.284420][ T5099] total_active_file 0
[ 3381.294588][ T5099] total_unevictable 0
[ 3381.298592][ T5099] anon_cost 0
[ 3381.301876][ T5099] file_cost 0
23:30:39 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}}]}]}}]}, 0x74}}, 0x0)

[ 3381.309797][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9079,uid=0
[ 3381.335018][ T5099] Memory cgroup out of memory: Killed process 9079 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3381.490561][ T9081] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3381.501693][ T9081] CPU: 1 PID: 9081 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3381.511697][ T9081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3381.521750][ T9081] Call Trace:
[ 3381.525027][ T9081]  <TASK>
[ 3381.527948][ T9081]  dump_stack_lvl+0x1e7/0x2e0
[ 3381.532671][ T9081]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3381.537874][ T9081]  ? __pfx__printk+0x10/0x10
[ 3381.542457][ T9081]  ? ___ratelimit+0x4c4/0x670
[ 3381.547129][ T9081]  ? __pfx____ratelimit+0x10/0x10
[ 3381.552158][ T9081]  dump_header+0xda/0x6a0
[ 3381.556508][ T9081]  oom_kill_process+0x3a7/0x930
[ 3381.561471][ T9081]  out_of_memory+0xf67/0x1320
[ 3381.566165][ T9081]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3381.571797][ T9081]  ? __pfx___mutex_lock+0x10/0x10
[ 3381.576963][ T9081]  ? __pfx_out_of_memory+0x10/0x10
[ 3381.582101][ T9081]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3381.587666][ T9081]  ? __pfx_lock_release+0x10/0x10
[ 3381.592692][ T9081]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3381.598763][ T9081]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3381.603971][ T9081]  ? mem_cgroup_iter+0x422/0x560
[ 3381.608923][ T9081]  try_charge_memcg+0xda2/0x18a0
[ 3381.613886][ T9081]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3381.619257][ T9081]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3381.624967][ T9081]  ? __pfx_lock_release+0x10/0x10
[ 3381.629989][ T9081]  ? memcg_account_kmem+0x1e7/0x210
[ 3381.635187][ T9081]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3381.640990][ T9081]  __memcg_kmem_charge_page+0xe1/0x250
[ 3381.646447][ T9081]  memcg_charge_kernel_stack+0x37e/0x550
[ 3381.652080][ T9081]  dup_task_struct+0x15d/0x7d0
[ 3381.656845][ T9081]  copy_process+0x5d0/0x3fc0
[ 3381.661442][ T9081]  ? __pfx_lock_release+0x10/0x10
[ 3381.666467][ T9081]  ? __pfx_copy_process+0x10/0x10
[ 3381.671482][ T9081]  ? __might_fault+0xc5/0x120
[ 3381.676155][ T9081]  ? __asan_memset+0x23/0x50
[ 3381.680759][ T9081]  kernel_clone+0x21d/0x8d0
[ 3381.685280][ T9081]  ? __pfx_kernel_clone+0x10/0x10
[ 3381.690327][ T9081]  __se_sys_clone3+0x2cb/0x350
[ 3381.695088][ T9081]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3381.700388][ T9081]  ? do_syscall_64+0x108/0x240
[ 3381.705154][ T9081]  ? do_syscall_64+0xb4/0x240
[ 3381.709827][ T9081]  do_syscall_64+0xf9/0x240
[ 3381.714349][ T9081]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3381.720238][ T9081] RIP: 0033:0x7f30cb2a9b99
[ 3381.724669][ T9081] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3381.744280][ T9081] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3381.752711][ T9081] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3381.760683][ T9081] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3381.768647][ T9081] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3381.776615][ T9081] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3381.784579][ T9081] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3381.792565][ T9081]  </TASK>
[ 3381.800245][ T9081] memory: usage 307200kB, limit 307200kB, failcnt 546340
[ 3381.809339][ T9081] memory+swap: usage 309156kB, limit 9007199254740988kB, failcnt 0
[ 3381.817569][ T9081] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3381.825262][ T9081] Memory cgroup stats for /syz0:
[ 3381.825389][ T9081] cache 0
[ 3381.833594][ T9081] rss 16384
[ 3381.837024][ T9081] rss_huge 0
[ 3381.840348][ T9081] shmem 0
[ 3381.843360][ T9081] mapped_file 0
[ 3381.847133][ T9081] dirty 0
[ 3381.850192][ T9081] writeback 0
[ 3381.853557][ T9081] workingset_refault_anon 383650
[ 3381.858859][ T9081] workingset_refault_file 25
[ 3381.863559][ T9081] swap 1998848
[ 3381.867273][ T9081] swapcached 16384
[ 3381.871086][ T9081] pgpgin 894951
[ 3381.874830][ T9081] pgpgout 894947
[ 3381.878482][ T9081] pgfault 1573029
[ 3381.882201][ T9081] pgmajfault 369068
[ 3381.886392][ T9081] inactive_anon 0
[ 3381.890112][ T9081] active_anon 4096
[ 3381.893884][ T9081] inactive_file 0
[ 3381.897858][ T9081] active_file 0
[ 3381.901375][ T9081] unevictable 0
[ 3381.907238][ T9081] hierarchical_memory_limit 314572800
[ 3381.912732][ T9081] hierarchical_memsw_limit 9223372036854771712
[ 3381.924895][ T9081] total_cache 0
[ 3381.928384][ T9081] total_rss 16384
[ 3381.932019][ T9081] total_rss_huge 0
[ 3381.936896][ T9081] total_shmem 0
[ 3381.940368][ T9081] total_mapped_file 0
[ 3381.944874][ T9081] total_dirty 0
[ 3381.948346][ T9081] total_writeback 0
[ 3381.952144][ T9081] total_workingset_refault_anon 383650
[ 3381.964001][ T9081] total_workingset_refault_file 25
[ 3381.969217][ T9081] total_swap 1998848
[ 3381.973093][ T9081] total_swapcached 16384
[ 3381.985253][ T9081] total_pgpgin 894951
[ 3381.989250][ T9081] total_pgpgout 894947
[ 3381.993313][ T9081] total_pgfault 1573029
[ 3382.004237][ T9081] total_pgmajfault 369068
[ 3382.009627][ T9081] total_inactive_anon 0
[ 3382.013793][ T9081] total_active_anon 4096
[ 3382.024566][ T9081] total_inactive_file 0
[ 3382.028754][ T9081] total_active_file 0
[ 3382.032728][ T9081] total_unevictable 0
[ 3382.037419][ T9081] anon_cost 0
23:30:40 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}}]}]}}]}, 0x74}}, 0x0)

[ 3382.040730][ T9081] file_cost 0
[ 3382.044353][ T9081] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9081,uid=0
[ 3382.060320][ T9081] Memory cgroup out of memory: Killed process 9081 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3382.409326][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3382.429972][ T5099] CPU: 0 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3382.440004][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3382.450077][ T5099] Call Trace:
[ 3382.453381][ T5099]  <TASK>
[ 3382.456327][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3382.461037][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3382.466259][ T5099]  ? __pfx__printk+0x10/0x10
[ 3382.470872][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3382.475572][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3382.480602][ T5099]  dump_header+0xda/0x6a0
[ 3382.484937][ T5099]  oom_kill_process+0x3a7/0x930
[ 3382.489811][ T5099]  out_of_memory+0xf67/0x1320
[ 3382.494489][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3382.500121][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3382.505141][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3382.510259][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3382.515796][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3382.520821][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3382.526890][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3382.532083][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3382.537021][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3382.541954][ T5099]  ? mark_lock+0x9a/0x350
[ 3382.546297][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3382.551682][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3382.557945][ T5099]  charge_memcg+0xa2/0x160
[ 3382.562371][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3382.568459][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3382.573928][ T5099]  ? mark_lock+0x9a/0x350
[ 3382.578268][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3382.584272][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3382.589687][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3382.595636][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3382.601070][ T5099]  ? xas_descend+0x37e/0x470
[ 3382.605690][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3382.610657][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3382.615787][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3382.621178][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3382.626504][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3382.631826][ T5099]  do_swap_page+0x791/0x3f40
[ 3382.636431][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3382.641231][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3382.645999][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3382.651025][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3382.656489][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3382.662306][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3382.667463][ T5099]  ? reacquire_held_locks+0x3eb/0x690
[ 3382.672829][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3382.678613][ T5099]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3382.684341][ T5099]  ? mtree_range_walk+0x6fd/0x8e0
[ 3382.689361][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3382.694554][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3382.699572][ T5099]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3382.704781][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3382.709972][ T5099]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3382.715522][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3382.720287][ T5099]  exc_page_fault+0x456/0x870
[ 3382.724974][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3382.729825][ T5099] RIP: 0033:0x7f30cb27dd89
[ 3382.734240][ T5099] Code: 29 c7 48 69 ff e8 03 00 00 48 89 7c 24 08 48 89 e7 e8 2b cb ff ff 48 8b 54 24 18 64 48 2b 14 25 28 00 00 00 75 05 48 83 c4 28 <c3> e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2
[ 3382.753865][ T5099] RSP: 002b:00007f30cb4cfd58 EFLAGS: 00010202
[ 3382.759966][ T5099] RAX: 0000000000000000 RBX: 000000000000722f RCX: 0000000000000000
[ 3382.767959][ T5099] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005555559c3788
[ 3382.775937][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3382.783907][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3382.791876][ T5099] R13: 0000000000339b50 R14: 0000000000339b50 R15: 0000000000000000
[ 3382.799854][ T5099]  </TASK>
[ 3382.835315][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 546902
[ 3382.842483][ T5099] memory+swap: usage 309132kB, limit 9007199254740988kB, failcnt 0
[ 3382.850679][ T5099] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3382.862769][ T5099] Memory cgroup stats for /syz0:
[ 3382.862853][ T5099] cache 0
[ 3382.878911][ T5099] rss 0
[ 3382.881720][ T5099] rss_huge 0
[ 3382.885369][ T5099] shmem 0
[ 3382.888331][ T5099] mapped_file 0
[ 3382.891793][ T5099] dirty 0
[ 3382.895192][ T5099] writeback 0
[ 3382.898494][ T5099] workingset_refault_anon 383844
[ 3382.903420][ T5099] workingset_refault_file 25
[ 3382.909005][ T5099] swap 1982464
[ 3382.912513][ T5099] swapcached 0
[ 3382.916234][ T5099] pgpgin 895159
[ 3382.919702][ T5099] pgpgout 895159
[ 3382.923248][ T5099] pgfault 1573324
[ 3382.928652][ T5099] pgmajfault 369247
[ 3382.932477][ T5099] inactive_anon 0
[ 3382.936575][ T5099] active_anon 0
[ 3382.940053][ T5099] inactive_file 0
[ 3382.943687][ T5099] active_file 0
[ 3382.947691][ T5099] unevictable 0
[ 3382.951157][ T5099] hierarchical_memory_limit 314572800
[ 3382.958134][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3382.964798][ T5099] total_cache 0
[ 3382.968276][ T5099] total_rss 0
[ 3382.971564][ T5099] total_rss_huge 0
[ 3382.975961][ T5099] total_shmem 0
[ 3382.979442][ T5099] total_mapped_file 0
[ 3382.983424][ T5099] total_dirty 0
[ 3382.987590][ T5099] total_writeback 0
[ 3382.991452][ T5099] total_workingset_refault_anon 383844
[ 3382.997582][ T5099] total_workingset_refault_file 25
[ 3383.002698][ T5099] total_swap 1982464
[ 3383.007372][ T5099] total_swapcached 0
[ 3383.011279][ T5099] total_pgpgin 895159
[ 3383.016454][ T5099] total_pgpgout 895159
[ 3383.020541][ T5099] total_pgfault 1573324
[ 3383.027575][ T5099] total_pgmajfault 369247
[ 3383.032330][ T5099] total_inactive_anon 0
[ 3383.037564][ T5099] total_active_anon 0
[ 3383.041561][ T5099] total_inactive_file 0
[ 3383.046281][ T5099] total_active_file 0
[ 3383.050276][ T5099] total_unevictable 0
[ 3383.055915][ T5099] anon_cost 0
[ 3383.059223][ T5099] file_cost 0
[ 3383.062967][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9082,uid=0
23:30:41 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}}}]}]}}]}, 0x74}}, 0x0)

[ 3383.081441][ T5099] Memory cgroup out of memory: Killed process 9082 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3383.281396][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3383.293730][ T5099] CPU: 1 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3383.303755][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3383.313833][ T5099] Call Trace:
[ 3383.317132][ T5099]  <TASK>
[ 3383.320051][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3383.324720][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3383.329909][ T5099]  ? __pfx__printk+0x10/0x10
[ 3383.334481][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3383.339175][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3383.344213][ T5099]  dump_header+0xda/0x6a0
[ 3383.348577][ T5099]  oom_kill_process+0x3a7/0x930
[ 3383.353456][ T5099]  out_of_memory+0xf67/0x1320
[ 3383.358148][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3383.363768][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3383.368793][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3383.373894][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3383.379425][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3383.384438][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3383.390491][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3383.395699][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3383.400679][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3383.405727][ T5099]  ? mark_lock+0x9a/0x350
[ 3383.410113][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3383.415539][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3383.421706][ T5099]  charge_memcg+0xa2/0x160
[ 3383.426128][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3383.432187][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3383.437636][ T5099]  ? mark_lock+0x9a/0x350
[ 3383.441966][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3383.447958][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3383.453350][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3383.459265][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3383.464311][ T5099]  ? xas_descend+0x37e/0x470
[ 3383.468926][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3383.473874][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3383.478997][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3383.484366][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3383.489643][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3383.494933][ T5099]  do_swap_page+0x791/0x3f40
[ 3383.499546][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3383.504340][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3383.509105][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3383.514116][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3383.519651][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3383.525449][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3383.530560][ T5099]  ? reacquire_held_locks+0x3eb/0x690
[ 3383.535915][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3383.541384][ T5099]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3383.547141][ T5099]  ? mtree_range_walk+0x6fd/0x8e0
[ 3383.552191][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3383.557404][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3383.562432][ T5099]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3383.567627][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3383.572812][ T5099]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3383.578532][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3383.583308][ T5099]  exc_page_fault+0x456/0x870
[ 3383.587994][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3383.592869][ T5099] RIP: 0033:0x7f30cb2a91b8
[ 3383.597290][ T5099] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 3383.616914][ T5099] RSP: 002b:00007f30cb4cfcf0 EFLAGS: 00010293
[ 3383.622972][ T5099] RAX: 0000000000000000 RBX: 0000000000007231 RCX: 00007f30cb2a91b5
[ 3383.630932][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3383.638890][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3383.646864][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3383.654851][ T5099] R13: 0000000000339f4e R14: 0000000000339f4e R15: 0000000000000000
[ 3383.662841][ T5099]  </TASK>
[ 3383.670979][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 547160
[ 3383.678434][ T5099] memory+swap: usage 309168kB, limit 9007199254740988kB, failcnt 0
[ 3383.686580][ T5099] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3383.693896][ T5099] Memory cgroup stats for /syz0:
[ 3383.694273][ T5099] cache 0
[ 3383.702241][ T5099] rss 24576
[ 3383.705676][ T5099] rss_huge 0
[ 3383.708896][ T5099] shmem 0
[ 3383.711844][ T5099] mapped_file 0
[ 3383.715653][ T5099] dirty 0
[ 3383.718603][ T5099] writeback 0
[ 3383.721916][ T5099] workingset_refault_anon 383953
[ 3383.727642][ T5099] workingset_refault_file 25
[ 3383.732255][ T5099] swap 1990656
[ 3383.735806][ T5099] swapcached 20480
[ 3383.739538][ T5099] pgpgin 895278
[ 3383.742980][ T5099] pgpgout 895272
[ 3383.747965][ T5099] pgfault 1573495
[ 3383.751621][ T5099] pgmajfault 369346
[ 3383.755760][ T5099] inactive_anon 0
[ 3383.759406][ T5099] active_anon 20480
[ 3383.763234][ T5099] inactive_file 0
[ 3383.788852][ T5099] active_file 0
[ 3383.792369][ T5099] unevictable 0
[ 3383.796100][ T5099] hierarchical_memory_limit 314572800
[ 3383.801534][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3383.807990][ T5099] total_cache 0
[ 3383.811465][ T5099] total_rss 24576
[ 3383.815367][ T5099] total_rss_huge 0
[ 3383.819102][ T5099] total_shmem 0
[ 3383.822559][ T5099] total_mapped_file 0
[ 3383.826803][ T5099] total_dirty 0
[ 3383.830267][ T5099] total_writeback 0
[ 3383.834347][ T5099] total_workingset_refault_anon 383953
[ 3383.839825][ T5099] total_workingset_refault_file 25
[ 3383.845522][ T5099] total_swap 1990656
[ 3383.851162][ T5099] total_swapcached 20480
[ 3383.855775][ T5099] total_pgpgin 895278
[ 3383.859776][ T5099] total_pgpgout 895272
[ 3383.863857][ T5099] total_pgfault 1573495
[ 3383.868259][ T5099] total_pgmajfault 369346
[ 3383.872798][ T5099] total_inactive_anon 0
[ 3383.877242][ T5099] total_active_anon 20480
[ 3383.881584][ T5099] total_inactive_file 0
[ 3383.885950][ T5099] total_active_file 0
[ 3383.889940][ T5099] total_unevictable 0
[ 3383.894817][ T5099] anon_cost 0
[ 3383.898120][ T5099] file_cost 0
[ 3383.901411][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9084,uid=0
[ 3383.917284][ T5099] Memory cgroup out of memory: Killed process 9084 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:30:42 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}}]}]}}]}, 0x74}}, 0x0)

[ 3384.247979][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3384.275007][ T5099] CPU: 0 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3384.285153][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3384.295225][ T5099] Call Trace:
[ 3384.298518][ T5099]  <TASK>
[ 3384.301466][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3384.306167][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3384.311381][ T5099]  ? __pfx__printk+0x10/0x10
[ 3384.316018][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3384.320731][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3384.325792][ T5099]  dump_header+0xda/0x6a0
[ 3384.330148][ T5099]  oom_kill_process+0x3a7/0x930
[ 3384.335026][ T5099]  out_of_memory+0xf67/0x1320
[ 3384.339727][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3384.345470][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3384.350528][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3384.355677][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3384.361244][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3384.366292][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3384.372385][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3384.377616][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3384.382574][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3384.387524][ T5099]  ? mark_lock+0x9a/0x350
[ 3384.391895][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3384.397318][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3384.403497][ T5099]  charge_memcg+0xa2/0x160
[ 3384.407943][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3384.414038][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3384.421083][ T5099]  ? mark_lock+0x9a/0x350
[ 3384.425451][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3384.431470][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3384.437142][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3384.443062][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3384.448115][ T5099]  ? xas_descend+0x37e/0x470
[ 3384.452738][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3384.457702][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3384.462848][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3384.468255][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3384.473574][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3384.478889][ T5099]  do_swap_page+0x791/0x3f40
[ 3384.483496][ T5099]  ? __lock_acquire+0x1345/0x1fd0
[ 3384.488533][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3384.493310][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3384.498433][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3384.503463][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3384.508951][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3384.514784][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3384.520004][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3384.525165][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3384.530645][ T5099]  ? mt_find+0x226/0x850
[ 3384.534889][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3384.539988][ T5099]  ? mt_find+0x62d/0x850
[ 3384.544253][ T5099]  ? mt_find+0x226/0x850
[ 3384.548537][ T5099]  ? find_vma+0x142/0x1c0
[ 3384.552878][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3384.557562][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3384.563589][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3384.568374][ T5099]  exc_page_fault+0x2ad/0x870
[ 3384.573073][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3384.577934][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3384.583064][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3384.602670][ T5099] RSP: 0000:ffffc90003ebfd78 EFLAGS: 00050202
[ 3384.608740][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3384.616730][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3384.624715][ T5099] RBP: ffffc90003ebfec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3384.632687][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfd80
[ 3384.640648][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3384.648638][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3384.654581][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3384.660931][ T5099]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3384.666744][ T5099]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3384.672393][ T5099]  exc_page_fault+0x587/0x870
[ 3384.677092][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3384.681962][ T5099] RIP: 0033:0x7f30cb27a780
[ 3384.686379][ T5099] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 3384.706614][ T5099] RSP: 002b:00007f30cb4cfd58 EFLAGS: 00010246
[ 3384.712692][ T5099] RAX: 0000000000000066 RBX: 0000000000007233 RCX: 0000000000000000
[ 3384.720657][ T5099] RDX: 0000000040000001 RSI: 00007f30cb4cfdbc RDI: 00000000ffffffff
[ 3384.728630][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000010 R09: 00007ffc3913c0b0
[ 3384.736620][ T5099] R10: 00007ffc3913c080 R11: 00000000000a3524 R12: 0000000000000032
[ 3384.744611][ T5099] R13: 000000000033a299 R14: 000000000033a299 R15: 0000000000000000
[ 3384.752596][ T5099]  </TASK>
[ 3384.773686][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 547799
[ 3384.780979][ T5099] memory+swap: usage 309168kB, limit 9007199254740988kB, failcnt 0
[ 3384.789711][ T5099] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3384.797525][ T5099] Memory cgroup stats for /syz0:
[ 3384.797626][ T5099] cache 0
[ 3384.806230][ T5099] rss 4096
[ 3384.809280][ T5099] rss_huge 0
[ 3384.812520][ T5099] shmem 0
[ 3384.816403][ T5099] mapped_file 0
[ 3384.819881][ T5099] dirty 0
[ 3384.822825][ T5099] writeback 0
[ 3384.826939][ T5099] workingset_refault_anon 384131
[ 3384.831883][ T5099] workingset_refault_file 25
[ 3384.837182][ T5099] swap 2015232
[ 3384.840558][ T5099] swapcached 4096
[ 3384.845197][ T5099] pgpgin 895466
[ 3384.848672][ T5099] pgpgout 895465
[ 3384.852210][ T5099] pgfault 1573753
[ 3384.856695][ T5099] pgmajfault 369512
[ 3384.860564][ T5099] inactive_anon 4096
[ 3384.865548][ T5099] active_anon 0
[ 3384.869026][ T5099] inactive_file 0
[ 3384.873612][ T5099] active_file 0
[ 3384.878417][ T5099] unevictable 0
[ 3384.881896][ T5099] hierarchical_memory_limit 314572800
[ 3384.895763][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3384.901952][ T5099] total_cache 0
[ 3384.906359][ T5099] total_rss 4096
[ 3384.909930][ T5099] total_rss_huge 0
[ 3384.913646][ T5099] total_shmem 0
[ 3384.918066][ T5099] total_mapped_file 0
[ 3384.922055][ T5099] total_dirty 0
[ 3384.926191][ T5099] total_writeback 0
[ 3384.930014][ T5099] total_workingset_refault_anon 384131
[ 3384.936497][ T5099] total_workingset_refault_file 25
[ 3384.941614][ T5099] total_swap 2015232
[ 3384.946162][ T5099] total_swapcached 4096
[ 3384.950332][ T5099] total_pgpgin 895466
[ 3384.955059][ T5099] total_pgpgout 895465
[ 3384.959144][ T5099] total_pgfault 1573753
[ 3384.963338][ T5099] total_pgmajfault 369512
[ 3384.968549][ T5099] total_inactive_anon 4096
[ 3384.972981][ T5099] total_active_anon 0
[ 3384.978983][ T5099] total_inactive_file 0
[ 3384.983149][ T5099] total_active_file 0
[ 3384.987866][ T5099] total_unevictable 0
[ 3384.991869][ T5099] anon_cost 0
[ 3384.996178][ T5099] file_cost 0
[ 3384.999484][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9086,uid=0
[ 3385.016870][ T5099] Memory cgroup out of memory: Killed process 9086 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:30:43 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}}}]}]}}]}, 0x74}}, 0x0)

[ 3385.223817][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3385.253179][ T5099] CPU: 1 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3385.263216][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3385.273292][ T5099] Call Trace:
[ 3385.276587][ T5099]  <TASK>
[ 3385.279530][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3385.284241][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3385.289463][ T5099]  ? __pfx__printk+0x10/0x10
[ 3385.294078][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3385.298786][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3385.303842][ T5099]  dump_header+0xda/0x6a0
[ 3385.308205][ T5099]  oom_kill_process+0x3a7/0x930
[ 3385.313083][ T5099]  out_of_memory+0xf67/0x1320
[ 3385.317789][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3385.323445][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3385.328499][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3385.333644][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3385.339216][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3385.344267][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3385.350356][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3385.355559][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3385.360494][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3385.365431][ T5099]  ? mark_lock+0x9a/0x350
[ 3385.369766][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3385.375177][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3385.381328][ T5099]  charge_memcg+0xa2/0x160
[ 3385.385744][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3385.391811][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3385.397267][ T5099]  ? mark_lock+0x9a/0x350
[ 3385.401601][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3385.407585][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3385.412960][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3385.418849][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3385.423869][ T5099]  ? xas_descend+0x37e/0x470
[ 3385.428462][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3385.433399][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3385.438516][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3385.443891][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3385.449178][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3385.454464][ T5099]  do_swap_page+0x791/0x3f40
[ 3385.459050][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3385.463816][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3385.468570][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3385.473586][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3385.479045][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3385.484841][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3385.490038][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3385.495171][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3385.500634][ T5099]  ? mt_find+0x226/0x850
[ 3385.504866][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3385.509916][ T5099]  ? mt_find+0x62d/0x850
[ 3385.514151][ T5099]  ? mt_find+0x226/0x850
[ 3385.518411][ T5099]  ? find_vma+0x142/0x1c0
[ 3385.522734][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3385.527402][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3385.533393][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3385.538157][ T5099]  exc_page_fault+0x2ad/0x870
[ 3385.542836][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3385.547885][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3385.553341][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3385.572941][ T5099] RSP: 0018:ffffc90003ebfd98 EFLAGS: 00050202
[ 3385.579001][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3385.586962][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3385.595016][ T5099] RBP: ffffc90003ebfec8 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3385.602983][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfda0
[ 3385.610943][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3385.618923][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3385.624830][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3385.631182][ T5099]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3385.636894][ T5099]  syscall_exit_to_user_mode+0x113/0x360
[ 3385.642531][ T5099]  do_syscall_64+0x108/0x240
[ 3385.647126][ T5099]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3385.653011][ T5099] RIP: 0033:0x7f30cb2a91b5
[ 3385.657418][ T5099] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 3385.677016][ T5099] RSP: 002b:00007f30cb4cfcf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 3385.685524][ T5099] RAX: 0000000000000000 RBX: 0000000000007235 RCX: 00007f30cb2a91b5
[ 3385.693502][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3385.701496][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3385.709588][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3385.717564][ T5099] R13: 000000000033a6ff R14: 000000000033a6ff R15: 0000000000000000
[ 3385.725570][ T5099]  </TASK>
[ 3385.820236][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 548352
[ 3385.828087][ T5099] memory+swap: usage 309164kB, limit 9007199254740988kB, failcnt 0
[ 3385.837581][ T5099] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3385.845876][ T5099] Memory cgroup stats for /syz0:
[ 3385.846016][ T5099] cache 0
[ 3385.864226][ T5099] rss 4096
[ 3385.867292][ T5099] rss_huge 0
[ 3385.870503][ T5099] shmem 0
[ 3385.873454][ T5099] mapped_file 0
[ 3385.878285][ T5099] dirty 0
[ 3385.881249][ T5099] writeback 0
[ 3385.885571][ T5099] workingset_refault_anon 384271
[ 3385.890535][ T5099] workingset_refault_file 25
[ 3385.900864][ T5099] swap 2011136
[ 3385.910063][ T5099] swapcached 4096
[ 3385.913732][ T5099] pgpgin 895619
[ 3385.918244][ T5099] pgpgout 895618
[ 3385.921814][ T5099] pgfault 1573975
[ 3385.935010][ T5099] pgmajfault 369648
[ 3385.938849][ T5099] inactive_anon 0
[ 3385.942486][ T5099] active_anon 4096
[ 3385.948391][ T5099] inactive_file 0
[ 3385.952050][ T5099] active_file 0
[ 3385.956214][ T5099] unevictable 0
[ 3385.959698][ T5099] hierarchical_memory_limit 314572800
[ 3385.970578][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3385.982735][ T5099] total_cache 0
[ 3385.986790][ T5099] total_rss 4096
[ 3385.990362][ T5099] total_rss_huge 0
[ 3385.994831][ T5099] total_shmem 0
[ 3385.998327][ T5099] total_mapped_file 0
[ 3386.003311][ T5099] total_dirty 0
[ 3386.008105][ T5099] total_writeback 0
[ 3386.011929][ T5099] total_workingset_refault_anon 384271
[ 3386.018282][ T5099] total_workingset_refault_file 25
[ 3386.023408][ T5099] total_swap 2011136
[ 3386.029689][ T5099] total_swapcached 4096
[ 3386.033908][ T5099] total_pgpgin 895619
[ 3386.038506][ T5099] total_pgpgout 895618
[ 3386.042593][ T5099] total_pgfault 1573975
[ 3386.047310][ T5099] total_pgmajfault 369648
[ 3386.051656][ T5099] total_inactive_anon 0
[ 3386.056503][ T5099] total_active_anon 4096
[ 3386.060740][ T5099] total_inactive_file 0
[ 3386.065214][ T5099] total_active_file 0
23:30:44 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}}}]}]}}]}, 0x74}}, 0x0)

[ 3386.069201][ T5099] total_unevictable 0
[ 3386.073188][ T5099] anon_cost 0
[ 3386.076709][ T5099] file_cost 0
[ 3386.080005][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9088,uid=0
[ 3386.095977][ T5099] Memory cgroup out of memory: Killed process 9088 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3386.369863][ T9090] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3386.381945][ T9090] CPU: 0 PID: 9090 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3386.391971][ T9090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3386.402046][ T9090] Call Trace:
[ 3386.405335][ T9090]  <TASK>
[ 3386.408261][ T9090]  dump_stack_lvl+0x1e7/0x2e0
[ 3386.412950][ T9090]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3386.418163][ T9090]  ? __pfx__printk+0x10/0x10
[ 3386.422744][ T9090]  ? ___ratelimit+0x4c4/0x670
[ 3386.427425][ T9090]  ? __pfx____ratelimit+0x10/0x10
[ 3386.432452][ T9090]  dump_header+0xda/0x6a0
[ 3386.436787][ T9090]  oom_kill_process+0x3a7/0x930
[ 3386.441671][ T9090]  out_of_memory+0xf67/0x1320
[ 3386.446350][ T9090]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3386.451992][ T9090]  ? __pfx___mutex_lock+0x10/0x10
[ 3386.457018][ T9090]  ? __pfx_out_of_memory+0x10/0x10
[ 3386.462135][ T9090]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3386.467677][ T9090]  ? __pfx_lock_release+0x10/0x10
[ 3386.472703][ T9090]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3386.478774][ T9090]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3386.483976][ T9090]  ? mem_cgroup_iter+0x422/0x560
[ 3386.488922][ T9090]  try_charge_memcg+0xda2/0x18a0
[ 3386.493854][ T9090]  ? mark_lock+0x9a/0x350
[ 3386.498196][ T9090]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3386.503586][ T9090]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3386.509739][ T9090]  charge_memcg+0xa2/0x160
[ 3386.514162][ T9090]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3386.520247][ T9090]  __read_swap_cache_async+0x480/0x8b0
[ 3386.525723][ T9090]  ? mark_lock+0x9a/0x350
[ 3386.530091][ T9090]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3386.536092][ T9090]  swap_cluster_readahead+0x67c/0x810
[ 3386.541480][ T9090]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3386.547393][ T9090]  ? __pfx_lock_release+0x10/0x10
[ 3386.552435][ T9090]  ? xas_descend+0x37e/0x470
[ 3386.557050][ T9090]  swapin_readahead+0x1ea/0x1070
[ 3386.561993][ T9090]  ? filemap_get_entry+0x127/0x4e0
[ 3386.567315][ T9090]  ? __pfx_swapin_readahead+0x10/0x10
[ 3386.572714][ T9090]  ? __filemap_get_folio+0x935/0xbc0
[ 3386.578020][ T9090]  ? swap_cache_get_folio+0x9f/0x570
[ 3386.583314][ T9090]  do_swap_page+0x791/0x3f40
[ 3386.587907][ T9090]  ? __lock_acquire+0x1345/0x1fd0
[ 3386.592958][ T9090]  ? rcu_is_watching+0x15/0xb0
[ 3386.597741][ T9090]  ? do_swap_page+0x154/0x3f40
[ 3386.602519][ T9090]  ? __pfx_do_swap_page+0x10/0x10
[ 3386.607542][ T9090]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3386.613005][ T9090]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3386.618817][ T9090]  ? __pfx_validate_chain+0x10/0x10
[ 3386.624027][ T9090]  __handle_mm_fault+0x15e8/0x72d0
[ 3386.629169][ T9090]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3386.634641][ T9090]  ? mt_find+0x226/0x850
[ 3386.638883][ T9090]  ? __pfx_lock_release+0x10/0x10
[ 3386.643921][ T9090]  ? mt_find+0x62d/0x850
[ 3386.648164][ T9090]  ? mt_find+0x226/0x850
[ 3386.652506][ T9090]  ? find_vma+0x142/0x1c0
[ 3386.656919][ T9090]  ? __pfx_find_vma+0x10/0x10
[ 3386.661589][ T9090]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3386.667574][ T9090]  handle_mm_fault+0x3c1/0x8a0
[ 3386.672350][ T9090]  exc_page_fault+0x2ad/0x870
[ 3386.677043][ T9090]  asm_exc_page_fault+0x26/0x30
[ 3386.681889][ T9090] RIP: 0010:__get_user_8+0x11/0x20
[ 3386.686997][ T9090] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3386.706606][ T9090] RSP: 0000:ffffc900134afd78 EFLAGS: 00050202
[ 3386.712670][ T9090] RAX: 00005555559c3da8 RBX: ffff8880238ed0b8 RCX: ffffc900134afc03
[ 3386.720658][ T9090] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3386.728647][ T9090] RBP: ffffc900134afec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3386.736626][ T9090] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc900134afd80
[ 3386.744607][ T9090] R13: ffffc900134affd8 R14: dffffc0000000000 R15: ffff8880238ebb80
[ 3386.752595][ T9090]  __rseq_handle_notify_resume+0x158/0x1490
[ 3386.758514][ T9090]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3386.764852][ T9090]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3386.770685][ T9090]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3386.776326][ T9090]  exc_page_fault+0x587/0x870
[ 3386.781034][ T9090]  asm_exc_page_fault+0x26/0x30
[ 3386.786003][ T9090] RIP: 0033:0x7f30cb2a9ba0
[ 3386.790425][ T9090] Code: fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 48 85 c0 7c 18 74 01 <c3> 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 b8 3c 00 00 00 0f 05
[ 3386.810031][ T9090] RSP: 002b:00007f30cb4cf918 EFLAGS: 00010202
[ 3386.816114][ T9090] RAX: 0000000000007238 RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3386.824346][ T9090] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3386.832329][ T9090] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3386.840295][ T9090] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3386.848279][ T9090] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3386.856275][ T9090]  </TASK>
[ 3386.891114][ T9090] memory: usage 307200kB, limit 307200kB, failcnt 548805
[ 3386.899899][ T9090] memory+swap: usage 309188kB, limit 9007199254740988kB, failcnt 0
[ 3386.908406][ T9090] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3386.916549][ T9090] Memory cgroup stats for /syz0:
[ 3386.916683][ T9090] cache 0
[ 3386.926049][ T9090] rss 0
[ 3386.928823][ T9090] rss_huge 0
[ 3386.932019][ T9090] shmem 0
[ 3386.935887][ T9090] mapped_file 0
[ 3386.939363][ T9090] dirty 0
[ 3386.942307][ T9090] writeback 0
[ 3386.946710][ T9090] workingset_refault_anon 384390
[ 3386.951665][ T9090] workingset_refault_file 25
[ 3386.957106][ T9090] swap 2035712
[ 3386.960497][ T9090] swapcached 4096
[ 3386.972923][ T9090] pgpgin 895750
[ 3386.977222][ T9090] pgpgout 895749
[ 3386.980875][ T9090] pgfault 1574169
[ 3386.985305][ T9090] pgmajfault 369764
[ 3386.989143][ T9090] inactive_anon 0
[ 3386.992767][ T9090] active_anon 0
[ 3386.997139][ T9090] inactive_file 0
[ 3387.000806][ T9090] active_file 0
[ 3387.005204][ T9090] unevictable 0
[ 3387.008718][ T9090] hierarchical_memory_limit 314572800
[ 3387.014813][ T9090] hierarchical_memsw_limit 9223372036854771712
[ 3387.020990][ T9090] total_cache 0
[ 3387.026045][ T9090] total_rss 0
[ 3387.029341][ T9090] total_rss_huge 0
[ 3387.033039][ T9090] total_shmem 0
[ 3387.037648][ T9090] total_mapped_file 0
[ 3387.041649][ T9090] total_dirty 0
[ 3387.045868][ T9090] total_writeback 0
[ 3387.049691][ T9090] total_workingset_refault_anon 384390
[ 3387.055846][ T9090] total_workingset_refault_file 25
[ 3387.060968][ T9090] total_swap 2035712
[ 3387.066085][ T9090] total_swapcached 4096
[ 3387.070257][ T9090] total_pgpgin 895750
[ 3387.075729][ T9090] total_pgpgout 895749
[ 3387.079823][ T9090] total_pgfault 1574169
[ 3387.084681][ T9090] total_pgmajfault 369764
[ 3387.089059][ T9090] total_inactive_anon 0
[ 3387.093214][ T9090] total_active_anon 0
[ 3387.098103][ T9090] total_inactive_file 0
[ 3387.102289][ T9090] total_active_file 0
[ 3387.107042][ T9090] total_unevictable 0
[ 3387.111040][ T9090] anon_cost 0
[ 3387.114744][ T9090] file_cost 0
[ 3387.118040][ T9090] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9090,uid=0
23:30:45 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xa}}}]}]}}]}, 0x74}}, 0x0)

[ 3387.135568][ T9090] Memory cgroup out of memory: Killed process 9090 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3387.595900][ T9094] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3387.608272][ T9094] CPU: 0 PID: 9094 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3387.618289][ T9094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3387.628369][ T9094] Call Trace:
[ 3387.631671][ T9094]  <TASK>
[ 3387.634622][ T9094]  dump_stack_lvl+0x1e7/0x2e0
[ 3387.639332][ T9094]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3387.644555][ T9094]  ? __pfx__printk+0x10/0x10
[ 3387.649160][ T9094]  ? ___ratelimit+0x4c4/0x670
[ 3387.653874][ T9094]  ? __pfx____ratelimit+0x10/0x10
[ 3387.658933][ T9094]  dump_header+0xda/0x6a0
[ 3387.663298][ T9094]  oom_kill_process+0x3a7/0x930
[ 3387.668187][ T9094]  out_of_memory+0xf67/0x1320
[ 3387.672899][ T9094]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3387.678562][ T9094]  ? __pfx___mutex_lock+0x10/0x10
[ 3387.683614][ T9094]  ? __pfx_out_of_memory+0x10/0x10
[ 3387.688777][ T9094]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3387.694354][ T9094]  ? __pfx_lock_release+0x10/0x10
[ 3387.699416][ T9094]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3387.705514][ T9094]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3387.710746][ T9094]  ? mem_cgroup_iter+0x422/0x560
[ 3387.715738][ T9094]  try_charge_memcg+0xda2/0x18a0
[ 3387.720786][ T9094]  ? mark_lock+0x9a/0x350
[ 3387.725173][ T9094]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3387.730604][ T9094]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3387.736795][ T9094]  charge_memcg+0xa2/0x160
[ 3387.741254][ T9094]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3387.747378][ T9094]  __read_swap_cache_async+0x480/0x8b0
[ 3387.752958][ T9094]  ? mark_lock+0x9a/0x350
[ 3387.757335][ T9094]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3387.763363][ T9094]  swap_cluster_readahead+0x67c/0x810
[ 3387.768784][ T9094]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3387.774802][ T9094]  ? __pfx_lock_release+0x10/0x10
[ 3387.779864][ T9094]  ? xas_descend+0x37e/0x470
[ 3387.784497][ T9094]  swapin_readahead+0x1ea/0x1070
[ 3387.789478][ T9094]  ? filemap_get_entry+0x127/0x4e0
[ 3387.794727][ T9094]  ? __pfx_swapin_readahead+0x10/0x10
[ 3387.800153][ T9094]  ? __filemap_get_folio+0x935/0xbc0
[ 3387.805497][ T9094]  ? swap_cache_get_folio+0x9f/0x570
[ 3387.810815][ T9094]  do_swap_page+0x791/0x3f40
[ 3387.815435][ T9094]  ? rcu_is_watching+0x15/0xb0
[ 3387.820242][ T9094]  ? do_swap_page+0x154/0x3f40
[ 3387.825045][ T9094]  ? __pfx_do_swap_page+0x10/0x10
[ 3387.830196][ T9094]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3387.835697][ T9094]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3387.841543][ T9094]  __handle_mm_fault+0x15e8/0x72d0
[ 3387.846717][ T9094]  ? reacquire_held_locks+0x3eb/0x690
[ 3387.852111][ T9094]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3387.857620][ T9094]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3387.863399][ T9094]  ? mtree_range_walk+0x6fd/0x8e0
[ 3387.868455][ T9094]  ? lock_vma_under_rcu+0x18a/0x730
[ 3387.873683][ T9094]  ? __pfx_lock_release+0x10/0x10
[ 3387.878737][ T9094]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3387.884068][ T9094]  ? lock_vma_under_rcu+0x18a/0x730
[ 3387.889296][ T9094]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3387.894873][ T9094]  handle_mm_fault+0x3c1/0x8a0
[ 3387.899700][ T9094]  exc_page_fault+0x456/0x870
[ 3387.904418][ T9094]  asm_exc_page_fault+0x26/0x30
[ 3387.909296][ T9094] RIP: 0033:0x7f30cb234bf1
[ 3387.913735][ T9094] Code: 75 67 48 8d 5d 08 4c 8d 65 0c eb 1e 0f 1f 44 00 00 45 31 c0 31 c9 ba 80 00 00 00 48 89 de bf ca 00 00 00 31 c0 e8 9f 91 04 00 <8b> 03 85 c0 74 e1 c7 45 08 00 00 00 00 48 89 ef e8 8a 9b ff ff 8b
[ 3387.933370][ T9094] RSP: 002b:00007f30cbf26180 EFLAGS: 00010202
[ 3387.939459][ T9094] RAX: 0000000000000000 RBX: 00007f30cb3abf88 RCX: 00007f30cb27db0b
[ 3387.947450][ T9094] RDX: 0000000000000000 RSI: 0000000000006364 RDI: 00000000000000d8
[ 3387.955451][ T9094] RBP: 00007f30cb3abf80 R08: 0000000000000000 R09: 00007f30cb4cfa47
[ 3387.963441][ T9094] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f30cb3abf8c
[ 3387.971421][ T9094] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3387.979427][ T9094]  </TASK>
[ 3387.999260][ T9094] memory: usage 307200kB, limit 307200kB, failcnt 549640
[ 3388.019998][ T9094] memory+swap: usage 309216kB, limit 9007199254740988kB, failcnt 0
[ 3388.028245][ T9094] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3388.036233][ T9094] Memory cgroup stats for /syz0:
[ 3388.036385][ T9094] cache 0
[ 3388.044505][ T9094] rss 4096
[ 3388.049111][ T9094] rss_huge 0
[ 3388.052334][ T9094] shmem 0
[ 3388.055604][ T9094] mapped_file 0
[ 3388.059101][ T9094] dirty 0
[ 3388.062037][ T9094] writeback 0
[ 3388.070023][ T9094] workingset_refault_anon 384584
[ 3388.079989][ T9094] workingset_refault_file 25
[ 3388.084877][ T9094] swap 2064384
[ 3388.088357][ T9094] swapcached 4096
[ 3388.092017][ T9094] pgpgin 895955
[ 3388.097075][ T9094] pgpgout 895954
[ 3388.100881][ T9094] pgfault 1574477
[ 3388.104936][ T9094] pgmajfault 369953
[ 3388.108764][ T9094] inactive_anon 0
[ 3388.112414][ T9094] active_anon 4096
[ 3388.116505][ T9094] inactive_file 0
[ 3388.120148][ T9094] active_file 0
[ 3388.123608][ T9094] unevictable 0
[ 3388.128059][ T9094] hierarchical_memory_limit 314572800
[ 3388.133543][ T9094] hierarchical_memsw_limit 9223372036854771712
[ 3388.144339][ T9094] total_cache 0
[ 3388.147831][ T9094] total_rss 4096
[ 3388.152399][ T9094] total_rss_huge 0
[ 3388.165706][ T9094] total_shmem 0
[ 3388.169480][ T9094] total_mapped_file 0
[ 3388.173492][ T9094] total_dirty 0
[ 3388.180199][ T9094] total_writeback 0
[ 3388.184554][ T9094] total_workingset_refault_anon 384584
[ 3388.190131][ T9094] total_workingset_refault_file 25
[ 3388.195895][ T9094] total_swap 2064384
[ 3388.199884][ T9094] total_swapcached 4096
[ 3388.205416][ T9094] total_pgpgin 895955
[ 3388.209471][ T9094] total_pgpgout 895954
[ 3388.213563][ T9094] total_pgfault 1574477
[ 3388.218306][ T9094] total_pgmajfault 369953
[ 3388.222745][ T9094] total_inactive_anon 0
[ 3388.227648][ T9094] total_active_anon 4096
[ 3388.231974][ T9094] total_inactive_file 0
[ 3388.236439][ T9094] total_active_file 0
[ 3388.240563][ T9094] total_unevictable 0
[ 3388.245185][ T9094] anon_cost 0
23:30:46 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}}}]}]}}]}, 0x74}}, 0x0)

[ 3388.248581][ T9094] file_cost 0
[ 3388.253396][ T9094] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9093,uid=0
[ 3388.269740][ T9094] Memory cgroup out of memory: Killed process 9093 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3388.537005][ T9095] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3388.570168][ T9095] CPU: 1 PID: 9095 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3388.580209][ T9095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3388.590438][ T9095] Call Trace:
[ 3388.593709][ T9095]  <TASK>
[ 3388.596723][ T9095]  dump_stack_lvl+0x1e7/0x2e0
[ 3388.601401][ T9095]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3388.606593][ T9095]  ? __pfx__printk+0x10/0x10
[ 3388.611173][ T9095]  ? ___ratelimit+0x4c4/0x670
[ 3388.615849][ T9095]  ? __pfx____ratelimit+0x10/0x10
[ 3388.620869][ T9095]  dump_header+0xda/0x6a0
[ 3388.625200][ T9095]  oom_kill_process+0x3a7/0x930
[ 3388.630052][ T9095]  out_of_memory+0xf67/0x1320
[ 3388.634727][ T9095]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3388.640352][ T9095]  ? __pfx___mutex_lock+0x10/0x10
[ 3388.645373][ T9095]  ? __pfx_out_of_memory+0x10/0x10
[ 3388.650485][ T9095]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3388.656022][ T9095]  ? __pfx_lock_release+0x10/0x10
[ 3388.661043][ T9095]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3388.667115][ T9095]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3388.672313][ T9095]  ? mem_cgroup_iter+0x422/0x560
[ 3388.677254][ T9095]  try_charge_memcg+0xda2/0x18a0
[ 3388.682189][ T9095]  ? mark_lock+0x9a/0x350
[ 3388.686528][ T9095]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3388.691911][ T9095]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3388.698090][ T9095]  charge_memcg+0xa2/0x160
[ 3388.702530][ T9095]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3388.708626][ T9095]  __read_swap_cache_async+0x480/0x8b0
[ 3388.714098][ T9095]  ? mark_lock+0x9a/0x350
[ 3388.718436][ T9095]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3388.724438][ T9095]  swap_cluster_readahead+0x67c/0x810
[ 3388.729941][ T9095]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3388.735855][ T9095]  ? __pfx_lock_release+0x10/0x10
[ 3388.740892][ T9095]  ? xas_descend+0x37e/0x470
[ 3388.745490][ T9095]  swapin_readahead+0x1ea/0x1070
[ 3388.750436][ T9095]  ? filemap_get_entry+0x127/0x4e0
[ 3388.755554][ T9095]  ? __pfx_swapin_readahead+0x10/0x10
[ 3388.760930][ T9095]  ? __filemap_get_folio+0x935/0xbc0
[ 3388.766222][ T9095]  ? swap_cache_get_folio+0x9f/0x570
[ 3388.771515][ T9095]  do_swap_page+0x791/0x3f40
[ 3388.776106][ T9095]  ? __lock_acquire+0x1345/0x1fd0
[ 3388.781130][ T9095]  ? rcu_is_watching+0x15/0xb0
[ 3388.785899][ T9095]  ? do_swap_page+0x154/0x3f40
[ 3388.790656][ T9095]  ? __pfx_do_swap_page+0x10/0x10
[ 3388.795673][ T9095]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3388.801127][ T9095]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3388.806928][ T9095]  ? __pfx_validate_chain+0x10/0x10
[ 3388.812124][ T9095]  __handle_mm_fault+0x15e8/0x72d0
[ 3388.817252][ T9095]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3388.822711][ T9095]  ? mt_find+0x226/0x850
[ 3388.826965][ T9095]  ? __pfx_lock_release+0x10/0x10
[ 3388.832054][ T9095]  ? mt_find+0x62d/0x850
[ 3388.836305][ T9095]  ? mt_find+0x226/0x850
[ 3388.840563][ T9095]  ? find_vma+0x142/0x1c0
[ 3388.844889][ T9095]  ? __pfx_find_vma+0x10/0x10
[ 3388.849565][ T9095]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3388.855806][ T9095]  handle_mm_fault+0x3c1/0x8a0
[ 3388.860572][ T9095]  exc_page_fault+0x2ad/0x870
[ 3388.865250][ T9095]  asm_exc_page_fault+0x26/0x30
[ 3388.870099][ T9095] RIP: 0010:__get_user_8+0x11/0x20
[ 3388.875211][ T9095] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3388.894808][ T9095] RSP: 0000:ffffc900030dfd78 EFLAGS: 00050202
[ 3388.900875][ T9095] RAX: 00005555559c3da8 RBX: ffff8880215c32f8 RCX: ffffc900030dfc03
[ 3388.908839][ T9095] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3388.916802][ T9095] RBP: ffffc900030dfec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3388.924771][ T9095] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc900030dfd80
[ 3388.932734][ T9095] R13: ffffc900030dffd8 R14: dffffc0000000000 R15: ffff8880215c1dc0
[ 3388.940712][ T9095]  __rseq_handle_notify_resume+0x158/0x1490
[ 3388.946702][ T9095]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3388.953032][ T9095]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3388.958830][ T9095]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3388.964454][ T9095]  exc_page_fault+0x587/0x870
[ 3388.969135][ T9095]  asm_exc_page_fault+0x26/0x30
[ 3388.973991][ T9095] RIP: 0033:0x7f30cb2a9ba0
[ 3388.978418][ T9095] Code: fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 48 85 c0 7c 18 74 01 <c3> 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 b8 3c 00 00 00 0f 05
[ 3388.998018][ T9095] RSP: 002b:00007f30cb4cf918 EFLAGS: 00010206
[ 3389.004083][ T9095] RAX: 000000000000723c RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3389.012045][ T9095] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3389.020012][ T9095] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3389.027974][ T9095] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3389.035939][ T9095] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3389.043914][ T9095]  </TASK>
[ 3389.091439][ T9095] memory: usage 307200kB, limit 307200kB, failcnt 550099
[ 3389.098838][ T9095] memory+swap: usage 309132kB, limit 9007199254740988kB, failcnt 0
[ 3389.108332][ T9095] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3389.125567][ T9095] Memory cgroup stats for /syz0:
[ 3389.125716][ T9095] cache 0
[ 3389.133615][ T9095] rss 0
[ 3389.137107][ T9095] rss_huge 0
[ 3389.140321][ T9095] shmem 0
[ 3389.143253][ T9095] mapped_file 0
[ 3389.147939][ T9095] dirty 0
[ 3389.150900][ T9095] writeback 0
[ 3389.156187][ T9095] workingset_refault_anon 384701
[ 3389.161165][ T9095] workingset_refault_file 25
[ 3389.176808][ T9095] swap 1982464
[ 3389.180233][ T9095] swapcached 0
[ 3389.183607][ T9095] pgpgin 896083
[ 3389.188410][ T9095] pgpgout 896083
[ 3389.191987][ T9095] pgfault 1574674
[ 3389.196355][ T9095] pgmajfault 370066
[ 3389.200189][ T9095] inactive_anon 0
[ 3389.203823][ T9095] active_anon 0
[ 3389.210492][ T9095] inactive_file 0
[ 3389.215477][ T9095] active_file 0
[ 3389.218964][ T9095] unevictable 0
[ 3389.222431][ T9095] hierarchical_memory_limit 314572800
[ 3389.228273][ T9095] hierarchical_memsw_limit 9223372036854771712
[ 3389.243168][ T9095] total_cache 0
[ 3389.247148][ T9095] total_rss 0
[ 3389.250447][ T9095] total_rss_huge 0
[ 3389.254442][ T9095] total_shmem 0
[ 3389.257911][ T9095] total_mapped_file 0
[ 3389.261897][ T9095] total_dirty 0
[ 3389.266346][ T9095] total_writeback 0
[ 3389.270181][ T9095] total_workingset_refault_anon 384701
[ 3389.276646][ T9095] total_workingset_refault_file 25
[ 3389.281779][ T9095] total_swap 1982464
[ 3389.295340][ T9095] total_swapcached 0
[ 3389.299259][ T9095] total_pgpgin 896083
[ 3389.303243][ T9095] total_pgpgout 896083
[ 3389.308043][ T9095] total_pgfault 1574674
[ 3389.312205][ T9095] total_pgmajfault 370066
[ 3389.316790][ T9095] total_inactive_anon 0
[ 3389.320956][ T9095] total_active_anon 0
[ 3389.325178][ T9095] total_inactive_file 0
[ 3389.329344][ T9095] total_active_file 0
[ 3389.333323][ T9095] total_unevictable 0
[ 3389.337770][ T9095] anon_cost 0
[ 3389.341074][ T9095] file_cost 0
23:30:47 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe}}}]}]}}]}, 0x74}}, 0x0)

[ 3389.344634][ T9095] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9095,uid=0
[ 3389.360292][ T9095] Memory cgroup out of memory: Killed process 9095 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3389.529476][ T1240] ieee802154 phy0 wpan0: encryption failed: -22
[ 3389.536804][ T1240] ieee802154 phy1 wpan1: encryption failed: -22
[ 3389.916061][ T9097] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3389.928688][ T9097] CPU: 0 PID: 9097 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3389.938694][ T9097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3389.948745][ T9097] Call Trace:
[ 3389.952015][ T9097]  <TASK>
[ 3389.954939][ T9097]  dump_stack_lvl+0x1e7/0x2e0
[ 3389.959616][ T9097]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3389.964892][ T9097]  ? __pfx__printk+0x10/0x10
[ 3389.969472][ T9097]  ? ___ratelimit+0x4c4/0x670
[ 3389.974167][ T9097]  ? __pfx____ratelimit+0x10/0x10
[ 3389.979205][ T9097]  dump_header+0xda/0x6a0
[ 3389.983534][ T9097]  oom_kill_process+0x3a7/0x930
[ 3389.988381][ T9097]  out_of_memory+0xf67/0x1320
[ 3389.993072][ T9097]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3389.998714][ T9097]  ? __pfx___mutex_lock+0x10/0x10
[ 3390.003738][ T9097]  ? __pfx_out_of_memory+0x10/0x10
[ 3390.008851][ T9097]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3390.014393][ T9097]  ? __pfx_lock_release+0x10/0x10
[ 3390.019418][ T9097]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3390.025487][ T9097]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3390.030686][ T9097]  ? mem_cgroup_iter+0x422/0x560
[ 3390.035621][ T9097]  try_charge_memcg+0xda2/0x18a0
[ 3390.040549][ T9097]  ? mark_lock+0x9a/0x350
[ 3390.044886][ T9097]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3390.050280][ T9097]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3390.056431][ T9097]  charge_memcg+0xa2/0x160
[ 3390.060847][ T9097]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3390.066919][ T9097]  __read_swap_cache_async+0x480/0x8b0
[ 3390.072375][ T9097]  ? mark_lock+0x9a/0x350
[ 3390.076709][ T9097]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3390.082690][ T9097]  ? blk_start_plug+0x6f/0x1b0
[ 3390.087457][ T9097]  swap_cluster_readahead+0x398/0x810
[ 3390.092838][ T9097]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3390.098734][ T9097]  ? __pfx_lock_release+0x10/0x10
[ 3390.103846][ T9097]  ? xas_descend+0x37e/0x470
[ 3390.108441][ T9097]  swapin_readahead+0x1ea/0x1070
[ 3390.113381][ T9097]  ? filemap_get_entry+0x127/0x4e0
[ 3390.118502][ T9097]  ? __pfx_swapin_readahead+0x10/0x10
[ 3390.123884][ T9097]  ? __filemap_get_folio+0x935/0xbc0
[ 3390.129167][ T9097]  ? swap_cache_get_folio+0x9f/0x570
[ 3390.134467][ T9097]  do_swap_page+0x791/0x3f40
[ 3390.139059][ T9097]  ? __lock_acquire+0x1345/0x1fd0
[ 3390.144125][ T9097]  ? rcu_is_watching+0x15/0xb0
[ 3390.148894][ T9097]  ? do_swap_page+0x154/0x3f40
[ 3390.153647][ T9097]  ? __pfx_do_swap_page+0x10/0x10
[ 3390.158662][ T9097]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3390.164126][ T9097]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3390.169942][ T9097]  ? __pfx_validate_chain+0x10/0x10
[ 3390.175139][ T9097]  __handle_mm_fault+0x15e8/0x72d0
[ 3390.180268][ T9097]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3390.185727][ T9097]  ? mt_find+0x226/0x850
[ 3390.189965][ T9097]  ? __pfx_lock_release+0x10/0x10
[ 3390.195032][ T9097]  ? mt_find+0x62d/0x850
[ 3390.199268][ T9097]  ? mt_find+0x226/0x850
[ 3390.203520][ T9097]  ? find_vma+0x142/0x1c0
[ 3390.207845][ T9097]  ? __pfx_find_vma+0x10/0x10
[ 3390.212515][ T9097]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3390.218498][ T9097]  handle_mm_fault+0x3c1/0x8a0
[ 3390.223276][ T9097]  exc_page_fault+0x2ad/0x870
[ 3390.227955][ T9097]  asm_exc_page_fault+0x26/0x30
[ 3390.232801][ T9097] RIP: 0010:__get_user_8+0x11/0x20
[ 3390.237918][ T9097] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3390.257523][ T9097] RSP: 0000:ffffc900116afd78 EFLAGS: 00050202
[ 3390.263585][ T9097] RAX: 00005555559c3da8 RBX: ffff88802a08d0b8 RCX: ffffc900116afc03
[ 3390.271549][ T9097] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3390.279602][ T9097] RBP: ffffc900116afec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3390.287566][ T9097] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc900116afd80
[ 3390.295800][ T9097] R13: ffffc900116affd8 R14: dffffc0000000000 R15: ffff88802a08bb80
[ 3390.303778][ T9097]  __rseq_handle_notify_resume+0x158/0x1490
[ 3390.309771][ T9097]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3390.316103][ T9097]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3390.321902][ T9097]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3390.327526][ T9097]  exc_page_fault+0x587/0x870
[ 3390.332205][ T9097]  asm_exc_page_fault+0x26/0x30
[ 3390.337053][ T9097] RIP: 0033:0x7f30cb2527fb
[ 3390.341467][ T9097] Code: 48 8d 7c 24 60 e8 85 f7 ff ff 48 8b 84 24 f8 00 00 00 64 48 2b 04 25 28 00 00 00 0f 85 86 0c 00 00 48 81 c4 08 01 00 00 89 e8 <5b> 5d 41 5c 41 5d 41 5e 41 5f c3 66 2e 0f 1f 84 00 00 00 00 00 4d
[ 3390.361072][ T9097] RSP: 002b:00007f30cb4cfaf8 EFLAGS: 00010202
[ 3390.367132][ T9097] RAX: 0000000000000000 RBX: 00007f30cbf266c0 RCX: 00007f30cb252c17
[ 3390.375097][ T9097] RDX: 0000000000000000 RSI: 00007f30cb4cfa48 RDI: 0000000000000002
[ 3390.383070][ T9097] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007f30cb4cfa47
[ 3390.391032][ T9097] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f30cb4cfc90
[ 3390.398993][ T9097] R13: 00007f30cbf06000 R14: 00007f30cbf266c0 R15: 00007f30cb4cfa48
[ 3390.406974][ T9097]  </TASK>
[ 3390.438025][ T9097] memory: usage 307180kB, limit 307200kB, failcnt 550969
[ 3390.445938][ T9097] memory+swap: usage 309140kB, limit 9007199254740988kB, failcnt 0
[ 3390.454561][ T9097] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3390.461915][ T9097] Memory cgroup stats for /syz0:
[ 3390.462049][ T9097] cache 0
[ 3390.470768][ T9097] rss 4096
[ 3390.473809][ T9097] rss_huge 0
[ 3390.477505][ T9097] shmem 0
[ 3390.480465][ T9097] mapped_file 0
[ 3390.485439][ T9097] dirty 0
[ 3390.491363][ T9097] writeback 0
[ 3390.499019][ T9097] workingset_refault_anon 384897
[ 3390.504417][ T9097] workingset_refault_file 25
[ 3390.509952][ T9097] swap 2007040
[ 3390.513343][ T9097] swapcached 4096
[ 3390.521720][ T9097] pgpgin 896289
[ 3390.526045][ T9097] pgpgout 896288
[ 3390.529705][ T9097] pgfault 1574986
[ 3390.533349][ T9097] pgmajfault 370258
[ 3390.537916][ T9097] inactive_anon 0
[ 3390.541575][ T9097] active_anon 4096
[ 3390.545736][ T9097] inactive_file 0
[ 3390.549686][ T9097] active_file 0
[ 3390.553311][ T9097] unevictable 0
[ 3390.557429][ T9097] hierarchical_memory_limit 314572800
[ 3390.562886][ T9097] hierarchical_memsw_limit 9223372036854771712
[ 3390.570139][ T9097] total_cache 0
[ 3390.573676][ T9097] total_rss 4096
[ 3390.577654][ T9097] total_rss_huge 0
[ 3390.581389][ T9097] total_shmem 0
[ 3390.586094][ T9097] total_mapped_file 0
[ 3390.590193][ T9097] total_dirty 0
[ 3390.593688][ T9097] total_writeback 0
[ 3390.598034][ T9097] total_workingset_refault_anon 384897
[ 3390.603493][ T9097] total_workingset_refault_file 25
[ 3390.609962][ T9097] total_swap 2007040
[ 3390.613897][ T9097] total_swapcached 4096
[ 3390.618770][ T9097] total_pgpgin 896289
[ 3390.622766][ T9097] total_pgpgout 896288
[ 3390.629728][ T9097] total_pgfault 1574986
[ 3390.633895][ T9097] total_pgmajfault 370258
[ 3390.638770][ T9097] total_inactive_anon 0
[ 3390.642919][ T9097] total_active_anon 4096
[ 3390.647852][ T9097] total_inactive_file 0
[ 3390.652014][ T9097] total_active_file 0
[ 3390.656953][ T9097] total_unevictable 0
[ 3390.660964][ T9097] anon_cost 0
[ 3390.664897][ T9097] file_cost 0
[ 3390.668213][ T9097] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9097,uid=0
23:30:49 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}}]}]}}]}, 0x74}}, 0x0)

[ 3390.684458][ T9097] Memory cgroup out of memory: Killed process 9097 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3390.813579][ T9100] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3390.824708][ T9100] CPU: 1 PID: 9100 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3390.834746][ T9100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3390.844812][ T9100] Call Trace:
[ 3390.848087][ T9100]  <TASK>
[ 3390.851013][ T9100]  dump_stack_lvl+0x1e7/0x2e0
[ 3390.855785][ T9100]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3390.860976][ T9100]  ? __pfx__printk+0x10/0x10
[ 3390.865553][ T9100]  ? ___ratelimit+0x4c4/0x670
[ 3390.870233][ T9100]  ? __pfx____ratelimit+0x10/0x10
[ 3390.875253][ T9100]  dump_header+0xda/0x6a0
[ 3390.879596][ T9100]  oom_kill_process+0x3a7/0x930
[ 3390.884454][ T9100]  out_of_memory+0xf67/0x1320
[ 3390.889180][ T9100]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3390.894812][ T9100]  ? __pfx___mutex_lock+0x10/0x10
[ 3390.899841][ T9100]  ? __pfx_out_of_memory+0x10/0x10
[ 3390.904959][ T9100]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3390.910497][ T9100]  ? __pfx_lock_release+0x10/0x10
[ 3390.915534][ T9100]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3390.921597][ T9100]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3390.926790][ T9100]  ? mem_cgroup_iter+0x422/0x560
[ 3390.931724][ T9100]  try_charge_memcg+0xda2/0x18a0
[ 3390.936675][ T9100]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3390.942045][ T9100]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3390.947756][ T9100]  ? __pfx_lock_release+0x10/0x10
[ 3390.952777][ T9100]  ? memcg_account_kmem+0x1e7/0x210
[ 3390.957978][ T9100]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3390.963775][ T9100]  __memcg_kmem_charge_page+0xe1/0x250
[ 3390.969236][ T9100]  memcg_charge_kernel_stack+0x37e/0x550
[ 3390.974863][ T9100]  dup_task_struct+0x15d/0x7d0
[ 3390.979619][ T9100]  copy_process+0x5d0/0x3fc0
[ 3390.984229][ T9100]  ? __pfx_lock_release+0x10/0x10
[ 3390.989353][ T9100]  ? __pfx_copy_process+0x10/0x10
[ 3390.994369][ T9100]  ? __might_fault+0xc5/0x120
[ 3390.999043][ T9100]  ? __asan_memset+0x23/0x50
[ 3391.003631][ T9100]  kernel_clone+0x21d/0x8d0
[ 3391.008130][ T9100]  ? __pfx_kernel_clone+0x10/0x10
[ 3391.013158][ T9100]  __se_sys_clone3+0x2cb/0x350
[ 3391.018005][ T9100]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3391.023318][ T9100]  ? do_syscall_64+0x108/0x240
[ 3391.028093][ T9100]  ? do_syscall_64+0xb4/0x240
[ 3391.032764][ T9100]  do_syscall_64+0xf9/0x240
[ 3391.037263][ T9100]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3391.043149][ T9100] RIP: 0033:0x7f30cb2a9b99
[ 3391.047556][ T9100] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3391.067154][ T9100] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3391.075570][ T9100] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3391.083530][ T9100] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3391.091494][ T9100] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3391.099462][ T9100] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3391.107426][ T9100] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3391.115399][ T9100]  </TASK>
[ 3391.124738][ T9100] memory: usage 307200kB, limit 307200kB, failcnt 551159
[ 3391.131800][ T9100] memory+swap: usage 309184kB, limit 9007199254740988kB, failcnt 0
[ 3391.140564][ T9100] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3391.148144][ T9100] Memory cgroup stats for /syz0:
[ 3391.148246][ T9100] cache 0
[ 3391.162592][ T9100] rss 12288
[ 3391.166304][ T9100] rss_huge 0
[ 3391.169527][ T9100] shmem 0
[ 3391.172470][ T9100] mapped_file 0
[ 3391.176818][ T9100] dirty 0
[ 3391.179771][ T9100] writeback 0
[ 3391.183070][ T9100] workingset_refault_anon 384982
[ 3391.189187][ T9100] workingset_refault_file 25
[ 3391.193814][ T9100] swap 2031616
[ 3391.197817][ T9100] swapcached 8192
[ 3391.201465][ T9100] pgpgin 896385
[ 3391.205615][ T9100] pgpgout 896382
[ 3391.209184][ T9100] pgfault 1575123
[ 3391.212817][ T9100] pgmajfault 370332
[ 3391.217743][ T9100] inactive_anon 0
[ 3391.221880][ T9100] active_anon 12288
[ 3391.227114][ T9100] inactive_file 0
[ 3391.230757][ T9100] active_file 0
[ 3391.235014][ T9100] unevictable 0
[ 3391.238487][ T9100] hierarchical_memory_limit 314572800
[ 3391.243850][ T9100] hierarchical_memsw_limit 9223372036854771712
[ 3391.250891][ T9100] total_cache 0
[ 3391.254922][ T9100] total_rss 12288
[ 3391.258572][ T9100] total_rss_huge 0
[ 3391.262292][ T9100] total_shmem 0
[ 3391.266644][ T9100] total_mapped_file 0
[ 3391.270648][ T9100] total_dirty 0
[ 3391.275154][ T9100] total_writeback 0
[ 3391.278977][ T9100] total_workingset_refault_anon 384982
[ 3391.285702][ T9100] total_workingset_refault_file 25
[ 3391.290836][ T9100] total_swap 2031616
[ 3391.295389][ T9100] total_swapcached 8192
[ 3391.299567][ T9100] total_pgpgin 896385
[ 3391.303631][ T9100] total_pgpgout 896382
[ 3391.308953][ T9100] total_pgfault 1575123
[ 3391.313301][ T9100] total_pgmajfault 370332
[ 3391.318364][ T9100] total_inactive_anon 0
[ 3391.322617][ T9100] total_active_anon 12288
[ 3391.328337][ T9100] total_inactive_file 0
[ 3391.332859][ T9100] total_active_file 0
[ 3391.338339][ T9100] total_unevictable 0
[ 3391.342421][ T9100] anon_cost 0
[ 3391.347295][ T9100] file_cost 0
[ 3391.350677][ T9100] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9100,uid=0
23:30:49 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x11}}}]}]}}]}, 0x74}}, 0x0)

[ 3391.367756][ T9100] Memory cgroup out of memory: Killed process 9100 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3391.601420][ T9103] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3391.622698][ T9103] CPU: 1 PID: 9103 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3391.632728][ T9103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3391.642863][ T9103] Call Trace:
[ 3391.646133][ T9103]  <TASK>
[ 3391.649049][ T9103]  dump_stack_lvl+0x1e7/0x2e0
[ 3391.653992][ T9103]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3391.659179][ T9103]  ? __pfx__printk+0x10/0x10
[ 3391.663747][ T9103]  ? ___ratelimit+0x4c4/0x670
[ 3391.668432][ T9103]  ? __pfx____ratelimit+0x10/0x10
[ 3391.673468][ T9103]  dump_header+0xda/0x6a0
[ 3391.677801][ T9103]  oom_kill_process+0x3a7/0x930
[ 3391.682649][ T9103]  out_of_memory+0xf67/0x1320
[ 3391.687422][ T9103]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3391.693047][ T9103]  ? __pfx___mutex_lock+0x10/0x10
[ 3391.698092][ T9103]  ? __pfx_out_of_memory+0x10/0x10
[ 3391.703243][ T9103]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3391.708932][ T9103]  ? __pfx_lock_release+0x10/0x10
[ 3391.714010][ T9103]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3391.720129][ T9103]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3391.725353][ T9103]  ? mem_cgroup_iter+0x422/0x560
[ 3391.730315][ T9103]  try_charge_memcg+0xda2/0x18a0
[ 3391.735276][ T9103]  ? mark_lock+0x9a/0x350
[ 3391.739626][ T9103]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3391.745012][ T9103]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3391.751169][ T9103]  charge_memcg+0xa2/0x160
[ 3391.755582][ T9103]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3391.761652][ T9103]  __read_swap_cache_async+0x480/0x8b0
[ 3391.767114][ T9103]  ? mark_lock+0x9a/0x350
[ 3391.771450][ T9103]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3391.777439][ T9103]  swap_cluster_readahead+0x67c/0x810
[ 3391.782812][ T9103]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3391.788709][ T9103]  ? __pfx_lock_release+0x10/0x10
[ 3391.793906][ T9103]  ? xas_descend+0x37e/0x470
[ 3391.798510][ T9103]  swapin_readahead+0x1ea/0x1070
[ 3391.803446][ T9103]  ? filemap_get_entry+0x127/0x4e0
[ 3391.808568][ T9103]  ? __pfx_swapin_readahead+0x10/0x10
[ 3391.813950][ T9103]  ? __filemap_get_folio+0x935/0xbc0
[ 3391.819270][ T9103]  ? swap_cache_get_folio+0x9f/0x570
[ 3391.824556][ T9103]  do_swap_page+0x791/0x3f40
[ 3391.829144][ T9103]  ? rcu_is_watching+0x15/0xb0
[ 3391.833913][ T9103]  ? do_swap_page+0x154/0x3f40
[ 3391.839805][ T9103]  ? __pfx_do_swap_page+0x10/0x10
[ 3391.844834][ T9103]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3391.850381][ T9103]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3391.856887][ T9103]  __handle_mm_fault+0x15e8/0x72d0
[ 3391.862024][ T9103]  ? reacquire_held_locks+0x3eb/0x690
[ 3391.867391][ T9103]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3391.872864][ T9103]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3391.878585][ T9103]  ? mtree_range_walk+0x6fd/0x8e0
[ 3391.883603][ T9103]  ? lock_vma_under_rcu+0x18a/0x730
[ 3391.888794][ T9103]  ? __pfx_lock_release+0x10/0x10
[ 3391.893812][ T9103]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3391.899105][ T9103]  ? lock_vma_under_rcu+0x18a/0x730
[ 3391.904305][ T9103]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3391.909845][ T9103]  handle_mm_fault+0x3c1/0x8a0
[ 3391.914619][ T9103]  exc_page_fault+0x456/0x870
[ 3391.919302][ T9103]  asm_exc_page_fault+0x26/0x30
[ 3391.924149][ T9103] RIP: 0033:0x7f30cb234c30
[ 3391.928554][ T9103] Code: 8b 45 0c 85 c0 75 39 b9 40 42 0f 00 ba 81 00 00 00 4c 89 e6 41 c7 04 24 01 00 00 00 bf ca 00 00 00 31 c0 e8 62 91 04 00 eb c1 <0f> b6 35 79 0a ca 00 8b bf 98 00 00 00 31 d2 e8 8c 6e ff ff eb 83
[ 3391.948166][ T9103] RSP: 002b:00007f30cbf26180 EFLAGS: 00010202
[ 3391.954228][ T9103] RAX: 0000000000000001 RBX: 00007f30cbf266c0 RCX: 00007f30cb252386
[ 3391.962190][ T9103] RDX: 0000000000000000 RSI: 00007f30cbf26fb0 RDI: 00007f30cb3abf80
[ 3391.970158][ T9103] RBP: 00007f30cb3abf80 R08: 0000000000000000 R09: 00007f30cb4cfa47
[ 3391.978469][ T9103] R10: 0000000000000008 R11: 0000000000000246 R12: ffffffffffffffb0
[ 3391.986429][ T9103] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3391.994665][ T9103]  </TASK>
[ 3392.005038][ T9103] memory: usage 307200kB, limit 307200kB, failcnt 551443
[ 3392.012104][ T9103] memory+swap: usage 309228kB, limit 9007199254740988kB, failcnt 0
[ 3392.020838][ T9103] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3392.029202][ T9103] Memory cgroup stats for /syz0:
[ 3392.029331][ T9103] cache 0
[ 3392.037433][ T9103] rss 0
[ 3392.044722][ T9103] rss_huge 0
[ 3392.051392][ T9103] shmem 0
[ 3392.054627][ T9103] mapped_file 0
[ 3392.058101][ T9103] dirty 0
[ 3392.061039][ T9103] writeback 0
[ 3392.064692][ T9103] workingset_refault_anon 385059
[ 3392.069638][ T9103] workingset_refault_file 25
[ 3392.074472][ T9103] swap 2080768
[ 3392.077856][ T9103] swapcached 0
[ 3392.081229][ T9103] pgpgin 896473
[ 3392.087308][ T9103] pgpgout 896473
[ 3392.090902][ T9103] pgfault 1575254
[ 3392.095545][ T9103] pgmajfault 370403
[ 3392.099392][ T9103] inactive_anon 0
[ 3392.103030][ T9103] active_anon 0
[ 3392.107569][ T9103] inactive_file 0
[ 3392.111208][ T9103] active_file 0
[ 3392.117347][ T9103] unevictable 0
[ 3392.120829][ T9103] hierarchical_memory_limit 314572800
[ 3392.131956][ T9103] hierarchical_memsw_limit 9223372036854771712
[ 3392.138770][ T9103] total_cache 0
[ 3392.142240][ T9103] total_rss 0
[ 3392.146985][ T9103] total_rss_huge 0
[ 3392.150722][ T9103] total_shmem 0
[ 3392.155013][ T9103] total_mapped_file 0
[ 3392.159051][ T9103] total_dirty 0
[ 3392.162489][ T9103] total_writeback 0
[ 3392.167574][ T9103] total_workingset_refault_anon 385059
[ 3392.173054][ T9103] total_workingset_refault_file 25
[ 3392.178718][ T9103] total_swap 2080768
[ 3392.182665][ T9103] total_swapcached 0
[ 3392.187262][ T9103] total_pgpgin 896473
[ 3392.191258][ T9103] total_pgpgout 896473
[ 3392.196298][ T9103] total_pgfault 1575254
[ 3392.200474][ T9103] total_pgmajfault 370403
[ 3392.205542][ T9103] total_inactive_anon 0
[ 3392.209719][ T9103] total_active_anon 0
[ 3392.213699][ T9103] total_inactive_file 0
[ 3392.218848][ T9103] total_active_file 0
[ 3392.222843][ T9103] total_unevictable 0
[ 3392.228643][ T9103] anon_cost 0
[ 3392.231939][ T9103] file_cost 0
[ 3392.236258][ T9103] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9101,uid=0
23:30:50 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x13}}}]}]}}]}, 0x74}}, 0x0)

[ 3392.253107][ T9103] Memory cgroup out of memory: Killed process 9101 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3392.541672][ T9104] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3392.552345][ T9104] CPU: 0 PID: 9104 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3392.562357][ T9104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3392.572522][ T9104] Call Trace:
[ 3392.575821][ T9104]  <TASK>
[ 3392.578766][ T9104]  dump_stack_lvl+0x1e7/0x2e0
[ 3392.583466][ T9104]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3392.588688][ T9104]  ? __pfx__printk+0x10/0x10
[ 3392.593293][ T9104]  ? ___ratelimit+0x4c4/0x670
[ 3392.597990][ T9104]  ? __pfx____ratelimit+0x10/0x10
[ 3392.603033][ T9104]  dump_header+0xda/0x6a0
[ 3392.607379][ T9104]  oom_kill_process+0x3a7/0x930
[ 3392.612255][ T9104]  out_of_memory+0xf67/0x1320
[ 3392.616960][ T9104]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3392.622607][ T9104]  ? __pfx___mutex_lock+0x10/0x10
[ 3392.627643][ T9104]  ? __pfx_out_of_memory+0x10/0x10
[ 3392.632771][ T9104]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3392.638318][ T9104]  ? __pfx_lock_release+0x10/0x10
[ 3392.644065][ T9104]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3392.650154][ T9104]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3392.655389][ T9104]  ? mem_cgroup_iter+0x422/0x560
[ 3392.660392][ T9104]  try_charge_memcg+0xda2/0x18a0
[ 3392.665369][ T9104]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3392.670758][ T9104]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3392.676618][ T9104]  ? __pfx_lock_release+0x10/0x10
[ 3392.681653][ T9104]  ? memcg_account_kmem+0x1e7/0x210
[ 3392.686870][ T9104]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3392.692685][ T9104]  __memcg_kmem_charge_page+0xe1/0x250
[ 3392.698157][ T9104]  memcg_charge_kernel_stack+0x28a/0x550
[ 3392.703800][ T9104]  dup_task_struct+0x40d/0x7d0
[ 3392.708568][ T9104]  copy_process+0x5d0/0x3fc0
[ 3392.713173][ T9104]  ? __pfx_lock_release+0x10/0x10
[ 3392.718209][ T9104]  ? __lock_acquire+0x1345/0x1fd0
[ 3392.723245][ T9104]  ? __pfx_copy_process+0x10/0x10
[ 3392.728272][ T9104]  ? __might_fault+0xc5/0x120
[ 3392.732985][ T9104]  ? __asan_memset+0x23/0x50
[ 3392.737609][ T9104]  kernel_clone+0x21d/0x8d0
[ 3392.742126][ T9104]  ? __pfx_kernel_clone+0x10/0x10
[ 3392.747168][ T9104]  ? __pfx_lock_release+0x10/0x10
[ 3392.752250][ T9104]  __se_sys_clone3+0x2cb/0x350
[ 3392.757065][ T9104]  ? __might_fault+0xa9/0x120
[ 3392.761766][ T9104]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3392.767054][ T9104]  ? rcu_is_watching+0x15/0xb0
[ 3392.771863][ T9104]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3392.777886][ T9104]  ? exc_page_fault+0x587/0x870
[ 3392.782855][ T9104]  ? do_syscall_64+0xb4/0x240
[ 3392.787590][ T9104]  do_syscall_64+0xf9/0x240
[ 3392.792122][ T9104]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3392.798038][ T9104] RIP: 0033:0x7f30cb2a9b99
[ 3392.802465][ T9104] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3392.822068][ T9104] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3392.830488][ T9104] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3392.838473][ T9104] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3392.846443][ T9104] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3392.854429][ T9104] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3392.862416][ T9104] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3392.870418][ T9104]  </TASK>
[ 3392.886585][ T9104] memory: usage 307180kB, limit 307200kB, failcnt 551818
[ 3392.893653][ T9104] memory+swap: usage 309176kB, limit 9007199254740988kB, failcnt 0
[ 3392.903437][ T9104] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3392.911328][ T9104] Memory cgroup stats for /syz0:
[ 3392.911463][ T9104] cache 0
[ 3392.919871][ T9104] rss 24576
[ 3392.922990][ T9104] rss_huge 0
[ 3392.927316][ T9104] shmem 0
[ 3392.930273][ T9104] mapped_file 0
[ 3392.933739][ T9104] dirty 0
[ 3392.937519][ T9104] writeback 0
[ 3392.940820][ T9104] workingset_refault_anon 385223
[ 3392.946460][ T9104] workingset_refault_file 25
[ 3392.951102][ T9104] swap 2019328
[ 3392.955183][ T9104] swapcached 16384
[ 3392.958916][ T9104] pgpgin 896650
[ 3392.962919][ T9104] pgpgout 896644
[ 3392.967411][ T9104] pgfault 1575515
[ 3392.971054][ T9104] pgmajfault 370564
[ 3392.975512][ T9104] inactive_anon 0
[ 3392.979156][ T9104] active_anon 24576
[ 3392.982980][ T9104] inactive_file 0
[ 3392.988423][ T9104] active_file 0
[ 3392.992422][ T9104] unevictable 0
[ 3392.996606][ T9104] hierarchical_memory_limit 314572800
[ 3393.001997][ T9104] hierarchical_memsw_limit 9223372036854771712
[ 3393.008783][ T9104] total_cache 0
[ 3393.012266][ T9104] total_rss 24576
[ 3393.016768][ T9104] total_rss_huge 0
[ 3393.020505][ T9104] total_shmem 0
[ 3393.024400][ T9104] total_mapped_file 0
[ 3393.028502][ T9104] total_dirty 0
[ 3393.031967][ T9104] total_writeback 0
[ 3393.039372][ T9104] total_workingset_refault_anon 385223
[ 3393.046069][ T9104] total_workingset_refault_file 25
[ 3393.051199][ T9104] total_swap 2019328
[ 3393.056256][ T9104] total_swapcached 16384
[ 3393.060504][ T9104] total_pgpgin 896650
[ 3393.066180][ T9104] total_pgpgout 896644
[ 3393.070271][ T9104] total_pgfault 1575515
[ 3393.075656][ T9104] total_pgmajfault 370564
[ 3393.083032][ T9104] total_inactive_anon 0
[ 3393.092336][ T9104] total_active_anon 24576
[ 3393.097071][ T9104] total_inactive_file 0
[ 3393.101236][ T9104] total_active_file 0
[ 3393.106053][ T9104] total_unevictable 0
[ 3393.110051][ T9104] anon_cost 0
[ 3393.113337][ T9104] file_cost 0
[ 3393.117200][ T9104] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9104,uid=0
23:30:51 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x14}}}]}]}}]}, 0x74}}, 0x0)

[ 3393.133158][ T9104] Memory cgroup out of memory: Killed process 9104 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3393.359498][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3393.371135][ T5099] CPU: 1 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3393.381309][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3393.391399][ T5099] Call Trace:
[ 3393.394690][ T5099]  <TASK>
[ 3393.397613][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3393.402291][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3393.407488][ T5099]  ? __pfx__printk+0x10/0x10
[ 3393.412068][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3393.416748][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3393.421777][ T5099]  dump_header+0xda/0x6a0
[ 3393.426112][ T5099]  oom_kill_process+0x3a7/0x930
[ 3393.431070][ T5099]  out_of_memory+0xf67/0x1320
[ 3393.435752][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3393.441381][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3393.446401][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3393.451511][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3393.457051][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3393.462074][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3393.468140][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3393.473334][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3393.478274][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3393.483210][ T5099]  ? mark_lock+0x9a/0x350
[ 3393.487556][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3393.492942][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3393.499097][ T5099]  charge_memcg+0xa2/0x160
[ 3393.503513][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3393.509581][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3393.515056][ T5099]  ? mark_lock+0x9a/0x350
[ 3393.519741][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3393.525733][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3393.531112][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3393.537007][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3393.542033][ T5099]  ? xas_descend+0x37e/0x470
[ 3393.546628][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3393.551561][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3393.556686][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3393.562084][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3393.567415][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3393.572709][ T5099]  do_swap_page+0x791/0x3f40
[ 3393.577308][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3393.582087][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3393.586849][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3393.591872][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3393.597347][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3393.603163][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3393.608293][ T5099]  ? reacquire_held_locks+0x3eb/0x690
[ 3393.613679][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3393.619162][ T5099]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3393.624890][ T5099]  ? mtree_range_walk+0x6fd/0x8e0
[ 3393.629915][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3393.635110][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3393.640131][ T5099]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3393.645339][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3393.650533][ T5099]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3393.656077][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3393.660843][ T5099]  exc_page_fault+0x456/0x870
[ 3393.665525][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3393.670381][ T5099] RIP: 0033:0x7f30cb2a9163
[ 3393.674793][ T5099] Code: 00 00 00 00 00 66 90 31 c0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 <80> 3d 8e 6d 0d 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f
[ 3393.694404][ T5099] RSP: 002b:00007f30cb4cfd18 EFLAGS: 00010293
[ 3393.700468][ T5099] RAX: 00000000fffffffa RBX: 0000000000007244 RCX: 0000000000000000
[ 3393.708440][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3393.716407][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3393.724381][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3393.732354][ T5099] R13: 000000000033c686 R14: 000000000033c686 R15: 0000000000000000
[ 3393.740333][ T5099]  </TASK>
[ 3393.823609][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 552196
[ 3393.851296][ T5099] memory+swap: usage 309156kB, limit 9007199254740988kB, failcnt 0
[ 3393.868165][ T5099] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3393.886858][ T5099] Memory cgroup stats for /syz0:
[ 3393.887002][ T5099] cache 0
[ 3393.901606][ T5099] rss 0
[ 3393.909398][ T5099] rss_huge 0
[ 3393.912624][ T5099] shmem 0
[ 3393.922864][ T5099] mapped_file 0
[ 3393.954837][ T5099] dirty 0
[ 3393.957821][ T5099] writeback 0
[ 3393.961113][ T5099] workingset_refault_anon 385368
[ 3393.981556][ T5099] workingset_refault_file 25
[ 3393.993444][ T5099] swap 2007040
[ 3394.024175][ T5099] swapcached 0
[ 3394.027596][ T5099] pgpgin 896805
[ 3394.031071][ T5099] pgpgout 896805
[ 3394.044870][ T5099] pgfault 1575739
[ 3394.048546][ T5099] pgmajfault 370701
[ 3394.052369][ T5099] inactive_anon 0
[ 3394.069927][ T5099] active_anon 0
[ 3394.073433][ T5099] inactive_file 0
[ 3394.090017][ T5099] active_file 0
[ 3394.093520][ T5099] unevictable 0
[ 3394.113053][ T5099] hierarchical_memory_limit 314572800
[ 3394.122245][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3394.134227][ T5099] total_cache 0
[ 3394.148640][ T5099] total_rss 0
[ 3394.151982][ T5099] total_rss_huge 0
[ 3394.156191][ T5099] total_shmem 0
[ 3394.159680][ T5099] total_mapped_file 0
[ 3394.163671][ T5099] total_dirty 0
[ 3394.181121][ T5099] total_writeback 0
[ 3394.193590][ T5099] total_workingset_refault_anon 385368
[ 3394.212064][ T5099] total_workingset_refault_file 25
[ 3394.221199][ T5099] total_swap 2007040
[ 3394.234498][ T5099] total_swapcached 0
[ 3394.238674][ T5099] total_pgpgin 896805
[ 3394.242675][ T5099] total_pgpgout 896805
[ 3394.258208][ T5099] total_pgfault 1575739
[ 3394.262405][ T5099] total_pgmajfault 370701
[ 3394.273679][ T5099] total_inactive_anon 0
[ 3394.296024][ T5099] total_active_anon 0
[ 3394.300678][ T5099] total_inactive_file 0
[ 3394.325066][ T5099] total_active_file 0
[ 3394.329202][ T5099] total_unevictable 0
[ 3394.333262][ T5099] anon_cost 0
[ 3394.339110][ T5099] file_cost 0
23:30:52 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x15}}}]}]}}]}, 0x74}}, 0x0)

[ 3394.342503][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9107,uid=0
[ 3394.358704][ T5099] Memory cgroup out of memory: Killed process 9107 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3394.753707][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3394.782021][ T5099] CPU: 0 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3394.793192][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3394.803270][ T5099] Call Trace:
[ 3394.806568][ T5099]  <TASK>
[ 3394.809515][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3394.814222][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3394.819443][ T5099]  ? __pfx__printk+0x10/0x10
[ 3394.824048][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3394.828757][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3394.833823][ T5099]  dump_header+0xda/0x6a0
[ 3394.838190][ T5099]  oom_kill_process+0x3a7/0x930
[ 3394.843075][ T5099]  out_of_memory+0xf67/0x1320
[ 3394.847781][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3394.853438][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3394.858504][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3394.863661][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3394.869235][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3394.874288][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3394.880383][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3394.885651][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3394.890638][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3394.895651][ T5099]  ? mark_lock+0x9a/0x350
[ 3394.900051][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3394.905494][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3394.911695][ T5099]  charge_memcg+0xa2/0x160
[ 3394.916140][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3394.922240][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3394.927724][ T5099]  ? mark_lock+0x9a/0x350
[ 3394.932083][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3394.938102][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3394.943513][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3394.949434][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3394.954485][ T5099]  ? xas_descend+0x37e/0x470
[ 3394.959113][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3394.964073][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3394.969224][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3394.974632][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3394.979953][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3394.985267][ T5099]  do_swap_page+0x791/0x3f40
[ 3394.989876][ T5099]  ? __lock_acquire+0x1345/0x1fd0
[ 3394.994929][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3394.999732][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3395.004516][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3395.009562][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3395.015050][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3395.020880][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3395.026120][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3395.031284][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3395.036778][ T5099]  ? mt_find+0x226/0x850
[ 3395.041040][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3395.046122][ T5099]  ? mt_find+0x62d/0x850
[ 3395.050401][ T5099]  ? mt_find+0x226/0x850
[ 3395.054696][ T5099]  ? find_vma+0x142/0x1c0
[ 3395.059046][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3395.063745][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3395.069753][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3395.074553][ T5099]  exc_page_fault+0x2ad/0x870
[ 3395.079281][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3395.084151][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3395.089293][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3395.108922][ T5099] RSP: 0000:ffffc90003ebfd78 EFLAGS: 00050202
[ 3395.115017][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3395.123009][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3395.131013][ T5099] RBP: ffffc90003ebfec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3395.139009][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfd80
[ 3395.147012][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3395.155025][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3395.160967][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3395.167336][ T5099]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3395.173166][ T5099]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3395.178823][ T5099]  exc_page_fault+0x587/0x870
[ 3395.183537][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3395.188410][ T5099] RIP: 0033:0x7f30cb27a7a4
[ 3395.192839][ T5099] Code: 84 00 00 00 00 00 80 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00 f0 ff ff 77 5d c3 0f 1f 40 00 48 83 ec 28 <89> 54 24 14 48 89 74 24 08 89 7c 24 10 48 89 4c 24 18 e8 d5 a3 02
[ 3395.212457][ T5099] RSP: 002b:00007f30cb4cfd30 EFLAGS: 00010206
[ 3395.218531][ T5099] RAX: 00000000000000cb RBX: 0000000000007246 RCX: 0000000000000000
[ 3395.226523][ T5099] RDX: 0000000040000001 RSI: 00007f30cb4cfdbc RDI: 00000000ffffffff
[ 3395.234516][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000010 R09: 00007ffc3913c0b0
[ 3395.242513][ T5099] R10: 0000000000000000 R11: 00000000000a3c0a R12: 0000000000000032
[ 3395.250505][ T5099] R13: 000000000033cb5a R14: 000000000033cb5a R15: 0000000000000000
[ 3395.258518][ T5099]  </TASK>
[ 3395.274843][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 553745
[ 3395.281910][ T5099] memory+swap: usage 309200kB, limit 9007199254740988kB, failcnt 0
[ 3395.290988][ T5099] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3395.334188][ T5099] Memory cgroup stats for /syz0:
[ 3395.334331][ T5099] cache 0
[ 3395.342220][ T5099] rss 20480
[ 3395.360244][ T5099] rss_huge 0
[ 3395.363485][ T5099] shmem 0
[ 3395.374977][ T5099] mapped_file 0
[ 3395.378473][ T5099] dirty 0
[ 3395.381412][ T5099] writeback 0
[ 3395.402904][ T5099] workingset_refault_anon 385746
[ 3395.424258][ T5099] workingset_refault_file 25
[ 3395.438968][ T5099] swap 2043904
[ 3395.442370][ T5099] swapcached 20480
[ 3395.474511][ T5099] pgpgin 897204
[ 3395.478378][ T5099] pgpgout 897199
[ 3395.481926][ T5099] pgfault 1576321
[ 3395.501909][ T5099] pgmajfault 371063
[ 3395.510705][ T5099] inactive_anon 12288
[ 3395.526134][ T5099] active_anon 8192
[ 3395.529899][ T5099] inactive_file 0
[ 3395.533533][ T5099] active_file 0
[ 3395.565877][ T5099] unevictable 0
[ 3395.569398][ T5099] hierarchical_memory_limit 314572800
[ 3395.592945][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3395.608510][ T5099] total_cache 0
[ 3395.612005][ T5099] total_rss 20480
[ 3395.623457][ T5099] total_rss_huge 0
[ 3395.634917][ T5099] total_shmem 0
[ 3395.638403][ T5099] total_mapped_file 0
[ 3395.642651][ T5099] total_dirty 0
[ 3395.659207][ T5099] total_writeback 0
[ 3395.669040][ T5099] total_workingset_refault_anon 385746
[ 3395.694422][ T5099] total_workingset_refault_file 25
[ 3395.699572][ T5099] total_swap 2043904
[ 3395.703472][ T5099] total_swapcached 20480
[ 3395.742511][ T5099] total_pgpgin 897204
[ 3395.748931][ T5099] total_pgpgout 897199
[ 3395.753190][ T5099] total_pgfault 1576321
[ 3395.767177][ T5099] total_pgmajfault 371063
[ 3395.771528][ T5099] total_inactive_anon 12288
[ 3395.790065][ T5099] total_active_anon 8192
[ 3395.798707][ T5099] total_inactive_file 0
[ 3395.802897][ T5099] total_active_file 0
[ 3395.824273][ T5099] total_unevictable 0
[ 3395.828304][ T5099] anon_cost 0
[ 3395.844467][ T5099] file_cost 0
[ 3395.847818][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9111,uid=0
23:30:54 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x16}}}]}]}}]}, 0x74}}, 0x0)

[ 3395.878440][ T5099] Memory cgroup out of memory: Killed process 9111 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3396.575967][ T9113] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3396.587577][ T9113] CPU: 1 PID: 9113 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3396.597579][ T9113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3396.607645][ T9113] Call Trace:
[ 3396.610934][ T9113]  <TASK>
[ 3396.613853][ T9113]  dump_stack_lvl+0x1e7/0x2e0
[ 3396.618523][ T9113]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3396.623709][ T9113]  ? __pfx__printk+0x10/0x10
[ 3396.628296][ T9113]  ? ___ratelimit+0x4c4/0x670
[ 3396.633166][ T9113]  ? __pfx____ratelimit+0x10/0x10
[ 3396.638916][ T9113]  dump_header+0xda/0x6a0
[ 3396.643256][ T9113]  oom_kill_process+0x3a7/0x930
[ 3396.648123][ T9113]  out_of_memory+0xf67/0x1320
[ 3396.652813][ T9113]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3396.658447][ T9113]  ? __pfx___mutex_lock+0x10/0x10
[ 3396.663470][ T9113]  ? __pfx_out_of_memory+0x10/0x10
[ 3396.668587][ T9113]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3396.674128][ T9113]  ? __pfx_lock_release+0x10/0x10
[ 3396.679149][ T9113]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3396.685215][ T9113]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3396.690406][ T9113]  ? mem_cgroup_iter+0x422/0x560
[ 3396.695342][ T9113]  try_charge_memcg+0xda2/0x18a0
[ 3396.700271][ T9113]  ? mark_lock+0x9a/0x350
[ 3396.704607][ T9113]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3396.709988][ T9113]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3396.716136][ T9113]  charge_memcg+0xa2/0x160
[ 3396.720551][ T9113]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3396.726622][ T9113]  __read_swap_cache_async+0x480/0x8b0
[ 3396.732077][ T9113]  ? mark_lock+0x9a/0x350
[ 3396.736402][ T9113]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3396.742379][ T9113]  ? blk_start_plug+0x6f/0x1b0
[ 3396.747143][ T9113]  swap_cluster_readahead+0x398/0x810
[ 3396.752520][ T9113]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3396.758413][ T9113]  ? __pfx_lock_release+0x10/0x10
[ 3396.763436][ T9113]  ? xas_descend+0x37e/0x470
[ 3396.768029][ T9113]  swapin_readahead+0x1ea/0x1070
[ 3396.772965][ T9113]  ? filemap_get_entry+0x127/0x4e0
[ 3396.778086][ T9113]  ? __pfx_swapin_readahead+0x10/0x10
[ 3396.783459][ T9113]  ? __filemap_get_folio+0x935/0xbc0
[ 3396.788745][ T9113]  ? swap_cache_get_folio+0x9f/0x570
[ 3396.794034][ T9113]  do_swap_page+0x791/0x3f40
[ 3396.798635][ T9113]  ? rcu_is_watching+0x15/0xb0
[ 3396.803403][ T9113]  ? do_swap_page+0x154/0x3f40
[ 3396.808164][ T9113]  ? __pfx_do_swap_page+0x10/0x10
[ 3396.813187][ T9113]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3396.818643][ T9113]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3396.824463][ T9113]  ? __pfx_validate_chain+0x10/0x10
[ 3396.829686][ T9113]  __handle_mm_fault+0x15e8/0x72d0
[ 3396.834827][ T9113]  ? reacquire_held_locks+0x3eb/0x690
[ 3396.840200][ T9113]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3396.845669][ T9113]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3396.851394][ T9113]  ? mtree_range_walk+0x6fd/0x8e0
[ 3396.856423][ T9113]  ? lock_vma_under_rcu+0x18a/0x730
[ 3396.861617][ T9113]  ? __pfx_lock_release+0x10/0x10
[ 3396.866721][ T9113]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3396.871928][ T9113]  ? lock_vma_under_rcu+0x18a/0x730
[ 3396.877123][ T9113]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3396.882666][ T9113]  handle_mm_fault+0x3c1/0x8a0
[ 3396.887431][ T9113]  exc_page_fault+0x456/0x870
[ 3396.892111][ T9113]  asm_exc_page_fault+0x26/0x30
[ 3396.896964][ T9113] RIP: 0033:0x7f30cb2371b5
[ 3396.901373][ T9113] Code: c0 0f 83 18 0d 00 00 49 89 ca 48 89 ce 48 89 cf 48 89 c8 49 c1 ea 08 48 c1 ee 10 4c 8d 42 18 0f b6 dd 48 c1 ef 18 48 c1 e8 20 <48> 0f af 05 cb e4 c9 00 48 03 42 10 41 81 e2 fe 00 00 00 4c 89 84
[ 3396.920975][ T9113] RSP: 002b:00007f30cb4cfb30 EFLAGS: 00010246
[ 3396.927041][ T9113] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000008
[ 3396.935002][ T9113] RDX: 00007f30cae00078 RSI: 0000000000000000 RDI: 0000000000000000
[ 3396.942965][ T9113] RBP: 0000000000000000 R08: 00007f30cae00090 R09: 00007ffc3913c0b0
[ 3396.950933][ T9113] R10: 0000000000000000 R11: 00000000000a3d82 R12: 00007f30cb4cfcd0
[ 3396.958904][ T9113] R13: 0000000000000fc1 R14: 00007f30cb4cfce8 R15: 00007f30cb4cfc38
[ 3396.966881][ T9113]  </TASK>
[ 3396.975590][ T9113] memory: usage 307200kB, limit 307200kB, failcnt 554953
[ 3396.982774][ T9113] memory+swap: usage 309124kB, limit 9007199254740988kB, failcnt 0
[ 3396.999061][ T9113] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3397.006870][ T9113] Memory cgroup stats for /syz0:
[ 3397.006980][ T9113] cache 0
[ 3397.015651][ T9113] rss 20480
[ 3397.018878][ T9113] rss_huge 0
[ 3397.022167][ T9113] shmem 0
[ 3397.025758][ T9113] mapped_file 0
[ 3397.029312][ T9113] dirty 0
[ 3397.032341][ T9113] writeback 0
[ 3397.036517][ T9113] workingset_refault_anon 386191
[ 3397.041541][ T9113] workingset_refault_file 25
[ 3397.046879][ T9113] swap 1970176
[ 3397.050346][ T9113] swapcached 16384
[ 3397.055063][ T9113] pgpgin 897665
[ 3397.060147][ T9113] pgpgout 897660
[ 3397.063795][ T9113] pgfault 1577017
[ 3397.068069][ T9113] pgmajfault 371499
[ 3397.071973][ T9113] inactive_anon 8192
[ 3397.077197][ T9113] active_anon 4096
[ 3397.081011][ T9113] inactive_file 0
[ 3397.085366][ T9113] active_file 0
[ 3397.088911][ T9113] unevictable 0
[ 3397.092402][ T9113] hierarchical_memory_limit 314572800
[ 3397.098638][ T9113] hierarchical_memsw_limit 9223372036854771712
[ 3397.106631][ T9113] total_cache 0
[ 3397.110212][ T9113] total_rss 20480
[ 3397.113923][ T9113] total_rss_huge 0
[ 3397.118582][ T9113] total_shmem 0
[ 3397.122148][ T9113] total_mapped_file 0
[ 3397.126727][ T9113] total_dirty 0
[ 3397.130253][ T9113] total_writeback 0
[ 3397.134685][ T9113] total_workingset_refault_anon 386191
[ 3397.140245][ T9113] total_workingset_refault_file 25
[ 3397.146124][ T9113] total_swap 1970176
[ 3397.150115][ T9113] total_swapcached 16384
[ 3397.155045][ T9113] total_pgpgin 897665
[ 3397.159118][ T9113] total_pgpgout 897660
[ 3397.165626][ T9113] total_pgfault 1577017
[ 3397.169847][ T9113] total_pgmajfault 371499
[ 3397.174583][ T9113] total_inactive_anon 8192
[ 3397.179051][ T9113] total_active_anon 4096
[ 3397.183456][ T9113] total_inactive_file 0
[ 3397.190511][ T9113] total_active_file 0
[ 3397.195041][ T9113] total_unevictable 0
[ 3397.199184][ T9113] anon_cost 0
[ 3397.202542][ T9113] file_cost 0
[ 3397.206637][ T9113] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9113,uid=0
23:30:55 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1e}}}]}]}}]}, 0x74}}, 0x0)

[ 3397.223766][ T9113] Memory cgroup out of memory: Killed process 9113 (syz-executor.0) total-vm:54508kB, anon-rss:368kB, file-rss:8720kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3397.412987][ T9115] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3397.438507][ T9115] CPU: 1 PID: 9115 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3397.448558][ T9115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3397.458636][ T9115] Call Trace:
[ 3397.461933][ T9115]  <TASK>
[ 3397.464885][ T9115]  dump_stack_lvl+0x1e7/0x2e0
[ 3397.469594][ T9115]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3397.474816][ T9115]  ? __pfx__printk+0x10/0x10
[ 3397.479428][ T9115]  ? ___ratelimit+0x4c4/0x670
[ 3397.484135][ T9115]  ? __pfx____ratelimit+0x10/0x10
[ 3397.489191][ T9115]  dump_header+0xda/0x6a0
[ 3397.493548][ T9115]  oom_kill_process+0x3a7/0x930
[ 3397.498430][ T9115]  out_of_memory+0xf67/0x1320
[ 3397.503145][ T9115]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3397.508805][ T9115]  ? __pfx___mutex_lock+0x10/0x10
[ 3397.513855][ T9115]  ? __pfx_out_of_memory+0x10/0x10
[ 3397.519003][ T9115]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3397.524574][ T9115]  ? __pfx_lock_release+0x10/0x10
[ 3397.529633][ T9115]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3397.535741][ T9115]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3397.540970][ T9115]  ? mem_cgroup_iter+0x422/0x560
[ 3397.545946][ T9115]  try_charge_memcg+0xda2/0x18a0
[ 3397.550906][ T9115]  ? mark_lock+0x9a/0x350
[ 3397.555291][ T9115]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3397.560715][ T9115]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3397.566901][ T9115]  charge_memcg+0xa2/0x160
[ 3397.571348][ T9115]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3397.577448][ T9115]  __read_swap_cache_async+0x480/0x8b0
[ 3397.582937][ T9115]  ? mark_lock+0x9a/0x350
[ 3397.587294][ T9115]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3397.593316][ T9115]  swap_cluster_readahead+0x67c/0x810
[ 3397.598771][ T9115]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3397.604683][ T9115]  ? __pfx_lock_release+0x10/0x10
[ 3397.609761][ T9115]  ? xas_descend+0x37e/0x470
[ 3397.614411][ T9115]  swapin_readahead+0x1ea/0x1070
[ 3397.619380][ T9115]  ? filemap_get_entry+0x127/0x4e0
[ 3397.624536][ T9115]  ? __pfx_swapin_readahead+0x10/0x10
[ 3397.629943][ T9115]  ? __filemap_get_folio+0x935/0xbc0
[ 3397.635262][ T9115]  ? swap_cache_get_folio+0x9f/0x570
[ 3397.640579][ T9115]  do_swap_page+0x791/0x3f40
[ 3397.645199][ T9115]  ? rcu_is_watching+0x15/0xb0
[ 3397.650011][ T9115]  ? do_swap_page+0x154/0x3f40
[ 3397.654799][ T9115]  ? __pfx_do_swap_page+0x10/0x10
[ 3397.659858][ T9115]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3397.665353][ T9115]  ? mark_lock+0x9a/0x350
[ 3397.669706][ T9115]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3397.675537][ T9115]  ? __pfx_validate_chain+0x10/0x10
[ 3397.680764][ T9115]  __handle_mm_fault+0x15e8/0x72d0
[ 3397.686137][ T9115]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3397.691774][ T9115]  ? mt_find+0x226/0x850
[ 3397.696051][ T9115]  ? __pfx_lock_release+0x10/0x10
[ 3397.701127][ T9115]  ? mt_find+0x62d/0x850
[ 3397.705395][ T9115]  ? mt_find+0x226/0x850
[ 3397.709684][ T9115]  ? find_vma+0x142/0x1c0
[ 3397.714038][ T9115]  ? __pfx_find_vma+0x10/0x10
[ 3397.718733][ T9115]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3397.724752][ T9115]  handle_mm_fault+0x3c1/0x8a0
[ 3397.729559][ T9115]  exc_page_fault+0x2ad/0x870
[ 3397.734271][ T9115]  asm_exc_page_fault+0x26/0x30
[ 3397.739148][ T9115] RIP: 0010:__get_user_8+0x11/0x20
[ 3397.744286][ T9115] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3397.763914][ T9115] RSP: 0000:ffffc9000319fd98 EFLAGS: 00050202
[ 3397.770011][ T9115] RAX: 00005555559c3da8 RBX: ffff88802a08b2f8 RCX: ffffc9000319fc03
[ 3397.778697][ T9115] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3397.786692][ T9115] RBP: ffffc9000319fec8 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3397.794685][ T9115] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc9000319fda0
[ 3397.802678][ T9115] R13: ffffc9000319ffd8 R14: dffffc0000000000 R15: ffff88802a089dc0
[ 3397.810695][ T9115]  __rseq_handle_notify_resume+0x158/0x1490
[ 3397.816634][ T9115]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3397.823005][ T9115]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3397.828749][ T9115]  syscall_exit_to_user_mode+0x113/0x360
[ 3397.834411][ T9115]  do_syscall_64+0x108/0x240
[ 3397.839025][ T9115]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3397.845005][ T9115] RIP: 0033:0x7f30cb2a9b99
[ 3397.849443][ T9115] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3397.869078][ T9115] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3397.877533][ T9115] RAX: 000000000000724b RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3397.885535][ T9115] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3397.893538][ T9115] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3397.901537][ T9115] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3397.909535][ T9115] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3397.917551][ T9115]  </TASK>
[ 3397.940496][ T9115] memory: usage 307196kB, limit 307200kB, failcnt 555805
[ 3397.955582][ T9115] memory+swap: usage 309144kB, limit 9007199254740988kB, failcnt 0
[ 3397.963531][ T9115] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3397.971441][ T9115] Memory cgroup stats for /syz0:
[ 3397.971571][ T9115] cache 0
[ 3397.980340][ T9115] rss 4096
[ 3397.983417][ T9115] rss_huge 0
[ 3397.987183][ T9115] shmem 0
[ 3397.990138][ T9115] mapped_file 0
[ 3397.993616][ T9115] dirty 0
[ 3397.996924][ T9115] writeback 0
[ 3398.000230][ T9115] workingset_refault_anon 386387
[ 3398.005426][ T9115] workingset_refault_file 25
[ 3398.010320][ T9115] swap 2011136
[ 3398.013689][ T9115] swapcached 4096
[ 3398.017847][ T9115] pgpgin 897872
[ 3398.021325][ T9115] pgpgout 897871
[ 3398.025413][ T9115] pgfault 1577320
[ 3398.029304][ T9115] pgmajfault 371684
[ 3398.033171][ T9115] inactive_anon 0
[ 3398.037861][ T9115] active_anon 4096
[ 3398.041598][ T9115] inactive_file 0
[ 3398.045612][ T9115] active_file 0
[ 3398.049166][ T9115] unevictable 0
[ 3398.052620][ T9115] hierarchical_memory_limit 314572800
[ 3398.058318][ T9115] hierarchical_memsw_limit 9223372036854771712
[ 3398.064679][ T9115] total_cache 0
[ 3398.068148][ T9115] total_rss 4096
[ 3398.071688][ T9115] total_rss_huge 0
[ 3398.075978][ T9115] total_shmem 0
[ 3398.079465][ T9115] total_mapped_file 0
[ 3398.084431][ T9115] total_dirty 0
[ 3398.087942][ T9115] total_writeback 0
[ 3398.091893][ T9115] total_workingset_refault_anon 386387
[ 3398.098457][ T9115] total_workingset_refault_file 25
[ 3398.103587][ T9115] total_swap 2011136
[ 3398.108360][ T9115] total_swapcached 4096
[ 3398.112531][ T9115] total_pgpgin 897872
[ 3398.116837][ T9115] total_pgpgout 897871
[ 3398.120917][ T9115] total_pgfault 1577320
[ 3398.125329][ T9115] total_pgmajfault 371684
[ 3398.129661][ T9115] total_inactive_anon 0
[ 3398.133811][ T9115] total_active_anon 4096
[ 3398.138849][ T9115] total_inactive_file 0
[ 3398.143204][ T9115] total_active_file 0
[ 3398.148197][ T9115] total_unevictable 0
[ 3398.152228][ T9115] anon_cost 0
[ 3398.155818][ T9115] file_cost 0
23:30:56 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x28}}}]}]}}]}, 0x74}}, 0x0)

[ 3398.159113][ T9115] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9115,uid=0
[ 3398.175402][ T9115] Memory cgroup out of memory: Killed process 9115 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3398.640386][ T9117] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3398.664225][ T9117] CPU: 0 PID: 9117 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3398.674259][ T9117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3398.684339][ T9117] Call Trace:
[ 3398.687650][ T9117]  <TASK>
[ 3398.690603][ T9117]  dump_stack_lvl+0x1e7/0x2e0
[ 3398.695322][ T9117]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3398.700730][ T9117]  ? __pfx__printk+0x10/0x10
[ 3398.705359][ T9117]  ? ___ratelimit+0x4c4/0x670
[ 3398.710069][ T9117]  ? __pfx____ratelimit+0x10/0x10
[ 3398.715129][ T9117]  dump_header+0xda/0x6a0
[ 3398.719492][ T9117]  oom_kill_process+0x3a7/0x930
[ 3398.724369][ T9117]  out_of_memory+0xf67/0x1320
[ 3398.729054][ T9117]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3398.734700][ T9117]  ? __pfx___mutex_lock+0x10/0x10
[ 3398.739734][ T9117]  ? __pfx_out_of_memory+0x10/0x10
[ 3398.744861][ T9117]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3398.750418][ T9117]  ? __pfx_lock_release+0x10/0x10
[ 3398.755477][ T9117]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3398.761574][ T9117]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3398.766798][ T9117]  ? mem_cgroup_iter+0x422/0x560
[ 3398.771758][ T9117]  try_charge_memcg+0xda2/0x18a0
[ 3398.776716][ T9117]  ? mark_lock+0x9a/0x350
[ 3398.781089][ T9117]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3398.786513][ T9117]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3398.792693][ T9117]  charge_memcg+0xa2/0x160
[ 3398.797141][ T9117]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3398.803244][ T9117]  __read_swap_cache_async+0x480/0x8b0
[ 3398.808736][ T9117]  ? mark_lock+0x9a/0x350
[ 3398.813098][ T9117]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3398.819120][ T9117]  swap_cluster_readahead+0x67c/0x810
[ 3398.824791][ T9117]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3398.830716][ T9117]  ? __pfx_lock_release+0x10/0x10
[ 3398.835767][ T9117]  ? xas_descend+0x37e/0x470
[ 3398.840396][ T9117]  swapin_readahead+0x1ea/0x1070
[ 3398.845362][ T9117]  ? filemap_get_entry+0x127/0x4e0
[ 3398.850514][ T9117]  ? __pfx_swapin_readahead+0x10/0x10
[ 3398.856020][ T9117]  ? __filemap_get_folio+0x935/0xbc0
[ 3398.861344][ T9117]  ? swap_cache_get_folio+0x9f/0x570
[ 3398.866664][ T9117]  do_swap_page+0x791/0x3f40
[ 3398.871274][ T9117]  ? __lock_acquire+0x1345/0x1fd0
[ 3398.876341][ T9117]  ? rcu_is_watching+0x15/0xb0
[ 3398.881142][ T9117]  ? do_swap_page+0x154/0x3f40
[ 3398.885926][ T9117]  ? __pfx_do_swap_page+0x10/0x10
[ 3398.890971][ T9117]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3398.896469][ T9117]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3398.902312][ T9117]  ? __pfx_validate_chain+0x10/0x10
[ 3398.907540][ T9117]  __handle_mm_fault+0x15e8/0x72d0
[ 3398.912717][ T9117]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3398.918214][ T9117]  ? mt_find+0x226/0x850
[ 3398.922481][ T9117]  ? __pfx_lock_release+0x10/0x10
[ 3398.927546][ T9117]  ? mt_find+0x62d/0x850
[ 3398.931808][ T9117]  ? mt_find+0x226/0x850
[ 3398.936093][ T9117]  ? find_vma+0x142/0x1c0
[ 3398.940446][ T9117]  ? __pfx_find_vma+0x10/0x10
[ 3398.945142][ T9117]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3398.951157][ T9117]  handle_mm_fault+0x3c1/0x8a0
[ 3398.955958][ T9117]  exc_page_fault+0x2ad/0x870
[ 3398.960682][ T9117]  asm_exc_page_fault+0x26/0x30
[ 3398.965554][ T9117] RIP: 0010:__get_user_8+0x11/0x20
[ 3398.970690][ T9117] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3398.990318][ T9117] RSP: 0000:ffffc90003a2fd78 EFLAGS: 00050202
[ 3398.996414][ T9117] RAX: 00005555559c3da8 RBX: ffff8880119f1538 RCX: ffffc90003a2fc03
[ 3399.004412][ T9117] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3399.012403][ T9117] RBP: ffffc90003a2fec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3399.020391][ T9117] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003a2fd80
[ 3399.028381][ T9117] R13: ffffc90003a2ffd8 R14: dffffc0000000000 R15: ffff8880119f0000
[ 3399.036392][ T9117]  __rseq_handle_notify_resume+0x158/0x1490
[ 3399.042331][ T9117]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3399.048700][ T9117]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3399.054530][ T9117]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3399.060184][ T9117]  exc_page_fault+0x587/0x870
[ 3399.064899][ T9117]  asm_exc_page_fault+0x26/0x30
[ 3399.069774][ T9117] RIP: 0033:0x7f30cb2521c8
[ 3399.074205][ T9117] Code: b8 cb 00 00 00 0f 05 3d 00 f0 ff ff 77 54 f6 45 08 02 75 26 31 c0 48 8b 54 24 68 64 48 2b 14 25 28 00 00 00 75 5c 48 83 c4 70 <5b> 5d 41 5c 41 5d 41 5e c3 0f 1f 80 00 00 00 00 41 80 3c 24 00 74
[ 3399.094268][ T9117] RSP: 002b:00007f30cb4cf9c0 EFLAGS: 00010206
[ 3399.100359][ T9117] RAX: 0000000000000000 RBX: 00007f30cbf266c0 RCX: 00007f30cb2a9b99
[ 3399.108351][ T9117] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3399.116342][ T9117] RBP: 00007f30cb4cfc90 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3399.124333][ T9117] R10: 0000000000000008 R11: 0000000000000202 R12: 00007f30cb4cfa46
[ 3399.132327][ T9117] R13: 0000000000000000 R14: 00007f30cb4cfa47 R15: 00007f30cb4cfa48
[ 3399.140337][ T9117]  </TASK>
[ 3399.147826][ T9117] memory: usage 307200kB, limit 307200kB, failcnt 556915
[ 3399.155915][ T9117] memory+swap: usage 309132kB, limit 9007199254740988kB, failcnt 0
[ 3399.167335][ T9117] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3399.175391][ T9117] Memory cgroup stats for /syz0:
[ 3399.175527][ T9117] cache 0
[ 3399.183409][ T9117] rss 0
[ 3399.186686][ T9117] rss_huge 0
[ 3399.189902][ T9117] shmem 0
[ 3399.192845][ T9117] mapped_file 0
[ 3399.196875][ T9117] dirty 0
[ 3399.199877][ T9117] writeback 0
[ 3399.203169][ T9117] workingset_refault_anon 386626
[ 3399.211559][ T9117] workingset_refault_file 25
[ 3399.221177][ T9117] swap 1982464
[ 3399.228493][ T9117] swapcached 0
[ 3399.231905][ T9117] pgpgin 898124
[ 3399.244757][ T9117] pgpgout 898124
[ 3399.248325][ T9117] pgfault 1577685
[ 3399.251961][ T9117] pgmajfault 371915
[ 3399.284698][ T9117] inactive_anon 0
[ 3399.288389][ T9117] active_anon 0
[ 3399.291866][ T9117] inactive_file 0
[ 3399.296531][ T9117] active_file 0
[ 3399.300015][ T9117] unevictable 0
[ 3399.303567][ T9117] hierarchical_memory_limit 314572800
[ 3399.309600][ T9117] hierarchical_memsw_limit 9223372036854771712
[ 3399.317097][ T9117] total_cache 0
[ 3399.320653][ T9117] total_rss 0
[ 3399.324852][ T9117] total_rss_huge 0
[ 3399.328588][ T9117] total_shmem 0
[ 3399.332042][ T9117] total_mapped_file 0
[ 3399.336520][ T9117] total_dirty 0
[ 3399.339994][ T9117] total_writeback 0
[ 3399.343794][ T9117] total_workingset_refault_anon 386626
[ 3399.349689][ T9117] total_workingset_refault_file 25
[ 3399.355550][ T9117] total_swap 1982464
[ 3399.359460][ T9117] total_swapcached 0
[ 3399.363377][ T9117] total_pgpgin 898124
[ 3399.370589][ T9117] total_pgpgout 898124
[ 3399.375856][ T9117] total_pgfault 1577685
[ 3399.380029][ T9117] total_pgmajfault 371915
[ 3399.386666][ T9117] total_inactive_anon 0
[ 3399.391280][ T9117] total_active_anon 0
[ 3399.395809][ T9117] total_inactive_file 0
[ 3399.399977][ T9117] total_active_file 0
[ 3399.404378][ T9117] total_unevictable 0
[ 3399.408410][ T9117] anon_cost 0
[ 3399.411705][ T9117] file_cost 0
[ 3399.421382][ T9117] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9117,uid=0
23:30:57 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x46}}}]}]}}]}, 0x74}}, 0x0)

[ 3399.437639][ T9117] Memory cgroup out of memory: Killed process 9117 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:30:58 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4, 0x2, {{0x0, 0x93aa6459}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x9c}}, 0x0)

[ 3399.601133][ T9119] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3399.612124][ T9119] CPU: 0 PID: 9119 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3399.622121][ T9119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3399.632183][ T9119] Call Trace:
[ 3399.635468][ T9119]  <TASK>
[ 3399.638409][ T9119]  dump_stack_lvl+0x1e7/0x2e0
[ 3399.643096][ T9119]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3399.648297][ T9119]  ? __pfx__printk+0x10/0x10
[ 3399.652901][ T9119]  ? ___ratelimit+0x4c4/0x670
[ 3399.657604][ T9119]  ? __pfx____ratelimit+0x10/0x10
[ 3399.662749][ T9119]  dump_header+0xda/0x6a0
[ 3399.667106][ T9119]  oom_kill_process+0x3a7/0x930
[ 3399.671969][ T9119]  out_of_memory+0xf67/0x1320
[ 3399.676658][ T9119]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3399.682311][ T9119]  ? __pfx___mutex_lock+0x10/0x10
[ 3399.687365][ T9119]  ? __pfx_out_of_memory+0x10/0x10
[ 3399.692596][ T9119]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3399.698165][ T9119]  ? __pfx_lock_release+0x10/0x10
[ 3399.703194][ T9119]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3399.709272][ T9119]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3399.714473][ T9119]  ? mem_cgroup_iter+0x422/0x560
[ 3399.719409][ T9119]  try_charge_memcg+0xda2/0x18a0
[ 3399.724361][ T9119]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3399.729730][ T9119]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3399.735448][ T9119]  ? __pfx_lock_release+0x10/0x10
[ 3399.740471][ T9119]  ? memcg_account_kmem+0x1e7/0x210
[ 3399.745672][ T9119]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3399.751471][ T9119]  __memcg_kmem_charge_page+0xe1/0x250
[ 3399.756940][ T9119]  memcg_charge_kernel_stack+0x37e/0x550
[ 3399.762570][ T9119]  dup_task_struct+0x40d/0x7d0
[ 3399.767332][ T9119]  copy_process+0x5d0/0x3fc0
[ 3399.771953][ T9119]  ? __pfx_lock_release+0x10/0x10
[ 3399.776989][ T9119]  ? __pfx_copy_process+0x10/0x10
[ 3399.782008][ T9119]  ? __might_fault+0xc5/0x120
[ 3399.786683][ T9119]  ? __asan_memset+0x23/0x50
[ 3399.791274][ T9119]  kernel_clone+0x21d/0x8d0
[ 3399.795779][ T9119]  ? __pfx_kernel_clone+0x10/0x10
[ 3399.800855][ T9119]  __se_sys_clone3+0x2cb/0x350
[ 3399.805614][ T9119]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3399.810901][ T9119]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3399.816888][ T9119]  ? exc_page_fault+0x587/0x870
[ 3399.821739][ T9119]  ? do_syscall_64+0xb4/0x240
[ 3399.826421][ T9119]  do_syscall_64+0xf9/0x240
[ 3399.830921][ T9119]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3399.836810][ T9119] RIP: 0033:0x7f30cb2a9b99
[ 3399.841216][ T9119] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3399.860899][ T9119] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3399.869307][ T9119] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3399.877271][ T9119] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3399.885231][ T9119] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3399.893539][ T9119] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3399.901502][ T9119] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3399.909477][ T9119]  </TASK>
[ 3399.984282][ T9119] memory: usage 307200kB, limit 307200kB, failcnt 557159
[ 3400.014413][ T9119] memory+swap: usage 309124kB, limit 9007199254740988kB, failcnt 0
[ 3400.045146][ T9119] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3400.052479][ T9119] Memory cgroup stats for /syz0:
[ 3400.052610][ T9119] cache 0
[ 3400.094525][ T9119] rss 12288
[ 3400.104325][ T9119] rss_huge 0
[ 3400.114277][ T9119] shmem 0
[ 3400.117276][ T9119] mapped_file 0
[ 3400.120745][ T9119] dirty 0
[ 3400.123689][ T9119] writeback 0
[ 3400.144433][ T9119] workingset_refault_anon 386722
[ 3400.154455][ T9119] workingset_refault_file 25
[ 3400.164488][ T9119] swap 1970176
[ 3400.204160][ T9119] swapcached 8192
[ 3400.207989][ T9119] pgpgin 898232
[ 3400.211461][ T9119] pgpgout 898229
[ 3400.224616][ T9119] pgfault 1577855
[ 3400.228362][ T9119] pgmajfault 372009
[ 3400.232210][ T9119] inactive_anon 8192
[ 3400.237792][ T9119] active_anon 4096
[ 3400.244518][ T9119] inactive_file 0
[ 3400.254661][ T9119] active_file 0
[ 3400.258229][ T9119] unevictable 0
[ 3400.269003][ T9119] hierarchical_memory_limit 314572800
[ 3400.284996][ T9119] hierarchical_memsw_limit 9223372036854771712
[ 3400.291750][ T9119] total_cache 0
[ 3400.295575][ T9119] total_rss 12288
[ 3400.299310][ T9119] total_rss_huge 0
23:30:58 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newqdisc={0x9c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x6000}}, {0x4}}]}]}, 0x9c}}, 0x0)

23:30:58 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x1e00}}}]}]}}]}, 0x74}}, 0x0)

[ 3400.303108][ T9119] total_shmem 0
[ 3400.307060][ T9119] total_mapped_file 0
[ 3400.311143][ T9119] total_dirty 0
[ 3400.315278][ T9119] total_writeback 0
[ 3400.319189][ T9119] total_workingset_refault_anon 386722
[ 3400.325210][ T9119] total_workingset_refault_file 25
[ 3400.330538][ T9119] total_swap 1970176
[ 3400.345154][ T9119] total_swapcached 8192
[ 3400.363621][ T9119] total_pgpgin 898232
[ 3400.368017][ T9119] total_pgpgout 898229
[ 3400.372192][ T9119] total_pgfault 1577855
[ 3400.376925][ T9119] total_pgmajfault 372009
[ 3400.405631][ T9119] total_inactive_anon 8192
[ 3400.410178][ T9119] total_active_anon 4096
[ 3400.415259][ T9119] total_inactive_file 0
[ 3400.424372][ T9119] total_active_file 0
[ 3400.428376][ T9119] total_unevictable 0
[ 3400.432362][ T9119] anon_cost 0
[ 3400.449718][ T9119] file_cost 0
[ 3400.453039][ T9119] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9119,uid=0
[ 3400.514832][ T9119] Memory cgroup out of memory: Killed process 9119 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:30:58 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4e}}}]}]}}]}, 0x74}}, 0x0)

[ 3401.220893][ T9121] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3401.232775][ T9121] CPU: 1 PID: 9121 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3401.242780][ T9121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3401.252855][ T9121] Call Trace:
[ 3401.256148][ T9121]  <TASK>
[ 3401.259079][ T9121]  dump_stack_lvl+0x1e7/0x2e0
[ 3401.263764][ T9121]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3401.268964][ T9121]  ? __pfx__printk+0x10/0x10
[ 3401.273631][ T9121]  ? ___ratelimit+0x4c4/0x670
[ 3401.278309][ T9121]  ? __pfx____ratelimit+0x10/0x10
[ 3401.283334][ T9121]  dump_header+0xda/0x6a0
[ 3401.287671][ T9121]  oom_kill_process+0x3a7/0x930
[ 3401.292534][ T9121]  out_of_memory+0xf67/0x1320
[ 3401.297212][ T9121]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3401.302846][ T9121]  ? __pfx___mutex_lock+0x10/0x10
[ 3401.307877][ T9121]  ? __pfx_out_of_memory+0x10/0x10
[ 3401.312993][ T9121]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3401.318533][ T9121]  ? __pfx_lock_release+0x10/0x10
[ 3401.323554][ T9121]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3401.329623][ T9121]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3401.334821][ T9121]  ? mem_cgroup_iter+0x422/0x560
[ 3401.339761][ T9121]  try_charge_memcg+0xda2/0x18a0
[ 3401.344691][ T9121]  ? mark_lock+0x9a/0x350
[ 3401.349033][ T9121]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3401.354421][ T9121]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3401.360592][ T9121]  charge_memcg+0xa2/0x160
[ 3401.365009][ T9121]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3401.371079][ T9121]  __read_swap_cache_async+0x480/0x8b0
[ 3401.376536][ T9121]  ? mark_lock+0x9a/0x350
[ 3401.380954][ T9121]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3401.386950][ T9121]  swap_cluster_readahead+0x67c/0x810
[ 3401.392329][ T9121]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3401.398226][ T9121]  ? __pfx_lock_release+0x10/0x10
[ 3401.403256][ T9121]  ? xas_descend+0x37e/0x470
[ 3401.407866][ T9121]  swapin_readahead+0x1ea/0x1070
[ 3401.412801][ T9121]  ? filemap_get_entry+0x127/0x4e0
[ 3401.417922][ T9121]  ? __pfx_swapin_readahead+0x10/0x10
[ 3401.423297][ T9121]  ? __filemap_get_folio+0x935/0xbc0
[ 3401.428586][ T9121]  ? swap_cache_get_folio+0x9f/0x570
[ 3401.433872][ T9121]  do_swap_page+0x791/0x3f40
[ 3401.438462][ T9121]  ? __lock_acquire+0x1345/0x1fd0
[ 3401.443486][ T9121]  ? rcu_is_watching+0x15/0xb0
[ 3401.448258][ T9121]  ? do_swap_page+0x154/0x3f40
[ 3401.453023][ T9121]  ? __pfx_do_swap_page+0x10/0x10
[ 3401.458041][ T9121]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3401.463509][ T9121]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3401.469312][ T9121]  ? __pfx_validate_chain+0x10/0x10
[ 3401.474509][ T9121]  __handle_mm_fault+0x15e8/0x72d0
[ 3401.479645][ T9121]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3401.485120][ T9121]  ? mt_find+0x226/0x850
[ 3401.489384][ T9121]  ? __pfx_lock_release+0x10/0x10
[ 3401.494422][ T9121]  ? mt_find+0x62d/0x850
[ 3401.498660][ T9121]  ? mt_find+0x226/0x850
[ 3401.502913][ T9121]  ? find_vma+0x142/0x1c0
[ 3401.507237][ T9121]  ? __pfx_find_vma+0x10/0x10
[ 3401.511915][ T9121]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3401.517894][ T9121]  handle_mm_fault+0x3c1/0x8a0
[ 3401.522663][ T9121]  exc_page_fault+0x2ad/0x870
[ 3401.527342][ T9121]  asm_exc_page_fault+0x26/0x30
[ 3401.532189][ T9121] RIP: 0010:__get_user_8+0x11/0x20
[ 3401.537310][ T9121] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3401.556915][ T9121] RSP: 0000:ffffc900031bfd78 EFLAGS: 00050202
[ 3401.563009][ T9121] RAX: 00005555559c3da8 RBX: ffff888017b49538 RCX: ffffc900031bfc03
[ 3401.570995][ T9121] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3401.578968][ T9121] RBP: ffffc900031bfec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3401.587030][ T9121] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc900031bfd80
[ 3401.595001][ T9121] R13: ffffc900031bffd8 R14: dffffc0000000000 R15: ffff888017b48000
[ 3401.602985][ T9121]  __rseq_handle_notify_resume+0x158/0x1490
[ 3401.608893][ T9121]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3401.615229][ T9121]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3401.621028][ T9121]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3401.626653][ T9121]  exc_page_fault+0x587/0x870
[ 3401.631332][ T9121]  asm_exc_page_fault+0x26/0x30
[ 3401.636181][ T9121] RIP: 0033:0x7f30cb2527ca
[ 3401.640592][ T9121] Code: 8b 0d 22 d8 12 00 4d 21 eb 0f 84 8b 0c 00 00 49 8b 44 24 10 f7 db 48 63 db 4c 8d 34 06 49 21 de 49 39 c6 73 4b bd 16 00 00 00 <80> 7c 24 43 00 74 0a 48 8d 7c 24 60 e8 85 f7 ff ff 48 8b 84 24 f8
[ 3401.660197][ T9121] RSP: 002b:00007f30cb4cf9f0 EFLAGS: 00010246
[ 3401.666290][ T9121] RAX: 0000000000000000 RBX: 00007f30cbf266c0 RCX: 00007f30cb252c17
[ 3401.674270][ T9121] RDX: 0000000000000000 RSI: 00007f30cb4cfa48 RDI: 0000000000000002
[ 3401.682257][ T9121] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007f30cb4cfa47
[ 3401.690237][ T9121] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f30cb4cfc90
[ 3401.698210][ T9121] R13: 00007f30cbf06000 R14: 00007f30cbf266c0 R15: 00007f30cb4cfa48
[ 3401.706194][ T9121]  </TASK>
[ 3401.738968][ T9121] memory: usage 307200kB, limit 307200kB, failcnt 557591
[ 3401.747947][ T9121] memory+swap: usage 309168kB, limit 9007199254740988kB, failcnt 0
[ 3401.756522][ T9121] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3401.764985][ T9121] Memory cgroup stats for /syz0:
[ 3401.765090][ T9121] cache 0
[ 3401.804458][ T9121] rss 4096
[ 3401.815127][ T9121] rss_huge 0
[ 3401.818379][ T9121] shmem 0
[ 3401.821333][ T9121] mapped_file 0
[ 3401.844291][ T9121] dirty 0
[ 3401.847276][ T9121] writeback 0
[ 3401.850566][ T9121] workingset_refault_anon 386834
[ 3401.873409][ T9121] workingset_refault_file 25
[ 3401.884356][ T9121] swap 2015232
[ 3401.887813][ T9121] swapcached 0
[ 3401.891194][ T9121] pgpgin 898357
[ 3401.914271][ T9121] pgpgout 898356
[ 3401.917849][ T9121] pgfault 1578033
[ 3401.921484][ T9121] pgmajfault 372107
[ 3401.934535][ T9121] inactive_anon 0
[ 3401.944244][ T9121] active_anon 4096
[ 3401.947998][ T9121] inactive_file 0
[ 3401.951637][ T9121] active_file 0
[ 3401.974158][ T9121] unevictable 0
[ 3401.977668][ T9121] hierarchical_memory_limit 314572800
[ 3401.983054][ T9121] hierarchical_memsw_limit 9223372036854771712
[ 3402.004437][ T9121] total_cache 0
[ 3402.007952][ T9121] total_rss 4096
[ 3402.011509][ T9121] total_rss_huge 0
[ 3402.024191][ T9121] total_shmem 0
[ 3402.027780][ T9121] total_mapped_file 0
[ 3402.031769][ T9121] total_dirty 0
[ 3402.044562][ T9121] total_writeback 0
[ 3402.052506][ T9121] total_workingset_refault_anon 386834
[ 3402.074176][ T9121] total_workingset_refault_file 25
[ 3402.081492][ T9121] total_swap 2015232
[ 3402.094233][ T9121] total_swapcached 0
[ 3402.098159][ T9121] total_pgpgin 898357
[ 3402.102145][ T9121] total_pgpgout 898356
[ 3402.127556][ T9121] total_pgfault 1578033
[ 3402.131761][ T9121] total_pgmajfault 372107
[ 3402.149727][ T9121] total_inactive_anon 0
[ 3402.164866][ T9121] total_active_anon 4096
[ 3402.169160][ T9121] total_inactive_file 0
[ 3402.173316][ T9121] total_active_file 0
[ 3402.184311][ T9121] total_unevictable 0
[ 3402.188343][ T9121] anon_cost 0
[ 3402.191633][ T9121] file_cost 0
[ 3402.232892][ T9121] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9121,uid=0
[ 3402.265820][ T5095] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 3402.282725][ T5095] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 3402.291970][ T5095] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 3402.299632][ T9121] Memory cgroup out of memory: Killed process 9121 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3402.318136][ T5095] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
23:31:00 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5e}}}]}]}}]}, 0x74}}, 0x0)

[ 3402.337693][ T5095] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 3402.346346][ T5095] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 3402.493432][ T5090] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 3402.506075][ T5090] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 3402.518808][ T5090] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 3402.543909][ T9132] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3402.544829][ T5090] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 3402.565270][ T5090] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 3402.572640][ T5090] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 3402.594936][ T9132] CPU: 1 PID: 9132 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3402.604948][ T9132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3402.614998][ T9132] Call Trace:
[ 3402.618272][ T9132]  <TASK>
[ 3402.621194][ T9132]  dump_stack_lvl+0x1e7/0x2e0
[ 3402.625870][ T9132]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3402.631061][ T9132]  ? __pfx__printk+0x10/0x10
[ 3402.635639][ T9132]  ? ___ratelimit+0x4c4/0x670
[ 3402.640423][ T9132]  ? __pfx____ratelimit+0x10/0x10
[ 3402.645454][ T9132]  dump_header+0xda/0x6a0
[ 3402.649783][ T9132]  oom_kill_process+0x3a7/0x930
[ 3402.654649][ T9132]  out_of_memory+0xf67/0x1320
[ 3402.659338][ T9132]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3402.664966][ T9132]  ? __pfx___mutex_lock+0x10/0x10
[ 3402.669984][ T9132]  ? __pfx_out_of_memory+0x10/0x10
[ 3402.675096][ T9132]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3402.680634][ T9132]  ? __pfx_lock_release+0x10/0x10
[ 3402.685654][ T9132]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3402.691723][ T9132]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3402.696915][ T9132]  ? mem_cgroup_iter+0x422/0x560
[ 3402.701846][ T9132]  try_charge_memcg+0xda2/0x18a0
[ 3402.706778][ T9132]  ? mark_lock+0x9a/0x350
[ 3402.711115][ T9132]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3402.716521][ T9132]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3402.722691][ T9132]  charge_memcg+0xa2/0x160
[ 3402.727112][ T9132]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3402.733182][ T9132]  __read_swap_cache_async+0x480/0x8b0
[ 3402.738812][ T9132]  ? mark_lock+0x9a/0x350
[ 3402.743151][ T9132]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3402.749132][ T9132]  swap_cluster_readahead+0x67c/0x810
[ 3402.754524][ T9132]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3402.760428][ T9132]  ? __pfx_lock_release+0x10/0x10
[ 3402.765458][ T9132]  ? xas_descend+0x37e/0x470
[ 3402.770051][ T9132]  swapin_readahead+0x1ea/0x1070
[ 3402.775081][ T9132]  ? filemap_get_entry+0x127/0x4e0
[ 3402.780197][ T9132]  ? __pfx_swapin_readahead+0x10/0x10
[ 3402.785577][ T9132]  ? __filemap_get_folio+0x935/0xbc0
[ 3402.790862][ T9132]  ? swap_cache_get_folio+0x9f/0x570
[ 3402.796149][ T9132]  do_swap_page+0x791/0x3f40
[ 3402.800736][ T9132]  ? rcu_is_watching+0x15/0xb0
[ 3402.805514][ T9132]  ? do_swap_page+0x154/0x3f40
[ 3402.810273][ T9132]  ? __pfx_do_swap_page+0x10/0x10
[ 3402.815288][ T9132]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3402.820742][ T9132]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3402.826547][ T9132]  __handle_mm_fault+0x15e8/0x72d0
[ 3402.831847][ T9132]  ? reacquire_held_locks+0x3eb/0x690
[ 3402.837208][ T9132]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3402.842668][ T9132]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3402.848389][ T9132]  ? mtree_range_walk+0x6fd/0x8e0
[ 3402.853408][ T9132]  ? lock_vma_under_rcu+0x18a/0x730
[ 3402.858603][ T9132]  ? __pfx_lock_release+0x10/0x10
[ 3402.863624][ T9132]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3402.868829][ T9132]  ? lock_vma_under_rcu+0x18a/0x730
[ 3402.874020][ T9132]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3402.879574][ T9132]  handle_mm_fault+0x3c1/0x8a0
[ 3402.884341][ T9132]  exc_page_fault+0x456/0x870
[ 3402.889019][ T9132]  asm_exc_page_fault+0x26/0x30
[ 3402.893864][ T9132] RIP: 0033:0x7f30cb234b70
[ 3402.898274][ T9132] Code: 77 0b ca 00 01 e9 3f ff ff ff a8 10 74 0c c6 05 66 0b ca 00 01 e9 2f ff ff ff c6 05 5d 0b ca 00 01 e9 23 ff ff ff 0f 1f 40 00 <0f> b6 05 4e 0b ca 00 84 c0 74 0b 0f b6 05 32 0b ca 00 84 c0 74 0a
[ 3402.917967][ T9132] RSP: 002b:00007f30cbf26178 EFLAGS: 00010246
[ 3402.924033][ T9132] RAX: 00007f30cbf266c0 RBX: 00007f30cbf266c0 RCX: 00007f30cb252386
[ 3402.932084][ T9132] RDX: 0000000000000000 RSI: 00007f30cbf26fb0 RDI: 00007f30cb3abf80
[ 3402.940043][ T9132] RBP: 00007f30cb3abf80 R08: 0000000000000000 R09: 00007f30cb4cfa47
[ 3402.948006][ T9132] R10: 0000000000000008 R11: 0000000000000246 R12: ffffffffffffffb0
[ 3402.955969][ T9132] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3402.963952][ T9132]  </TASK>
[ 3403.025037][ T9132] memory: usage 307200kB, limit 307200kB, failcnt 557759
[ 3403.032119][ T9132] memory+swap: usage 309196kB, limit 9007199254740988kB, failcnt 0
[ 3403.103529][ T5095] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 3403.113890][ T5095] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 3403.122862][ T5095] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 3403.133268][ T5095] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 3403.141324][ T5095] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 3403.149859][ T9132] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3403.157731][ T9132] Memory cgroup stats for /syz0:
[ 3403.157867][ T9132] cache 0
[ 3403.166099][ T9132] rss 0
[ 3403.168871][ T9132] rss_huge 0
[ 3403.172068][ T9132] shmem 0
[ 3403.175534][ T9132] mapped_file 0
[ 3403.179018][ T9132] dirty 0
[ 3403.181958][ T9132] writeback 0
[ 3403.186578][ T9132] workingset_refault_anon 386891
[ 3403.191527][ T9132] workingset_refault_file 25
[ 3403.196363][ T9132] swap 2048000
[ 3403.199744][ T9132] swapcached 0
[ 3403.203618][ T9132] pgpgin 898425
[ 3403.207524][ T9132] pgpgout 898425
[ 3403.211094][ T9132] pgfault 1578139
[ 3403.215258][ T9132] pgmajfault 372162
[ 3403.219079][ T9132] inactive_anon 0
[ 3403.222719][ T9132] active_anon 0
[ 3403.226582][ T9132] inactive_file 0
[ 3403.230225][ T9132] active_file 0
[ 3403.233682][ T9132] unevictable 0
[ 3403.237424][ T5095] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 3403.246797][ T9132] hierarchical_memory_limit 314572800
[ 3403.252198][ T9132] hierarchical_memsw_limit 9223372036854771712
[ 3403.259096][ T9132] total_cache 0
[ 3403.264883][ T9132] total_rss 0
[ 3403.268192][ T9132] total_rss_huge 0
[ 3403.271951][ T9132] total_shmem 0
[ 3403.276063][ T9132] total_mapped_file 0
[ 3403.280064][ T9132] total_dirty 0
[ 3403.283829][ T9132] total_writeback 0
[ 3403.288391][ T9132] total_workingset_refault_anon 386891
[ 3403.294909][ T9132] total_workingset_refault_file 25
[ 3403.300047][ T9132] total_swap 2048000
[ 3403.314297][ T9132] total_swapcached 0
[ 3403.318236][ T9132] total_pgpgin 898425
[ 3403.322218][ T9132] total_pgpgout 898425
[ 3403.332201][ T9132] total_pgfault 1578139
[ 3403.354281][ T9132] total_pgmajfault 372162
[ 3403.358656][ T9132] total_inactive_anon 0
[ 3403.362815][ T9132] total_active_anon 0
[ 3403.384392][ T9132] total_inactive_file 0
[ 3403.388597][ T9132] total_active_file 0
[ 3403.392589][ T9132] total_unevictable 0
23:31:01 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6e}}}]}]}}]}, 0x74}}, 0x0)

[ 3403.414244][ T9132] anon_cost 0
[ 3403.417585][ T9132] file_cost 0
[ 3403.420877][ T9132] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9130,uid=0
[ 3403.438020][ T9132] Memory cgroup out of memory: Killed process 9130 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3403.753817][ T9138] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3403.780754][ T9138] CPU: 0 PID: 9138 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3403.790794][ T9138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3403.800871][ T9138] Call Trace:
[ 3403.804167][ T9138]  <TASK>
[ 3403.807138][ T9138]  dump_stack_lvl+0x1e7/0x2e0
[ 3403.811829][ T9138]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3403.817048][ T9138]  ? __pfx__printk+0x10/0x10
[ 3403.821659][ T9138]  ? ___ratelimit+0x4c4/0x670
[ 3403.826367][ T9138]  ? __pfx____ratelimit+0x10/0x10
[ 3403.831426][ T9138]  dump_header+0xda/0x6a0
[ 3403.835784][ T9138]  oom_kill_process+0x3a7/0x930
[ 3403.840657][ T9138]  out_of_memory+0xf67/0x1320
[ 3403.845366][ T9138]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3403.851028][ T9138]  ? __pfx___mutex_lock+0x10/0x10
[ 3403.856341][ T9138]  ? __pfx_out_of_memory+0x10/0x10
[ 3403.861492][ T9138]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3403.867068][ T9138]  ? __pfx_lock_release+0x10/0x10
[ 3403.872216][ T9138]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3403.878300][ T9138]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3403.883499][ T9138]  ? mem_cgroup_iter+0x422/0x560
[ 3403.888436][ T9138]  try_charge_memcg+0xda2/0x18a0
[ 3403.893366][ T9138]  ? mark_lock+0x9a/0x350
[ 3403.897705][ T9138]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3403.903088][ T9138]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3403.909414][ T9138]  charge_memcg+0xa2/0x160
[ 3403.913827][ T9138]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3403.919897][ T9138]  __read_swap_cache_async+0x480/0x8b0
[ 3403.925357][ T9138]  ? mark_lock+0x9a/0x350
[ 3403.929720][ T9138]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3403.935706][ T9138]  swap_cluster_readahead+0x67c/0x810
[ 3403.941083][ T9138]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3403.946991][ T9138]  ? __pfx_lock_release+0x10/0x10
[ 3403.952193][ T9138]  ? xas_descend+0x37e/0x470
[ 3403.956786][ T9138]  swapin_readahead+0x1ea/0x1070
[ 3403.961719][ T9138]  ? filemap_get_entry+0x127/0x4e0
[ 3403.966834][ T9138]  ? __pfx_swapin_readahead+0x10/0x10
[ 3403.972216][ T9138]  ? __filemap_get_folio+0x935/0xbc0
[ 3403.977505][ T9138]  ? swap_cache_get_folio+0x9f/0x570
[ 3403.982786][ T9138]  do_swap_page+0x791/0x3f40
[ 3403.987373][ T9138]  ? rcu_is_watching+0x15/0xb0
[ 3403.992140][ T9138]  ? do_swap_page+0x154/0x3f40
[ 3403.996896][ T9138]  ? __pfx_do_swap_page+0x10/0x10
[ 3404.001915][ T9138]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3404.007377][ T9138]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3404.013183][ T9138]  __handle_mm_fault+0x15e8/0x72d0
[ 3404.018309][ T9138]  ? reacquire_held_locks+0x3eb/0x690
[ 3404.023677][ T9138]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3404.029144][ T9138]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3404.034867][ T9138]  ? mtree_range_walk+0x6fd/0x8e0
[ 3404.039888][ T9138]  ? lock_vma_under_rcu+0x18a/0x730
[ 3404.045079][ T9138]  ? __pfx_lock_release+0x10/0x10
[ 3404.050097][ T9138]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3404.055301][ T9138]  ? lock_vma_under_rcu+0x18a/0x730
[ 3404.060495][ T9138]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3404.066036][ T9138]  handle_mm_fault+0x3c1/0x8a0
[ 3404.070803][ T9138]  exc_page_fault+0x456/0x870
[ 3404.075488][ T9138]  asm_exc_page_fault+0x26/0x30
[ 3404.080334][ T9138] RIP: 0033:0x7f30cb2a9ba0
[ 3404.084743][ T9138] Code: fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 48 85 c0 7c 18 74 01 <c3> 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 b8 3c 00 00 00 0f 05
[ 3404.104342][ T9138] RSP: 002b:00007f30cb4cf918 EFLAGS: 00010206
[ 3404.110403][ T9138] RAX: 0000000000007255 RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3404.118367][ T9138] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3404.126337][ T9138] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3404.134317][ T9138] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3404.142299][ T9138] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3404.150281][ T9138]  </TASK>
[ 3404.157025][ T9138] memory: usage 307200kB, limit 307200kB, failcnt 558286
[ 3404.164454][ T9138] memory+swap: usage 309140kB, limit 9007199254740988kB, failcnt 0
[ 3404.172355][ T9138] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3404.179923][ T9138] Memory cgroup stats for /syz0:
[ 3404.180065][ T9138] cache 0
[ 3404.188289][ T9138] rss 4096
[ 3404.191311][ T9138] rss_huge 0
[ 3404.194722][ T9138] shmem 0
[ 3404.197671][ T9138] mapped_file 0
[ 3404.201127][ T9138] dirty 0
[ 3404.204275][ T9138] writeback 0
[ 3404.207562][ T9138] workingset_refault_anon 387023
[ 3404.212501][ T9138] workingset_refault_file 25
[ 3404.217329][ T9138] swap 1986560
[ 3404.220704][ T9138] swapcached 4096
[ 3404.232330][ T9138] pgpgin 898573
[ 3404.253035][ T9138] pgpgout 898572
[ 3404.257135][ T9138] pgfault 1578360
[ 3404.260786][ T9138] pgmajfault 372288
[ 3404.283991][ T9138] inactive_anon 4096
[ 3404.289722][ T9138] active_anon 0
[ 3404.293284][ T9138] inactive_file 0
[ 3404.312422][ T9138] active_file 0
[ 3404.316336][ T9138] unevictable 0
[ 3404.319797][ T9138] hierarchical_memory_limit 314572800
[ 3404.326564][ T9138] hierarchical_memsw_limit 9223372036854771712
[ 3404.333473][ T9138] total_cache 0
[ 3404.337848][ T9138] total_rss 4096
[ 3404.341412][ T9138] total_rss_huge 0
[ 3404.350147][ T9138] total_shmem 0
[ 3404.353624][ T9138] total_mapped_file 0
[ 3404.358509][ T9138] total_dirty 0
[ 3404.362008][ T9138] total_writeback 0
[ 3404.366561][ T9138] total_workingset_refault_anon 387023
[ 3404.372111][ T9138] total_workingset_refault_file 25
[ 3404.378588][ T9138] total_swap 1986560
[ 3404.382500][ T9138] total_swapcached 4096
[ 3404.387190][ T9138] total_pgpgin 898573
[ 3404.391161][ T9138] total_pgpgout 898572
[ 3404.395872][ T9138] total_pgfault 1578360
[ 3404.400040][ T9138] total_pgmajfault 372288
[ 3404.405441][ T9138] total_inactive_anon 4096
[ 3404.405472][ T5095] Bluetooth: hci5: command 0x0409 tx timeout
[ 3404.409865][ T9138] total_active_anon 0
[ 3404.421073][ T9138] total_inactive_file 0
[ 3404.425835][ T9138] total_active_file 0
[ 3404.429831][ T9138] total_unevictable 0
[ 3404.436503][ T9138] anon_cost 0
[ 3404.439805][ T9138] file_cost 0
[ 3404.443094][ T9138] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9138,uid=0
23:31:02 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x76}}}]}]}}]}, 0x74}}, 0x0)

[ 3404.459084][ T9138] Memory cgroup out of memory: Killed process 9138 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3404.790507][ T9141] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3404.829369][ T9141] CPU: 0 PID: 9141 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3404.839393][ T9141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3404.849813][ T9141] Call Trace:
[ 3404.853105][ T9141]  <TASK>
[ 3404.856052][ T9141]  dump_stack_lvl+0x1e7/0x2e0
[ 3404.860760][ T9141]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3404.865983][ T9141]  ? __pfx__printk+0x10/0x10
[ 3404.870589][ T9141]  ? ___ratelimit+0x4c4/0x670
[ 3404.875297][ T9141]  ? __pfx____ratelimit+0x10/0x10
[ 3404.880350][ T9141]  dump_header+0xda/0x6a0
[ 3404.884704][ T9141]  oom_kill_process+0x3a7/0x930
[ 3404.889587][ T9141]  out_of_memory+0xf67/0x1320
[ 3404.894480][ T9141]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3404.900129][ T9141]  ? __pfx___mutex_lock+0x10/0x10
[ 3404.905175][ T9141]  ? __pfx_out_of_memory+0x10/0x10
[ 3404.910326][ T9141]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3404.915894][ T9141]  ? __pfx_lock_release+0x10/0x10
[ 3404.920950][ T9141]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3404.927040][ T9141]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3404.932266][ T9141]  ? mem_cgroup_iter+0x422/0x560
[ 3404.937233][ T9141]  try_charge_memcg+0xda2/0x18a0
[ 3404.942183][ T9141]  ? mark_lock+0x9a/0x350
[ 3404.946550][ T9141]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3404.951990][ T9141]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3404.958168][ T9141]  charge_memcg+0xa2/0x160
[ 3404.962609][ T9141]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3404.968708][ T9141]  __read_swap_cache_async+0x480/0x8b0
[ 3404.974276][ T9141]  ? mark_lock+0x9a/0x350
[ 3404.978633][ T9141]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3404.984647][ T9141]  swap_cluster_readahead+0x67c/0x810
[ 3404.990047][ T9141]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3404.995966][ T9141]  ? __pfx_lock_release+0x10/0x10
[ 3405.001016][ T9141]  ? xas_descend+0x37e/0x470
[ 3405.005639][ T9141]  swapin_readahead+0x1ea/0x1070
[ 3405.010594][ T9141]  ? filemap_get_entry+0x127/0x4e0
[ 3405.015740][ T9141]  ? __pfx_swapin_readahead+0x10/0x10
[ 3405.021145][ T9141]  ? __filemap_get_folio+0x935/0xbc0
[ 3405.026457][ T9141]  ? swap_cache_get_folio+0x9f/0x570
[ 3405.031767][ T9141]  do_swap_page+0x791/0x3f40
[ 3405.036379][ T9141]  ? rcu_is_watching+0x15/0xb0
[ 3405.041179][ T9141]  ? do_swap_page+0x154/0x3f40
[ 3405.045972][ T9141]  ? __pfx_do_swap_page+0x10/0x10
[ 3405.051017][ T9141]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3405.056505][ T9141]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3405.062349][ T9141]  __handle_mm_fault+0x15e8/0x72d0
[ 3405.067513][ T9141]  ? reacquire_held_locks+0x3eb/0x690
[ 3405.072902][ T9141]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3405.078401][ T9141]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3405.084155][ T9141]  ? mtree_range_walk+0x6fd/0x8e0
[ 3405.089371][ T9141]  ? lock_vma_under_rcu+0x18a/0x730
[ 3405.094600][ T9141]  ? __pfx_lock_release+0x10/0x10
[ 3405.099645][ T9141]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3405.104887][ T9141]  ? lock_vma_under_rcu+0x18a/0x730
[ 3405.110109][ T9141]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3405.115678][ T9141]  handle_mm_fault+0x3c1/0x8a0
[ 3405.120474][ T9141]  exc_page_fault+0x456/0x870
[ 3405.125183][ T9141]  asm_exc_page_fault+0x26/0x30
[ 3405.130055][ T9141] RIP: 0033:0x7f30cb234c30
[ 3405.134484][ T9141] Code: 8b 45 0c 85 c0 75 39 b9 40 42 0f 00 ba 81 00 00 00 4c 89 e6 41 c7 04 24 01 00 00 00 bf ca 00 00 00 31 c0 e8 62 91 04 00 eb c1 <0f> b6 35 79 0a ca 00 8b bf 98 00 00 00 31 d2 e8 8c 6e ff ff eb 83
[ 3405.154112][ T9141] RSP: 002b:00007f30cbf26180 EFLAGS: 00010202
[ 3405.160200][ T9141] RAX: 0000000000000001 RBX: 00007f30cbf266c0 RCX: 00007f30cb252386
[ 3405.168203][ T9141] RDX: 0000000000000000 RSI: 00007f30cbf26fb0 RDI: 00007f30cb3abf80
[ 3405.176200][ T9141] RBP: 00007f30cb3abf80 R08: 0000000000000000 R09: 00007f30cb4cfa47
[ 3405.184192][ T9141] R10: 0000000000000008 R11: 0000000000000246 R12: ffffffffffffffb0
[ 3405.192191][ T9141] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3405.200213][ T9141]  </TASK>
[ 3405.204445][ T5095] Bluetooth: hci6: command 0x0409 tx timeout
[ 3405.251562][ T9141] memory: usage 307200kB, limit 307200kB, failcnt 559018
[ 3405.259699][ T9141] memory+swap: usage 309168kB, limit 9007199254740988kB, failcnt 0
[ 3405.268094][ T9141] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3405.275679][ T9141] Memory cgroup stats for /syz0:
[ 3405.275815][ T9141] cache 0
[ 3405.283697][ T9141] rss 0
[ 3405.287749][ T9141] rss_huge 0
[ 3405.290976][ T9141] shmem 0
[ 3405.293920][ T9141] mapped_file 0
[ 3405.297690][ T9141] dirty 0
[ 3405.300632][ T9141] writeback 0
[ 3405.304251][ T9141] workingset_refault_anon 387198
[ 3405.309208][ T9141] workingset_refault_file 25
[ 3405.313799][ T9141] swap 2019328
[ 3405.317601][ T9141] swapcached 0
[ 3405.321258][ T9141] pgpgin 898760
[ 3405.324944][ T9141] pgpgout 898760
[ 3405.328493][ T9141] pgfault 1578622
[ 3405.332128][ T9141] pgmajfault 372442
[ 3405.336181][ T9141] inactive_anon 0
[ 3405.339827][ T9141] active_anon 0
[ 3405.343285][ T9141] inactive_file 0
[ 3405.347281][ T9141] active_file 0
[ 3405.350745][ T9141] unevictable 0
[ 3405.356191][ T9141] hierarchical_memory_limit 314572800
[ 3405.361586][ T9141] hierarchical_memsw_limit 9223372036854771712
[ 3405.368375][ T5095] Bluetooth: hci7: command 0x0409 tx timeout
[ 3405.376754][ T9141] total_cache 0
[ 3405.380241][ T9141] total_rss 0
[ 3405.383524][ T9141] total_rss_huge 0
[ 3405.387485][ T9141] total_shmem 0
[ 3405.390954][ T9141] total_mapped_file 0
[ 3405.395163][ T9141] total_dirty 0
[ 3405.398644][ T9141] total_writeback 0
[ 3405.402464][ T9141] total_workingset_refault_anon 387198
[ 3405.408209][ T9141] total_workingset_refault_file 25
[ 3405.413331][ T9141] total_swap 2019328
[ 3405.417435][ T9141] total_swapcached 0
[ 3405.421339][ T9141] total_pgpgin 898760
[ 3405.425541][ T9141] total_pgpgout 898760
[ 3405.429793][ T9141] total_pgfault 1578622
[ 3405.434215][ T9141] total_pgmajfault 372442
[ 3405.438554][ T9141] total_inactive_anon 0
[ 3405.442716][ T9141] total_active_anon 0
[ 3405.446934][ T9141] total_inactive_file 0
23:31:03 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7e}}}]}]}}]}, 0x74}}, 0x0)

[ 3405.451101][ T9141] total_active_file 0
[ 3405.456580][ T9141] total_unevictable 0
[ 3405.460580][ T9141] anon_cost 0
[ 3405.463872][ T9141] file_cost 0
[ 3405.467473][ T9141] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9140,uid=0
[ 3405.483092][ T9141] Memory cgroup out of memory: Killed process 9140 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3405.620889][ T9142] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3405.643462][ T9142] CPU: 1 PID: 9142 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3405.653471][ T9142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3405.663548][ T9142] Call Trace:
[ 3405.666827][ T9142]  <TASK>
[ 3405.669747][ T9142]  dump_stack_lvl+0x1e7/0x2e0
[ 3405.674413][ T9142]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3405.679597][ T9142]  ? __pfx__printk+0x10/0x10
[ 3405.684179][ T9142]  ? ___ratelimit+0x4c4/0x670
[ 3405.688874][ T9142]  ? __pfx____ratelimit+0x10/0x10
[ 3405.693893][ T9142]  dump_header+0xda/0x6a0
[ 3405.698225][ T9142]  oom_kill_process+0x3a7/0x930
[ 3405.703060][ T9142]  out_of_memory+0xf67/0x1320
[ 3405.707724][ T9142]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3405.713342][ T9142]  ? __pfx___mutex_lock+0x10/0x10
[ 3405.718355][ T9142]  ? __pfx_out_of_memory+0x10/0x10
[ 3405.723483][ T9142]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3405.729117][ T9142]  ? __pfx_lock_release+0x10/0x10
[ 3405.734162][ T9142]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3405.740254][ T9142]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3405.745473][ T9142]  ? mem_cgroup_iter+0x422/0x560
[ 3405.750444][ T9142]  try_charge_memcg+0xda2/0x18a0
[ 3405.755425][ T9142]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3405.760791][ T9142]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3405.766685][ T9142]  ? __pfx_lock_release+0x10/0x10
[ 3405.771709][ T9142]  ? memcg_account_kmem+0x1e7/0x210
[ 3405.776900][ T9142]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3405.782691][ T9142]  __memcg_kmem_charge_page+0xe1/0x250
[ 3405.788162][ T9142]  memcg_charge_kernel_stack+0x37e/0x550
[ 3405.793783][ T9142]  dup_task_struct+0x15d/0x7d0
[ 3405.798533][ T9142]  copy_process+0x5d0/0x3fc0
[ 3405.803115][ T9142]  ? __pfx_lock_release+0x10/0x10
[ 3405.808132][ T9142]  ? __pfx_copy_process+0x10/0x10
[ 3405.813139][ T9142]  ? __might_fault+0xc5/0x120
[ 3405.817808][ T9142]  ? __asan_memset+0x23/0x50
[ 3405.822388][ T9142]  kernel_clone+0x21d/0x8d0
[ 3405.826892][ T9142]  ? __pfx_kernel_clone+0x10/0x10
[ 3405.831933][ T9142]  __se_sys_clone3+0x2cb/0x350
[ 3405.836702][ T9142]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3405.842011][ T9142]  ? do_syscall_64+0x108/0x240
[ 3405.846780][ T9142]  ? do_syscall_64+0xb4/0x240
[ 3405.851447][ T9142]  do_syscall_64+0xf9/0x240
[ 3405.855963][ T9142]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3405.861848][ T9142] RIP: 0033:0x7f30cb2a9b99
[ 3405.866260][ T9142] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3405.885951][ T9142] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3405.894371][ T9142] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3405.902340][ T9142] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3405.910299][ T9142] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3405.918259][ T9142] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3405.926213][ T9142] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3405.934196][ T9142]  </TASK>
[ 3405.940938][ T9142] memory: usage 307200kB, limit 307200kB, failcnt 559240
[ 3405.950531][ T9142] memory+swap: usage 309124kB, limit 9007199254740988kB, failcnt 0
[ 3405.958949][ T9142] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3405.966779][ T9142] Memory cgroup stats for /syz0:
[ 3405.967942][ T9142] cache 0
[ 3405.976373][ T9142] rss 8192
[ 3405.979512][ T9142] rss_huge 0
[ 3405.982800][ T9142] shmem 0
[ 3405.986319][ T9142] mapped_file 0
[ 3405.989875][ T9142] dirty 0
[ 3405.992861][ T9142] writeback 4096
[ 3405.997027][ T9142] workingset_refault_anon 387282
[ 3406.002024][ T9142] workingset_refault_file 25
[ 3406.007170][ T9142] swap 1974272
[ 3406.010603][ T9142] swapcached 8192
[ 3406.017697][ T9142] pgpgin 898854
[ 3406.021196][ T9142] pgpgout 898852
[ 3406.025758][ T9142] pgfault 1578755
[ 3406.029404][ T9142] pgmajfault 372509
[ 3406.033215][ T9142] inactive_anon 0
[ 3406.037364][ T9142] active_anon 4096
[ 3406.041097][ T9142] inactive_file 0
[ 3406.045485][ T9142] active_file 0
[ 3406.048956][ T9142] unevictable 0
[ 3406.052395][ T9142] hierarchical_memory_limit 314572800
[ 3406.058725][ T9142] hierarchical_memsw_limit 9223372036854771712
[ 3406.066051][ T9142] total_cache 0
[ 3406.070025][ T9142] total_rss 8192
[ 3406.073605][ T9142] total_rss_huge 0
[ 3406.077863][ T9142] total_shmem 0
[ 3406.081341][ T9142] total_mapped_file 0
[ 3406.085714][ T9142] total_dirty 0
[ 3406.089174][ T9142] total_writeback 4096
[ 3406.093535][ T9142] total_workingset_refault_anon 387282
[ 3406.099450][ T9142] total_workingset_refault_file 25
[ 3406.104970][ T9142] total_swap 1974272
[ 3406.108870][ T9142] total_swapcached 8192
[ 3406.113007][ T9142] total_pgpgin 898854
[ 3406.117747][ T9142] total_pgpgout 898852
[ 3406.121832][ T9142] total_pgfault 1578755
[ 3406.126450][ T9142] total_pgmajfault 372509
[ 3406.130808][ T9142] total_inactive_anon 0
[ 3406.135444][ T9142] total_active_anon 4096
[ 3406.139733][ T9142] total_inactive_file 0
[ 3406.143892][ T9142] total_active_file 0
[ 3406.148554][ T9142] total_unevictable 0
[ 3406.152549][ T9142] anon_cost 0
[ 3406.156327][ T9142] file_cost 0
23:31:04 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x96}}}]}]}}]}, 0x74}}, 0x0)

[ 3406.159628][ T9142] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9142,uid=0
[ 3406.182139][ T9142] Memory cgroup out of memory: Killed process 9142 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3406.440185][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3406.451771][ T5099] CPU: 1 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3406.461770][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3406.471814][ T5099] Call Trace:
[ 3406.475078][ T5099]  <TASK>
[ 3406.477993][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3406.482669][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3406.487861][ T5099]  ? __pfx__printk+0x10/0x10
[ 3406.492433][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3406.497102][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3406.502112][ T5099]  dump_header+0xda/0x6a0
[ 3406.506449][ T5099]  oom_kill_process+0x3a7/0x930
[ 3406.511316][ T5099]  out_of_memory+0xf67/0x1320
[ 3406.516009][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3406.521646][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3406.526673][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3406.531793][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3406.537341][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3406.542367][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3406.548435][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3406.553645][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3406.558597][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3406.563533][ T5099]  ? mark_lock+0x9a/0x350
[ 3406.567877][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3406.573270][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3406.579427][ T5099]  charge_memcg+0xa2/0x160
[ 3406.583852][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3406.589934][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3406.595391][ T5099]  ? mark_lock+0x9a/0x350
[ 3406.599719][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3406.605707][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3406.611097][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3406.616996][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3406.622018][ T5099]  ? xas_descend+0x37e/0x470
[ 3406.626614][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3406.631544][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3406.636658][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3406.642030][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3406.647311][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3406.652592][ T5099]  do_swap_page+0x791/0x3f40
[ 3406.657179][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3406.661948][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3406.666703][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3406.671786][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3406.677243][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3406.683054][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3406.688184][ T5099]  ? reacquire_held_locks+0x3eb/0x690
[ 3406.693633][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3406.699093][ T5099]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3406.704837][ T5099]  ? mtree_range_walk+0x6fd/0x8e0
[ 3406.709884][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3406.715087][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3406.720128][ T5099]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3406.725870][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3406.731079][ T5099]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3406.736638][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3406.741431][ T5099]  exc_page_fault+0x456/0x870
[ 3406.746138][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3406.750993][ T5099] RIP: 0033:0x7f30cb2a4b90
[ 3406.755407][ T5099] Code: 6e c7 89 13 48 8b 50 08 0f 16 40 50 0f 11 00 48 89 50 50 48 8b 50 10 48 89 78 10 48 89 50 40 48 89 d7 eb b2 66 0f 1f 44 00 00 <64> 48 8b 0c 25 10 00 00 00 8b 91 08 03 00 00 48 8d b9 08 03 00 00
[ 3406.775026][ T5099] RSP: 002b:00007f30cb4cfce8 EFLAGS: 00010206
[ 3406.781101][ T5099] RAX: 00000000fffffffa RBX: 000000000000725a RCX: 0000000000000000
[ 3406.789071][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3406.797124][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3406.805093][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3406.813058][ T5099] R13: 000000000033f984 R14: 000000000033f984 R15: 0000000000000000
[ 3406.821036][ T5099]  </TASK>
[ 3406.826689][ T5095] Bluetooth: hci5: command 0x041b tx timeout
[ 3406.842277][ T5099] memory: usage 307180kB, limit 307200kB, failcnt 559546
[ 3406.854697][ T5099] memory+swap: usage 309152kB, limit 9007199254740988kB, failcnt 0
[ 3406.862634][ T5099] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3406.870154][ T5099] Memory cgroup stats for /syz0:
[ 3406.870297][ T5099] cache 0
[ 3406.881687][ T5099] rss 8192
[ 3406.885290][ T5099] rss_huge 0
[ 3406.889486][ T5099] shmem 0
[ 3406.892442][ T5099] mapped_file 0
[ 3406.896382][ T5099] dirty 0
[ 3406.899344][ T5099] writeback 0
[ 3406.902633][ T5099] workingset_refault_anon 387404
[ 3406.908170][ T5099] workingset_refault_file 25
[ 3406.912776][ T5099] swap 2011136
[ 3406.920616][ T5099] swapcached 8192
[ 3406.925132][ T5099] pgpgin 898989
[ 3406.928614][ T5099] pgpgout 898987
[ 3406.932177][ T5099] pgfault 1578942
[ 3406.936445][ T5099] pgmajfault 372616
[ 3406.940264][ T5099] inactive_anon 0
[ 3406.943889][ T5099] active_anon 8192
[ 3406.949409][ T5099] inactive_file 0
[ 3406.953060][ T5099] active_file 0
[ 3406.957360][ T5099] unevictable 0
[ 3406.960828][ T5099] hierarchical_memory_limit 314572800
[ 3406.966728][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3406.972893][ T5099] total_cache 0
[ 3406.976809][ T5099] total_rss 8192
[ 3406.980449][ T5099] total_rss_huge 0
[ 3406.984877][ T5099] total_shmem 0
[ 3406.988350][ T5099] total_mapped_file 0
[ 3406.993219][ T5099] total_dirty 0
[ 3406.997212][ T5099] total_writeback 0
[ 3407.001035][ T5099] total_workingset_refault_anon 387404
[ 3407.006953][ T5099] total_workingset_refault_file 25
[ 3407.012068][ T5099] total_swap 2011136
[ 3407.016932][ T5099] total_swapcached 8192
[ 3407.021105][ T5099] total_pgpgin 898989
[ 3407.026197][ T5099] total_pgpgout 898987
[ 3407.030269][ T5099] total_pgfault 1578942
[ 3407.034665][ T5099] total_pgmajfault 372616
[ 3407.039248][ T5099] total_inactive_anon 0
[ 3407.043468][ T5099] total_active_anon 8192
[ 3407.048486][ T5099] total_inactive_file 0
[ 3407.052658][ T5099] total_active_file 0
[ 3407.057845][ T5099] total_unevictable 0
[ 3407.061841][ T5099] anon_cost 0
[ 3407.065605][ T5099] file_cost 0
[ 3407.068897][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9144,uid=0
23:31:05 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9e}}}]}]}}]}, 0x74}}, 0x0)

[ 3407.085264][ T5099] Memory cgroup out of memory: Killed process 9144 (syz-executor.0) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3407.284797][ T5095] Bluetooth: hci6: command 0x041b tx timeout
[ 3407.341011][ T9146] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3407.351475][ T9146] CPU: 1 PID: 9146 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3407.361468][ T9146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3407.371529][ T9146] Call Trace:
[ 3407.374813][ T9146]  <TASK>
[ 3407.377730][ T9146]  dump_stack_lvl+0x1e7/0x2e0
[ 3407.382394][ T9146]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3407.387573][ T9146]  ? __pfx__printk+0x10/0x10
[ 3407.392145][ T9146]  ? ___ratelimit+0x4c4/0x670
[ 3407.396811][ T9146]  ? __pfx____ratelimit+0x10/0x10
[ 3407.401832][ T9146]  dump_header+0xda/0x6a0
[ 3407.406173][ T9146]  oom_kill_process+0x3a7/0x930
[ 3407.411050][ T9146]  out_of_memory+0xf67/0x1320
[ 3407.415753][ T9146]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3407.421405][ T9146]  ? __pfx___mutex_lock+0x10/0x10
[ 3407.426444][ T9146]  ? __pfx_out_of_memory+0x10/0x10
[ 3407.431844][ T9146]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3407.437407][ T9146]  ? __pfx_lock_release+0x10/0x10
[ 3407.442440][ T9146]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3407.448496][ T9146]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3407.453681][ T9146]  ? mem_cgroup_iter+0x422/0x560
[ 3407.458625][ T9146]  try_charge_memcg+0xda2/0x18a0
[ 3407.463602][ T9146]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3407.469010][ T9146]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3407.474738][ T9146]  ? __pfx_lock_release+0x10/0x10
[ 3407.479764][ T9146]  ? memcg_account_kmem+0x1e7/0x210
[ 3407.484952][ T9146]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3407.490740][ T9146]  __memcg_kmem_charge_page+0xe1/0x250
[ 3407.496187][ T9146]  memcg_charge_kernel_stack+0x28a/0x550
[ 3407.501803][ T9146]  dup_task_struct+0x15d/0x7d0
[ 3407.506570][ T9146]  copy_process+0x5d0/0x3fc0
[ 3407.511196][ T9146]  ? __pfx_lock_release+0x10/0x10
[ 3407.516238][ T9146]  ? __lock_acquire+0x1345/0x1fd0
[ 3407.521269][ T9146]  ? __pfx_copy_process+0x10/0x10
[ 3407.526276][ T9146]  ? __might_fault+0xc5/0x120
[ 3407.530941][ T9146]  ? __asan_memset+0x23/0x50
[ 3407.535518][ T9146]  kernel_clone+0x21d/0x8d0
[ 3407.540008][ T9146]  ? __pfx_kernel_clone+0x10/0x10
[ 3407.545043][ T9146]  ? __pfx_lock_release+0x10/0x10
[ 3407.550060][ T9146]  __se_sys_clone3+0x2cb/0x350
[ 3407.554818][ T9146]  ? __might_fault+0xa9/0x120
[ 3407.559511][ T9146]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3407.564807][ T9146]  ? rcu_is_watching+0x15/0xb0
[ 3407.569583][ T9146]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3407.575560][ T9146]  ? exc_page_fault+0x587/0x870
[ 3407.580503][ T9146]  ? do_syscall_64+0xb4/0x240
[ 3407.585175][ T9146]  do_syscall_64+0xf9/0x240
[ 3407.589683][ T9146]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3407.595571][ T9146] RIP: 0033:0x7f30cb2a9b99
[ 3407.599976][ T9146] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3407.619579][ T9146] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3407.627997][ T9146] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3407.635980][ T9146] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3407.643952][ T9146] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3407.651937][ T9146] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3407.659914][ T9146] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3407.667940][ T9146]  </TASK>
[ 3407.676811][ T5095] Bluetooth: hci7: command 0x041b tx timeout
[ 3407.683890][ T9146] memory: usage 307188kB, limit 307200kB, failcnt 559859
[ 3407.694727][ T9146] memory+swap: usage 309116kB, limit 9007199254740988kB, failcnt 0
[ 3407.711986][ T9146] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3407.719615][ T9146] Memory cgroup stats for /syz0:
[ 3407.719737][ T9146] cache 0
[ 3407.727763][ T9146] rss 8192
[ 3407.730933][ T9146] rss_huge 0
[ 3407.734411][ T9146] shmem 0
[ 3407.737375][ T9146] mapped_file 0
[ 3407.741647][ T9146] dirty 0
[ 3407.744920][ T9146] writeback 0
[ 3407.748221][ T9146] workingset_refault_anon 387541
[ 3407.753152][ T9146] workingset_refault_file 25
[ 3407.758069][ T9146] swap 1974272
[ 3407.761514][ T9146] swapcached 4096
[ 3407.766369][ T9146] pgpgin 899138
[ 3407.769951][ T9146] pgpgout 899136
[ 3407.774606][ T9146] pgfault 1579140
[ 3407.778270][ T9146] pgmajfault 372737
[ 3407.782083][ T9146] inactive_anon 0
[ 3407.786672][ T9146] active_anon 8192
[ 3407.790409][ T9146] inactive_file 0
[ 3407.794299][ T9146] active_file 0
[ 3407.797769][ T9146] unevictable 0
[ 3407.801229][ T9146] hierarchical_memory_limit 314572800
[ 3407.807589][ T9146] hierarchical_memsw_limit 9223372036854771712
[ 3407.815393][ T9146] total_cache 0
[ 3407.818877][ T9146] total_rss 8192
[ 3407.822513][ T9146] total_rss_huge 0
[ 3407.826743][ T9146] total_shmem 0
[ 3407.830472][ T9146] total_mapped_file 0
[ 3407.838673][ T9146] total_dirty 0
[ 3407.842176][ T9146] total_writeback 0
[ 3407.847351][ T9146] total_workingset_refault_anon 387541
[ 3407.852826][ T9146] total_workingset_refault_file 25
[ 3407.858827][ T9146] total_swap 1974272
[ 3407.862735][ T9146] total_swapcached 4096
[ 3407.867469][ T9146] total_pgpgin 899138
[ 3407.871465][ T9146] total_pgpgout 899136
[ 3407.876547][ T9146] total_pgfault 1579140
[ 3407.880718][ T9146] total_pgmajfault 372737
[ 3407.886039][ T9146] total_inactive_anon 0
[ 3407.890243][ T9146] total_active_anon 8192
[ 3407.895469][ T9146] total_inactive_file 0
[ 3407.899647][ T9146] total_active_file 0
[ 3407.903628][ T9146] total_unevictable 0
[ 3407.908535][ T9146] anon_cost 0
[ 3407.911832][ T9146] file_cost 0
[ 3407.916619][ T9146] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9146,uid=0
23:31:06 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xae}}}]}]}}]}, 0x74}}, 0x0)

[ 3407.941536][ T9146] Memory cgroup out of memory: Killed process 9146 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3408.219004][ T9148] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3408.232394][ T9148] CPU: 0 PID: 9148 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3408.242415][ T9148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3408.252478][ T9148] Call Trace:
[ 3408.255751][ T9148]  <TASK>
[ 3408.258667][ T9148]  dump_stack_lvl+0x1e7/0x2e0
[ 3408.263336][ T9148]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3408.268536][ T9148]  ? __pfx__printk+0x10/0x10
[ 3408.273107][ T9148]  ? ___ratelimit+0x4c4/0x670
[ 3408.277776][ T9148]  ? __pfx____ratelimit+0x10/0x10
[ 3408.282790][ T9148]  dump_header+0xda/0x6a0
[ 3408.287128][ T9148]  oom_kill_process+0x3a7/0x930
[ 3408.291983][ T9148]  out_of_memory+0xf67/0x1320
[ 3408.296652][ T9148]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3408.302269][ T9148]  ? __pfx___mutex_lock+0x10/0x10
[ 3408.307283][ T9148]  ? __pfx_out_of_memory+0x10/0x10
[ 3408.312470][ T9148]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3408.318060][ T9148]  ? __pfx_lock_release+0x10/0x10
[ 3408.323098][ T9148]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3408.329186][ T9148]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3408.334386][ T9148]  ? mem_cgroup_iter+0x422/0x560
[ 3408.339338][ T9148]  try_charge_memcg+0xda2/0x18a0
[ 3408.344279][ T9148]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3408.349638][ T9148]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3408.355345][ T9148]  ? __pfx_lock_release+0x10/0x10
[ 3408.360354][ T9148]  ? memcg_account_kmem+0x1e7/0x210
[ 3408.365543][ T9148]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3408.371347][ T9148]  __memcg_kmem_charge_page+0xe1/0x250
[ 3408.376853][ T9148]  memcg_charge_kernel_stack+0x28a/0x550
[ 3408.382518][ T9148]  dup_task_struct+0x15d/0x7d0
[ 3408.387360][ T9148]  copy_process+0x5d0/0x3fc0
[ 3408.391947][ T9148]  ? __pfx_lock_release+0x10/0x10
[ 3408.396965][ T9148]  ? __pfx_copy_process+0x10/0x10
[ 3408.401972][ T9148]  ? __might_fault+0xc5/0x120
[ 3408.406652][ T9148]  ? __asan_memset+0x23/0x50
[ 3408.411233][ T9148]  kernel_clone+0x21d/0x8d0
[ 3408.415728][ T9148]  ? __pfx_kernel_clone+0x10/0x10
[ 3408.420742][ T9148]  __se_sys_clone3+0x2cb/0x350
[ 3408.425512][ T9148]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3408.430822][ T9148]  ? do_syscall_64+0x108/0x240
[ 3408.435576][ T9148]  ? do_syscall_64+0xb4/0x240
[ 3408.440323][ T9148]  do_syscall_64+0xf9/0x240
[ 3408.444828][ T9148]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3408.450716][ T9148] RIP: 0033:0x7f30cb2a9b99
[ 3408.455205][ T9148] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3408.474798][ T9148] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3408.483194][ T9148] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3408.491168][ T9148] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3408.499125][ T9148] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3408.507104][ T9148] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3408.515059][ T9148] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3408.523023][ T9148]  </TASK>
[ 3408.541928][ T9148] memory: usage 307200kB, limit 307200kB, failcnt 560229
[ 3408.562664][ T9148] memory+swap: usage 309116kB, limit 9007199254740988kB, failcnt 0
[ 3408.571475][ T9148] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3408.579460][ T9148] Memory cgroup stats for /syz0:
[ 3408.579568][ T9148] cache 0
[ 3408.589929][ T9148] rss 0
[ 3408.592712][ T9148] rss_huge 0
[ 3408.596208][ T9148] shmem 0
[ 3408.599159][ T9148] mapped_file 0
[ 3408.602604][ T9148] dirty 0
[ 3408.606170][ T9148] writeback 0
[ 3408.609464][ T9148] workingset_refault_anon 387709
[ 3408.617668][ T9148] workingset_refault_file 25
[ 3408.622302][ T9148] swap 1982464
[ 3408.626651][ T9148] swapcached 0
[ 3408.631312][ T9148] pgpgin 899320
[ 3408.635553][ T9148] pgpgout 899320
[ 3408.639119][ T9148] pgfault 1579384
[ 3408.642746][ T9148] pgmajfault 372879
[ 3408.647124][ T9148] inactive_anon 0
[ 3408.650748][ T9148] active_anon 0
[ 3408.655408][ T9148] inactive_file 0
[ 3408.659233][ T9148] active_file 0
[ 3408.662692][ T9148] unevictable 0
[ 3408.667554][ T9148] hierarchical_memory_limit 314572800
[ 3408.672954][ T9148] hierarchical_memsw_limit 9223372036854771712
[ 3408.679703][ T9148] total_cache 0
[ 3408.683178][ T9148] total_rss 0
[ 3408.687156][ T9148] total_rss_huge 0
[ 3408.690891][ T9148] total_shmem 0
[ 3408.694952][ T9148] total_mapped_file 0
[ 3408.698966][ T9148] total_dirty 0
[ 3408.702407][ T9148] total_writeback 0
[ 3408.707113][ T9148] total_workingset_refault_anon 387709
[ 3408.712897][ T9148] total_workingset_refault_file 25
[ 3408.719183][ T9148] total_swap 1982464
[ 3408.723101][ T9148] total_swapcached 0
[ 3408.728544][ T9148] total_pgpgin 899320
[ 3408.734532][ T9148] total_pgpgout 899320
[ 3408.738618][ T9148] total_pgfault 1579384
[ 3408.742767][ T9148] total_pgmajfault 372879
[ 3408.748018][ T9148] total_inactive_anon 0
[ 3408.752187][ T9148] total_active_anon 0
[ 3408.756855][ T9148] total_inactive_file 0
[ 3408.761207][ T9148] total_active_file 0
[ 3408.765450][ T9148] total_unevictable 0
23:31:07 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe6}}}]}]}}]}, 0x74}}, 0x0)

[ 3408.769472][ T9148] anon_cost 0
[ 3408.772896][ T9148] file_cost 0
[ 3408.777445][ T9148] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9148,uid=0
[ 3408.793099][ T9148] Memory cgroup out of memory: Killed process 9148 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3408.884658][ T5095] Bluetooth: hci5: command 0x040f tx timeout
[ 3409.002659][ T9150] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3409.013384][ T9150] CPU: 1 PID: 9150 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3409.023399][ T9150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3409.033483][ T9150] Call Trace:
[ 3409.036788][ T9150]  <TASK>
[ 3409.039740][ T9150]  dump_stack_lvl+0x1e7/0x2e0
[ 3409.044457][ T9150]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3409.049680][ T9150]  ? __pfx__printk+0x10/0x10
[ 3409.054377][ T9150]  ? ___ratelimit+0x4c4/0x670
[ 3409.059093][ T9150]  ? __pfx____ratelimit+0x10/0x10
[ 3409.064163][ T9150]  dump_header+0xda/0x6a0
[ 3409.068523][ T9150]  oom_kill_process+0x3a7/0x930
[ 3409.073396][ T9150]  out_of_memory+0xf67/0x1320
[ 3409.078099][ T9150]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3409.083758][ T9150]  ? __pfx___mutex_lock+0x10/0x10
[ 3409.088803][ T9150]  ? __pfx_out_of_memory+0x10/0x10
[ 3409.093941][ T9150]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3409.099510][ T9150]  ? __pfx_lock_release+0x10/0x10
[ 3409.104560][ T9150]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3409.110663][ T9150]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3409.115894][ T9150]  ? mem_cgroup_iter+0x422/0x560
[ 3409.120845][ T9150]  try_charge_memcg+0xda2/0x18a0
[ 3409.125807][ T9150]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3409.131188][ T9150]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3409.136913][ T9150]  ? __pfx_lock_release+0x10/0x10
[ 3409.141948][ T9150]  ? memcg_account_kmem+0x1e7/0x210
[ 3409.147158][ T9150]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3409.152962][ T9150]  __memcg_kmem_charge_page+0xe1/0x250
[ 3409.158424][ T9150]  memcg_charge_kernel_stack+0x210/0x550
[ 3409.164065][ T9150]  dup_task_struct+0x15d/0x7d0
[ 3409.168842][ T9150]  copy_process+0x5d0/0x3fc0
[ 3409.173438][ T9150]  ? __pfx_lock_release+0x10/0x10
[ 3409.178461][ T9150]  ? __pfx_copy_process+0x10/0x10
[ 3409.183489][ T9150]  ? __might_fault+0xc5/0x120
[ 3409.188165][ T9150]  ? __asan_memset+0x23/0x50
[ 3409.192755][ T9150]  kernel_clone+0x21d/0x8d0
[ 3409.197254][ T9150]  ? __pfx_kernel_clone+0x10/0x10
[ 3409.202282][ T9150]  __se_sys_clone3+0x2cb/0x350
[ 3409.207046][ T9150]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3409.212345][ T9150]  ? do_syscall_64+0x108/0x240
[ 3409.217106][ T9150]  ? do_syscall_64+0xb4/0x240
[ 3409.221774][ T9150]  do_syscall_64+0xf9/0x240
[ 3409.226274][ T9150]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3409.232169][ T9150] RIP: 0033:0x7f30cb2a9b99
[ 3409.236575][ T9150] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3409.256175][ T9150] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3409.264596][ T9150] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3409.272576][ T9150] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3409.280554][ T9150] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3409.288519][ T9150] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3409.296502][ T9150] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3409.304499][ T9150]  </TASK>
[ 3409.312744][ T9150] memory: usage 307200kB, limit 307200kB, failcnt 560628
[ 3409.328024][ T9150] memory+swap: usage 309164kB, limit 9007199254740988kB, failcnt 0
[ 3409.336770][ T9150] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3409.360428][ T9150] Memory cgroup stats for /syz0:
[ 3409.360808][ T9150] cache 0
[ 3409.369335][ T9150] rss 12288
[ 3409.369550][ T5095] Bluetooth: hci6: command 0x040f tx timeout
[ 3409.372567][ T9150] rss_huge 0
[ 3409.383725][ T9150] shmem 0
[ 3409.387451][ T9150] mapped_file 0
[ 3409.390924][ T9150] dirty 0
[ 3409.393869][ T9150] writeback 0
[ 3409.397963][ T9150] workingset_refault_anon 387870
[ 3409.402909][ T9150] workingset_refault_file 25
[ 3409.408893][ T9150] swap 2002944
[ 3409.421071][ T9150] swapcached 12288
[ 3409.425399][ T9150] pgpgin 899496
[ 3409.428870][ T9150] pgpgout 899493
[ 3409.432419][ T9150] pgfault 1579636
[ 3409.437165][ T9150] pgmajfault 373033
[ 3409.440988][ T9150] inactive_anon 0
[ 3409.445351][ T9150] active_anon 4096
[ 3409.450214][ T9150] inactive_file 0
[ 3409.453875][ T9150] active_file 0
[ 3409.458210][ T9150] unevictable 0
[ 3409.461677][ T9150] hierarchical_memory_limit 314572800
[ 3409.474006][ T9150] hierarchical_memsw_limit 9223372036854771712
[ 3409.480180][ T9150] total_cache 0
[ 3409.483745][ T9150] total_rss 12288
[ 3409.491031][ T9150] total_rss_huge 0
[ 3409.495607][ T9150] total_shmem 0
[ 3409.499093][ T9150] total_mapped_file 0
[ 3409.503084][ T9150] total_dirty 0
[ 3409.507831][ T9150] total_writeback 0
[ 3409.511659][ T9150] total_workingset_refault_anon 387870
[ 3409.517837][ T9150] total_workingset_refault_file 25
[ 3409.523206][ T9150] total_swap 2002944
[ 3409.539677][ T9150] total_swapcached 12288
[ 3409.544019][ T9150] total_pgpgin 899496
[ 3409.552917][ T9150] total_pgpgout 899493
[ 3409.557907][ T9150] total_pgfault 1579636
[ 3409.562081][ T9150] total_pgmajfault 373033
[ 3409.567318][ T9150] total_inactive_anon 0
[ 3409.571496][ T9150] total_active_anon 4096
[ 3409.576254][ T9150] total_inactive_file 0
[ 3409.580710][ T9150] total_active_file 0
[ 3409.594011][ T9150] total_unevictable 0
[ 3409.598036][ T9150] anon_cost 0
[ 3409.601319][ T9150] file_cost 0
[ 3409.612491][ T9150] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9150,uid=0
[ 3409.629590][ T9150] Memory cgroup out of memory: Killed process 9150 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:31:08 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xf6}}}]}]}}]}, 0x74}}, 0x0)

[ 3409.684979][ T5095] Bluetooth: hci7: command 0x040f tx timeout
[ 3409.876391][ T9152] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3409.886975][ T9152] CPU: 0 PID: 9152 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3409.896967][ T9152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3409.907037][ T9152] Call Trace:
[ 3409.910325][ T9152]  <TASK>
[ 3409.913265][ T9152]  dump_stack_lvl+0x1e7/0x2e0
[ 3409.917966][ T9152]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3409.923175][ T9152]  ? __pfx__printk+0x10/0x10
[ 3409.928027][ T9152]  ? ___ratelimit+0x4c4/0x670
[ 3409.932738][ T9152]  ? __pfx____ratelimit+0x10/0x10
[ 3409.937816][ T9152]  dump_header+0xda/0x6a0
[ 3409.942160][ T9152]  oom_kill_process+0x3a7/0x930
[ 3409.947024][ T9152]  out_of_memory+0xf67/0x1320
[ 3409.951813][ T9152]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3409.957508][ T9152]  ? __pfx___mutex_lock+0x10/0x10
[ 3409.962549][ T9152]  ? __pfx_out_of_memory+0x10/0x10
[ 3409.967691][ T9152]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3409.973271][ T9152]  ? __pfx_lock_release+0x10/0x10
[ 3409.978295][ T9152]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3409.984378][ T9152]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3409.989837][ T9152]  ? mem_cgroup_iter+0x422/0x560
[ 3409.994774][ T9152]  try_charge_memcg+0xda2/0x18a0
[ 3409.999722][ T9152]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3410.005090][ T9152]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3410.010804][ T9152]  ? __pfx_lock_release+0x10/0x10
[ 3410.016089][ T9152]  ? memcg_account_kmem+0x1e7/0x210
[ 3410.021287][ T9152]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3410.027091][ T9152]  __memcg_kmem_charge_page+0xe1/0x250
[ 3410.032552][ T9152]  memcg_charge_kernel_stack+0x28a/0x550
[ 3410.038183][ T9152]  dup_task_struct+0x40d/0x7d0
[ 3410.042970][ T9152]  copy_process+0x5d0/0x3fc0
[ 3410.047592][ T9152]  ? __pfx_lock_release+0x10/0x10
[ 3410.052657][ T9152]  ? __pfx_copy_process+0x10/0x10
[ 3410.057688][ T9152]  ? __might_fault+0xc5/0x120
[ 3410.062360][ T9152]  ? __asan_memset+0x23/0x50
[ 3410.066955][ T9152]  kernel_clone+0x21d/0x8d0
[ 3410.071500][ T9152]  ? __pfx_kernel_clone+0x10/0x10
[ 3410.076535][ T9152]  __se_sys_clone3+0x2cb/0x350
[ 3410.081296][ T9152]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3410.086595][ T9152]  ? do_syscall_64+0x108/0x240
[ 3410.091352][ T9152]  ? do_syscall_64+0xb4/0x240
[ 3410.096023][ T9152]  do_syscall_64+0xf9/0x240
[ 3410.100523][ T9152]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3410.106409][ T9152] RIP: 0033:0x7f30cb2a9b99
[ 3410.110817][ T9152] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3410.131284][ T9152] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3410.139696][ T9152] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3410.147662][ T9152] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3410.155656][ T9152] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3410.163622][ T9152] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3410.171589][ T9152] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3410.179566][ T9152]  </TASK>
[ 3410.185455][ T9152] memory: usage 307200kB, limit 307200kB, failcnt 560983
[ 3410.192509][ T9152] memory+swap: usage 309176kB, limit 9007199254740988kB, failcnt 0
[ 3410.208938][ T9152] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3410.216715][ T9152] Memory cgroup stats for /syz0:
[ 3410.216821][ T9152] cache 0
[ 3410.225390][ T9152] rss 20480
[ 3410.228516][ T9152] rss_huge 0
[ 3410.232151][ T9152] shmem 0
[ 3410.236178][ T9152] mapped_file 0
[ 3410.239642][ T9152] dirty 0
[ 3410.242561][ T9152] writeback 0
[ 3410.246853][ T9152] workingset_refault_anon 387991
[ 3410.251805][ T9152] workingset_refault_file 25
[ 3410.257072][ T9152] swap 2002944
[ 3410.260546][ T9152] swapcached 12288
[ 3410.264962][ T9152] pgpgin 899632
[ 3410.269852][ T9152] pgpgout 899627
[ 3410.273417][ T9152] pgfault 1579830
[ 3410.277968][ T9152] pgmajfault 373145
[ 3410.281781][ T9152] inactive_anon 0
[ 3410.288146][ T9152] active_anon 20480
[ 3410.291981][ T9152] inactive_file 0
[ 3410.297951][ T9152] active_file 0
[ 3410.301442][ T9152] unevictable 0
[ 3410.305186][ T9152] hierarchical_memory_limit 314572800
[ 3410.310579][ T9152] hierarchical_memsw_limit 9223372036854771712
[ 3410.317361][ T9152] total_cache 0
[ 3410.320844][ T9152] total_rss 20480
[ 3410.325943][ T9152] total_rss_huge 0
[ 3410.329706][ T9152] total_shmem 0
[ 3410.334312][ T9152] total_mapped_file 0
[ 3410.338303][ T9152] total_dirty 0
[ 3410.341765][ T9152] total_writeback 0
[ 3410.347939][ T9152] total_workingset_refault_anon 387991
[ 3410.353469][ T9152] total_workingset_refault_file 25
[ 3410.363984][ T9152] total_swap 2002944
[ 3410.367902][ T9152] total_swapcached 12288
[ 3410.372484][ T9152] total_pgpgin 899632
[ 3410.377941][ T9152] total_pgpgout 899627
[ 3410.382032][ T9152] total_pgfault 1579830
[ 3410.386966][ T9152] total_pgmajfault 373145
[ 3410.391303][ T9152] total_inactive_anon 0
[ 3410.396152][ T9152] total_active_anon 20480
[ 3410.400495][ T9152] total_inactive_file 0
[ 3410.406261][ T9152] total_active_file 0
[ 3410.410305][ T9152] total_unevictable 0
[ 3410.415748][ T9152] anon_cost 0
[ 3410.419073][ T9152] file_cost 0
23:31:08 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x12e}}}]}]}}]}, 0x74}}, 0x0)

[ 3410.422376][ T9152] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9152,uid=0
[ 3410.439479][ T9152] Memory cgroup out of memory: Killed process 9152 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3410.631455][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3410.643692][ T5099] CPU: 1 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3410.653698][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3410.663745][ T5099] Call Trace:
[ 3410.667043][ T5099]  <TASK>
[ 3410.669971][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3410.674646][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3410.679842][ T5099]  ? __pfx__printk+0x10/0x10
[ 3410.684428][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3410.689222][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3410.694258][ T5099]  dump_header+0xda/0x6a0
[ 3410.698623][ T5099]  oom_kill_process+0x3a7/0x930
[ 3410.703516][ T5099]  out_of_memory+0xf67/0x1320
[ 3410.708226][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3410.713980][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3410.719033][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3410.724166][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3410.729883][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3410.734922][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3410.741154][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3410.746363][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3410.751341][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3410.756316][ T5099]  ? mark_lock+0x9a/0x350
[ 3410.760688][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3410.766110][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3410.772290][ T5099]  charge_memcg+0xa2/0x160
[ 3410.776723][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3410.782795][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3410.788256][ T5099]  ? mark_lock+0x9a/0x350
[ 3410.792611][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3410.798616][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3410.804209][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3410.810116][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3410.815132][ T5099]  ? xas_descend+0x37e/0x470
[ 3410.819720][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3410.824650][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3410.829778][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3410.835150][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3410.840465][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3410.845783][ T5099]  do_swap_page+0x791/0x3f40
[ 3410.850426][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3410.855256][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3410.860041][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3410.865060][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3410.870513][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3410.876320][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3410.881518][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3410.886653][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3410.892201][ T5099]  ? mt_find+0x226/0x850
[ 3410.896454][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3410.901522][ T5099]  ? mt_find+0x62d/0x850
[ 3410.905782][ T5099]  ? mt_find+0x226/0x850
[ 3410.910044][ T5099]  ? find_vma+0x142/0x1c0
[ 3410.914367][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3410.919032][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3410.925003][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3410.929763][ T5099]  exc_page_fault+0x2ad/0x870
[ 3410.934438][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3410.939292][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3410.944413][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3410.964134][ T5099] RSP: 0018:ffffc90003ebfd98 EFLAGS: 00050202
[ 3410.970193][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3410.978167][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3410.986146][ T5099] RBP: ffffc90003ebfec8 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3410.994223][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfda0
[ 3411.002226][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3411.010240][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3411.016141][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3411.022465][ T5099]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3411.028171][ T5099]  syscall_exit_to_user_mode+0x113/0x360
[ 3411.033814][ T5099]  do_syscall_64+0x108/0x240
[ 3411.038419][ T5099]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3411.044319][ T5099] RIP: 0033:0x7f30cb2a91b5
[ 3411.048778][ T5099] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 3411.068407][ T5099] RSP: 002b:00007f30cb4cfcf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 3411.076816][ T5099] RAX: 0000000000000000 RBX: 0000000000007264 RCX: 00007f30cb2a91b5
[ 3411.084820][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3411.092973][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3411.100968][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3411.108968][ T5099] R13: 0000000000340a24 R14: 0000000000340a24 R15: 0000000000000000
[ 3411.116962][ T5099]  </TASK>
[ 3411.122067][ T5095] Bluetooth: hci5: command 0x0419 tx timeout
[ 3411.126297][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 561250
[ 3411.135321][ T5099] memory+swap: usage 309172kB, limit 9007199254740988kB, failcnt 0
[ 3411.143234][ T5099] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3411.150853][ T5099] Memory cgroup stats for /syz0:
[ 3411.150998][ T5099] cache 0
[ 3411.159247][ T5099] rss 24576
[ 3411.162378][ T5099] rss_huge 0
[ 3411.165820][ T5099] shmem 0
[ 3411.168783][ T5099] mapped_file 0
[ 3411.172247][ T5099] dirty 0
[ 3411.175535][ T5099] writeback 0
[ 3411.178834][ T5099] workingset_refault_anon 388099
[ 3411.184211][ T5099] workingset_refault_file 25
[ 3411.188874][ T5099] swap 1994752
[ 3411.193505][ T5099] swapcached 16384
[ 3411.197438][ T5099] pgpgin 899750
[ 3411.200908][ T5099] pgpgout 899744
[ 3411.204968][ T5099] pgfault 1579994
[ 3411.208620][ T5099] pgmajfault 373242
[ 3411.212430][ T5099] inactive_anon 0
[ 3411.216364][ T5099] active_anon 20480
[ 3411.220238][ T5099] inactive_file 0
[ 3411.223880][ T5099] active_file 0
[ 3411.227631][ T5099] unevictable 0
[ 3411.231101][ T5099] hierarchical_memory_limit 314572800
[ 3411.237608][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3411.243780][ T5099] total_cache 0
[ 3411.247505][ T5099] total_rss 24576
[ 3411.251141][ T5099] total_rss_huge 0
[ 3411.255119][ T5099] total_shmem 0
[ 3411.258580][ T5099] total_mapped_file 0
[ 3411.262540][ T5099] total_dirty 0
[ 3411.266749][ T5099] total_writeback 0
[ 3411.270590][ T5099] total_workingset_refault_anon 388099
[ 3411.279381][ T5099] total_workingset_refault_file 25
[ 3411.285462][ T5099] total_swap 1994752
[ 3411.289375][ T5099] total_swapcached 16384
[ 3411.295588][ T5099] total_pgpgin 899750
[ 3411.299609][ T5099] total_pgpgout 899744
[ 3411.303676][ T5099] total_pgfault 1579994
[ 3411.309037][ T5099] total_pgmajfault 373242
[ 3411.313387][ T5099] total_inactive_anon 0
[ 3411.318240][ T5099] total_active_anon 20480
[ 3411.322586][ T5099] total_inactive_file 0
[ 3411.327287][ T5099] total_active_file 0
[ 3411.331295][ T5099] total_unevictable 0
23:31:09 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x156}}}]}]}}]}, 0x74}}, 0x0)

[ 3411.335786][ T5099] anon_cost 0
[ 3411.339083][ T5099] file_cost 0
[ 3411.342437][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9154,uid=0
[ 3411.358308][ T5099] Memory cgroup out of memory: Killed process 9154 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3411.444354][ T5095] Bluetooth: hci6: command 0x0419 tx timeout
[ 3411.524267][ T9156] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3411.535078][ T9156] CPU: 0 PID: 9156 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3411.545085][ T9156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3411.555162][ T9156] Call Trace:
[ 3411.558469][ T9156]  <TASK>
[ 3411.561402][ T9156]  dump_stack_lvl+0x1e7/0x2e0
[ 3411.566090][ T9156]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3411.571407][ T9156]  ? __pfx__printk+0x10/0x10
[ 3411.576012][ T9156]  ? ___ratelimit+0x4c4/0x670
[ 3411.580700][ T9156]  ? __pfx____ratelimit+0x10/0x10
[ 3411.585731][ T9156]  dump_header+0xda/0x6a0
[ 3411.590084][ T9156]  oom_kill_process+0x3a7/0x930
[ 3411.594961][ T9156]  out_of_memory+0xf67/0x1320
[ 3411.599668][ T9156]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3411.605319][ T9156]  ? __pfx___mutex_lock+0x10/0x10
[ 3411.610347][ T9156]  ? __pfx_out_of_memory+0x10/0x10
[ 3411.615466][ T9156]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3411.621011][ T9156]  ? __pfx_lock_release+0x10/0x10
[ 3411.626036][ T9156]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3411.632101][ T9156]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3411.637312][ T9156]  ? mem_cgroup_iter+0x422/0x560
[ 3411.642247][ T9156]  try_charge_memcg+0xda2/0x18a0
[ 3411.647198][ T9156]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3411.652565][ T9156]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3411.658284][ T9156]  ? __pfx_lock_release+0x10/0x10
[ 3411.663307][ T9156]  ? memcg_account_kmem+0x1e7/0x210
[ 3411.668526][ T9156]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3411.674334][ T9156]  __memcg_kmem_charge_page+0xe1/0x250
[ 3411.679795][ T9156]  memcg_charge_kernel_stack+0x28a/0x550
[ 3411.685428][ T9156]  dup_task_struct+0x15d/0x7d0
[ 3411.690205][ T9156]  copy_process+0x5d0/0x3fc0
[ 3411.694814][ T9156]  ? __pfx_lock_release+0x10/0x10
[ 3411.699851][ T9156]  ? __pfx_copy_process+0x10/0x10
[ 3411.704871][ T9156]  ? __might_fault+0xc5/0x120
[ 3411.709572][ T9156]  ? __asan_memset+0x23/0x50
[ 3411.714189][ T9156]  kernel_clone+0x21d/0x8d0
[ 3411.718708][ T9156]  ? __pfx_kernel_clone+0x10/0x10
[ 3411.723744][ T9156]  __se_sys_clone3+0x2cb/0x350
[ 3411.728511][ T9156]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3411.733813][ T9156]  ? do_syscall_64+0x108/0x240
[ 3411.738574][ T9156]  ? do_syscall_64+0xb4/0x240
[ 3411.743244][ T9156]  do_syscall_64+0xf9/0x240
[ 3411.747747][ T9156]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3411.753989][ T9156] RIP: 0033:0x7f30cb2a9b99
[ 3411.758434][ T9156] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3411.778283][ T9156] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3411.787686][ T9156] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3411.795677][ T9156] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3411.803650][ T9156] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3411.811635][ T9156] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3411.819606][ T9156] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3411.827604][ T9156]  </TASK>
[ 3411.834462][ T5095] Bluetooth: hci7: command 0x0419 tx timeout
[ 3411.844345][ T9156] memory: usage 307200kB, limit 307200kB, failcnt 561505
[ 3411.859088][ T9156] memory+swap: usage 309208kB, limit 9007199254740988kB, failcnt 0
[ 3411.871586][ T9156] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3411.879472][ T9156] Memory cgroup stats for /syz0:
[ 3411.879605][ T9156] cache 0
[ 3411.888128][ T9156] rss 8192
[ 3411.891167][ T9156] rss_huge 0
[ 3411.895038][ T9156] shmem 0
[ 3411.898018][ T9156] mapped_file 0
[ 3411.901500][ T9156] dirty 0
[ 3411.907715][ T9156] writeback 0
[ 3411.911059][ T9156] workingset_refault_anon 388200
[ 3411.917156][ T9156] workingset_refault_file 25
[ 3411.921764][ T9156] swap 2048000
[ 3411.925820][ T9156] swapcached 4096
[ 3411.929472][ T9156] pgpgin 899861
[ 3411.932935][ T9156] pgpgout 899859
[ 3411.936762][ T9156] pgfault 1580147
[ 3411.940407][ T9156] pgmajfault 373330
[ 3411.945001][ T9156] inactive_anon 0
[ 3411.948647][ T9156] active_anon 8192
[ 3411.952381][ T9156] inactive_file 0
[ 3411.956722][ T9156] active_file 0
[ 3411.960199][ T9156] unevictable 0
[ 3411.963643][ T9156] hierarchical_memory_limit 314572800
[ 3411.969298][ T9156] hierarchical_memsw_limit 9223372036854771712
[ 3411.976006][ T9156] total_cache 0
[ 3411.979487][ T9156] total_rss 8192
[ 3411.983078][ T9156] total_rss_huge 0
[ 3411.987123][ T9156] total_shmem 0
[ 3411.990593][ T9156] total_mapped_file 0
[ 3411.994807][ T9156] total_dirty 0
[ 3411.998353][ T9156] total_writeback 0
[ 3412.002157][ T9156] total_workingset_refault_anon 388200
[ 3412.008153][ T9156] total_workingset_refault_file 25
[ 3412.013620][ T9156] total_swap 2048000
[ 3412.017883][ T9156] total_swapcached 4096
[ 3412.022045][ T9156] total_pgpgin 899861
[ 3412.026293][ T9156] total_pgpgout 899859
[ 3412.030363][ T9156] total_pgfault 1580147
[ 3412.035020][ T9156] total_pgmajfault 373330
[ 3412.039365][ T9156] total_inactive_anon 0
[ 3412.043514][ T9156] total_active_anon 8192
[ 3412.048040][ T9156] total_inactive_file 0
[ 3412.052198][ T9156] total_active_file 0
[ 3412.056412][ T9156] total_unevictable 0
[ 3412.060398][ T9156] anon_cost 0
[ 3412.063679][ T9156] file_cost 0
23:31:10 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x15e}}}]}]}}]}, 0x74}}, 0x0)

[ 3412.068394][ T9156] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9156,uid=0
[ 3412.084283][ T9156] Memory cgroup out of memory: Killed process 9156 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3412.473805][ T9158] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3412.485338][ T9158] CPU: 1 PID: 9158 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3412.495520][ T9158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3412.505590][ T9158] Call Trace:
[ 3412.508880][ T9158]  <TASK>
[ 3412.511806][ T9158]  dump_stack_lvl+0x1e7/0x2e0
[ 3412.516481][ T9158]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3412.521674][ T9158]  ? __pfx__printk+0x10/0x10
[ 3412.526254][ T9158]  ? ___ratelimit+0x4c4/0x670
[ 3412.530929][ T9158]  ? __pfx____ratelimit+0x10/0x10
[ 3412.535951][ T9158]  dump_header+0xda/0x6a0
[ 3412.540278][ T9158]  oom_kill_process+0x3a7/0x930
[ 3412.545165][ T9158]  out_of_memory+0xf67/0x1320
[ 3412.549875][ T9158]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3412.555531][ T9158]  ? __pfx___mutex_lock+0x10/0x10
[ 3412.560567][ T9158]  ? __pfx_out_of_memory+0x10/0x10
[ 3412.565708][ T9158]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3412.571257][ T9158]  ? __pfx_lock_release+0x10/0x10
[ 3412.576286][ T9158]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3412.582408][ T9158]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3412.587705][ T9158]  ? mem_cgroup_iter+0x422/0x560
[ 3412.592682][ T9158]  try_charge_memcg+0xda2/0x18a0
[ 3412.597662][ T9158]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3412.603055][ T9158]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3412.608812][ T9158]  ? __pfx_lock_release+0x10/0x10
[ 3412.613836][ T9158]  ? memcg_account_kmem+0x1e7/0x210
[ 3412.619041][ T9158]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3412.624844][ T9158]  __memcg_kmem_charge_page+0xe1/0x250
[ 3412.630318][ T9158]  memcg_charge_kernel_stack+0x210/0x550
[ 3412.635974][ T9158]  dup_task_struct+0x15d/0x7d0
[ 3412.640736][ T9158]  copy_process+0x5d0/0x3fc0
[ 3412.645373][ T9158]  ? __pfx_lock_release+0x10/0x10
[ 3412.650516][ T9158]  ? __pfx_copy_process+0x10/0x10
[ 3412.655574][ T9158]  ? __might_fault+0xc5/0x120
[ 3412.660267][ T9158]  ? __asan_memset+0x23/0x50
[ 3412.664876][ T9158]  kernel_clone+0x21d/0x8d0
[ 3412.669388][ T9158]  ? __pfx_kernel_clone+0x10/0x10
[ 3412.674413][ T9158]  __se_sys_clone3+0x2cb/0x350
[ 3412.679173][ T9158]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3412.684457][ T9158]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3412.690439][ T9158]  ? exc_page_fault+0x587/0x870
[ 3412.695305][ T9158]  ? do_syscall_64+0xb4/0x240
[ 3412.700282][ T9158]  do_syscall_64+0xf9/0x240
[ 3412.704833][ T9158]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3412.710755][ T9158] RIP: 0033:0x7f30cb2a9b99
[ 3412.715177][ T9158] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3412.734811][ T9158] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3412.743227][ T9158] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3412.751216][ T9158] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3412.759200][ T9158] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3412.767165][ T9158] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3412.775140][ T9158] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3412.783137][ T9158]  </TASK>
[ 3412.789090][ T9158] memory: usage 307200kB, limit 307200kB, failcnt 561978
[ 3412.796363][ T9158] memory+swap: usage 309156kB, limit 9007199254740988kB, failcnt 0
[ 3412.804469][ T9158] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3412.811832][ T9158] Memory cgroup stats for /syz0:
[ 3412.811955][ T9158] cache 0
[ 3412.820314][ T9158] rss 0
[ 3412.823091][ T9158] rss_huge 0
[ 3412.827118][ T9158] shmem 0
[ 3412.831794][ T9158] mapped_file 0
[ 3412.835427][ T9158] dirty 0
[ 3412.838368][ T9158] writeback 0
[ 3412.841651][ T9158] workingset_refault_anon 388393
[ 3412.847048][ T9158] workingset_refault_file 25
[ 3412.851644][ T9158] swap 2027520
[ 3412.855450][ T9158] swapcached 0
[ 3412.858892][ T9158] pgpgin 900065
[ 3412.862397][ T9158] pgpgout 900065
[ 3412.866582][ T9158] pgfault 1580445
[ 3412.870235][ T9158] pgmajfault 373511
[ 3412.874511][ T9158] inactive_anon 0
[ 3412.878201][ T9158] active_anon 0
[ 3412.881655][ T9158] inactive_file 0
[ 3412.886191][ T9158] active_file 0
[ 3412.889667][ T9158] unevictable 0
[ 3412.893111][ T9158] hierarchical_memory_limit 314572800
[ 3412.899800][ T9158] hierarchical_memsw_limit 9223372036854771712
[ 3412.906661][ T9158] total_cache 0
[ 3412.910314][ T9158] total_rss 0
[ 3412.913677][ T9158] total_rss_huge 0
[ 3412.918144][ T9158] total_shmem 0
[ 3412.922175][ T9158] total_mapped_file 0
[ 3412.926644][ T9158] total_dirty 0
[ 3412.931800][ T9158] total_writeback 0
[ 3412.936223][ T9158] total_workingset_refault_anon 388393
[ 3412.941799][ T9158] total_workingset_refault_file 25
[ 3412.947555][ T9158] total_swap 2027520
[ 3412.951530][ T9158] total_swapcached 0
[ 3412.955864][ T9158] total_pgpgin 900065
[ 3412.959937][ T9158] total_pgpgout 900065
[ 3412.964594][ T9158] total_pgfault 1580445
[ 3412.968857][ T9158] total_pgmajfault 373511
[ 3412.973272][ T9158] total_inactive_anon 0
[ 3412.978053][ T9158] total_active_anon 0
[ 3412.982190][ T9158] total_inactive_file 0
[ 3412.986876][ T9158] total_active_file 0
[ 3412.991004][ T9158] total_unevictable 0
[ 3412.995583][ T9158] anon_cost 0
[ 3412.998993][ T9158] file_cost 0
[ 3413.002899][ T9158] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9158,uid=0
[ 3413.019081][ T9158] Memory cgroup out of memory: Killed process 9158 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:31:11 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x17e}}}]}]}}]}, 0x74}}, 0x0)

[ 3413.251412][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3413.264211][ T5099] CPU: 1 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3413.274224][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3413.284276][ T5099] Call Trace:
[ 3413.287550][ T5099]  <TASK>
[ 3413.290475][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3413.295154][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3413.300345][ T5099]  ? __pfx__printk+0x10/0x10
[ 3413.304924][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3413.309602][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3413.314641][ T5099]  dump_header+0xda/0x6a0
[ 3413.319156][ T5099]  oom_kill_process+0x3a7/0x930
[ 3413.324006][ T5099]  out_of_memory+0xf67/0x1320
[ 3413.328682][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3413.334842][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3413.340047][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3413.345181][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3413.350735][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3413.355761][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3413.361828][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3413.367026][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3413.371964][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3413.376893][ T5099]  ? mark_lock+0x9a/0x350
[ 3413.381230][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3413.386616][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3413.392769][ T5099]  charge_memcg+0xa2/0x160
[ 3413.397212][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3413.403281][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3413.408745][ T5099]  ? mark_lock+0x9a/0x350
[ 3413.413073][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3413.419061][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3413.424437][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3413.430329][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3413.435352][ T5099]  ? xas_descend+0x37e/0x470
[ 3413.439945][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3413.444881][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3413.450000][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3413.456173][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3413.461453][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3413.466742][ T5099]  do_swap_page+0x791/0x3f40
[ 3413.471329][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3413.476098][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3413.480857][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3413.485872][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3413.491324][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3413.497124][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3413.502408][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3413.507535][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3413.512991][ T5099]  ? mt_find+0x226/0x850
[ 3413.517229][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3413.522261][ T5099]  ? mt_find+0x62d/0x850
[ 3413.526496][ T5099]  ? mt_find+0x226/0x850
[ 3413.530746][ T5099]  ? find_vma+0x142/0x1c0
[ 3413.535067][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3413.539732][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3413.545718][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3413.550484][ T5099]  exc_page_fault+0x2ad/0x870
[ 3413.555166][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3413.560011][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3413.565118][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3413.584720][ T5099] RSP: 0018:ffffc90003ebfd98 EFLAGS: 00050202
[ 3413.590782][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3413.598758][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3413.606728][ T5099] RBP: ffffc90003ebfec8 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3413.614702][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfda0
[ 3413.622674][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3413.630661][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3413.636923][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3413.643258][ T5099]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3413.648974][ T5099]  syscall_exit_to_user_mode+0x113/0x360
[ 3413.654607][ T5099]  do_syscall_64+0x108/0x240
[ 3413.659194][ T5099]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3413.665099][ T5099] RIP: 0033:0x7f30cb2a91b5
[ 3413.669524][ T5099] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 3413.689133][ T5099] RSP: 002b:00007f30cb4cfcf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 3413.697695][ T5099] RAX: 0000000000000000 RBX: 000000000000726a RCX: 00007f30cb2a91b5
[ 3413.705739][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3413.713725][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3413.721706][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3413.729694][ T5099] R13: 000000000034145a R14: 000000000034145a R15: 0000000000000000
[ 3413.737689][ T5099]  </TASK>
[ 3413.755277][ T5099] memory: usage 307180kB, limit 307200kB, failcnt 562278
[ 3413.762573][ T5099] memory+swap: usage 309156kB, limit 9007199254740988kB, failcnt 0
[ 3413.770928][ T5099] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3413.778722][ T5099] Memory cgroup stats for /syz0:
[ 3413.778824][ T5099] cache 0
[ 3413.787148][ T5099] rss 12288
[ 3413.790267][ T5099] rss_huge 0
[ 3413.793465][ T5099] shmem 0
[ 3413.796650][ T5099] mapped_file 0
[ 3413.800123][ T5099] dirty 0
[ 3413.803067][ T5099] writeback 0
[ 3413.807064][ T5099] workingset_refault_anon 388507
[ 3413.812018][ T5099] workingset_refault_file 25
[ 3413.823510][ T5099] swap 2011136
[ 3413.828047][ T5099] swapcached 8192
[ 3413.831701][ T5099] pgpgin 900190
[ 3413.836431][ T5099] pgpgout 900187
[ 3413.839993][ T5099] pgfault 1580627
[ 3413.843640][ T5099] pgmajfault 373624
[ 3413.848832][ T5099] inactive_anon 0
[ 3413.853307][ T5099] active_anon 12288
[ 3413.862645][ T5099] inactive_file 0
[ 3413.866991][ T5099] active_file 0
[ 3413.870456][ T5099] unevictable 0
[ 3413.873892][ T5099] hierarchical_memory_limit 314572800
[ 3413.879908][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3413.886360][ T5099] total_cache 0
[ 3413.889817][ T5099] total_rss 12288
[ 3413.893444][ T5099] total_rss_huge 0
[ 3413.897601][ T5099] total_shmem 0
[ 3413.901078][ T5099] total_mapped_file 0
[ 3413.905360][ T5099] total_dirty 0
[ 3413.908825][ T5099] total_writeback 0
[ 3413.912693][ T5099] total_workingset_refault_anon 388507
[ 3413.918387][ T5099] total_workingset_refault_file 25
[ 3413.923509][ T5099] total_swap 2011136
[ 3413.938182][ T5099] total_swapcached 8192
[ 3413.942364][ T5099] total_pgpgin 900190
[ 3413.946915][ T5099] total_pgpgout 900187
[ 3413.950993][ T5099] total_pgfault 1580627
[ 3413.961525][ T5099] total_pgmajfault 373624
[ 3413.966425][ T5099] total_inactive_anon 0
[ 3413.970586][ T5099] total_active_anon 12288
[ 3413.975807][ T5099] total_inactive_file 0
[ 3413.979991][ T5099] total_active_file 0
[ 3413.984011][ T5099] total_unevictable 0
[ 3413.988010][ T5099] anon_cost 0
[ 3413.991297][ T5099] file_cost 0
[ 3413.995308][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9160,uid=0
23:31:12 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1a6}}}]}]}}]}, 0x74}}, 0x0)

[ 3414.011196][ T5099] Memory cgroup out of memory: Killed process 9160 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3414.281079][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3414.327782][ T5099] CPU: 0 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3414.337809][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3414.347884][ T5099] Call Trace:
[ 3414.351172][ T5099]  <TASK>
[ 3414.354110][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3414.358826][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3414.364050][ T5099]  ? __pfx__printk+0x10/0x10
[ 3414.368653][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3414.373340][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3414.378368][ T5099]  dump_header+0xda/0x6a0
[ 3414.382700][ T5099]  oom_kill_process+0x3a7/0x930
[ 3414.387550][ T5099]  out_of_memory+0xf67/0x1320
[ 3414.392316][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3414.397944][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3414.402964][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3414.408080][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3414.413618][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3414.418641][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3414.424710][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3414.429903][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3414.434836][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3414.439762][ T5099]  ? mark_lock+0x9a/0x350
[ 3414.444115][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3414.449509][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3414.455661][ T5099]  charge_memcg+0xa2/0x160
[ 3414.460077][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3414.466154][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3414.471620][ T5099]  ? mark_lock+0x9a/0x350
[ 3414.475952][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3414.481931][ T5099]  ? blk_start_plug+0x6f/0x1b0
[ 3414.486696][ T5099]  swap_cluster_readahead+0x398/0x810
[ 3414.492073][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3414.497966][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3414.502987][ T5099]  ? xas_descend+0x37e/0x470
[ 3414.507582][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3414.512513][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3414.517634][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3414.523007][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3414.528293][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3414.533575][ T5099]  do_swap_page+0x791/0x3f40
[ 3414.538160][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3414.542929][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3414.547687][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3414.552721][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3414.558246][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3414.564078][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3414.569233][ T5099]  ? reacquire_held_locks+0x3eb/0x690
[ 3414.574625][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3414.580099][ T5099]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3414.585827][ T5099]  ? mtree_range_walk+0x6fd/0x8e0
[ 3414.590850][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3414.596045][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3414.601062][ T5099]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3414.606267][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3414.611459][ T5099]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3414.617004][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3414.621773][ T5099]  exc_page_fault+0x456/0x870
[ 3414.626452][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3414.631297][ T5099] RIP: 0033:0x7f30cb2a91b8
[ 3414.635706][ T5099] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 3414.655656][ T5099] RSP: 002b:00007f30cb4cfcf0 EFLAGS: 00010293
[ 3414.661713][ T5099] RAX: 0000000000000000 RBX: 000000000000726c RCX: 00007f30cb2a91b5
[ 3414.669675][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3414.677643][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3414.685624][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3414.693685][ T5099] R13: 0000000000341811 R14: 0000000000341811 R15: 0000000000000000
[ 3414.701662][ T5099]  </TASK>
[ 3414.714262][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 562751
[ 3414.721338][ T5099] memory+swap: usage 309208kB, limit 9007199254740988kB, failcnt 0
[ 3414.729693][ T5099] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3414.738291][ T5099] Memory cgroup stats for /syz0:
[ 3414.738431][ T5099] cache 0
[ 3414.746545][ T5099] rss 4096
[ 3414.753120][ T5099] rss_huge 0
[ 3414.757158][ T5099] shmem 0
[ 3414.769179][ T5099] mapped_file 0
[ 3414.772649][ T5099] dirty 0
[ 3414.776844][ T5099] writeback 0
[ 3414.781004][ T5099] workingset_refault_anon 388649
[ 3414.786375][ T5099] workingset_refault_file 25
[ 3414.790984][ T5099] swap 2056192
[ 3414.795100][ T5099] swapcached 4096
[ 3414.798990][ T5099] pgpgin 900343
[ 3414.802460][ T5099] pgpgout 900342
[ 3414.807127][ T5099] pgfault 1580850
[ 3414.810794][ T5099] pgmajfault 373758
[ 3414.832489][ T5099] inactive_anon 4096
[ 3414.838807][ T5099] active_anon 0
[ 3414.842664][ T5099] inactive_file 0
[ 3414.846951][ T5099] active_file 0
[ 3414.850436][ T5099] unevictable 0
[ 3414.853907][ T5099] hierarchical_memory_limit 314572800
[ 3414.860062][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3414.866641][ T5099] total_cache 0
[ 3414.870126][ T5099] total_rss 4096
[ 3414.873663][ T5099] total_rss_huge 0
[ 3414.879398][ T5099] total_shmem 0
[ 3414.886689][ T5099] total_mapped_file 0
[ 3414.894731][ T5099] total_dirty 0
[ 3414.898211][ T5099] total_writeback 0
[ 3414.902019][ T5099] total_workingset_refault_anon 388649
[ 3414.908032][ T5099] total_workingset_refault_file 25
[ 3414.913148][ T5099] total_swap 2056192
[ 3414.917474][ T5099] total_swapcached 4096
[ 3414.921636][ T5099] total_pgpgin 900343
[ 3414.926516][ T5099] total_pgpgout 900342
[ 3414.930593][ T5099] total_pgfault 1580850
[ 3414.938811][ T5099] total_pgmajfault 373758
[ 3414.943177][ T5099] total_inactive_anon 4096
[ 3414.949335][ T5099] total_active_anon 0
[ 3414.953335][ T5099] total_inactive_file 0
[ 3414.958215][ T5099] total_active_file 0
[ 3414.962211][ T5099] total_unevictable 0
[ 3414.976495][ T5099] anon_cost 0
[ 3414.980341][ T5099] file_cost 0
23:31:13 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1be}}}]}]}}]}, 0x74}}, 0x0)

[ 3414.983640][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9162,uid=0
[ 3414.999806][ T5099] Memory cgroup out of memory: Killed process 9162 (syz-executor.0) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3415.200002][ T9165] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3415.224474][ T9165] CPU: 0 PID: 9165 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3415.234769][ T9165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3415.244821][ T9165] Call Trace:
[ 3415.248096][ T9165]  <TASK>
[ 3415.251018][ T9165]  dump_stack_lvl+0x1e7/0x2e0
[ 3415.255702][ T9165]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3415.260892][ T9165]  ? __pfx__printk+0x10/0x10
[ 3415.265472][ T9165]  ? ___ratelimit+0x4c4/0x670
[ 3415.270149][ T9165]  ? __pfx____ratelimit+0x10/0x10
[ 3415.275175][ T9165]  dump_header+0xda/0x6a0
[ 3415.279506][ T9165]  oom_kill_process+0x3a7/0x930
[ 3415.284366][ T9165]  out_of_memory+0xf67/0x1320
[ 3415.289082][ T9165]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3415.294714][ T9165]  ? __pfx___mutex_lock+0x10/0x10
[ 3415.299913][ T9165]  ? __pfx_out_of_memory+0x10/0x10
[ 3415.305027][ T9165]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3415.310567][ T9165]  ? __pfx_lock_release+0x10/0x10
[ 3415.315935][ T9165]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3415.321996][ T9165]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3415.327188][ T9165]  ? mem_cgroup_iter+0x422/0x560
[ 3415.332122][ T9165]  try_charge_memcg+0xda2/0x18a0
[ 3415.337052][ T9165]  ? mark_lock+0x9a/0x350
[ 3415.341389][ T9165]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3415.346774][ T9165]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3415.352926][ T9165]  charge_memcg+0xa2/0x160
[ 3415.357343][ T9165]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3415.363410][ T9165]  __read_swap_cache_async+0x480/0x8b0
[ 3415.368863][ T9165]  ? mark_lock+0x9a/0x350
[ 3415.373189][ T9165]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3415.379173][ T9165]  swap_cluster_readahead+0x67c/0x810
[ 3415.384549][ T9165]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3415.390443][ T9165]  ? __pfx_lock_release+0x10/0x10
[ 3415.395472][ T9165]  ? xas_descend+0x37e/0x470
[ 3415.400070][ T9165]  swapin_readahead+0x1ea/0x1070
[ 3415.405002][ T9165]  ? filemap_get_entry+0x127/0x4e0
[ 3415.410119][ T9165]  ? __pfx_swapin_readahead+0x10/0x10
[ 3415.415492][ T9165]  ? __filemap_get_folio+0x935/0xbc0
[ 3415.420777][ T9165]  ? swap_cache_get_folio+0x9f/0x570
[ 3415.426060][ T9165]  do_swap_page+0x791/0x3f40
[ 3415.430641][ T9165]  ? __lock_acquire+0x1345/0x1fd0
[ 3415.435665][ T9165]  ? rcu_is_watching+0x15/0xb0
[ 3415.440433][ T9165]  ? do_swap_page+0x154/0x3f40
[ 3415.445191][ T9165]  ? __pfx_do_swap_page+0x10/0x10
[ 3415.450206][ T9165]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3415.455837][ T9165]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3415.461643][ T9165]  ? __pfx_validate_chain+0x10/0x10
[ 3415.466840][ T9165]  __handle_mm_fault+0x15e8/0x72d0
[ 3415.471968][ T9165]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3415.477428][ T9165]  ? mt_find+0x226/0x850
[ 3415.481665][ T9165]  ? __pfx_lock_release+0x10/0x10
[ 3415.486699][ T9165]  ? mt_find+0x62d/0x850
[ 3415.490944][ T9165]  ? mt_find+0x226/0x850
[ 3415.495195][ T9165]  ? find_vma+0x142/0x1c0
[ 3415.499517][ T9165]  ? __pfx_find_vma+0x10/0x10
[ 3415.504187][ T9165]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3415.510165][ T9165]  handle_mm_fault+0x3c1/0x8a0
[ 3415.514951][ T9165]  exc_page_fault+0x2ad/0x870
[ 3415.519660][ T9165]  asm_exc_page_fault+0x26/0x30
[ 3415.524521][ T9165] RIP: 0010:__get_user_8+0x11/0x20
[ 3415.529638][ T9165] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3415.549238][ T9165] RSP: 0000:ffffc900031ffd78 EFLAGS: 00050206
[ 3415.555298][ T9165] RAX: 00007f30cbf26fe8 RBX: ffff888015f56e78 RCX: ffffc900031ffc03
[ 3415.563258][ T9165] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3415.571231][ T9165] RBP: ffffc900031ffec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3415.579215][ T9165] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc900031ffd80
[ 3415.587200][ T9165] R13: ffffc900031fffd8 R14: dffffc0000000000 R15: ffff888015f55940
[ 3415.595192][ T9165]  __rseq_handle_notify_resume+0x158/0x1490
[ 3415.601108][ T9165]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3415.607707][ T9165]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3415.613524][ T9165]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3415.619197][ T9165]  exc_page_fault+0x587/0x870
[ 3415.623879][ T9165]  asm_exc_page_fault+0x26/0x30
[ 3415.628723][ T9165] RIP: 0033:0x7f30cb234b70
[ 3415.633132][ T9165] Code: 77 0b ca 00 01 e9 3f ff ff ff a8 10 74 0c c6 05 66 0b ca 00 01 e9 2f ff ff ff c6 05 5d 0b ca 00 01 e9 23 ff ff ff 0f 1f 40 00 <0f> b6 05 4e 0b ca 00 84 c0 74 0b 0f b6 05 32 0b ca 00 84 c0 74 0a
[ 3415.652734][ T9165] RSP: 002b:00007f30cbf26178 EFLAGS: 00010246
[ 3415.658797][ T9165] RAX: 00007f30cbf266c0 RBX: 00007f30cbf266c0 RCX: 00007f30cb252386
[ 3415.666763][ T9165] RDX: 0000000000000000 RSI: 00007f30cbf26fb0 RDI: 00007f30cb3abf80
[ 3415.674728][ T9165] RBP: 00007f30cb3abf80 R08: 0000000000000000 R09: 00007f30cb4cfa47
[ 3415.682689][ T9165] R10: 0000000000000008 R11: 0000000000000246 R12: ffffffffffffffb0
[ 3415.690652][ T9165] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3415.698675][ T9165]  </TASK>
[ 3415.772102][ T9165] memory: usage 307200kB, limit 307200kB, failcnt 563216
[ 3415.887503][ T9165] memory+swap: usage 309200kB, limit 9007199254740988kB, failcnt 0
[ 3415.900732][ T9165] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3415.922012][ T9165] Memory cgroup stats for /syz0:
[ 3415.922156][ T9165] cache 0
[ 3415.946037][ T9165] rss 4096
[ 3415.949116][ T9165] rss_huge 0
[ 3415.961623][ T9165] shmem 0
[ 3415.968337][ T9165] mapped_file 0
[ 3415.971836][ T9165] dirty 0
[ 3415.980714][ T9165] writeback 0
[ 3415.989987][ T9165] workingset_refault_anon 388808
[ 3415.995515][ T9165] workingset_refault_file 25
[ 3416.000138][ T9165] swap 2048000
[ 3416.034236][ T9165] swapcached 4096
[ 3416.037926][ T9165] pgpgin 900516
[ 3416.041390][ T9165] pgpgout 900515
[ 3416.063480][ T9165] pgfault 1581108
[ 3416.081270][ T9165] pgmajfault 373917
[ 3416.086090][ T9165] inactive_anon 0
[ 3416.089786][ T9165] active_anon 4096
[ 3416.093501][ T9165] inactive_file 0
[ 3416.102336][ T9165] active_file 0
[ 3416.107829][ T9165] unevictable 0
[ 3416.111401][ T9165] hierarchical_memory_limit 314572800
[ 3416.117682][ T9165] hierarchical_memsw_limit 9223372036854771712
[ 3416.124348][ T9165] total_cache 0
[ 3416.127876][ T9165] total_rss 4096
[ 3416.131452][ T9165] total_rss_huge 0
[ 3416.135938][ T9165] total_shmem 0
[ 3416.140224][ T9165] total_mapped_file 0
[ 3416.144912][ T9165] total_dirty 0
[ 3416.148466][ T9165] total_writeback 0
[ 3416.152392][ T9165] total_workingset_refault_anon 388808
[ 3416.159301][ T9165] total_workingset_refault_file 25
[ 3416.165988][ T9165] total_swap 2048000
[ 3416.170066][ T9165] total_swapcached 4096
[ 3416.175023][ T9165] total_pgpgin 900516
[ 3416.179105][ T9165] total_pgpgout 900515
[ 3416.183264][ T9165] total_pgfault 1581108
[ 3416.188349][ T9165] total_pgmajfault 373917
[ 3416.192783][ T9165] total_inactive_anon 0
[ 3416.197861][ T9165] total_active_anon 4096
[ 3416.202209][ T9165] total_inactive_file 0
[ 3416.208628][ T9165] total_active_file 0
23:31:14 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1ca}}}]}]}}]}, 0x74}}, 0x0)

[ 3416.212709][ T9165] total_unevictable 0
[ 3416.217451][ T9165] anon_cost 0
[ 3416.220839][ T9165] file_cost 0
[ 3416.229597][ T9165] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9164,uid=0
[ 3416.245935][ T9165] Memory cgroup out of memory: Killed process 9164 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3416.406033][ T9166] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3416.418948][ T9166] CPU: 0 PID: 9166 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3416.428979][ T9166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3416.439059][ T9166] Call Trace:
[ 3416.442338][ T9166]  <TASK>
[ 3416.445264][ T9166]  dump_stack_lvl+0x1e7/0x2e0
[ 3416.449948][ T9166]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3416.455140][ T9166]  ? __pfx__printk+0x10/0x10
[ 3416.459718][ T9166]  ? ___ratelimit+0x4c4/0x670
[ 3416.464421][ T9166]  ? __pfx____ratelimit+0x10/0x10
[ 3416.469445][ T9166]  dump_header+0xda/0x6a0
[ 3416.473772][ T9166]  oom_kill_process+0x3a7/0x930
[ 3416.478619][ T9166]  out_of_memory+0xf67/0x1320
[ 3416.483292][ T9166]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3416.488919][ T9166]  ? __pfx___mutex_lock+0x10/0x10
[ 3416.493946][ T9166]  ? __pfx_out_of_memory+0x10/0x10
[ 3416.499072][ T9166]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3416.504613][ T9166]  ? __pfx_lock_release+0x10/0x10
[ 3416.509633][ T9166]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3416.515698][ T9166]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3416.520897][ T9166]  ? mem_cgroup_iter+0x422/0x560
[ 3416.525834][ T9166]  try_charge_memcg+0xda2/0x18a0
[ 3416.530765][ T9166]  ? mark_lock+0x9a/0x350
[ 3416.535109][ T9166]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3416.540514][ T9166]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3416.546702][ T9166]  charge_memcg+0xa2/0x160
[ 3416.551213][ T9166]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3416.557291][ T9166]  __read_swap_cache_async+0x480/0x8b0
[ 3416.562754][ T9166]  ? mark_lock+0x9a/0x350
[ 3416.567089][ T9166]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3416.573078][ T9166]  swap_cluster_readahead+0x67c/0x810
[ 3416.578454][ T9166]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3416.584350][ T9166]  ? __pfx_lock_release+0x10/0x10
[ 3416.589373][ T9166]  ? xas_descend+0x37e/0x470
[ 3416.593977][ T9166]  swapin_readahead+0x1ea/0x1070
[ 3416.598930][ T9166]  ? filemap_get_entry+0x127/0x4e0
[ 3416.604065][ T9166]  ? __pfx_swapin_readahead+0x10/0x10
[ 3416.609447][ T9166]  ? __filemap_get_folio+0x935/0xbc0
[ 3416.614731][ T9166]  ? swap_cache_get_folio+0x9f/0x570
[ 3416.620020][ T9166]  do_swap_page+0x791/0x3f40
[ 3416.624617][ T9166]  ? rcu_is_watching+0x15/0xb0
[ 3416.629388][ T9166]  ? do_swap_page+0x154/0x3f40
[ 3416.634146][ T9166]  ? __pfx_do_swap_page+0x10/0x10
[ 3416.639192][ T9166]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3416.644664][ T9166]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3416.650500][ T9166]  __handle_mm_fault+0x15e8/0x72d0
[ 3416.655641][ T9166]  ? reacquire_held_locks+0x3eb/0x690
[ 3416.661014][ T9166]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3416.666482][ T9166]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3416.672210][ T9166]  ? mtree_range_walk+0x6fd/0x8e0
[ 3416.677237][ T9166]  ? lock_vma_under_rcu+0x18a/0x730
[ 3416.682431][ T9166]  ? __pfx_lock_release+0x10/0x10
[ 3416.687449][ T9166]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3416.692656][ T9166]  ? lock_vma_under_rcu+0x18a/0x730
[ 3416.697856][ T9166]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3416.703563][ T9166]  handle_mm_fault+0x3c1/0x8a0
[ 3416.708331][ T9166]  exc_page_fault+0x456/0x870
[ 3416.713010][ T9166]  asm_exc_page_fault+0x26/0x30
[ 3416.717855][ T9166] RIP: 0033:0x7f30cb2521c8
[ 3416.722267][ T9166] Code: b8 cb 00 00 00 0f 05 3d 00 f0 ff ff 77 54 f6 45 08 02 75 26 31 c0 48 8b 54 24 68 64 48 2b 14 25 28 00 00 00 75 5c 48 83 c4 70 <5b> 5d 41 5c 41 5d 41 5e c3 0f 1f 80 00 00 00 00 41 80 3c 24 00 74
[ 3416.741877][ T9166] RSP: 002b:00007f30cb4cf9c0 EFLAGS: 00010206
[ 3416.747944][ T9166] RAX: 0000000000000000 RBX: 00007f30cbf266c0 RCX: 00007f30cb2a9b99
[ 3416.755911][ T9166] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3416.763870][ T9166] RBP: 00007f30cb4cfc90 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3416.771831][ T9166] R10: 0000000000000008 R11: 0000000000000202 R12: 00007f30cb4cfa46
[ 3416.779805][ T9166] R13: 0000000000000000 R14: 00007f30cb4cfa47 R15: 00007f30cb4cfa48
[ 3416.787785][ T9166]  </TASK>
[ 3416.793722][ T9166] memory: usage 307200kB, limit 307200kB, failcnt 563780
[ 3416.802268][ T9166] memory+swap: usage 309168kB, limit 9007199254740988kB, failcnt 0
[ 3416.810850][ T9166] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3416.818407][ T9166] Memory cgroup stats for /syz0:
[ 3416.818614][ T9166] cache 0
[ 3416.835990][ T9166] rss 0
[ 3416.851478][ T9166] rss_huge 0
[ 3416.855391][ T9166] shmem 0
[ 3416.858362][ T9166] mapped_file 0
[ 3416.861835][ T9166] dirty 0
[ 3416.865793][ T9166] writeback 0
[ 3416.869098][ T9166] workingset_refault_anon 388916
[ 3416.874692][ T9166] workingset_refault_file 25
[ 3416.879297][ T9166] swap 2015232
[ 3416.882672][ T9166] swapcached 4096
[ 3416.888044][ T9166] pgpgin 900639
[ 3416.891523][ T9166] pgpgout 900638
[ 3416.896821][ T9166] pgfault 1581297
[ 3416.900920][ T9166] pgmajfault 374022
[ 3416.909283][ T9166] inactive_anon 0
[ 3416.918446][ T9166] active_anon 0
[ 3416.921944][ T9166] inactive_file 0
[ 3416.927580][ T9166] active_file 0
[ 3416.931066][ T9166] unevictable 0
[ 3416.935288][ T9166] hierarchical_memory_limit 314572800
[ 3416.940673][ T9166] hierarchical_memsw_limit 9223372036854771712
[ 3416.947546][ T9166] total_cache 0
[ 3416.951026][ T9166] total_rss 0
[ 3416.955387][ T9166] total_rss_huge 0
[ 3416.959127][ T9166] total_shmem 0
[ 3416.962603][ T9166] total_mapped_file 0
[ 3416.967558][ T9166] total_dirty 0
[ 3416.971034][ T9166] total_writeback 0
[ 3416.983341][ T9166] total_workingset_refault_anon 388916
[ 3416.989388][ T9166] total_workingset_refault_file 25
[ 3416.995170][ T9166] total_swap 2015232
[ 3416.999079][ T9166] total_swapcached 4096
[ 3417.003237][ T9166] total_pgpgin 900639
[ 3417.010134][ T9166] total_pgpgout 900638
[ 3417.030648][ T9166] total_pgfault 1581297
[ 3417.043227][ T9166] total_pgmajfault 374022
[ 3417.054315][ T9166] total_inactive_anon 0
[ 3417.058509][ T9166] total_active_anon 0
[ 3417.062496][ T9166] total_inactive_file 0
[ 3417.067668][ T9166] total_active_file 0
[ 3417.071726][ T9166] total_unevictable 0
[ 3417.076335][ T9166] anon_cost 0
23:31:15 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x226}}}]}]}}]}, 0x74}}, 0x0)

[ 3417.079638][ T9166] file_cost 0
[ 3417.082922][ T9166] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9166,uid=0
[ 3417.099034][ T9166] Memory cgroup out of memory: Killed process 9166 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3417.365634][ T9168] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3417.388441][ T9168] CPU: 0 PID: 9168 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3417.398485][ T9168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3417.408555][ T9168] Call Trace:
[ 3417.411838][ T9168]  <TASK>
[ 3417.414764][ T9168]  dump_stack_lvl+0x1e7/0x2e0
[ 3417.419446][ T9168]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3417.424641][ T9168]  ? __pfx__printk+0x10/0x10
[ 3417.429219][ T9168]  ? ___ratelimit+0x4c4/0x670
[ 3417.433894][ T9168]  ? __pfx____ratelimit+0x10/0x10
[ 3417.438926][ T9168]  dump_header+0xda/0x6a0
[ 3417.443262][ T9168]  oom_kill_process+0x3a7/0x930
[ 3417.448114][ T9168]  out_of_memory+0xf67/0x1320
[ 3417.452789][ T9168]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3417.458418][ T9168]  ? __pfx___mutex_lock+0x10/0x10
[ 3417.463441][ T9168]  ? __pfx_out_of_memory+0x10/0x10
[ 3417.468559][ T9168]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3417.474106][ T9168]  ? __pfx_lock_release+0x10/0x10
[ 3417.479129][ T9168]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3417.485190][ T9168]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3417.490383][ T9168]  ? mem_cgroup_iter+0x422/0x560
[ 3417.495319][ T9168]  try_charge_memcg+0xda2/0x18a0
[ 3417.500247][ T9168]  ? mark_lock+0x9a/0x350
[ 3417.504583][ T9168]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3417.509976][ T9168]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3417.516128][ T9168]  charge_memcg+0xa2/0x160
[ 3417.520543][ T9168]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3417.526607][ T9168]  __read_swap_cache_async+0x480/0x8b0
[ 3417.532061][ T9168]  ? mark_lock+0x9a/0x350
[ 3417.536390][ T9168]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3417.542380][ T9168]  swap_cluster_readahead+0x67c/0x810
[ 3417.547758][ T9168]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3417.553656][ T9168]  ? __pfx_lock_release+0x10/0x10
[ 3417.558678][ T9168]  ? xas_descend+0x37e/0x470
[ 3417.563290][ T9168]  swapin_readahead+0x1ea/0x1070
[ 3417.568249][ T9168]  ? filemap_get_entry+0x127/0x4e0
[ 3417.573376][ T9168]  ? __pfx_swapin_readahead+0x10/0x10
[ 3417.578762][ T9168]  ? __filemap_get_folio+0x935/0xbc0
[ 3417.584062][ T9168]  ? swap_cache_get_folio+0x9f/0x570
[ 3417.589367][ T9168]  do_swap_page+0x791/0x3f40
[ 3417.593963][ T9168]  ? __lock_acquire+0x1345/0x1fd0
[ 3417.599004][ T9168]  ? rcu_is_watching+0x15/0xb0
[ 3417.603777][ T9168]  ? do_swap_page+0x154/0x3f40
[ 3417.608536][ T9168]  ? __pfx_do_swap_page+0x10/0x10
[ 3417.613559][ T9168]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3417.619016][ T9168]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3417.624819][ T9168]  ? __pfx_validate_chain+0x10/0x10
[ 3417.630015][ T9168]  __handle_mm_fault+0x15e8/0x72d0
[ 3417.635150][ T9168]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3417.640621][ T9168]  ? mt_find+0x226/0x850
[ 3417.644871][ T9168]  ? __pfx_lock_release+0x10/0x10
[ 3417.649910][ T9168]  ? mt_find+0x62d/0x850
[ 3417.654150][ T9168]  ? mt_find+0x226/0x850
[ 3417.658431][ T9168]  ? find_vma+0x142/0x1c0
[ 3417.662770][ T9168]  ? __pfx_find_vma+0x10/0x10
[ 3417.667450][ T9168]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3417.673441][ T9168]  handle_mm_fault+0x3c1/0x8a0
[ 3417.678221][ T9168]  exc_page_fault+0x2ad/0x870
[ 3417.682910][ T9168]  asm_exc_page_fault+0x26/0x30
[ 3417.687764][ T9168] RIP: 0010:__get_user_8+0x11/0x20
[ 3417.692875][ T9168] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3417.712527][ T9168] RSP: 0000:ffffc900032afd78 EFLAGS: 00050202
[ 3417.718599][ T9168] RAX: 00005555559c3da8 RBX: ffff888039391538 RCX: ffffc900032afc03
[ 3417.726573][ T9168] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3417.734557][ T9168] RBP: ffffc900032afec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3417.742536][ T9168] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc900032afd80
[ 3417.750519][ T9168] R13: ffffc900032affd8 R14: dffffc0000000000 R15: ffff888039390000
[ 3417.758516][ T9168]  __rseq_handle_notify_resume+0x158/0x1490
[ 3417.764441][ T9168]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3417.770787][ T9168]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3417.776608][ T9168]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3417.782249][ T9168]  exc_page_fault+0x587/0x870
[ 3417.786939][ T9168]  asm_exc_page_fault+0x26/0x30
[ 3417.791791][ T9168] RIP: 0033:0x7f30cb2a9ba0
[ 3417.796203][ T9168] Code: fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 48 85 c0 7c 18 74 01 <c3> 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 b8 3c 00 00 00 0f 05
[ 3417.815819][ T9168] RSP: 002b:00007f30cb4cf918 EFLAGS: 00010202
[ 3417.821924][ T9168] RAX: 0000000000007273 RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3417.829902][ T9168] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3417.837877][ T9168] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3417.845855][ T9168] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3417.853832][ T9168] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3417.861812][ T9168]  </TASK>
[ 3417.892208][ T9168] memory: usage 307200kB, limit 307200kB, failcnt 564312
[ 3417.907775][ T9168] memory+swap: usage 309192kB, limit 9007199254740988kB, failcnt 0
[ 3417.925495][ T9168] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3417.932825][ T9168] Memory cgroup stats for /syz0:
[ 3417.932960][ T9168] cache 0
[ 3417.958101][ T9168] rss 4096
[ 3417.961167][ T9168] rss_huge 0
[ 3417.972402][ T9168] shmem 0
[ 3417.977637][ T9168] mapped_file 0
[ 3417.981123][ T9168] dirty 0
[ 3417.984846][ T9168] writeback 0
[ 3417.988184][ T9168] workingset_refault_anon 389053
[ 3417.993124][ T9168] workingset_refault_file 25
[ 3417.998959][ T9168] swap 2039808
[ 3418.002361][ T9168] swapcached 4096
[ 3418.007056][ T9168] pgpgin 900789
[ 3418.010564][ T9168] pgpgout 900788
[ 3418.014888][ T9168] pgfault 1581506
[ 3418.018563][ T9168] pgmajfault 374142
[ 3418.022366][ T9168] inactive_anon 0
[ 3418.029800][ T9168] active_anon 4096
[ 3418.035235][ T9168] inactive_file 0
[ 3418.038886][ T9168] active_file 0
[ 3418.042349][ T9168] unevictable 0
[ 3418.046573][ T9168] hierarchical_memory_limit 314572800
[ 3418.053687][ T9168] hierarchical_memsw_limit 9223372036854771712
[ 3418.060518][ T9168] total_cache 0
[ 3418.064320][ T9168] total_rss 4096
[ 3418.067873][ T9168] total_rss_huge 0
[ 3418.071601][ T9168] total_shmem 0
[ 3418.085587][ T9168] total_mapped_file 0
[ 3418.089926][ T9168] total_dirty 0
[ 3418.093404][ T9168] total_writeback 0
[ 3418.097447][ T9168] total_workingset_refault_anon 389053
[ 3418.102936][ T9168] total_workingset_refault_file 25
[ 3418.108299][ T9168] total_swap 2039808
[ 3418.112205][ T9168] total_swapcached 4096
[ 3418.116612][ T9168] total_pgpgin 900789
[ 3418.120617][ T9168] total_pgpgout 900788
[ 3418.131086][ T9168] total_pgfault 1581506
[ 3418.142019][ T9168] total_pgmajfault 374142
[ 3418.147403][ T9168] total_inactive_anon 0
[ 3418.161614][ T9168] total_active_anon 4096
[ 3418.174172][ T9168] total_inactive_file 0
[ 3418.178357][ T9168] total_active_file 0
[ 3418.184973][ T9168] total_unevictable 0
[ 3418.188981][ T9168] anon_cost 0
[ 3418.192274][ T9168] file_cost 0
23:31:16 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2be}}}]}]}}]}, 0x74}}, 0x0)

[ 3418.209352][ T9168] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9168,uid=0
[ 3418.225945][ T9168] Memory cgroup out of memory: Killed process 9168 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3418.437410][ T9171] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3418.504173][ T9171] CPU: 1 PID: 9171 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3418.514209][ T9171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3418.524276][ T9171] Call Trace:
[ 3418.527565][ T9171]  <TASK>
[ 3418.530509][ T9171]  dump_stack_lvl+0x1e7/0x2e0
[ 3418.535212][ T9171]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3418.540421][ T9171]  ? __pfx__printk+0x10/0x10
[ 3418.545010][ T9171]  ? ___ratelimit+0x4c4/0x670
[ 3418.549693][ T9171]  ? __pfx____ratelimit+0x10/0x10
[ 3418.554719][ T9171]  dump_header+0xda/0x6a0
[ 3418.559313][ T9171]  oom_kill_process+0x3a7/0x930
[ 3418.564264][ T9171]  out_of_memory+0xf67/0x1320
[ 3418.568960][ T9171]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3418.574594][ T9171]  ? __pfx___mutex_lock+0x10/0x10
[ 3418.579619][ T9171]  ? __pfx_out_of_memory+0x10/0x10
[ 3418.584746][ T9171]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3418.590304][ T9171]  ? __pfx_lock_release+0x10/0x10
[ 3418.595356][ T9171]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3418.601431][ T9171]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3418.606627][ T9171]  ? mem_cgroup_iter+0x422/0x560
[ 3418.611571][ T9171]  try_charge_memcg+0xda2/0x18a0
[ 3418.616511][ T9171]  ? mark_lock+0x9a/0x350
[ 3418.620860][ T9171]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3418.626249][ T9171]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3418.632411][ T9171]  charge_memcg+0xa2/0x160
[ 3418.636834][ T9171]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3418.642910][ T9171]  __read_swap_cache_async+0x480/0x8b0
[ 3418.648368][ T9171]  ? mark_lock+0x9a/0x350
[ 3418.652695][ T9171]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3418.658677][ T9171]  swap_cluster_readahead+0x67c/0x810
[ 3418.664068][ T9171]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3418.669983][ T9171]  ? __pfx_lock_release+0x10/0x10
[ 3418.675012][ T9171]  ? xas_descend+0x37e/0x470
[ 3418.679620][ T9171]  swapin_readahead+0x1ea/0x1070
[ 3418.684558][ T9171]  ? filemap_get_entry+0x127/0x4e0
[ 3418.689678][ T9171]  ? __pfx_swapin_readahead+0x10/0x10
[ 3418.695052][ T9171]  ? __filemap_get_folio+0x935/0xbc0
[ 3418.700336][ T9171]  ? swap_cache_get_folio+0x9f/0x570
[ 3418.705622][ T9171]  do_swap_page+0x791/0x3f40
[ 3418.710208][ T9171]  ? rcu_is_watching+0x15/0xb0
[ 3418.714994][ T9171]  ? do_swap_page+0x154/0x3f40
[ 3418.719766][ T9171]  ? __pfx_do_swap_page+0x10/0x10
[ 3418.724813][ T9171]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3418.730278][ T9171]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3418.736094][ T9171]  __handle_mm_fault+0x15e8/0x72d0
[ 3418.741223][ T9171]  ? reacquire_held_locks+0x3eb/0x690
[ 3418.746589][ T9171]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3418.752050][ T9171]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3418.757774][ T9171]  ? mtree_range_walk+0x6fd/0x8e0
[ 3418.762796][ T9171]  ? lock_vma_under_rcu+0x18a/0x730
[ 3418.767994][ T9171]  ? __pfx_lock_release+0x10/0x10
[ 3418.773016][ T9171]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3418.778226][ T9171]  ? lock_vma_under_rcu+0x18a/0x730
[ 3418.783418][ T9171]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3418.788962][ T9171]  handle_mm_fault+0x3c1/0x8a0
[ 3418.793726][ T9171]  exc_page_fault+0x456/0x870
[ 3418.798407][ T9171]  asm_exc_page_fault+0x26/0x30
[ 3418.803253][ T9171] RIP: 0033:0x7f30cb234b70
[ 3418.807660][ T9171] Code: 77 0b ca 00 01 e9 3f ff ff ff a8 10 74 0c c6 05 66 0b ca 00 01 e9 2f ff ff ff c6 05 5d 0b ca 00 01 e9 23 ff ff ff 0f 1f 40 00 <0f> b6 05 4e 0b ca 00 84 c0 74 0b 0f b6 05 32 0b ca 00 84 c0 74 0a
[ 3418.827265][ T9171] RSP: 002b:00007f30cbf26178 EFLAGS: 00010246
[ 3418.833348][ T9171] RAX: 00007f30cbf266c0 RBX: 00007f30cbf266c0 RCX: 00007f30cb252386
[ 3418.841597][ T9171] RDX: 0000000000000000 RSI: 00007f30cbf26fb0 RDI: 00007f30cb3abf80
[ 3418.850020][ T9171] RBP: 00007f30cb3abf80 R08: 0000000000000000 R09: 00007f30cb4cfa47
[ 3418.858013][ T9171] R10: 0000000000000008 R11: 0000000000000246 R12: ffffffffffffffb0
[ 3418.865990][ T9171] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3418.874010][ T9171]  </TASK>
[ 3418.885693][ T9171] memory: usage 307200kB, limit 307200kB, failcnt 564913
[ 3418.892770][ T9171] memory+swap: usage 309192kB, limit 9007199254740988kB, failcnt 0
[ 3418.907951][ T9171] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3418.928552][ T9171] Memory cgroup stats for /syz0:
[ 3418.928658][ T9171] cache 0
[ 3418.946875][ T9171] rss 0
[ 3418.949704][ T9171] rss_huge 0
[ 3418.952897][ T9171] shmem 0
[ 3418.976286][ T9171] mapped_file 0
[ 3418.979803][ T9171] dirty 0
[ 3418.982749][ T9171] writeback 0
[ 3419.002666][ T9171] workingset_refault_anon 389208
[ 3419.024944][ T9171] workingset_refault_file 25
[ 3419.039439][ T9171] swap 2039808
[ 3419.043304][ T9171] swapcached 4096
[ 3419.056922][ T9171] pgpgin 900956
[ 3419.060508][ T9171] pgpgout 900955
[ 3419.089592][ T9171] pgfault 1581755
[ 3419.093284][ T9171] pgmajfault 374296
[ 3419.107357][ T9171] inactive_anon 0
[ 3419.135110][ T9171] active_anon 0
[ 3419.141370][ T9171] inactive_file 0
[ 3419.146858][ T9171] active_file 0
[ 3419.150417][ T9171] unevictable 0
[ 3419.154135][ T9171] hierarchical_memory_limit 314572800
[ 3419.159604][ T9171] hierarchical_memsw_limit 9223372036854771712
[ 3419.166303][ T9171] total_cache 0
[ 3419.169825][ T9171] total_rss 0
[ 3419.173142][ T9171] total_rss_huge 0
[ 3419.178841][ T9171] total_shmem 0
[ 3419.182410][ T9171] total_mapped_file 0
[ 3419.187115][ T9171] total_dirty 0
[ 3419.190648][ T9171] total_writeback 0
[ 3419.194771][ T9171] total_workingset_refault_anon 389208
[ 3419.200330][ T9171] total_workingset_refault_file 25
[ 3419.206323][ T9171] total_swap 2039808
[ 3419.210352][ T9171] total_swapcached 4096
[ 3419.215617][ T9171] total_pgpgin 900956
[ 3419.219712][ T9171] total_pgpgout 900955
[ 3419.223871][ T9171] total_pgfault 1581755
[ 3419.228925][ T9171] total_pgmajfault 374296
[ 3419.233347][ T9171] total_inactive_anon 0
[ 3419.238432][ T9171] total_active_anon 0
[ 3419.242473][ T9171] total_inactive_file 0
[ 3419.247775][ T9171] total_active_file 0
[ 3419.252059][ T9171] total_unevictable 0
[ 3419.256715][ T9171] anon_cost 0
[ 3419.260098][ T9171] file_cost 0
[ 3419.263458][ T9171] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9170,uid=0
23:31:17 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x300}}}]}]}}]}, 0x74}}, 0x0)

[ 3419.281074][ T9171] Memory cgroup out of memory: Killed process 9170 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3419.441162][ T9172] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3419.459663][ T9172] CPU: 1 PID: 9172 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3419.469851][ T9172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3419.480170][ T9172] Call Trace:
[ 3419.483434][ T9172]  <TASK>
[ 3419.486356][ T9172]  dump_stack_lvl+0x1e7/0x2e0
[ 3419.491028][ T9172]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3419.496209][ T9172]  ? __pfx__printk+0x10/0x10
[ 3419.500776][ T9172]  ? ___ratelimit+0x4c4/0x670
[ 3419.505440][ T9172]  ? __pfx____ratelimit+0x10/0x10
[ 3419.510454][ T9172]  dump_header+0xda/0x6a0
[ 3419.514787][ T9172]  oom_kill_process+0x3a7/0x930
[ 3419.519655][ T9172]  out_of_memory+0xf67/0x1320
[ 3419.524348][ T9172]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3419.529997][ T9172]  ? __pfx___mutex_lock+0x10/0x10
[ 3419.535034][ T9172]  ? __pfx_out_of_memory+0x10/0x10
[ 3419.540149][ T9172]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3419.545690][ T9172]  ? __pfx_lock_release+0x10/0x10
[ 3419.550702][ T9172]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3419.556754][ T9172]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3419.561950][ T9172]  ? mem_cgroup_iter+0x422/0x560
[ 3419.566885][ T9172]  try_charge_memcg+0xda2/0x18a0
[ 3419.571817][ T9172]  ? mark_lock+0x9a/0x350
[ 3419.576152][ T9172]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3419.581535][ T9172]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3419.587690][ T9172]  charge_memcg+0xa2/0x160
[ 3419.592109][ T9172]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3419.598522][ T9172]  __read_swap_cache_async+0x480/0x8b0
[ 3419.603977][ T9172]  ? mark_lock+0x9a/0x350
[ 3419.608313][ T9172]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3419.614335][ T9172]  swap_cluster_readahead+0x67c/0x810
[ 3419.619808][ T9172]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3419.625876][ T9172]  ? __pfx_lock_release+0x10/0x10
[ 3419.630896][ T9172]  ? xas_descend+0x37e/0x470
[ 3419.635487][ T9172]  swapin_readahead+0x1ea/0x1070
[ 3419.640418][ T9172]  ? filemap_get_entry+0x127/0x4e0
[ 3419.645532][ T9172]  ? __pfx_swapin_readahead+0x10/0x10
[ 3419.650990][ T9172]  ? __filemap_get_folio+0x935/0xbc0
[ 3419.656275][ T9172]  ? swap_cache_get_folio+0x9f/0x570
[ 3419.661556][ T9172]  do_swap_page+0x791/0x3f40
[ 3419.666141][ T9172]  ? rcu_is_watching+0x15/0xb0
[ 3419.670907][ T9172]  ? do_swap_page+0x154/0x3f40
[ 3419.675662][ T9172]  ? __pfx_do_swap_page+0x10/0x10
[ 3419.680684][ T9172]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3419.686138][ T9172]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3419.691947][ T9172]  __handle_mm_fault+0x15e8/0x72d0
[ 3419.697075][ T9172]  ? reacquire_held_locks+0x3eb/0x690
[ 3419.702446][ T9172]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3419.708168][ T9172]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3419.713899][ T9172]  ? mtree_range_walk+0x6fd/0x8e0
[ 3419.718934][ T9172]  ? lock_vma_under_rcu+0x18a/0x730
[ 3419.724128][ T9172]  ? __pfx_lock_release+0x10/0x10
[ 3419.729145][ T9172]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3419.734374][ T9172]  ? lock_vma_under_rcu+0x18a/0x730
[ 3419.739603][ T9172]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3419.745184][ T9172]  handle_mm_fault+0x3c1/0x8a0
[ 3419.749959][ T9172]  exc_page_fault+0x456/0x870
[ 3419.754646][ T9172]  asm_exc_page_fault+0x26/0x30
[ 3419.759496][ T9172] RIP: 0033:0x7f30cb2a9ba0
[ 3419.763908][ T9172] Code: fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 48 85 c0 7c 18 74 01 <c3> 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 b8 3c 00 00 00 0f 05
[ 3419.783524][ T9172] RSP: 002b:00007f30cb4cf918 EFLAGS: 00010206
[ 3419.789594][ T9172] RAX: 0000000000007277 RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3419.797565][ T9172] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3419.805531][ T9172] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3419.813578][ T9172] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3419.821553][ T9172] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3419.829534][ T9172]  </TASK>
[ 3419.835285][ T9172] memory: usage 307200kB, limit 307200kB, failcnt 565330
[ 3419.842352][ T9172] memory+swap: usage 309164kB, limit 9007199254740988kB, failcnt 0
[ 3419.850515][ T9172] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3419.858061][ T9172] Memory cgroup stats for /syz0:
[ 3419.858161][ T9172] cache 0
[ 3419.866279][ T9172] rss 0
[ 3419.869064][ T9172] rss_huge 0
[ 3419.872278][ T9172] shmem 0
[ 3419.875457][ T9172] mapped_file 0
[ 3419.878929][ T9172] dirty 0
[ 3419.881873][ T9172] writeback 0
[ 3419.885437][ T9172] workingset_refault_anon 389298
[ 3419.890380][ T9172] workingset_refault_file 25
[ 3419.896505][ T9172] swap 2015232
[ 3419.899896][ T9172] swapcached 0
[ 3419.903287][ T9172] pgpgin 901060
[ 3419.907029][ T9172] pgpgout 901060
[ 3419.910618][ T9172] pgfault 1581921
[ 3419.914554][ T9172] pgmajfault 374379
[ 3419.918375][ T9172] inactive_anon 0
[ 3419.922013][ T9172] active_anon 0
[ 3419.926077][ T9172] inactive_file 0
[ 3419.930167][ T9172] active_file 0
[ 3419.933650][ T9172] unevictable 0
[ 3419.937330][ T9172] hierarchical_memory_limit 314572800
[ 3419.942791][ T9172] hierarchical_memsw_limit 9223372036854771712
[ 3419.949770][ T9172] total_cache 0
[ 3419.953241][ T9172] total_rss 0
[ 3419.956795][ T9172] total_rss_huge 0
[ 3419.960515][ T9172] total_shmem 0
[ 3419.964203][ T9172] total_mapped_file 0
[ 3419.968193][ T9172] total_dirty 0
[ 3419.971655][ T9172] total_writeback 0
[ 3419.975724][ T9172] total_workingset_refault_anon 389298
[ 3419.981186][ T9172] total_workingset_refault_file 25
[ 3419.986505][ T9172] total_swap 2015232
[ 3419.990399][ T9172] total_swapcached 0
[ 3419.994524][ T9172] total_pgpgin 901060
[ 3419.999511][ T9172] total_pgpgout 901060
[ 3420.003594][ T9172] total_pgfault 1581921
[ 3420.008465][ T9172] total_pgmajfault 374379
[ 3420.012801][ T9172] total_inactive_anon 0
[ 3420.017217][ T9172] total_active_anon 0
[ 3420.021227][ T9172] total_inactive_file 0
[ 3420.025617][ T9172] total_active_file 0
[ 3420.029620][ T9172] total_unevictable 0
[ 3420.034650][ T9172] anon_cost 0
[ 3420.038181][ T9172] file_cost 0
23:31:18 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x31e}}}]}]}}]}, 0x74}}, 0x0)

[ 3420.041494][ T9172] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9172,uid=0
[ 3420.057854][ T9172] Memory cgroup out of memory: Killed process 9172 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3420.226825][ T9174] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3420.237347][ T9174] CPU: 1 PID: 9174 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3420.247343][ T9174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3420.257394][ T9174] Call Trace:
[ 3420.260681][ T9174]  <TASK>
[ 3420.263615][ T9174]  dump_stack_lvl+0x1e7/0x2e0
[ 3420.268297][ T9174]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3420.273488][ T9174]  ? __pfx__printk+0x10/0x10
[ 3420.278067][ T9174]  ? ___ratelimit+0x4c4/0x670
[ 3420.282743][ T9174]  ? __pfx____ratelimit+0x10/0x10
[ 3420.287765][ T9174]  dump_header+0xda/0x6a0
[ 3420.292095][ T9174]  oom_kill_process+0x3a7/0x930
[ 3420.296947][ T9174]  out_of_memory+0xf67/0x1320
[ 3420.301629][ T9174]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3420.307261][ T9174]  ? __pfx___mutex_lock+0x10/0x10
[ 3420.312282][ T9174]  ? __pfx_out_of_memory+0x10/0x10
[ 3420.317400][ T9174]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3420.322936][ T9174]  ? __pfx_lock_release+0x10/0x10
[ 3420.327957][ T9174]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3420.334020][ T9174]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3420.339213][ T9174]  ? mem_cgroup_iter+0x422/0x560
[ 3420.344682][ T9174]  try_charge_memcg+0xda2/0x18a0
[ 3420.349643][ T9174]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3420.355006][ T9174]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3420.360717][ T9174]  ? __pfx_lock_release+0x10/0x10
[ 3420.365738][ T9174]  ? memcg_account_kmem+0x1e7/0x210
[ 3420.370941][ T9174]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3420.376741][ T9174]  __memcg_kmem_charge_page+0xe1/0x250
[ 3420.382199][ T9174]  memcg_charge_kernel_stack+0x28a/0x550
[ 3420.387832][ T9174]  dup_task_struct+0x15d/0x7d0
[ 3420.392587][ T9174]  copy_process+0x5d0/0x3fc0
[ 3420.397186][ T9174]  ? __pfx_lock_release+0x10/0x10
[ 3420.402212][ T9174]  ? __pfx_copy_process+0x10/0x10
[ 3420.407490][ T9174]  ? __might_fault+0xc5/0x120
[ 3420.412162][ T9174]  ? __asan_memset+0x23/0x50
[ 3420.416753][ T9174]  kernel_clone+0x21d/0x8d0
[ 3420.421253][ T9174]  ? __pfx_kernel_clone+0x10/0x10
[ 3420.426455][ T9174]  __se_sys_clone3+0x2cb/0x350
[ 3420.431213][ T9174]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3420.436509][ T9174]  ? do_syscall_64+0x108/0x240
[ 3420.441266][ T9174]  ? do_syscall_64+0xb4/0x240
[ 3420.445937][ T9174]  do_syscall_64+0xf9/0x240
[ 3420.450439][ T9174]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3420.456328][ T9174] RIP: 0033:0x7f30cb2a9b99
[ 3420.460734][ T9174] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3420.480331][ T9174] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3420.488737][ T9174] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3420.496701][ T9174] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3420.504663][ T9174] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3420.512639][ T9174] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3420.520601][ T9174] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3420.528577][ T9174]  </TASK>
[ 3420.554476][ T9174] memory: usage 307192kB, limit 307200kB, failcnt 565574
[ 3420.561554][ T9174] memory+swap: usage 309176kB, limit 9007199254740988kB, failcnt 0
[ 3420.594461][ T9174] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3420.606263][ T9174] Memory cgroup stats for /syz0:
[ 3420.606410][ T9174] cache 0
[ 3420.626657][ T9174] rss 20480
[ 3420.634297][ T9174] rss_huge 0
[ 3420.644880][ T9174] shmem 0
[ 3420.648744][ T9174] mapped_file 0
[ 3420.652297][ T9174] dirty 0
[ 3420.669491][ T9174] writeback 0
[ 3420.672891][ T9174] workingset_refault_anon 389392
[ 3420.684135][ T9174] workingset_refault_file 25
[ 3420.699000][ T9174] swap 2023424
[ 3420.713774][ T9174] swapcached 16384
[ 3420.724609][ T9174] pgpgin 901166
[ 3420.728257][ T9174] pgpgout 901161
[ 3420.742157][ T9174] pgfault 1582077
[ 3420.746762][ T9174] pgmajfault 374470
[ 3420.750581][ T9174] inactive_anon 20480
[ 3420.770567][ T9174] active_anon 0
[ 3420.774952][ T9174] inactive_file 0
[ 3420.778603][ T9174] active_file 0
[ 3420.782067][ T9174] unevictable 0
[ 3420.790322][ T9174] hierarchical_memory_limit 314572800
[ 3420.804162][ T9174] hierarchical_memsw_limit 9223372036854771712
[ 3420.810337][ T9174] total_cache 0
[ 3420.813799][ T9174] total_rss 20480
[ 3420.837754][ T9174] total_rss_huge 0
[ 3420.841545][ T9174] total_shmem 0
[ 3420.854312][ T9174] total_mapped_file 0
[ 3420.858327][ T9174] total_dirty 0
[ 3420.861787][ T9174] total_writeback 0
[ 3420.880854][ T9174] total_workingset_refault_anon 389392
[ 3420.900946][ T9174] total_workingset_refault_file 25
[ 3420.912777][ T9174] total_swap 2023424
[ 3420.917951][ T9174] total_swapcached 16384
[ 3420.922220][ T9174] total_pgpgin 901166
[ 3420.941830][ T9174] total_pgpgout 901161
[ 3420.946716][ T9174] total_pgfault 1582077
[ 3420.950887][ T9174] total_pgmajfault 374470
[ 3420.964541][ T9174] total_inactive_anon 20480
[ 3420.969070][ T9174] total_active_anon 0
[ 3420.973051][ T9174] total_inactive_file 0
[ 3420.990644][ T9174] total_active_file 0
[ 3421.003480][ T9174] total_unevictable 0
[ 3421.008217][ T9174] anon_cost 0
[ 3421.011517][ T9174] file_cost 0
[ 3421.018229][ T9174] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9174,uid=0
[ 3421.054761][ T9174] Memory cgroup out of memory: Killed process 9174 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:31:19 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x336}}}]}]}}]}, 0x74}}, 0x0)

[ 3421.381581][ T9177] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3421.391938][ T9177] CPU: 1 PID: 9177 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3421.401932][ T9177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3421.411990][ T9177] Call Trace:
[ 3421.415269][ T9177]  <TASK>
[ 3421.418226][ T9177]  dump_stack_lvl+0x1e7/0x2e0
[ 3421.422899][ T9177]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3421.428086][ T9177]  ? __pfx__printk+0x10/0x10
[ 3421.432667][ T9177]  ? ___ratelimit+0x4c4/0x670
[ 3421.437346][ T9177]  ? __pfx____ratelimit+0x10/0x10
[ 3421.442374][ T9177]  dump_header+0xda/0x6a0
[ 3421.446728][ T9177]  oom_kill_process+0x3a7/0x930
[ 3421.451605][ T9177]  out_of_memory+0xf67/0x1320
[ 3421.456312][ T9177]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3421.461956][ T9177]  ? __pfx___mutex_lock+0x10/0x10
[ 3421.466975][ T9177]  ? __pfx_out_of_memory+0x10/0x10
[ 3421.472140][ T9177]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3421.477686][ T9177]  ? __pfx_lock_release+0x10/0x10
[ 3421.482702][ T9177]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3421.488759][ T9177]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3421.493956][ T9177]  ? mem_cgroup_iter+0x422/0x560
[ 3421.498919][ T9177]  try_charge_memcg+0xda2/0x18a0
[ 3421.503897][ T9177]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3421.509273][ T9177]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3421.514987][ T9177]  ? __pfx_lock_release+0x10/0x10
[ 3421.520014][ T9177]  ? memcg_account_kmem+0x1e7/0x210
[ 3421.525299][ T9177]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3421.531097][ T9177]  __memcg_kmem_charge_page+0xe1/0x250
[ 3421.536560][ T9177]  memcg_charge_kernel_stack+0x28a/0x550
[ 3421.542220][ T9177]  dup_task_struct+0x15d/0x7d0
[ 3421.546985][ T9177]  copy_process+0x5d0/0x3fc0
[ 3421.551581][ T9177]  ? __pfx_lock_release+0x10/0x10
[ 3421.556614][ T9177]  ? __pfx_copy_process+0x10/0x10
[ 3421.561630][ T9177]  ? __might_fault+0xc5/0x120
[ 3421.566301][ T9177]  ? __asan_memset+0x23/0x50
[ 3421.570887][ T9177]  kernel_clone+0x21d/0x8d0
[ 3421.575384][ T9177]  ? __pfx_kernel_clone+0x10/0x10
[ 3421.580413][ T9177]  __se_sys_clone3+0x2cb/0x350
[ 3421.585171][ T9177]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3421.590455][ T9177]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3421.596442][ T9177]  ? exc_page_fault+0x587/0x870
[ 3421.601293][ T9177]  ? do_syscall_64+0xb4/0x240
[ 3421.605962][ T9177]  do_syscall_64+0xf9/0x240
[ 3421.610460][ T9177]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3421.616345][ T9177] RIP: 0033:0x7f30cb2a9b99
[ 3421.620752][ T9177] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3421.640349][ T9177] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3421.648758][ T9177] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3421.656724][ T9177] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3421.670243][ T9177] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3421.678207][ T9177] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3421.686167][ T9177] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3421.694154][ T9177]  </TASK>
[ 3421.699965][ T9177] memory: usage 307196kB, limit 307200kB, failcnt 565969
[ 3421.707218][ T9177] memory+swap: usage 309148kB, limit 9007199254740988kB, failcnt 0
[ 3421.715349][ T9177] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3421.722696][ T9177] Memory cgroup stats for /syz0:
[ 3421.722832][ T9177] cache 0
[ 3421.730939][ T9177] rss 12288
[ 3421.734229][ T9177] rss_huge 0
[ 3421.738312][ T9177] shmem 0
[ 3421.741289][ T9177] mapped_file 0
[ 3421.745083][ T9177] dirty 0
[ 3421.748046][ T9177] writeback 0
[ 3421.751328][ T9177] workingset_refault_anon 389564
[ 3421.756507][ T9177] workingset_refault_file 25
[ 3421.761190][ T9177] swap 2002944
[ 3421.764822][ T9177] swapcached 8192
[ 3421.768464][ T9177] pgpgin 901351
[ 3421.771924][ T9177] pgpgout 901348
[ 3421.775703][ T9177] pgfault 1582343
[ 3421.779340][ T9177] pgmajfault 374629
[ 3421.783146][ T9177] inactive_anon 12288
[ 3421.787403][ T9177] active_anon 0
[ 3421.790869][ T9177] inactive_file 0
[ 3421.794708][ T9177] active_file 0
[ 3421.798180][ T9177] unevictable 0
[ 3421.801640][ T9177] hierarchical_memory_limit 314572800
[ 3421.807908][ T9177] hierarchical_memsw_limit 9223372036854771712
[ 3421.814330][ T9177] total_cache 0
[ 3421.817807][ T9177] total_rss 12288
[ 3421.821435][ T9177] total_rss_huge 0
[ 3421.825349][ T9177] total_shmem 0
[ 3421.828808][ T9177] total_mapped_file 0
[ 3421.832775][ T9177] total_dirty 0
[ 3421.836431][ T9177] total_writeback 0
[ 3421.841209][ T9177] total_workingset_refault_anon 389564
[ 3421.846992][ T9177] total_workingset_refault_file 25
[ 3421.852103][ T9177] total_swap 2002944
[ 3421.856173][ T9177] total_swapcached 8192
[ 3421.860326][ T9177] total_pgpgin 901351
[ 3421.864510][ T9177] total_pgpgout 901348
[ 3421.868588][ T9177] total_pgfault 1582343
[ 3421.872744][ T9177] total_pgmajfault 374629
[ 3421.877363][ T9177] total_inactive_anon 12288
[ 3421.881868][ T9177] total_active_anon 0
[ 3421.886019][ T9177] total_inactive_file 0
[ 3421.890174][ T9177] total_active_file 0
[ 3421.894361][ T9177] total_unevictable 0
[ 3421.898349][ T9177] anon_cost 0
[ 3421.901634][ T9177] file_cost 0
[ 3421.905138][ T9177] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9177,uid=0
23:31:20 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x372}}}]}]}}]}, 0x74}}, 0x0)

[ 3421.921298][ T9177] Memory cgroup out of memory: Killed process 9177 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3422.141233][ T9179] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3422.179421][ T9179] CPU: 0 PID: 9179 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3422.189444][ T9179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3422.199587][ T9179] Call Trace:
[ 3422.202859][ T9179]  <TASK>
[ 3422.205783][ T9179]  dump_stack_lvl+0x1e7/0x2e0
[ 3422.210461][ T9179]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3422.215650][ T9179]  ? __pfx__printk+0x10/0x10
[ 3422.220227][ T9179]  ? ___ratelimit+0x4c4/0x670
[ 3422.224902][ T9179]  ? __pfx____ratelimit+0x10/0x10
[ 3422.229930][ T9179]  dump_header+0xda/0x6a0
[ 3422.234258][ T9179]  oom_kill_process+0x3a7/0x930
[ 3422.239105][ T9179]  out_of_memory+0xf67/0x1320
[ 3422.243779][ T9179]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3422.249409][ T9179]  ? __pfx___mutex_lock+0x10/0x10
[ 3422.254436][ T9179]  ? __pfx_out_of_memory+0x10/0x10
[ 3422.259550][ T9179]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3422.265097][ T9179]  ? __pfx_lock_release+0x10/0x10
[ 3422.270121][ T9179]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3422.276186][ T9179]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3422.281376][ T9179]  ? mem_cgroup_iter+0x422/0x560
[ 3422.286311][ T9179]  try_charge_memcg+0xda2/0x18a0
[ 3422.291240][ T9179]  ? mark_lock+0x9a/0x350
[ 3422.295581][ T9179]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3422.300963][ T9179]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3422.307114][ T9179]  charge_memcg+0xa2/0x160
[ 3422.311531][ T9179]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3422.317601][ T9179]  __read_swap_cache_async+0x480/0x8b0
[ 3422.323053][ T9179]  ? mark_lock+0x9a/0x350
[ 3422.327384][ T9179]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3422.333367][ T9179]  swap_cluster_readahead+0x67c/0x810
[ 3422.338752][ T9179]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3422.344642][ T9179]  ? __pfx_lock_release+0x10/0x10
[ 3422.349665][ T9179]  ? xas_descend+0x37e/0x470
[ 3422.354273][ T9179]  swapin_readahead+0x1ea/0x1070
[ 3422.359216][ T9179]  ? filemap_get_entry+0x127/0x4e0
[ 3422.364340][ T9179]  ? __pfx_swapin_readahead+0x10/0x10
[ 3422.369713][ T9179]  ? __filemap_get_folio+0x935/0xbc0
[ 3422.375004][ T9179]  ? swap_cache_get_folio+0x9f/0x570
[ 3422.380286][ T9179]  do_swap_page+0x791/0x3f40
[ 3422.384870][ T9179]  ? rcu_is_watching+0x15/0xb0
[ 3422.389637][ T9179]  ? do_swap_page+0x154/0x3f40
[ 3422.394392][ T9179]  ? __pfx_do_swap_page+0x10/0x10
[ 3422.399412][ T9179]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3422.404864][ T9179]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3422.410670][ T9179]  ? __pfx_validate_chain+0x10/0x10
[ 3422.415965][ T9179]  __handle_mm_fault+0x15e8/0x72d0
[ 3422.421100][ T9179]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3422.426566][ T9179]  ? mt_find+0x226/0x850
[ 3422.430800][ T9179]  ? __pfx_lock_release+0x10/0x10
[ 3422.435835][ T9179]  ? mt_find+0x62d/0x850
[ 3422.440072][ T9179]  ? mt_find+0x226/0x850
[ 3422.444322][ T9179]  ? find_vma+0x142/0x1c0
[ 3422.448649][ T9179]  ? __pfx_find_vma+0x10/0x10
[ 3422.453319][ T9179]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3422.459312][ T9179]  handle_mm_fault+0x3c1/0x8a0
[ 3422.464093][ T9179]  exc_page_fault+0x2ad/0x870
[ 3422.468784][ T9179]  asm_exc_page_fault+0x26/0x30
[ 3422.473634][ T9179] RIP: 0010:__put_user_4+0x11/0x20
[ 3422.478745][ T9179] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 3422.498343][ T9179] RSP: 0018:ffffc900032efbd8 EFLAGS: 00050206
[ 3422.504406][ T9179] RAX: 000000000000727d RBX: 0000000000000000 RCX: 00007f30cbf26990
[ 3422.512366][ T9179] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3422.520622][ T9179] RBP: ffffc900032efd10 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3422.528584][ T9179] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc900032efd78
[ 3422.536550][ T9179] R13: 00000000003d0f00 R14: ffffc900032efc40 R15: dffffc0000000000
[ 3422.544527][ T9179]  kernel_clone+0x363/0x8d0
[ 3422.549035][ T9179]  ? __pfx_kernel_clone+0x10/0x10
[ 3422.554094][ T9179]  __se_sys_clone3+0x2cb/0x350
[ 3422.558877][ T9179]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3422.564194][ T9179]  ? do_syscall_64+0x108/0x240
[ 3422.568971][ T9179]  ? do_syscall_64+0xb4/0x240
[ 3422.573662][ T9179]  do_syscall_64+0xf9/0x240
[ 3422.578168][ T9179]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3422.584063][ T9179] RIP: 0033:0x7f30cb2a9b99
[ 3422.588487][ T9179] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3422.608087][ T9179] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3422.616494][ T9179] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3422.624462][ T9179] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3422.632423][ T9179] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3422.640385][ T9179] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3422.648348][ T9179] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3422.656324][ T9179]  </TASK>
[ 3422.695012][ T9179] memory: usage 307200kB, limit 307200kB, failcnt 566406
[ 3422.703359][ T9179] memory+swap: usage 309168kB, limit 9007199254740988kB, failcnt 0
[ 3422.737030][ T9179] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3422.753752][ T9179] Memory cgroup stats for /syz0:
[ 3422.753889][ T9179] cache 0
[ 3422.781358][ T9179] rss 0
[ 3422.792051][ T9179] rss_huge 0
[ 3422.795952][ T9179] shmem 0
[ 3422.798913][ T9179] mapped_file 0
[ 3422.802383][ T9179] dirty 0
[ 3422.824579][ T9179] writeback 0
[ 3422.827929][ T9179] workingset_refault_anon 389719
[ 3422.832885][ T9179] workingset_refault_file 25
[ 3422.849909][ T9179] swap 2019328
[ 3422.853363][ T9179] swapcached 0
[ 3422.862407][ T9179] pgpgin 901519
[ 3422.873091][ T9179] pgpgout 901519
[ 3422.882185][ T9179] pgfault 1582593
[ 3422.891790][ T9179] pgmajfault 374780
[ 3422.901711][ T9179] inactive_anon 0
[ 3422.920226][ T9179] active_anon 0
[ 3422.923724][ T9179] inactive_file 0
[ 3422.927943][ T9179] active_file 0
[ 3422.931424][ T9179] unevictable 0
[ 3422.946047][ T9179] hierarchical_memory_limit 314572800
[ 3422.951450][ T9179] hierarchical_memsw_limit 9223372036854771712
[ 3422.964554][ T9179] total_cache 0
[ 3422.975184][ T9179] total_rss 0
[ 3422.984546][ T9179] total_rss_huge 0
[ 3422.988306][ T9179] total_shmem 0
[ 3422.991774][ T9179] total_mapped_file 0
[ 3423.008617][ T9179] total_dirty 0
[ 3423.012116][ T9179] total_writeback 0
[ 3423.030290][ T9179] total_workingset_refault_anon 389719
[ 3423.036334][ T9179] total_workingset_refault_file 25
[ 3423.041463][ T9179] total_swap 2019328
[ 3423.056955][ T9179] total_swapcached 0
[ 3423.060897][ T9179] total_pgpgin 901519
[ 3423.074522][ T9179] total_pgpgout 901519
[ 3423.078631][ T9179] total_pgfault 1582593
[ 3423.082795][ T9179] total_pgmajfault 374780
[ 3423.098445][ T9179] total_inactive_anon 0
[ 3423.102645][ T9179] total_active_anon 0
[ 3423.121184][ T9179] total_inactive_file 0
[ 3423.126367][ T9179] total_active_file 0
23:31:21 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x386}}}]}]}}]}, 0x74}}, 0x0)

[ 3423.130373][ T9179] total_unevictable 0
[ 3423.135189][ T9179] anon_cost 0
[ 3423.138500][ T9179] file_cost 0
[ 3423.141790][ T9179] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9179,uid=0
[ 3423.157718][ T9179] Memory cgroup out of memory: Killed process 9179 (syz-executor.0) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3423.330838][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3423.345892][ T5099] CPU: 0 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3423.355917][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3423.365995][ T5099] Call Trace:
[ 3423.369288][ T5099]  <TASK>
[ 3423.372227][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3423.376937][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3423.382164][ T5099]  ? __pfx__printk+0x10/0x10
[ 3423.386770][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3423.391479][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3423.396526][ T5099]  dump_header+0xda/0x6a0
[ 3423.400879][ T5099]  oom_kill_process+0x3a7/0x930
[ 3423.405761][ T5099]  out_of_memory+0xf67/0x1320
[ 3423.410463][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3423.416123][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3423.421176][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3423.426323][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3423.431889][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3423.436935][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3423.443033][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3423.448262][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3423.453224][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3423.458207][ T5099]  ? mark_lock+0x9a/0x350
[ 3423.462582][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3423.468006][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3423.474183][ T5099]  charge_memcg+0xa2/0x160
[ 3423.478624][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3423.484724][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3423.490203][ T5099]  ? mark_lock+0x9a/0x350
[ 3423.494559][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3423.500575][ T5099]  ? blk_start_plug+0x6f/0x1b0
[ 3423.505368][ T5099]  swap_cluster_readahead+0x398/0x810
[ 3423.510771][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3423.516689][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3423.521742][ T5099]  ? xas_descend+0x37e/0x470
[ 3423.526368][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3423.531326][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3423.536480][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3423.541890][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3423.547212][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3423.552524][ T5099]  do_swap_page+0x791/0x3f40
[ 3423.557140][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3423.561944][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3423.566736][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3423.571779][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3423.577260][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3423.583092][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3423.588320][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3423.593490][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3423.598983][ T5099]  ? mt_find+0x226/0x850
[ 3423.603244][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3423.608314][ T5099]  ? mt_find+0x62d/0x850
[ 3423.612573][ T5099]  ? mt_find+0x226/0x850
[ 3423.616853][ T5099]  ? find_vma+0x142/0x1c0
[ 3423.621198][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3423.625894][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3423.631906][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3423.636703][ T5099]  exc_page_fault+0x2ad/0x870
[ 3423.641413][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3423.646284][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3423.651424][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3423.671054][ T5099] RSP: 0018:ffffc90003ebfd98 EFLAGS: 00050202
[ 3423.677148][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3423.685141][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3423.693133][ T5099] RBP: ffffc90003ebfec8 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3423.701126][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfda0
[ 3423.709121][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3423.717134][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3423.723073][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3423.729441][ T5099]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3423.735188][ T5099]  syscall_exit_to_user_mode+0x113/0x360
[ 3423.740839][ T5099]  do_syscall_64+0x108/0x240
[ 3423.745438][ T5099]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3423.751345][ T5099] RIP: 0033:0x7f30cb2a91b5
[ 3423.755779][ T5099] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 3423.775414][ T5099] RSP: 002b:00007f30cb4cfcf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 3423.784124][ T5099] RAX: 0000000000000000 RBX: 000000000000727e RCX: 00007f30cb2a91b5
[ 3423.792114][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3423.800194][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3423.808192][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3423.816188][ T5099] R13: 0000000000343bcb R14: 0000000000343bcb R15: 0000000000000000
[ 3423.824458][ T5099]  </TASK>
[ 3423.832172][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 567204
[ 3423.839660][ T5099] memory+swap: usage 309164kB, limit 9007199254740988kB, failcnt 0
[ 3423.856145][ T5099] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3423.863815][ T5099] Memory cgroup stats for /syz0:
[ 3423.864569][ T5099] cache 0
[ 3423.872451][ T5099] rss 4096
[ 3423.875704][ T5099] rss_huge 0
[ 3423.878919][ T5099] shmem 0
[ 3423.881860][ T5099] mapped_file 0
[ 3423.886114][ T5099] dirty 0
[ 3423.890153][ T5099] writeback 0
[ 3423.893457][ T5099] workingset_refault_anon 389892
[ 3423.899518][ T5099] workingset_refault_file 25
[ 3423.904671][ T5099] swap 2011136
[ 3423.908060][ T5099] swapcached 4096
[ 3423.911694][ T5099] pgpgin 901705
[ 3423.916007][ T5099] pgpgout 901704
[ 3423.919579][ T5099] pgfault 1582866
[ 3423.923205][ T5099] pgmajfault 374949
[ 3423.928343][ T5099] inactive_anon 4096
[ 3423.932258][ T5099] active_anon 0
[ 3423.945673][ T5099] inactive_file 0
[ 3423.949354][ T5099] active_file 0
[ 3423.952823][ T5099] unevictable 0
[ 3423.956575][ T5099] hierarchical_memory_limit 314572800
[ 3423.961969][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3423.968903][ T5099] total_cache 0
[ 3423.981357][ T5099] total_rss 4096
[ 3423.985218][ T5099] total_rss_huge 0
[ 3423.988961][ T5099] total_shmem 0
[ 3424.008813][ T5099] total_mapped_file 0
[ 3424.012848][ T5099] total_dirty 0
[ 3424.020793][ T5099] total_writeback 0
[ 3424.025520][ T5099] total_workingset_refault_anon 389892
[ 3424.031053][ T5099] total_workingset_refault_file 25
[ 3424.036790][ T5099] total_swap 2011136
[ 3424.040712][ T5099] total_swapcached 4096
[ 3424.046294][ T5099] total_pgpgin 901705
[ 3424.050300][ T5099] total_pgpgout 901704
[ 3424.055346][ T5099] total_pgfault 1582866
[ 3424.059526][ T5099] total_pgmajfault 374949
[ 3424.063866][ T5099] total_inactive_anon 4096
[ 3424.093657][ T5099] total_active_anon 0
[ 3424.107266][ T5099] total_inactive_file 0
[ 3424.111470][ T5099] total_active_file 0
[ 3424.139193][ T5099] total_unevictable 0
[ 3424.143220][ T5099] anon_cost 0
[ 3424.161926][ T5099] file_cost 0
[ 3424.174012][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9181,uid=0
23:31:22 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3b6}}}]}]}}]}, 0x74}}, 0x0)

[ 3424.204909][ T5099] Memory cgroup out of memory: Killed process 9181 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3424.470886][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3424.484542][ T5099] CPU: 1 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3424.494570][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3424.504643][ T5099] Call Trace:
[ 3424.507931][ T5099]  <TASK>
[ 3424.510851][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3424.515519][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3424.520699][ T5099]  ? __pfx__printk+0x10/0x10
[ 3424.525268][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3424.529935][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3424.534949][ T5099]  dump_header+0xda/0x6a0
[ 3424.539263][ T5099]  oom_kill_process+0x3a7/0x930
[ 3424.544116][ T5099]  out_of_memory+0xf67/0x1320
[ 3424.548826][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3424.554480][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3424.559516][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3424.564620][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3424.570152][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3424.575163][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3424.581214][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3424.586398][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3424.591350][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3424.596284][ T5099]  ? mark_lock+0x9a/0x350
[ 3424.600652][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3424.606070][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3424.612234][ T5099]  charge_memcg+0xa2/0x160
[ 3424.616645][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3424.622705][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3424.628165][ T5099]  ? mark_lock+0x9a/0x350
[ 3424.632569][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3424.638543][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3424.643913][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3424.649821][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3424.654867][ T5099]  ? xas_descend+0x37e/0x470
[ 3424.659476][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3424.664404][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3424.669510][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3424.674885][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3424.680174][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3424.685455][ T5099]  do_swap_page+0x791/0x3f40
[ 3424.690036][ T5099]  ? __lock_acquire+0x1345/0x1fd0
[ 3424.695066][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3424.699863][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3424.704642][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3424.709675][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3424.715127][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3424.720921][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3424.726106][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3424.731224][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3424.736674][ T5099]  ? mt_find+0x226/0x850
[ 3424.740899][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3424.745938][ T5099]  ? mt_find+0x62d/0x850
[ 3424.750203][ T5099]  ? mt_find+0x226/0x850
[ 3424.754482][ T5099]  ? find_vma+0x142/0x1c0
[ 3424.758825][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3424.763503][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3424.769492][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3424.774277][ T5099]  exc_page_fault+0x2ad/0x870
[ 3424.778945][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3424.784044][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3424.789140][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3424.808749][ T5099] RSP: 0000:ffffc90003ebfd78 EFLAGS: 00050202
[ 3424.814832][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3424.822795][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3424.830751][ T5099] RBP: ffffc90003ebfec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3424.838706][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfd80
[ 3424.846765][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3424.854860][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3424.860784][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3424.867122][ T5099]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3424.872920][ T5099]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3424.878536][ T5099]  exc_page_fault+0x587/0x870
[ 3424.883203][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3424.888037][ T5099] RIP: 0033:0x7f30cb27a780
[ 3424.892435][ T5099] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 3424.912044][ T5099] RSP: 002b:00007f30cb4cfd58 EFLAGS: 00010246
[ 3424.918136][ T5099] RAX: 0000000000000086 RBX: 0000000000007280 RCX: 0000000000000000
[ 3424.926124][ T5099] RDX: 0000000040000001 RSI: 00007f30cb4cfdbc RDI: 00000000ffffffff
[ 3424.934121][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000010 R09: 00007ffc3913c0b0
[ 3424.942163][ T5099] R10: 00007ffc3913c080 R11: 00000000000a4fa6 R12: 0000000000000032
[ 3424.950135][ T5099] R13: 0000000000343fe0 R14: 0000000000343fe0 R15: 0000000000000000
[ 3424.958120][ T5099]  </TASK>
[ 3424.973383][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 567973
[ 3424.986489][ T5099] memory+swap: usage 309236kB, limit 9007199254740988kB, failcnt 0
[ 3424.994676][ T5099] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3425.001984][ T5099] Memory cgroup stats for /syz0:
[ 3425.002120][ T5099] cache 0
[ 3425.010193][ T5099] rss 4096
[ 3425.013221][ T5099] rss_huge 0
[ 3425.018000][ T5099] shmem 0
[ 3425.020960][ T5099] mapped_file 0
[ 3425.024657][ T5099] dirty 0
[ 3425.027642][ T5099] writeback 0
[ 3425.031011][ T5099] workingset_refault_anon 390151
[ 3425.036221][ T5099] workingset_refault_file 25
[ 3425.040816][ T5099] swap 2084864
[ 3425.044906][ T5099] swapcached 0
[ 3425.048321][ T5099] pgpgin 901986
[ 3425.051790][ T5099] pgpgout 901985
[ 3425.055608][ T5099] pgfault 1583272
[ 3425.059241][ T5099] pgmajfault 375192
[ 3425.063026][ T5099] inactive_anon 4096
[ 3425.067766][ T5099] active_anon 0
[ 3425.071236][ T5099] inactive_file 0
[ 3425.075161][ T5099] active_file 0
[ 3425.078628][ T5099] unevictable 0
[ 3425.082088][ T5099] hierarchical_memory_limit 314572800
[ 3425.087668][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3425.093858][ T5099] total_cache 0
[ 3425.097801][ T5099] total_rss 4096
[ 3425.101474][ T5099] total_rss_huge 0
[ 3425.110211][ T5099] total_shmem 0
[ 3425.113694][ T5099] total_mapped_file 0
[ 3425.119434][ T5099] total_dirty 0
[ 3425.122911][ T5099] total_writeback 0
[ 3425.127542][ T5099] total_workingset_refault_anon 390151
[ 3425.133013][ T5099] total_workingset_refault_file 25
[ 3425.141518][ T5099] total_swap 2084864
[ 3425.146322][ T5099] total_swapcached 0
[ 3425.150233][ T5099] total_pgpgin 901986
[ 3425.154753][ T5099] total_pgpgout 901985
[ 3425.158844][ T5099] total_pgfault 1583272
[ 3425.163017][ T5099] total_pgmajfault 375192
[ 3425.167595][ T5099] total_inactive_anon 4096
[ 3425.172026][ T5099] total_active_anon 0
[ 3425.177049][ T5099] total_inactive_file 0
[ 3425.181301][ T5099] total_active_file 0
[ 3425.185537][ T5099] total_unevictable 0
[ 3425.189526][ T5099] anon_cost 0
[ 3425.192791][ T5099] file_cost 0
[ 3425.197067][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9183,uid=0
23:31:23 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3c6}}}]}]}}]}, 0x74}}, 0x0)

[ 3425.215473][ T5099] Memory cgroup out of memory: Killed process 9183 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3425.337772][ T9185] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3425.348595][ T9185] CPU: 0 PID: 9185 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3425.358587][ T9185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3425.368645][ T9185] Call Trace:
[ 3425.371944][ T9185]  <TASK>
[ 3425.374870][ T9185]  dump_stack_lvl+0x1e7/0x2e0
[ 3425.379548][ T9185]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3425.384737][ T9185]  ? __pfx__printk+0x10/0x10
[ 3425.389403][ T9185]  ? ___ratelimit+0x4c4/0x670
[ 3425.394105][ T9185]  ? __pfx____ratelimit+0x10/0x10
[ 3425.399141][ T9185]  dump_header+0xda/0x6a0
[ 3425.403472][ T9185]  oom_kill_process+0x3a7/0x930
[ 3425.408322][ T9185]  out_of_memory+0xf67/0x1320
[ 3425.413004][ T9185]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3425.418630][ T9185]  ? __pfx___mutex_lock+0x10/0x10
[ 3425.423675][ T9185]  ? __pfx_out_of_memory+0x10/0x10
[ 3425.428793][ T9185]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3425.434336][ T9185]  ? __pfx_lock_release+0x10/0x10
[ 3425.439357][ T9185]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3425.445439][ T9185]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3425.450637][ T9185]  ? mem_cgroup_iter+0x422/0x560
[ 3425.455572][ T9185]  try_charge_memcg+0xda2/0x18a0
[ 3425.460518][ T9185]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3425.465883][ T9185]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3425.471593][ T9185]  ? __pfx_lock_release+0x10/0x10
[ 3425.476615][ T9185]  ? memcg_account_kmem+0x1e7/0x210
[ 3425.481811][ T9185]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3425.487609][ T9185]  __memcg_kmem_charge_page+0xe1/0x250
[ 3425.493069][ T9185]  memcg_charge_kernel_stack+0x37e/0x550
[ 3425.498821][ T9185]  dup_task_struct+0x15d/0x7d0
[ 3425.504215][ T9185]  copy_process+0x5d0/0x3fc0
[ 3425.508835][ T9185]  ? __pfx_lock_release+0x10/0x10
[ 3425.513868][ T9185]  ? __pfx_copy_process+0x10/0x10
[ 3425.518887][ T9185]  ? __might_fault+0xc5/0x120
[ 3425.523573][ T9185]  ? __asan_memset+0x23/0x50
[ 3425.528166][ T9185]  kernel_clone+0x21d/0x8d0
[ 3425.532716][ T9185]  ? __pfx_kernel_clone+0x10/0x10
[ 3425.537762][ T9185]  __se_sys_clone3+0x2cb/0x350
[ 3425.542527][ T9185]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3425.547830][ T9185]  ? do_syscall_64+0x108/0x240
[ 3425.552600][ T9185]  ? do_syscall_64+0xb4/0x240
[ 3425.557355][ T9185]  do_syscall_64+0xf9/0x240
[ 3425.561881][ T9185]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3425.567791][ T9185] RIP: 0033:0x7f30cb2a9b99
[ 3425.572211][ T9185] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3425.591862][ T9185] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3425.600279][ T9185] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3425.608246][ T9185] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3425.616210][ T9185] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3425.624173][ T9185] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3425.632136][ T9185] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3425.640113][ T9185]  </TASK>
[ 3425.654899][ T9185] memory: usage 307200kB, limit 307200kB, failcnt 568101
[ 3425.661966][ T9185] memory+swap: usage 309196kB, limit 9007199254740988kB, failcnt 0
[ 3425.677224][ T9185] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3425.694379][ T9185] Memory cgroup stats for /syz0:
[ 3425.694690][ T9185] cache 0
[ 3425.702727][ T9185] rss 12288
[ 3425.708751][ T9185] rss_huge 0
[ 3425.712353][ T9185] shmem 0
[ 3425.718294][ T9185] mapped_file 0
[ 3425.721777][ T9185] dirty 0
[ 3425.728793][ T9185] writeback 0
[ 3425.732525][ T9185] workingset_refault_anon 390212
[ 3425.738243][ T9185] workingset_refault_file 25
[ 3425.743092][ T9185] swap 2043904
[ 3425.747257][ T9185] swapcached 8192
[ 3425.751021][ T9185] pgpgin 902057
[ 3425.754831][ T9185] pgpgout 902054
[ 3425.758554][ T9185] pgfault 1583383
[ 3425.762253][ T9185] pgmajfault 375249
[ 3425.766432][ T9185] inactive_anon 0
[ 3425.770253][ T9185] active_anon 12288
[ 3425.774909][ T9185] inactive_file 0
[ 3425.778672][ T9185] active_file 0
[ 3425.782262][ T9185] unevictable 0
[ 3425.786046][ T9185] hierarchical_memory_limit 314572800
[ 3425.791533][ T9185] hierarchical_memsw_limit 9223372036854771712
[ 3425.798050][ T9185] total_cache 0
[ 3425.801553][ T9185] total_rss 12288
[ 3425.806632][ T9185] total_rss_huge 0
[ 3425.810372][ T9185] total_shmem 0
[ 3425.813862][ T9185] total_mapped_file 0
[ 3425.818558][ T9185] total_dirty 0
[ 3425.822034][ T9185] total_writeback 0
[ 3425.826352][ T9185] total_workingset_refault_anon 390212
[ 3425.831826][ T9185] total_workingset_refault_file 25
[ 3425.838295][ T9185] total_swap 2043904
[ 3425.842304][ T9185] total_swapcached 8192
[ 3425.847135][ T9185] total_pgpgin 902057
[ 3425.851231][ T9185] total_pgpgout 902054
[ 3425.855871][ T9185] total_pgfault 1583383
[ 3425.860407][ T9185] total_pgmajfault 375249
[ 3425.865391][ T9185] total_inactive_anon 0
[ 3425.869645][ T9185] total_active_anon 12288
[ 3425.874498][ T9185] total_inactive_file 0
[ 3425.878791][ T9185] total_active_file 0
[ 3425.882833][ T9185] total_unevictable 0
[ 3425.887418][ T9185] anon_cost 0
[ 3425.890803][ T9185] file_cost 0
23:31:24 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x500}}}]}]}}]}, 0x74}}, 0x0)

[ 3425.894956][ T9185] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9185,uid=0
[ 3425.910900][ T9185] Memory cgroup out of memory: Killed process 9185 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3426.091103][ T9187] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3426.101935][ T9187] CPU: 1 PID: 9187 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3426.112128][ T9187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3426.122279][ T9187] Call Trace:
[ 3426.125548][ T9187]  <TASK>
[ 3426.128469][ T9187]  dump_stack_lvl+0x1e7/0x2e0
[ 3426.133143][ T9187]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3426.138325][ T9187]  ? __pfx__printk+0x10/0x10
[ 3426.142920][ T9187]  ? ___ratelimit+0x4c4/0x670
[ 3426.147598][ T9187]  ? __pfx____ratelimit+0x10/0x10
[ 3426.152801][ T9187]  dump_header+0xda/0x6a0
[ 3426.157140][ T9187]  oom_kill_process+0x3a7/0x930
[ 3426.162013][ T9187]  out_of_memory+0xf67/0x1320
[ 3426.166709][ T9187]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3426.172344][ T9187]  ? __pfx___mutex_lock+0x10/0x10
[ 3426.177357][ T9187]  ? __pfx_out_of_memory+0x10/0x10
[ 3426.182466][ T9187]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3426.187994][ T9187]  ? __pfx_lock_release+0x10/0x10
[ 3426.193003][ T9187]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3426.199058][ T9187]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3426.204254][ T9187]  ? mem_cgroup_iter+0x422/0x560
[ 3426.209216][ T9187]  try_charge_memcg+0xda2/0x18a0
[ 3426.214188][ T9187]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3426.219572][ T9187]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3426.225294][ T9187]  ? __pfx_lock_release+0x10/0x10
[ 3426.230325][ T9187]  ? memcg_account_kmem+0x1e7/0x210
[ 3426.235532][ T9187]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3426.241338][ T9187]  __memcg_kmem_charge_page+0xe1/0x250
[ 3426.246793][ T9187]  memcg_charge_kernel_stack+0x28a/0x550
[ 3426.252433][ T9187]  dup_task_struct+0x15d/0x7d0
[ 3426.257201][ T9187]  copy_process+0x5d0/0x3fc0
[ 3426.261824][ T9187]  ? __pfx_lock_release+0x10/0x10
[ 3426.266870][ T9187]  ? __pfx_copy_process+0x10/0x10
[ 3426.271894][ T9187]  ? __might_fault+0xc5/0x120
[ 3426.276560][ T9187]  ? __asan_memset+0x23/0x50
[ 3426.281135][ T9187]  kernel_clone+0x21d/0x8d0
[ 3426.285627][ T9187]  ? __pfx_kernel_clone+0x10/0x10
[ 3426.290657][ T9187]  __se_sys_clone3+0x2cb/0x350
[ 3426.295406][ T9187]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3426.300705][ T9187]  ? do_syscall_64+0x108/0x240
[ 3426.305470][ T9187]  ? do_syscall_64+0xb4/0x240
[ 3426.310426][ T9187]  do_syscall_64+0xf9/0x240
[ 3426.314945][ T9187]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3426.320849][ T9187] RIP: 0033:0x7f30cb2a9b99
[ 3426.325248][ T9187] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3426.344853][ T9187] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3426.353279][ T9187] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3426.361336][ T9187] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3426.369311][ T9187] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3426.377270][ T9187] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3426.385236][ T9187] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3426.393202][ T9187]  </TASK>
[ 3426.412515][ T9187] memory: usage 307180kB, limit 307200kB, failcnt 568355
[ 3426.419818][ T9187] memory+swap: usage 309224kB, limit 9007199254740988kB, failcnt 0
[ 3426.428117][ T9187] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3426.435728][ T9187] Memory cgroup stats for /syz0:
[ 3426.435865][ T9187] cache 0
[ 3426.443708][ T9187] rss 20480
[ 3426.448121][ T9187] rss_huge 0
[ 3426.451338][ T9187] shmem 0
[ 3426.454422][ T9187] mapped_file 0
[ 3426.457863][ T9187] dirty 0
[ 3426.460778][ T9187] writeback 0
[ 3426.464300][ T9187] workingset_refault_anon 390313
[ 3426.469249][ T9187] workingset_refault_file 25
[ 3426.473837][ T9187] swap 2072576
[ 3426.478054][ T9187] swapcached 12288
[ 3426.481821][ T9187] pgpgin 902169
[ 3426.486209][ T9187] pgpgout 902164
[ 3426.489771][ T9187] pgfault 1583535
[ 3426.493541][ T9187] pgmajfault 375334
[ 3426.498397][ T9187] inactive_anon 0
[ 3426.502032][ T9187] active_anon 20480
[ 3426.506525][ T9187] inactive_file 0
[ 3426.510171][ T9187] active_file 0
[ 3426.513634][ T9187] unevictable 0
[ 3426.517938][ T9187] hierarchical_memory_limit 314572800
[ 3426.523328][ T9187] hierarchical_memsw_limit 9223372036854771712
[ 3426.529879][ T9187] total_cache 0
[ 3426.533362][ T9187] total_rss 20480
[ 3426.537236][ T9187] total_rss_huge 0
[ 3426.541018][ T9187] total_shmem 0
[ 3426.544712][ T9187] total_mapped_file 0
[ 3426.548704][ T9187] total_dirty 0
[ 3426.553706][ T9187] total_writeback 0
[ 3426.557746][ T9187] total_workingset_refault_anon 390313
[ 3426.563242][ T9187] total_workingset_refault_file 25
[ 3426.568505][ T9187] total_swap 2072576
[ 3426.572398][ T9187] total_swapcached 12288
[ 3426.576870][ T9187] total_pgpgin 902169
[ 3426.580859][ T9187] total_pgpgout 902164
[ 3426.585145][ T9187] total_pgfault 1583535
[ 3426.589295][ T9187] total_pgmajfault 375334
[ 3426.593599][ T9187] total_inactive_anon 0
[ 3426.597989][ T9187] total_active_anon 20480
[ 3426.602319][ T9187] total_inactive_file 0
[ 3426.606710][ T9187] total_active_file 0
[ 3426.610696][ T9187] total_unevictable 0
[ 3426.614938][ T9187] anon_cost 0
[ 3426.618230][ T9187] file_cost 0
[ 3426.621516][ T9187] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9187,uid=0
[ 3426.637875][ T9187] Memory cgroup out of memory: Killed process 9187 (syz-executor.0) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:31:25 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x600}}}]}]}}]}, 0x74}}, 0x0)

[ 3426.873000][ T9189] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3426.883591][ T9189] CPU: 1 PID: 9189 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3426.893602][ T9189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3426.903673][ T9189] Call Trace:
[ 3426.906948][ T9189]  <TASK>
[ 3426.909870][ T9189]  dump_stack_lvl+0x1e7/0x2e0
[ 3426.914557][ T9189]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3426.919745][ T9189]  ? __pfx__printk+0x10/0x10
[ 3426.924318][ T9189]  ? ___ratelimit+0x4c4/0x670
[ 3426.928989][ T9189]  ? __pfx____ratelimit+0x10/0x10
[ 3426.934010][ T9189]  dump_header+0xda/0x6a0
[ 3426.938365][ T9189]  oom_kill_process+0x3a7/0x930
[ 3426.943244][ T9189]  out_of_memory+0xf67/0x1320
[ 3426.947945][ T9189]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3426.953586][ T9189]  ? __pfx___mutex_lock+0x10/0x10
[ 3426.958606][ T9189]  ? __pfx_out_of_memory+0x10/0x10
[ 3426.963727][ T9189]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3426.969287][ T9189]  ? __pfx_lock_release+0x10/0x10
[ 3426.974318][ T9189]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3426.980408][ T9189]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3426.985612][ T9189]  ? mem_cgroup_iter+0x422/0x560
[ 3426.990575][ T9189]  try_charge_memcg+0xda2/0x18a0
[ 3426.995542][ T9189]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3427.000908][ T9189]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3427.006625][ T9189]  ? __pfx_lock_release+0x10/0x10
[ 3427.011683][ T9189]  ? memcg_account_kmem+0x1e7/0x210
[ 3427.016887][ T9189]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3427.022683][ T9189]  __memcg_kmem_charge_page+0xe1/0x250
[ 3427.028139][ T9189]  memcg_charge_kernel_stack+0x28a/0x550
[ 3427.033769][ T9189]  dup_task_struct+0x15d/0x7d0
[ 3427.038533][ T9189]  copy_process+0x5d0/0x3fc0
[ 3427.043128][ T9189]  ? __pfx_lock_release+0x10/0x10
[ 3427.048164][ T9189]  ? __pfx_copy_process+0x10/0x10
[ 3427.053179][ T9189]  ? __might_fault+0xc5/0x120
[ 3427.057850][ T9189]  ? __asan_memset+0x23/0x50
[ 3427.062440][ T9189]  kernel_clone+0x21d/0x8d0
[ 3427.066940][ T9189]  ? __pfx_kernel_clone+0x10/0x10
[ 3427.071967][ T9189]  __se_sys_clone3+0x2cb/0x350
[ 3427.076723][ T9189]  ? __might_fault+0xa9/0x120
[ 3427.081395][ T9189]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3427.086699][ T9189]  ? do_syscall_64+0x108/0x240
[ 3427.091458][ T9189]  ? do_syscall_64+0xb4/0x240
[ 3427.096147][ T9189]  do_syscall_64+0xf9/0x240
[ 3427.100647][ T9189]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3427.106533][ T9189] RIP: 0033:0x7f30cb2a9b99
[ 3427.110939][ T9189] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3427.130894][ T9189] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3427.139303][ T9189] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3427.147276][ T9189] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3427.155238][ T9189] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3427.163199][ T9189] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3427.171251][ T9189] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3427.179226][ T9189]  </TASK>
[ 3427.186516][ T9189] memory: usage 307200kB, limit 307200kB, failcnt 568661
[ 3427.193573][ T9189] memory+swap: usage 309184kB, limit 9007199254740988kB, failcnt 0
[ 3427.201961][ T9189] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3427.214739][ T9189] Memory cgroup stats for /syz0:
[ 3427.214857][ T9189] cache 0
[ 3427.222741][ T9189] rss 0
[ 3427.225825][ T9189] rss_huge 0
[ 3427.229032][ T9189] shmem 0
[ 3427.231997][ T9189] mapped_file 0
[ 3427.235679][ T9189] dirty 0
[ 3427.238624][ T9189] writeback 0
[ 3427.241911][ T9189] workingset_refault_anon 390439
[ 3427.247248][ T9189] workingset_refault_file 25
[ 3427.251840][ T9189] swap 2031616
[ 3427.255542][ T9189] swapcached 0
[ 3427.258918][ T9189] pgpgin 902307
[ 3427.262365][ T9189] pgpgout 902307
[ 3427.267906][ T9189] pgfault 1583730
[ 3427.271559][ T9189] pgmajfault 375455
[ 3427.275620][ T9189] inactive_anon 0
[ 3427.279266][ T9189] active_anon 0
[ 3427.282731][ T9189] inactive_file 0
[ 3427.291172][ T9189] active_file 0
[ 3427.296604][ T9189] unevictable 0
[ 3427.300083][ T9189] hierarchical_memory_limit 314572800
[ 3427.306159][ T9189] hierarchical_memsw_limit 9223372036854771712
[ 3427.312442][ T9189] total_cache 0
[ 3427.316733][ T9189] total_rss 0
[ 3427.320033][ T9189] total_rss_huge 0
[ 3427.324622][ T9189] total_shmem 0
[ 3427.328106][ T9189] total_mapped_file 0
[ 3427.332091][ T9189] total_dirty 0
[ 3427.336406][ T9189] total_writeback 0
[ 3427.340226][ T9189] total_workingset_refault_anon 390439
[ 3427.346078][ T9189] total_workingset_refault_file 25
[ 3427.351232][ T9189] total_swap 2031616
[ 3427.355677][ T9189] total_swapcached 0
[ 3427.359584][ T9189] total_pgpgin 902307
[ 3427.363577][ T9189] total_pgpgout 902307
[ 3427.368417][ T9189] total_pgfault 1583730
[ 3427.372945][ T9189] total_pgmajfault 375455
[ 3427.377756][ T9189] total_inactive_anon 0
[ 3427.381924][ T9189] total_active_anon 0
[ 3427.386351][ T9189] total_inactive_file 0
[ 3427.390531][ T9189] total_active_file 0
[ 3427.395182][ T9189] total_unevictable 0
[ 3427.399183][ T9189] anon_cost 0
[ 3427.402468][ T9189] file_cost 0
[ 3427.407004][ T9189] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9189,uid=0
23:31:25 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x700}}}]}]}}]}, 0x74}}, 0x0)

[ 3427.422762][ T9189] Memory cgroup out of memory: Killed process 9189 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3427.640674][ T9191] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3427.651527][ T9191] CPU: 0 PID: 9191 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3427.661532][ T9191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3427.671705][ T9191] Call Trace:
[ 3427.674993][ T9191]  <TASK>
[ 3427.677939][ T9191]  dump_stack_lvl+0x1e7/0x2e0
[ 3427.682632][ T9191]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3427.687828][ T9191]  ? __pfx__printk+0x10/0x10
[ 3427.692408][ T9191]  ? ___ratelimit+0x4c4/0x670
[ 3427.697085][ T9191]  ? __pfx____ratelimit+0x10/0x10
[ 3427.702112][ T9191]  dump_header+0xda/0x6a0
[ 3427.706447][ T9191]  oom_kill_process+0x3a7/0x930
[ 3427.711384][ T9191]  out_of_memory+0xf67/0x1320
[ 3427.716061][ T9191]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3427.721688][ T9191]  ? __pfx___mutex_lock+0x10/0x10
[ 3427.726711][ T9191]  ? __pfx_out_of_memory+0x10/0x10
[ 3427.731826][ T9191]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3427.737472][ T9191]  ? __pfx_lock_release+0x10/0x10
[ 3427.742508][ T9191]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3427.748581][ T9191]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3427.753781][ T9191]  ? mem_cgroup_iter+0x422/0x560
[ 3427.758718][ T9191]  try_charge_memcg+0xda2/0x18a0
[ 3427.763667][ T9191]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3427.769036][ T9191]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3427.774747][ T9191]  ? __pfx_lock_release+0x10/0x10
[ 3427.779774][ T9191]  ? memcg_account_kmem+0x1e7/0x210
[ 3427.784979][ T9191]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3427.790779][ T9191]  __memcg_kmem_charge_page+0xe1/0x250
[ 3427.796242][ T9191]  memcg_charge_kernel_stack+0x28a/0x550
[ 3427.801871][ T9191]  dup_task_struct+0x15d/0x7d0
[ 3427.806631][ T9191]  copy_process+0x5d0/0x3fc0
[ 3427.811225][ T9191]  ? __pfx_lock_release+0x10/0x10
[ 3427.816250][ T9191]  ? __pfx_copy_process+0x10/0x10
[ 3427.821265][ T9191]  ? __might_fault+0xc5/0x120
[ 3427.825942][ T9191]  ? __asan_memset+0x23/0x50
[ 3427.830539][ T9191]  kernel_clone+0x21d/0x8d0
[ 3427.835039][ T9191]  ? __pfx_kernel_clone+0x10/0x10
[ 3427.840077][ T9191]  __se_sys_clone3+0x2cb/0x350
[ 3427.844837][ T9191]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3427.850122][ T9191]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3427.856110][ T9191]  ? exc_page_fault+0x587/0x870
[ 3427.860960][ T9191]  ? do_syscall_64+0xb4/0x240
[ 3427.865628][ T9191]  do_syscall_64+0xf9/0x240
[ 3427.870129][ T9191]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3427.876014][ T9191] RIP: 0033:0x7f30cb2a9b99
[ 3427.880424][ T9191] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3427.900035][ T9191] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3427.908446][ T9191] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3427.916409][ T9191] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3427.924374][ T9191] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3427.932335][ T9191] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3427.940299][ T9191] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3427.948276][ T9191]  </TASK>
[ 3427.983520][ T9191] memory: usage 307200kB, limit 307200kB, failcnt 568945
[ 3427.990941][ T9191] memory+swap: usage 309148kB, limit 9007199254740988kB, failcnt 0
[ 3427.999492][ T9191] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3428.007781][ T9191] Memory cgroup stats for /syz0:
[ 3428.007909][ T9191] cache 0
[ 3428.025256][ T9191] rss 12288
[ 3428.028409][ T9191] rss_huge 0
[ 3428.031585][ T9191] shmem 0
[ 3428.035240][ T9191] mapped_file 0
[ 3428.038716][ T9191] dirty 0
[ 3428.041657][ T9191] writeback 0
[ 3428.045206][ T9191] workingset_refault_anon 390553
[ 3428.050231][ T9191] workingset_refault_file 25
[ 3428.055074][ T9191] swap 1982464
[ 3428.058457][ T9191] swapcached 8192
[ 3428.062093][ T9191] pgpgin 902434
[ 3428.066405][ T9191] pgpgout 902431
[ 3428.069960][ T9191] pgfault 1583910
[ 3428.073573][ T9191] pgmajfault 375559
[ 3428.081142][ T9191] inactive_anon 0
[ 3428.085211][ T9191] active_anon 8192
[ 3428.089461][ T9191] inactive_file 0
[ 3428.093111][ T9191] active_file 0
[ 3428.097493][ T9191] unevictable 0
[ 3428.100963][ T9191] hierarchical_memory_limit 314572800
[ 3428.106637][ T9191] hierarchical_memsw_limit 9223372036854771712
[ 3428.112804][ T9191] total_cache 0
[ 3428.116545][ T9191] total_rss 12288
[ 3428.120193][ T9191] total_rss_huge 0
[ 3428.123918][ T9191] total_shmem 0
[ 3428.127939][ T9191] total_mapped_file 0
[ 3428.131918][ T9191] total_dirty 0
[ 3428.135655][ T9191] total_writeback 0
[ 3428.139480][ T9191] total_workingset_refault_anon 390553
[ 3428.145340][ T9191] total_workingset_refault_file 25
[ 3428.150452][ T9191] total_swap 1982464
[ 3428.154813][ T9191] total_swapcached 8192
[ 3428.158979][ T9191] total_pgpgin 902434
[ 3428.162951][ T9191] total_pgpgout 902431
[ 3428.167290][ T9191] total_pgfault 1583910
[ 3428.171446][ T9191] total_pgmajfault 375559
[ 3428.176082][ T9191] total_inactive_anon 0
[ 3428.180249][ T9191] total_active_anon 8192
[ 3428.185681][ T9191] total_inactive_file 0
[ 3428.190382][ T9191] total_active_file 0
[ 3428.194612][ T9191] total_unevictable 0
[ 3428.198605][ T9191] anon_cost 0
[ 3428.201910][ T9191] file_cost 0
[ 3428.205530][ T9191] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9191,uid=0
23:31:26 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x900}}}]}]}}]}, 0x74}}, 0x0)

[ 3428.221542][ T9191] Memory cgroup out of memory: Killed process 9191 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3428.433020][ T9193] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3428.443557][ T9193] CPU: 1 PID: 9193 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3428.453548][ T9193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3428.463600][ T9193] Call Trace:
[ 3428.466874][ T9193]  <TASK>
[ 3428.469799][ T9193]  dump_stack_lvl+0x1e7/0x2e0
[ 3428.474473][ T9193]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3428.479663][ T9193]  ? __pfx__printk+0x10/0x10
[ 3428.484241][ T9193]  ? ___ratelimit+0x4c4/0x670
[ 3428.488918][ T9193]  ? __pfx____ratelimit+0x10/0x10
[ 3428.493946][ T9193]  dump_header+0xda/0x6a0
[ 3428.498289][ T9193]  oom_kill_process+0x3a7/0x930
[ 3428.503146][ T9193]  out_of_memory+0xf67/0x1320
[ 3428.507822][ T9193]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3428.513446][ T9193]  ? __pfx___mutex_lock+0x10/0x10
[ 3428.518467][ T9193]  ? __pfx_out_of_memory+0x10/0x10
[ 3428.523579][ T9193]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3428.529117][ T9193]  ? __pfx_lock_release+0x10/0x10
[ 3428.534149][ T9193]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3428.540208][ T9193]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3428.545402][ T9193]  ? mem_cgroup_iter+0x422/0x560
[ 3428.550337][ T9193]  try_charge_memcg+0xda2/0x18a0
[ 3428.555283][ T9193]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3428.560647][ T9193]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3428.566446][ T9193]  ? __pfx_lock_release+0x10/0x10
[ 3428.571490][ T9193]  ? memcg_account_kmem+0x1e7/0x210
[ 3428.576714][ T9193]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3428.582522][ T9193]  __memcg_kmem_charge_page+0xe1/0x250
[ 3428.587990][ T9193]  memcg_charge_kernel_stack+0x28a/0x550
[ 3428.593622][ T9193]  dup_task_struct+0x40d/0x7d0
[ 3428.598398][ T9193]  copy_process+0x5d0/0x3fc0
[ 3428.602998][ T9193]  ? __pfx_lock_release+0x10/0x10
[ 3428.608022][ T9193]  ? __lock_acquire+0x1345/0x1fd0
[ 3428.613042][ T9193]  ? __pfx_copy_process+0x10/0x10
[ 3428.618057][ T9193]  ? __might_fault+0xc5/0x120
[ 3428.622730][ T9193]  ? __asan_memset+0x23/0x50
[ 3428.627577][ T9193]  kernel_clone+0x21d/0x8d0
[ 3428.632077][ T9193]  ? __pfx_kernel_clone+0x10/0x10
[ 3428.637099][ T9193]  ? __pfx_lock_release+0x10/0x10
[ 3428.642122][ T9193]  __se_sys_clone3+0x2cb/0x350
[ 3428.646883][ T9193]  ? __might_fault+0xa9/0x120
[ 3428.651555][ T9193]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3428.656830][ T9193]  ? rcu_is_watching+0x15/0xb0
[ 3428.661595][ T9193]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3428.667585][ T9193]  ? exc_page_fault+0x587/0x870
[ 3428.672521][ T9193]  ? do_syscall_64+0xb4/0x240
[ 3428.677202][ T9193]  do_syscall_64+0xf9/0x240
[ 3428.681794][ T9193]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3428.687679][ T9193] RIP: 0033:0x7f30cb2a9b99
[ 3428.692088][ T9193] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3428.711706][ T9193] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3428.720123][ T9193] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3428.728350][ T9193] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3428.736350][ T9193] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3428.744408][ T9193] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3428.752382][ T9193] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3428.760358][ T9193]  </TASK>
[ 3428.772494][ T9193] memory: usage 307188kB, limit 307200kB, failcnt 569224
[ 3428.795384][ T9193] memory+swap: usage 309164kB, limit 9007199254740988kB, failcnt 0
[ 3428.806185][ T9193] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3428.813499][ T9193] Memory cgroup stats for /syz0:
[ 3428.813636][ T9193] cache 0
[ 3428.822474][ T9193] rss 4096
[ 3428.826006][ T9193] rss_huge 0
[ 3428.829214][ T9193] shmem 0
[ 3428.832314][ T9193] mapped_file 0
[ 3428.839583][ T9193] dirty 0
[ 3428.842577][ T9193] writeback 0
[ 3428.846817][ T9193] workingset_refault_anon 390683
[ 3428.851763][ T9193] workingset_refault_file 25
[ 3428.856784][ T9193] swap 2027520
[ 3428.860167][ T9193] swapcached 4096
[ 3428.863813][ T9193] pgpgin 902577
[ 3428.867631][ T9193] pgpgout 902576
[ 3428.871186][ T9193] pgfault 1584124
[ 3428.875991][ T9193] pgmajfault 375682
[ 3428.879815][ T9193] inactive_anon 0
[ 3428.883440][ T9193] active_anon 4096
[ 3428.888042][ T9193] inactive_file 0
[ 3428.891684][ T9193] active_file 0
[ 3428.895368][ T9193] unevictable 0
[ 3428.898868][ T9193] hierarchical_memory_limit 314572800
[ 3428.905189][ T9193] hierarchical_memsw_limit 9223372036854771712
[ 3428.911422][ T9193] total_cache 0
[ 3428.915150][ T9193] total_rss 4096
[ 3428.918701][ T9193] total_rss_huge 0
[ 3428.922419][ T9193] total_shmem 0
[ 3428.933992][ T9193] total_mapped_file 0
[ 3428.938008][ T9193] total_dirty 0
[ 3428.941470][ T9193] total_writeback 0
[ 3428.951907][ T9193] total_workingset_refault_anon 390683
[ 3428.958436][ T9193] total_workingset_refault_file 25
[ 3428.963555][ T9193] total_swap 2027520
[ 3428.969729][ T9193] total_swapcached 4096
[ 3428.979459][ T9193] total_pgpgin 902577
[ 3428.983473][ T9193] total_pgpgout 902576
[ 3428.988621][ T9193] total_pgfault 1584124
[ 3428.992792][ T9193] total_pgmajfault 375682
[ 3428.998653][ T9193] total_inactive_anon 0
[ 3429.002827][ T9193] total_active_anon 4096
[ 3429.008053][ T9193] total_inactive_file 0
[ 3429.012227][ T9193] total_active_file 0
[ 3429.016501][ T9193] total_unevictable 0
[ 3429.020488][ T9193] anon_cost 0
[ 3429.023792][ T9193] file_cost 0
[ 3429.027347][ T9193] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9193,uid=0
23:31:27 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xa00}}}]}]}}]}, 0x74}}, 0x0)

[ 3429.043171][ T9193] Memory cgroup out of memory: Killed process 9193 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3429.286067][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3429.297483][ T5099] CPU: 1 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3429.307486][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3429.317544][ T5099] Call Trace:
[ 3429.320816][ T5099]  <TASK>
[ 3429.323740][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3429.328418][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3429.333697][ T5099]  ? __pfx__printk+0x10/0x10
[ 3429.338274][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3429.342968][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3429.347991][ T5099]  dump_header+0xda/0x6a0
[ 3429.352323][ T5099]  oom_kill_process+0x3a7/0x930
[ 3429.357176][ T5099]  out_of_memory+0xf67/0x1320
[ 3429.361854][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3429.367480][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3429.372499][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3429.377611][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3429.383149][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3429.388170][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3429.394234][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3429.399425][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3429.404370][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3429.409311][ T5099]  ? mark_lock+0x9a/0x350
[ 3429.413645][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3429.419034][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3429.425186][ T5099]  charge_memcg+0xa2/0x160
[ 3429.429602][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3429.435671][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3429.441126][ T5099]  ? mark_lock+0x9a/0x350
[ 3429.445455][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3429.451435][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3429.456815][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3429.462709][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3429.467734][ T5099]  ? xas_descend+0x37e/0x470
[ 3429.472332][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3429.477266][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3429.482381][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3429.487752][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3429.493037][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3429.498323][ T5099]  do_swap_page+0x791/0x3f40
[ 3429.502907][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3429.507680][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3429.512451][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3429.517552][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3429.523007][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3429.528989][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3429.534192][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3429.539320][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3429.544775][ T5099]  ? mt_find+0x226/0x850
[ 3429.549007][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3429.554050][ T5099]  ? mt_find+0x62d/0x850
[ 3429.558295][ T5099]  ? mt_find+0x226/0x850
[ 3429.562542][ T5099]  ? find_vma+0x142/0x1c0
[ 3429.566864][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3429.571531][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3429.577507][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3429.582271][ T5099]  exc_page_fault+0x2ad/0x870
[ 3429.587486][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3429.592332][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3429.597451][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3429.617051][ T5099] RSP: 0018:ffffc90003ebfd98 EFLAGS: 00050202
[ 3429.623117][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3429.631081][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3429.639046][ T5099] RBP: ffffc90003ebfec8 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3429.647096][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfda0
[ 3429.655061][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3429.663043][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3429.668956][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3429.675291][ T5099]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3429.681006][ T5099]  syscall_exit_to_user_mode+0x113/0x360
[ 3429.686631][ T5099]  do_syscall_64+0x108/0x240
[ 3429.691215][ T5099]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3429.697101][ T5099] RIP: 0033:0x7f30cb2a91b5
[ 3429.701506][ T5099] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 3429.721117][ T5099] RSP: 002b:00007f30cb4cfcf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 3429.729533][ T5099] RAX: 0000000000000000 RBX: 000000000000728c RCX: 00007f30cb2a91b5
[ 3429.737506][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3429.745912][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3429.753875][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3429.761855][ T5099] R13: 00000000003452e4 R14: 00000000003452e4 R15: 0000000000000000
[ 3429.769832][ T5099]  </TASK>
[ 3429.786422][ T5099] memory: usage 307188kB, limit 307200kB, failcnt 569541
[ 3429.793482][ T5099] memory+swap: usage 309136kB, limit 9007199254740988kB, failcnt 0
[ 3429.802127][ T5099] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3429.809912][ T5099] Memory cgroup stats for /syz0:
[ 3429.810023][ T5099] cache 0
[ 3429.818430][ T5099] rss 12288
[ 3429.821558][ T5099] rss_huge 0
[ 3429.825563][ T5099] shmem 0
[ 3429.829868][ T5099] mapped_file 0
[ 3429.833340][ T5099] dirty 0
[ 3429.837147][ T5099] writeback 0
[ 3429.840447][ T5099] workingset_refault_anon 390819
[ 3429.846907][ T5099] workingset_refault_file 25
[ 3429.851503][ T5099] swap 1982464
[ 3429.855590][ T5099] swapcached 8192
[ 3429.859236][ T5099] pgpgin 902725
[ 3429.862692][ T5099] pgpgout 902722
[ 3429.867228][ T5099] pgfault 1584336
[ 3429.870879][ T5099] pgmajfault 375814
[ 3429.879204][ T5099] inactive_anon 0
[ 3429.882854][ T5099] active_anon 12288
[ 3429.887941][ T5099] inactive_file 0
[ 3429.891588][ T5099] active_file 0
[ 3429.895723][ T5099] unevictable 0
[ 3429.899196][ T5099] hierarchical_memory_limit 314572800
[ 3429.904805][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3429.910986][ T5099] total_cache 0
[ 3429.914676][ T5099] total_rss 12288
[ 3429.918339][ T5099] total_rss_huge 0
[ 3429.922058][ T5099] total_shmem 0
[ 3429.925827][ T5099] total_mapped_file 0
[ 3429.930889][ T5099] total_dirty 0
[ 3429.934635][ T5099] total_writeback 0
[ 3429.938452][ T5099] total_workingset_refault_anon 390819
[ 3429.943915][ T5099] total_workingset_refault_file 25
[ 3429.949313][ T5099] total_swap 1982464
[ 3429.953210][ T5099] total_swapcached 8192
[ 3429.963314][ T5099] total_pgpgin 902725
[ 3429.971299][ T5099] total_pgpgout 902722
[ 3429.975926][ T5099] total_pgfault 1584336
[ 3429.980113][ T5099] total_pgmajfault 375814
[ 3429.984986][ T5099] total_inactive_anon 0
[ 3429.989223][ T5099] total_active_anon 12288
[ 3429.993539][ T5099] total_inactive_file 0
[ 3429.998622][ T5099] total_active_file 0
[ 3430.002613][ T5099] total_unevictable 0
[ 3430.006931][ T5099] anon_cost 0
[ 3430.010235][ T5099] file_cost 0
[ 3430.013549][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9195,uid=0
23:31:28 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb00}}}]}]}}]}, 0x74}}, 0x0)

[ 3430.029374][ T5099] Memory cgroup out of memory: Killed process 9195 (syz-executor.0) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3430.222054][ T9197] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3430.232602][ T9197] CPU: 1 PID: 9197 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3430.242600][ T9197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3430.252668][ T9197] Call Trace:
[ 3430.255935][ T9197]  <TASK>
[ 3430.258851][ T9197]  dump_stack_lvl+0x1e7/0x2e0
[ 3430.263517][ T9197]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3430.268698][ T9197]  ? __pfx__printk+0x10/0x10
[ 3430.273264][ T9197]  ? ___ratelimit+0x4c4/0x670
[ 3430.277934][ T9197]  ? __pfx____ratelimit+0x10/0x10
[ 3430.282954][ T9197]  dump_header+0xda/0x6a0
[ 3430.287295][ T9197]  oom_kill_process+0x3a7/0x930
[ 3430.292168][ T9197]  out_of_memory+0xf67/0x1320
[ 3430.296871][ T9197]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3430.302522][ T9197]  ? __pfx___mutex_lock+0x10/0x10
[ 3430.307725][ T9197]  ? __pfx_out_of_memory+0x10/0x10
[ 3430.312838][ T9197]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3430.318375][ T9197]  ? __pfx_lock_release+0x10/0x10
[ 3430.323389][ T9197]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3430.329441][ T9197]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3430.334653][ T9197]  ? mem_cgroup_iter+0x422/0x560
[ 3430.339617][ T9197]  try_charge_memcg+0xda2/0x18a0
[ 3430.344605][ T9197]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3430.349999][ T9197]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3430.355727][ T9197]  ? __pfx_lock_release+0x10/0x10
[ 3430.360755][ T9197]  ? memcg_account_kmem+0x1e7/0x210
[ 3430.365963][ T9197]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3430.371774][ T9197]  __memcg_kmem_charge_page+0xe1/0x250
[ 3430.377246][ T9197]  memcg_charge_kernel_stack+0x28a/0x550
[ 3430.382887][ T9197]  dup_task_struct+0x40d/0x7d0
[ 3430.387919][ T9197]  copy_process+0x5d0/0x3fc0
[ 3430.392557][ T9197]  ? __pfx_lock_release+0x10/0x10
[ 3430.397617][ T9197]  ? __pfx_copy_process+0x10/0x10
[ 3430.402628][ T9197]  ? __might_fault+0xc5/0x120
[ 3430.407294][ T9197]  ? __asan_memset+0x23/0x50
[ 3430.411885][ T9197]  kernel_clone+0x21d/0x8d0
[ 3430.416376][ T9197]  ? __pfx_kernel_clone+0x10/0x10
[ 3430.421396][ T9197]  __se_sys_clone3+0x2cb/0x350
[ 3430.426142][ T9197]  ? __might_fault+0xa9/0x120
[ 3430.430815][ T9197]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3430.436129][ T9197]  ? do_syscall_64+0x108/0x240
[ 3430.440914][ T9197]  ? do_syscall_64+0xb4/0x240
[ 3430.445607][ T9197]  do_syscall_64+0xf9/0x240
[ 3430.450123][ T9197]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3430.456005][ T9197] RIP: 0033:0x7f30cb2a9b99
[ 3430.460405][ T9197] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3430.479993][ T9197] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3430.488421][ T9197] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3430.496415][ T9197] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3430.504397][ T9197] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3430.512354][ T9197] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3430.520323][ T9197] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3430.528297][ T9197]  </TASK>
[ 3430.535186][ T9197] memory: usage 307200kB, limit 307200kB, failcnt 569837
[ 3430.542247][ T9197] memory+swap: usage 309172kB, limit 9007199254740988kB, failcnt 0
[ 3430.551216][ T9197] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3430.559288][ T9197] Memory cgroup stats for /syz0:
[ 3430.559440][ T9197] cache 0
[ 3430.567634][ T9197] rss 0
[ 3430.570443][ T9197] rss_huge 0
[ 3430.573647][ T9197] shmem 0
[ 3430.576830][ T9197] mapped_file 0
[ 3430.580336][ T9197] dirty 0
[ 3430.583284][ T9197] writeback 0
[ 3430.586873][ T9197] workingset_refault_anon 390950
[ 3430.591821][ T9197] workingset_refault_file 25
[ 3430.596758][ T9197] swap 2019328
[ 3430.600132][ T9197] swapcached 0
[ 3430.603484][ T9197] pgpgin 902867
[ 3430.607113][ T9197] pgpgout 902867
[ 3430.610661][ T9197] pgfault 1584537
[ 3430.614603][ T9197] pgmajfault 375930
[ 3430.618427][ T9197] inactive_anon 0
[ 3430.622065][ T9197] active_anon 0
[ 3430.626117][ T9197] inactive_file 0
[ 3430.629809][ T9197] active_file 0
[ 3430.633273][ T9197] unevictable 0
[ 3430.636961][ T9197] hierarchical_memory_limit 314572800
[ 3430.642329][ T9197] hierarchical_memsw_limit 9223372036854771712
[ 3430.650392][ T9197] total_cache 0
[ 3430.653878][ T9197] total_rss 0
[ 3430.657465][ T9197] total_rss_huge 0
[ 3430.661197][ T9197] total_shmem 0
[ 3430.664935][ T9197] total_mapped_file 0
[ 3430.668977][ T9197] total_dirty 0
[ 3430.672451][ T9197] total_writeback 0
[ 3430.676559][ T9197] total_workingset_refault_anon 390950
[ 3430.682038][ T9197] total_workingset_refault_file 25
[ 3430.687412][ T9197] total_swap 2019328
[ 3430.691323][ T9197] total_swapcached 0
[ 3430.695490][ T9197] total_pgpgin 902867
[ 3430.699482][ T9197] total_pgpgout 902867
[ 3430.703547][ T9197] total_pgfault 1584537
[ 3430.708078][ T9197] total_pgmajfault 375930
[ 3430.712420][ T9197] total_inactive_anon 0
[ 3430.716899][ T9197] total_active_anon 0
23:31:29 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe00}}}]}]}}]}, 0x74}}, 0x0)

[ 3430.720891][ T9197] total_inactive_file 0
[ 3430.725328][ T9197] total_active_file 0
[ 3430.729314][ T9197] total_unevictable 0
[ 3430.733293][ T9197] anon_cost 0
[ 3430.736830][ T9197] file_cost 0
[ 3430.740124][ T9197] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9197,uid=0
[ 3430.756905][ T9197] Memory cgroup out of memory: Killed process 9197 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3430.981671][ T9199] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3430.992274][ T9199] CPU: 0 PID: 9199 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3431.002248][ T9199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3431.012296][ T9199] Call Trace:
[ 3431.015562][ T9199]  <TASK>
[ 3431.018475][ T9199]  dump_stack_lvl+0x1e7/0x2e0
[ 3431.023140][ T9199]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3431.028335][ T9199]  ? __pfx__printk+0x10/0x10
[ 3431.032905][ T9199]  ? ___ratelimit+0x4c4/0x670
[ 3431.037570][ T9199]  ? __pfx____ratelimit+0x10/0x10
[ 3431.042581][ T9199]  dump_header+0xda/0x6a0
[ 3431.046915][ T9199]  oom_kill_process+0x3a7/0x930
[ 3431.051775][ T9199]  out_of_memory+0xf67/0x1320
[ 3431.056449][ T9199]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3431.062067][ T9199]  ? __pfx___mutex_lock+0x10/0x10
[ 3431.067079][ T9199]  ? __pfx_out_of_memory+0x10/0x10
[ 3431.072180][ T9199]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3431.077708][ T9199]  ? __pfx_lock_release+0x10/0x10
[ 3431.082721][ T9199]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3431.088780][ T9199]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3431.093978][ T9199]  ? mem_cgroup_iter+0x422/0x560
[ 3431.099025][ T9199]  try_charge_memcg+0xda2/0x18a0
[ 3431.104002][ T9199]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3431.109363][ T9199]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3431.115068][ T9199]  ? __pfx_lock_release+0x10/0x10
[ 3431.120076][ T9199]  ? memcg_account_kmem+0x1e7/0x210
[ 3431.125264][ T9199]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3431.131073][ T9199]  __memcg_kmem_charge_page+0xe1/0x250
[ 3431.136525][ T9199]  memcg_charge_kernel_stack+0x28a/0x550
[ 3431.142160][ T9199]  dup_task_struct+0x40d/0x7d0
[ 3431.146927][ T9199]  copy_process+0x5d0/0x3fc0
[ 3431.151537][ T9199]  ? __pfx_lock_release+0x10/0x10
[ 3431.156554][ T9199]  ? __pfx_copy_process+0x10/0x10
[ 3431.161566][ T9199]  ? __might_fault+0xc5/0x120
[ 3431.166238][ T9199]  ? __asan_memset+0x23/0x50
[ 3431.170830][ T9199]  kernel_clone+0x21d/0x8d0
[ 3431.175320][ T9199]  ? __pfx_kernel_clone+0x10/0x10
[ 3431.180345][ T9199]  __se_sys_clone3+0x2cb/0x350
[ 3431.185095][ T9199]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3431.190390][ T9199]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3431.196388][ T9199]  ? exc_page_fault+0x587/0x870
[ 3431.201251][ T9199]  ? do_syscall_64+0xb4/0x240
[ 3431.205916][ T9199]  do_syscall_64+0xf9/0x240
[ 3431.210406][ T9199]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3431.216284][ T9199] RIP: 0033:0x7f30cb2a9b99
[ 3431.220683][ T9199] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3431.240270][ T9199] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3431.248678][ T9199] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3431.256654][ T9199] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3431.264613][ T9199] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3431.272570][ T9199] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3431.280522][ T9199] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3431.288486][ T9199]  </TASK>
[ 3431.303358][ T9199] memory: usage 307200kB, limit 307200kB, failcnt 570120
[ 3431.310735][ T9199] memory+swap: usage 309208kB, limit 9007199254740988kB, failcnt 0
[ 3431.319117][ T9199] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3431.326684][ T9199] Memory cgroup stats for /syz0:
[ 3431.326814][ T9199] cache 0
[ 3431.334892][ T9199] rss 0
[ 3431.337666][ T9199] rss_huge 0
[ 3431.340856][ T9199] shmem 0
[ 3431.343774][ T9199] mapped_file 0
[ 3431.347738][ T9199] dirty 0
[ 3431.350681][ T9199] writeback 0
[ 3431.354194][ T9199] workingset_refault_anon 391061
[ 3431.359141][ T9199] workingset_refault_file 25
[ 3431.364957][ T9199] swap 2056192
[ 3431.368699][ T9199] swapcached 0
[ 3431.372076][ T9199] pgpgin 902990
[ 3431.376128][ T9199] pgpgout 902990
[ 3431.379680][ T9199] pgfault 1584719
[ 3431.383304][ T9199] pgmajfault 376034
[ 3431.387688][ T9199] inactive_anon 0
[ 3431.391334][ T9199] active_anon 0
[ 3431.395021][ T9199] inactive_file 0
[ 3431.398698][ T9199] active_file 0
[ 3431.402158][ T9199] unevictable 0
[ 3431.407030][ T9199] hierarchical_memory_limit 314572800
[ 3431.412409][ T9199] hierarchical_memsw_limit 9223372036854771712
[ 3431.418779][ T9199] total_cache 0
[ 3431.422250][ T9199] total_rss 0
[ 3431.425849][ T9199] total_rss_huge 0
[ 3431.429577][ T9199] total_shmem 0
[ 3431.433043][ T9199] total_mapped_file 0
[ 3431.437543][ T9199] total_dirty 0
[ 3431.441003][ T9199] total_writeback 0
[ 3431.445175][ T9199] total_workingset_refault_anon 391061
[ 3431.450677][ T9199] total_workingset_refault_file 25
[ 3431.456076][ T9199] total_swap 2056192
[ 3431.459981][ T9199] total_swapcached 0
[ 3431.463870][ T9199] total_pgpgin 902990
[ 3431.469134][ T9199] total_pgpgout 902990
[ 3431.473211][ T9199] total_pgfault 1584719
[ 3431.480525][ T9199] total_pgmajfault 376034
[ 3431.485413][ T9199] total_inactive_anon 0
[ 3431.489579][ T9199] total_active_anon 0
[ 3431.493572][ T9199] total_inactive_file 0
[ 3431.498723][ T9199] total_active_file 0
[ 3431.502720][ T9199] total_unevictable 0
[ 3431.507325][ T9199] anon_cost 0
[ 3431.510620][ T9199] file_cost 0
[ 3431.513925][ T9199] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9199,uid=0
23:31:29 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1100}}}]}]}}]}, 0x74}}, 0x0)

[ 3431.530936][ T9199] Memory cgroup out of memory: Killed process 9199 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3431.803056][ T9201] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3431.813645][ T9201] CPU: 0 PID: 9201 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3431.823639][ T9201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3431.833681][ T9201] Call Trace:
[ 3431.836948][ T9201]  <TASK>
[ 3431.839882][ T9201]  dump_stack_lvl+0x1e7/0x2e0
[ 3431.844559][ T9201]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3431.849765][ T9201]  ? __pfx__printk+0x10/0x10
[ 3431.854357][ T9201]  ? ___ratelimit+0x4c4/0x670
[ 3431.859037][ T9201]  ? __pfx____ratelimit+0x10/0x10
[ 3431.864064][ T9201]  dump_header+0xda/0x6a0
[ 3431.868425][ T9201]  oom_kill_process+0x3a7/0x930
[ 3431.873307][ T9201]  out_of_memory+0xf67/0x1320
[ 3431.878011][ T9201]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3431.883654][ T9201]  ? __pfx___mutex_lock+0x10/0x10
[ 3431.888669][ T9201]  ? __pfx_out_of_memory+0x10/0x10
[ 3431.893769][ T9201]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3431.899314][ T9201]  ? __pfx_lock_release+0x10/0x10
[ 3431.904327][ T9201]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3431.910385][ T9201]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3431.915590][ T9201]  ? mem_cgroup_iter+0x422/0x560
[ 3431.920546][ T9201]  try_charge_memcg+0xda2/0x18a0
[ 3431.925497][ T9201]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3431.930861][ T9201]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3431.936573][ T9201]  ? __pfx_lock_release+0x10/0x10
[ 3431.941592][ T9201]  ? memcg_account_kmem+0x1e7/0x210
[ 3431.946805][ T9201]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3431.952626][ T9201]  __memcg_kmem_charge_page+0xe1/0x250
[ 3431.958097][ T9201]  memcg_charge_kernel_stack+0x28a/0x550
[ 3431.963738][ T9201]  dup_task_struct+0x15d/0x7d0
[ 3431.968509][ T9201]  copy_process+0x5d0/0x3fc0
[ 3431.973108][ T9201]  ? __pfx_lock_release+0x10/0x10
[ 3431.978137][ T9201]  ? __pfx_copy_process+0x10/0x10
[ 3431.983158][ T9201]  ? __might_fault+0xc5/0x120
[ 3431.987836][ T9201]  ? __asan_memset+0x23/0x50
[ 3431.992428][ T9201]  kernel_clone+0x21d/0x8d0
[ 3431.996929][ T9201]  ? __pfx_kernel_clone+0x10/0x10
[ 3432.001956][ T9201]  __se_sys_clone3+0x2cb/0x350
[ 3432.006732][ T9201]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3432.012020][ T9201]  ? rcu_is_watching+0x15/0xb0
[ 3432.016794][ T9201]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3432.022790][ T9201]  ? exc_page_fault+0x587/0x870
[ 3432.027649][ T9201]  ? do_syscall_64+0xb4/0x240
[ 3432.032324][ T9201]  do_syscall_64+0xf9/0x240
[ 3432.036824][ T9201]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3432.042715][ T9201] RIP: 0033:0x7f30cb2a9b99
[ 3432.047123][ T9201] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3432.066722][ T9201] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3432.075410][ T9201] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3432.083378][ T9201] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3432.091341][ T9201] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3432.099305][ T9201] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3432.107264][ T9201] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3432.115240][ T9201]  </TASK>
[ 3432.128776][ T9201] memory: usage 307200kB, limit 307200kB, failcnt 570488
[ 3432.136289][ T9201] memory+swap: usage 309136kB, limit 9007199254740988kB, failcnt 0
[ 3432.145031][ T9201] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3432.152327][ T9201] Memory cgroup stats for /syz0:
[ 3432.152429][ T9201] cache 0
[ 3432.160920][ T9201] rss 4096
[ 3432.164820][ T9201] rss_huge 0
[ 3432.168124][ T9201] shmem 0
[ 3432.171068][ T9201] mapped_file 0
[ 3432.175364][ T9201] dirty 0
[ 3432.178310][ T9201] writeback 0
[ 3432.182658][ T9201] workingset_refault_anon 391219
[ 3432.188369][ T9201] workingset_refault_file 25
[ 3432.192972][ T9201] swap 1978368
[ 3432.197094][ T9201] swapcached 4096
[ 3432.200738][ T9201] pgpgin 903158
[ 3432.205147][ T9201] pgpgout 903157
[ 3432.208696][ T9201] pgfault 1584960
[ 3432.212305][ T9201] pgmajfault 376180
[ 3432.216972][ T9201] inactive_anon 0
[ 3432.220609][ T9201] active_anon 4096
[ 3432.225935][ T9201] inactive_file 0
[ 3432.229586][ T9201] active_file 0
[ 3432.233058][ T9201] unevictable 0
[ 3432.237572][ T9201] hierarchical_memory_limit 314572800
[ 3432.242972][ T9201] hierarchical_memsw_limit 9223372036854771712
[ 3432.250062][ T9201] total_cache 0
[ 3432.253551][ T9201] total_rss 4096
[ 3432.257693][ T9201] total_rss_huge 0
[ 3432.261421][ T9201] total_shmem 0
[ 3432.265796][ T9201] total_mapped_file 0
[ 3432.269796][ T9201] total_dirty 0
[ 3432.273251][ T9201] total_writeback 0
[ 3432.277444][ T9201] total_workingset_refault_anon 391219
[ 3432.282901][ T9201] total_workingset_refault_file 25
[ 3432.288749][ T9201] total_swap 1978368
[ 3432.292647][ T9201] total_swapcached 4096
[ 3432.297335][ T9201] total_pgpgin 903158
[ 3432.301319][ T9201] total_pgpgout 903157
[ 3432.305641][ T9201] total_pgfault 1584960
[ 3432.309854][ T9201] total_pgmajfault 376180
[ 3432.314431][ T9201] total_inactive_anon 0
[ 3432.318600][ T9201] total_active_anon 4096
[ 3432.322828][ T9201] total_inactive_file 0
[ 3432.332379][ T9201] total_active_file 0
[ 3432.337309][ T9201] total_unevictable 0
[ 3432.341309][ T9201] anon_cost 0
[ 3432.350680][ T9201] file_cost 0
23:31:30 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1300}}}]}]}}]}, 0x74}}, 0x0)

[ 3432.354859][ T9201] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9201,uid=0
[ 3432.370836][ T9201] Memory cgroup out of memory: Killed process 9201 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3432.576452][ T9203] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3432.589743][ T9203] CPU: 0 PID: 9203 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3432.599768][ T9203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3432.609835][ T9203] Call Trace:
[ 3432.613130][ T9203]  <TASK>
[ 3432.616074][ T9203]  dump_stack_lvl+0x1e7/0x2e0
[ 3432.621557][ T9203]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3432.626775][ T9203]  ? __pfx__printk+0x10/0x10
[ 3432.631375][ T9203]  ? ___ratelimit+0x4c4/0x670
[ 3432.636083][ T9203]  ? __pfx____ratelimit+0x10/0x10
[ 3432.641132][ T9203]  dump_header+0xda/0x6a0
[ 3432.645487][ T9203]  oom_kill_process+0x3a7/0x930
[ 3432.650363][ T9203]  out_of_memory+0xf67/0x1320
[ 3432.655063][ T9203]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3432.660710][ T9203]  ? __pfx___mutex_lock+0x10/0x10
[ 3432.665764][ T9203]  ? __pfx_out_of_memory+0x10/0x10
[ 3432.670897][ T9203]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3432.676537][ T9203]  ? __pfx_lock_release+0x10/0x10
[ 3432.681567][ T9203]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3432.687649][ T9203]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3432.692865][ T9203]  ? mem_cgroup_iter+0x422/0x560
[ 3432.697819][ T9203]  try_charge_memcg+0xda2/0x18a0
[ 3432.702813][ T9203]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3432.708199][ T9203]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3432.713944][ T9203]  ? __pfx_lock_release+0x10/0x10
[ 3432.718990][ T9203]  ? memcg_account_kmem+0x1e7/0x210
[ 3432.724218][ T9203]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3432.730053][ T9203]  __memcg_kmem_charge_page+0xe1/0x250
[ 3432.735548][ T9203]  memcg_charge_kernel_stack+0x28a/0x550
[ 3432.741206][ T9203]  dup_task_struct+0x15d/0x7d0
[ 3432.746017][ T9203]  copy_process+0x5d0/0x3fc0
[ 3432.750647][ T9203]  ? __pfx_lock_release+0x10/0x10
[ 3432.755705][ T9203]  ? __pfx_copy_process+0x10/0x10
[ 3432.760752][ T9203]  ? __might_fault+0xc5/0x120
[ 3432.765448][ T9203]  ? __asan_memset+0x23/0x50
[ 3432.770055][ T9203]  kernel_clone+0x21d/0x8d0
[ 3432.774584][ T9203]  ? __pfx_kernel_clone+0x10/0x10
[ 3432.779641][ T9203]  __se_sys_clone3+0x2cb/0x350
[ 3432.784421][ T9203]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3432.789756][ T9203]  ? do_syscall_64+0x108/0x240
[ 3432.794541][ T9203]  ? do_syscall_64+0xb4/0x240
[ 3432.799242][ T9203]  do_syscall_64+0xf9/0x240
[ 3432.803770][ T9203]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3432.809678][ T9203] RIP: 0033:0x7f30cb2a9b99
[ 3432.814105][ T9203] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3432.833727][ T9203] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3432.842181][ T9203] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3432.850203][ T9203] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3432.858200][ T9203] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3432.866186][ T9203] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3432.874176][ T9203] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3432.882180][ T9203]  </TASK>
[ 3433.024351][ T9203] memory: usage 307180kB, limit 307200kB, failcnt 570792
[ 3433.043300][ T9203] memory+swap: usage 309152kB, limit 9007199254740988kB, failcnt 0
[ 3433.052369][ T9203] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3433.060783][ T9203] Memory cgroup stats for /syz0:
[ 3433.060923][ T9203] cache 0
[ 3433.070124][ T9203] rss 24576
[ 3433.073252][ T9203] rss_huge 0
[ 3433.077139][ T9203] shmem 0
[ 3433.080156][ T9203] mapped_file 0
[ 3433.083643][ T9203] dirty 0
[ 3433.087187][ T9203] writeback 0
[ 3433.090482][ T9203] workingset_refault_anon 391339
[ 3433.096155][ T9203] workingset_refault_file 25
[ 3433.100753][ T9203] swap 1994752
[ 3433.105747][ T9203] swapcached 16384
[ 3433.109479][ T9203] pgpgin 903292
[ 3433.112914][ T9203] pgpgout 903286
[ 3433.117252][ T9203] pgfault 1585150
[ 3433.120906][ T9203] pgmajfault 376289
[ 3433.125560][ T9203] inactive_anon 4096
[ 3433.129473][ T9203] active_anon 20480
[ 3433.133286][ T9203] inactive_file 0
[ 3433.140618][ T9203] active_file 0
[ 3433.145831][ T9203] unevictable 0
[ 3433.149309][ T9203] hierarchical_memory_limit 314572800
[ 3433.155351][ T9203] hierarchical_memsw_limit 9223372036854771712
[ 3433.161513][ T9203] total_cache 0
[ 3433.165491][ T9203] total_rss 24576
[ 3433.169133][ T9203] total_rss_huge 0
[ 3433.172855][ T9203] total_shmem 0
[ 3433.177798][ T9203] total_mapped_file 0
[ 3433.181898][ T9203] total_dirty 0
[ 3433.185976][ T9203] total_writeback 0
[ 3433.189786][ T9203] total_workingset_refault_anon 391339
[ 3433.196011][ T9203] total_workingset_refault_file 25
[ 3433.201136][ T9203] total_swap 1994752
[ 3433.212232][ T9203] total_swapcached 16384
[ 3433.217132][ T9203] total_pgpgin 903292
[ 3433.221122][ T9203] total_pgpgout 903286
[ 3433.229425][ T9203] total_pgfault 1585150
[ 3433.233598][ T9203] total_pgmajfault 376289
[ 3433.238591][ T9203] total_inactive_anon 4096
[ 3433.243012][ T9203] total_active_anon 20480
[ 3433.247960][ T9203] total_inactive_file 0
[ 3433.252131][ T9203] total_active_file 0
[ 3433.256831][ T9203] total_unevictable 0
[ 3433.260822][ T9203] anon_cost 0
[ 3433.264718][ T9203] file_cost 0
23:31:31 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1400}}}]}]}}]}, 0x74}}, 0x0)

[ 3433.268010][ T9203] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9203,uid=0
[ 3433.285144][ T9203] Memory cgroup out of memory: Killed process 9203 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3433.560720][ T9205] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3433.571450][ T9205] CPU: 1 PID: 9205 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3433.581546][ T9205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3433.591593][ T9205] Call Trace:
[ 3433.594861][ T9205]  <TASK>
[ 3433.597800][ T9205]  dump_stack_lvl+0x1e7/0x2e0
[ 3433.602466][ T9205]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3433.607660][ T9205]  ? __pfx__printk+0x10/0x10
[ 3433.612271][ T9205]  ? ___ratelimit+0x4c4/0x670
[ 3433.616946][ T9205]  ? __pfx____ratelimit+0x10/0x10
[ 3433.621965][ T9205]  dump_header+0xda/0x6a0
[ 3433.626285][ T9205]  oom_kill_process+0x3a7/0x930
[ 3433.631124][ T9205]  out_of_memory+0xf67/0x1320
[ 3433.635790][ T9205]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3433.641407][ T9205]  ? __pfx___mutex_lock+0x10/0x10
[ 3433.646427][ T9205]  ? __pfx_out_of_memory+0x10/0x10
[ 3433.651529][ T9205]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3433.657061][ T9205]  ? __pfx_lock_release+0x10/0x10
[ 3433.662072][ T9205]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3433.668138][ T9205]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3433.673420][ T9205]  ? mem_cgroup_iter+0x422/0x560
[ 3433.678362][ T9205]  try_charge_memcg+0xda2/0x18a0
[ 3433.683620][ T9205]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3433.689005][ T9205]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3433.694720][ T9205]  ? __pfx_lock_release+0x10/0x10
[ 3433.699761][ T9205]  ? memcg_account_kmem+0x1e7/0x210
[ 3433.704969][ T9205]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3433.710782][ T9205]  __memcg_kmem_charge_page+0xe1/0x250
[ 3433.716256][ T9205]  memcg_charge_kernel_stack+0x28a/0x550
[ 3433.721894][ T9205]  dup_task_struct+0x15d/0x7d0
[ 3433.726678][ T9205]  copy_process+0x5d0/0x3fc0
[ 3433.731263][ T9205]  ? __pfx_lock_release+0x10/0x10
[ 3433.736279][ T9205]  ? __lock_acquire+0x1345/0x1fd0
[ 3433.741288][ T9205]  ? __pfx_copy_process+0x10/0x10
[ 3433.746308][ T9205]  ? __might_fault+0xc5/0x120
[ 3433.750987][ T9205]  ? __asan_memset+0x23/0x50
[ 3433.755577][ T9205]  kernel_clone+0x21d/0x8d0
[ 3433.760081][ T9205]  ? __pfx_kernel_clone+0x10/0x10
[ 3433.765110][ T9205]  ? __pfx_lock_release+0x10/0x10
[ 3433.770151][ T9205]  __se_sys_clone3+0x2cb/0x350
[ 3433.774923][ T9205]  ? __might_fault+0xa9/0x120
[ 3433.779605][ T9205]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3433.784903][ T9205]  ? rcu_is_watching+0x15/0xb0
[ 3433.789685][ T9205]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3433.795666][ T9205]  ? exc_page_fault+0x587/0x870
[ 3433.800506][ T9205]  ? do_syscall_64+0xb4/0x240
[ 3433.805168][ T9205]  do_syscall_64+0xf9/0x240
[ 3433.809679][ T9205]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3433.815558][ T9205] RIP: 0033:0x7f30cb2a9b99
[ 3433.819970][ T9205] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3433.839584][ T9205] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3433.847987][ T9205] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3433.855943][ T9205] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3433.863894][ T9205] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3433.871850][ T9205] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3433.879806][ T9205] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3433.887774][ T9205]  </TASK>
[ 3433.903135][ T9205] memory: usage 307200kB, limit 307200kB, failcnt 571190
[ 3433.910517][ T9205] memory+swap: usage 309208kB, limit 9007199254740988kB, failcnt 0
[ 3433.919113][ T9205] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3433.928297][ T9205] Memory cgroup stats for /syz0:
[ 3433.928425][ T9205] cache 0
[ 3433.937010][ T9205] rss 0
[ 3433.939787][ T9205] rss_huge 0
[ 3433.942976][ T9205] shmem 0
[ 3433.946797][ T9205] mapped_file 0
[ 3433.950262][ T9205] dirty 0
[ 3433.953177][ T9205] writeback 0
[ 3433.957220][ T9205] workingset_refault_anon 391500
[ 3433.962165][ T9205] workingset_refault_file 25
[ 3433.967383][ T9205] swap 2056192
[ 3433.970784][ T9205] swapcached 0
[ 3433.974400][ T9205] pgpgin 903465
[ 3433.977866][ T9205] pgpgout 903465
[ 3433.981412][ T9205] pgfault 1585389
[ 3433.985283][ T9205] pgmajfault 376427
[ 3433.989093][ T9205] inactive_anon 0
[ 3433.992727][ T9205] active_anon 0
[ 3433.997113][ T9205] inactive_file 0
[ 3434.000761][ T9205] active_file 0
[ 3434.012180][ T9205] unevictable 0
[ 3434.022892][ T9205] hierarchical_memory_limit 314572800
[ 3434.029450][ T9205] hierarchical_memsw_limit 9223372036854771712
[ 3434.036356][ T9205] total_cache 0
[ 3434.039825][ T9205] total_rss 0
[ 3434.043107][ T9205] total_rss_huge 0
[ 3434.046985][ T9205] total_shmem 0
[ 3434.050453][ T9205] total_mapped_file 0
[ 3434.056615][ T9205] total_dirty 0
[ 3434.060089][ T9205] total_writeback 0
[ 3434.063900][ T9205] total_workingset_refault_anon 391500
[ 3434.070940][ T9205] total_workingset_refault_file 25
[ 3434.077283][ T9205] total_swap 2056192
[ 3434.081194][ T9205] total_swapcached 0
[ 3434.086071][ T9205] total_pgpgin 903465
[ 3434.090067][ T9205] total_pgpgout 903465
[ 3434.094900][ T9205] total_pgfault 1585389
[ 3434.099069][ T9205] total_pgmajfault 376427
[ 3434.103397][ T9205] total_inactive_anon 0
[ 3434.108490][ T9205] total_active_anon 0
[ 3434.112696][ T9205] total_inactive_file 0
[ 3434.117987][ T9205] total_active_file 0
[ 3434.121978][ T9205] total_unevictable 0
[ 3434.126831][ T9205] anon_cost 0
[ 3434.142045][ T9205] file_cost 0
23:31:32 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1500}}}]}]}}]}, 0x74}}, 0x0)

[ 3434.148547][ T9205] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9205,uid=0
[ 3434.178219][ T9205] Memory cgroup out of memory: Killed process 9205 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3434.501075][ T5090] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 3434.510820][ T5090] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 3434.519413][ T5090] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 3434.546262][ T5090] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 3434.554882][ T5090] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 3434.562258][ T5090] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 3434.856275][ T9209] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3434.887696][ T9209] CPU: 1 PID: 9209 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3434.897733][ T9209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3434.907779][ T9209] Call Trace:
[ 3434.911051][ T9209]  <TASK>
[ 3434.913978][ T9209]  dump_stack_lvl+0x1e7/0x2e0
[ 3434.918668][ T9209]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3434.923854][ T9209]  ? __pfx__printk+0x10/0x10
[ 3434.928430][ T9209]  ? ___ratelimit+0x4c4/0x670
[ 3434.933104][ T9209]  ? __pfx____ratelimit+0x10/0x10
[ 3434.938121][ T9209]  dump_header+0xda/0x6a0
[ 3434.942445][ T9209]  oom_kill_process+0x3a7/0x930
[ 3434.947292][ T9209]  out_of_memory+0xf67/0x1320
[ 3434.951964][ T9209]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3434.957588][ T9209]  ? __pfx___mutex_lock+0x10/0x10
[ 3434.962616][ T9209]  ? __pfx_out_of_memory+0x10/0x10
[ 3434.967744][ T9209]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3434.973315][ T9209]  ? __pfx_lock_release+0x10/0x10
[ 3434.978359][ T9209]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3434.984438][ T9209]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3434.989646][ T9209]  ? mem_cgroup_iter+0x422/0x560
[ 3434.994590][ T9209]  try_charge_memcg+0xda2/0x18a0
[ 3434.999538][ T9209]  ? mark_lock+0x9a/0x350
[ 3435.003867][ T9209]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3435.009243][ T9209]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3435.015407][ T9209]  charge_memcg+0xa2/0x160
[ 3435.019817][ T9209]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3435.025880][ T9209]  __read_swap_cache_async+0x480/0x8b0
[ 3435.031332][ T9209]  ? mark_lock+0x9a/0x350
[ 3435.035653][ T9209]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3435.041629][ T9209]  swap_cluster_readahead+0x67c/0x810
[ 3435.047002][ T9209]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3435.052896][ T9209]  ? __pfx_lock_release+0x10/0x10
[ 3435.057930][ T9209]  ? xas_descend+0x37e/0x470
[ 3435.062514][ T9209]  swapin_readahead+0x1ea/0x1070
[ 3435.067438][ T9209]  ? filemap_get_entry+0x127/0x4e0
[ 3435.072543][ T9209]  ? __pfx_swapin_readahead+0x10/0x10
[ 3435.078175][ T9209]  ? __filemap_get_folio+0x935/0xbc0
[ 3435.083464][ T9209]  ? swap_cache_get_folio+0x9f/0x570
[ 3435.088740][ T9209]  do_swap_page+0x791/0x3f40
[ 3435.093314][ T9209]  ? __lock_acquire+0x1345/0x1fd0
[ 3435.098333][ T9209]  ? rcu_is_watching+0x15/0xb0
[ 3435.103090][ T9209]  ? do_swap_page+0x154/0x3f40
[ 3435.107845][ T9209]  ? __pfx_do_swap_page+0x10/0x10
[ 3435.112856][ T9209]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3435.118313][ T9209]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3435.124143][ T9209]  ? __pfx_validate_chain+0x10/0x10
[ 3435.129369][ T9209]  __handle_mm_fault+0x15e8/0x72d0
[ 3435.134493][ T9209]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3435.139949][ T9209]  ? mt_find+0x226/0x850
[ 3435.144189][ T9209]  ? __pfx_lock_release+0x10/0x10
[ 3435.149219][ T9209]  ? mt_find+0x62d/0x850
[ 3435.153453][ T9209]  ? mt_find+0x226/0x850
[ 3435.157699][ T9209]  ? find_vma+0x142/0x1c0
[ 3435.162015][ T9209]  ? __pfx_find_vma+0x10/0x10
[ 3435.166678][ T9209]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3435.172647][ T9209]  handle_mm_fault+0x3c1/0x8a0
[ 3435.177409][ T9209]  exc_page_fault+0x2ad/0x870
[ 3435.182083][ T9209]  asm_exc_page_fault+0x26/0x30
[ 3435.186923][ T9209] RIP: 0010:__get_user_8+0x11/0x20
[ 3435.192020][ T9209] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3435.211612][ T9209] RSP: 0000:ffffc900032ffd78 EFLAGS: 00050206
[ 3435.217671][ T9209] RAX: 00007f30cbf26fe8 RBX: ffff8880427332f8 RCX: ffffc900032ffc03
[ 3435.225630][ T9209] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3435.233584][ T9209] RBP: ffffc900032ffec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3435.241542][ T9209] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc900032ffd80
[ 3435.249505][ T9209] R13: ffffc900032fffd8 R14: dffffc0000000000 R15: ffff888042731dc0
[ 3435.257485][ T9209]  __rseq_handle_notify_resume+0x158/0x1490
[ 3435.263641][ T9209]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3435.269965][ T9209]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3435.275764][ T9209]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3435.281382][ T9209]  exc_page_fault+0x587/0x870
[ 3435.286068][ T9209]  asm_exc_page_fault+0x26/0x30
[ 3435.290915][ T9209] RIP: 0033:0x7f30cb234bf1
[ 3435.295320][ T9209] Code: 75 67 48 8d 5d 08 4c 8d 65 0c eb 1e 0f 1f 44 00 00 45 31 c0 31 c9 ba 80 00 00 00 48 89 de bf ca 00 00 00 31 c0 e8 9f 91 04 00 <8b> 03 85 c0 74 e1 c7 45 08 00 00 00 00 48 89 ef e8 8a 9b ff ff 8b
[ 3435.314925][ T9209] RSP: 002b:00007f30cbf26180 EFLAGS: 00010202
[ 3435.320984][ T9209] RAX: 0000000000000000 RBX: 00007f30cb3abf88 RCX: 00007f30cb27db0b
[ 3435.328948][ T9209] RDX: 0000000000000000 RSI: 0000000000006364 RDI: 00000000000000d8
[ 3435.336910][ T9209] RBP: 00007f30cb3abf80 R08: 0000000000000000 R09: 00007f30cb4cfa47
[ 3435.344869][ T9209] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f30cb3abf8c
[ 3435.352825][ T9209] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3435.360805][ T9209]  </TASK>
[ 3435.369399][ T9209] memory: usage 307200kB, limit 307200kB, failcnt 571789
[ 3435.384216][ T9209] memory+swap: usage 309148kB, limit 9007199254740988kB, failcnt 0
[ 3435.392155][ T9209] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3435.402479][ T9209] Memory cgroup stats for /syz0:
[ 3435.402594][ T9209] cache 0
[ 3435.410692][ T9209] rss 4096
[ 3435.413726][ T9209] rss_huge 0
[ 3435.417195][ T9209] shmem 0
[ 3435.420149][ T9209] mapped_file 0
[ 3435.423626][ T9209] dirty 0
[ 3435.427222][ T9209] writeback 0
[ 3435.433518][ T9209] workingset_refault_anon 391637
[ 3435.442598][ T9209] workingset_refault_file 25
[ 3435.447799][ T9209] swap 2015232
[ 3435.451185][ T9209] swapcached 4096
[ 3435.455159][ T9209] pgpgin 903630
[ 3435.459927][ T9209] pgpgout 903629
[ 3435.463491][ T9209] pgfault 1585620
[ 3435.467446][ T9209] pgmajfault 376564
[ 3435.471301][ T9209] inactive_anon 0
[ 3435.475850][ T9209] active_anon 4096
[ 3435.479590][ T9209] inactive_file 0
[ 3435.483219][ T9209] active_file 0
[ 3435.493196][ T9209] unevictable 0
[ 3435.497437][ T9209] hierarchical_memory_limit 314572800
[ 3435.502820][ T9209] hierarchical_memsw_limit 9223372036854771712
[ 3435.509462][ T9209] total_cache 0
[ 3435.512935][ T9209] total_rss 4096
[ 3435.516756][ T9209] total_rss_huge 0
[ 3435.520479][ T9209] total_shmem 0
[ 3435.523917][ T9209] total_mapped_file 0
[ 3435.528681][ T9209] total_dirty 0
[ 3435.532156][ T9209] total_writeback 0
[ 3435.536249][ T9209] total_workingset_refault_anon 391637
[ 3435.541709][ T9209] total_workingset_refault_file 25
[ 3435.547373][ T9209] total_swap 2015232
[ 3435.551287][ T9209] total_swapcached 4096
[ 3435.556441][ T9209] total_pgpgin 903630
[ 3435.561949][ T9209] total_pgpgout 903629
[ 3435.566513][ T9209] total_pgfault 1585620
[ 3435.570695][ T9209] total_pgmajfault 376564
[ 3435.575330][ T9209] total_inactive_anon 0
[ 3435.579495][ T9209] total_active_anon 4096
[ 3435.583714][ T9209] total_inactive_file 0
[ 3435.588353][ T9209] total_active_file 0
[ 3435.592352][ T9209] total_unevictable 0
[ 3435.597094][ T9209] anon_cost 0
[ 3435.600418][ T9209] file_cost 0
23:31:34 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1600}}}]}]}}]}, 0x74}}, 0x0)

[ 3435.603692][ T9209] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9208,uid=0
[ 3435.620109][ T9209] Memory cgroup out of memory: Killed process 9208 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3435.941671][ T9214] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3435.957948][ T9214] CPU: 0 PID: 9214 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3435.967963][ T9214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3435.978030][ T9214] Call Trace:
[ 3435.981828][ T9214]  <TASK>
[ 3435.984752][ T9214]  dump_stack_lvl+0x1e7/0x2e0
[ 3435.989432][ T9214]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3435.994627][ T9214]  ? __pfx__printk+0x10/0x10
[ 3435.999204][ T9214]  ? ___ratelimit+0x4c4/0x670
[ 3436.003884][ T9214]  ? __pfx____ratelimit+0x10/0x10
[ 3436.008913][ T9214]  dump_header+0xda/0x6a0
[ 3436.013248][ T9214]  oom_kill_process+0x3a7/0x930
[ 3436.018097][ T9214]  out_of_memory+0xf67/0x1320
[ 3436.022778][ T9214]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3436.028407][ T9214]  ? __pfx___mutex_lock+0x10/0x10
[ 3436.033428][ T9214]  ? __pfx_out_of_memory+0x10/0x10
[ 3436.038543][ T9214]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3436.044083][ T9214]  ? __pfx_lock_release+0x10/0x10
[ 3436.049107][ T9214]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3436.055181][ T9214]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3436.060376][ T9214]  ? mem_cgroup_iter+0x422/0x560
[ 3436.065314][ T9214]  try_charge_memcg+0xda2/0x18a0
[ 3436.070244][ T9214]  ? mark_lock+0x9a/0x350
[ 3436.076158][ T9214]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3436.081550][ T9214]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3436.087703][ T9214]  charge_memcg+0xa2/0x160
[ 3436.092127][ T9214]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3436.098197][ T9214]  __read_swap_cache_async+0x480/0x8b0
[ 3436.103654][ T9214]  ? mark_lock+0x9a/0x350
[ 3436.107988][ T9214]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3436.113983][ T9214]  swap_cluster_readahead+0x67c/0x810
[ 3436.119888][ T9214]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3436.125782][ T9214]  ? __pfx_lock_release+0x10/0x10
[ 3436.130824][ T9214]  ? xas_descend+0x37e/0x470
[ 3436.135419][ T9214]  swapin_readahead+0x1ea/0x1070
[ 3436.140797][ T9214]  ? filemap_get_entry+0x127/0x4e0
[ 3436.145915][ T9214]  ? __pfx_swapin_readahead+0x10/0x10
[ 3436.151292][ T9214]  ? __filemap_get_folio+0x935/0xbc0
[ 3436.156580][ T9214]  ? swap_cache_get_folio+0x9f/0x570
[ 3436.161873][ T9214]  do_swap_page+0x791/0x3f40
[ 3436.166467][ T9214]  ? rcu_is_watching+0x15/0xb0
[ 3436.171239][ T9214]  ? do_swap_page+0x154/0x3f40
[ 3436.175999][ T9214]  ? __pfx_do_swap_page+0x10/0x10
[ 3436.181030][ T9214]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3436.186489][ T9214]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3436.192300][ T9214]  __handle_mm_fault+0x15e8/0x72d0
[ 3436.197438][ T9214]  ? reacquire_held_locks+0x3eb/0x690
[ 3436.202804][ T9214]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3436.208271][ T9214]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3436.214003][ T9214]  ? mtree_range_walk+0x6fd/0x8e0
[ 3436.219023][ T9214]  ? lock_vma_under_rcu+0x18a/0x730
[ 3436.224216][ T9214]  ? __pfx_lock_release+0x10/0x10
[ 3436.229237][ T9214]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3436.234446][ T9214]  ? lock_vma_under_rcu+0x18a/0x730
[ 3436.239639][ T9214]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3436.245182][ T9214]  handle_mm_fault+0x3c1/0x8a0
[ 3436.249974][ T9214]  exc_page_fault+0x456/0x870
[ 3436.254658][ T9214]  asm_exc_page_fault+0x26/0x30
[ 3436.259503][ T9214] RIP: 0033:0x7f30cb2521c8
[ 3436.263915][ T9214] Code: b8 cb 00 00 00 0f 05 3d 00 f0 ff ff 77 54 f6 45 08 02 75 26 31 c0 48 8b 54 24 68 64 48 2b 14 25 28 00 00 00 75 5c 48 83 c4 70 <5b> 5d 41 5c 41 5d 41 5e c3 0f 1f 80 00 00 00 00 41 80 3c 24 00 74
[ 3436.283526][ T9214] RSP: 002b:00007f30cb4cf9c0 EFLAGS: 00010206
[ 3436.289592][ T9214] RAX: 0000000000000000 RBX: 00007f30cbf266c0 RCX: 00007f30cb2a9b99
[ 3436.298079][ T9214] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3436.306067][ T9214] RBP: 00007f30cb4cfc90 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3436.314034][ T9214] R10: 0000000000000008 R11: 0000000000000202 R12: 00007f30cb4cfa46
[ 3436.321998][ T9214] R13: 0000000000000000 R14: 00007f30cb4cfa47 R15: 00007f30cb4cfa48
[ 3436.329978][ T9214]  </TASK>
[ 3436.355622][ T9214] memory: usage 307196kB, limit 307200kB, failcnt 572235
[ 3436.362687][ T9214] memory+swap: usage 309160kB, limit 9007199254740988kB, failcnt 0
[ 3436.370812][ T9214] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3436.378321][ T9214] Memory cgroup stats for /syz0:
[ 3436.378454][ T9214] cache 0
[ 3436.387286][ T9214] rss 0
[ 3436.390062][ T9214] rss_huge 0
[ 3436.393257][ T9214] shmem 0
[ 3436.396398][ T9214] mapped_file 0
[ 3436.399857][ T9214] dirty 0
[ 3436.402782][ T9214] writeback 0
[ 3436.416303][ T9214] workingset_refault_anon 391761
[ 3436.421269][ T9214] workingset_refault_file 25
[ 3436.426055][ T9214] swap 2007040
[ 3436.429437][ T9214] swapcached 4096
[ 3436.433065][ T9214] pgpgin 903767
[ 3436.436856][ T9214] pgpgout 903766
[ 3436.440418][ T9214] pgfault 1585814
[ 3436.445258][ T9214] pgmajfault 376672
[ 3436.449309][ T9214] inactive_anon 0
[ 3436.452946][ T9214] active_anon 0
[ 3436.456674][ T9214] inactive_file 0
[ 3436.460323][ T9214] active_file 0
[ 3436.463787][ T9214] unevictable 0
[ 3436.476080][ T9214] hierarchical_memory_limit 314572800
[ 3436.481479][ T9214] hierarchical_memsw_limit 9223372036854771712
[ 3436.488795][ T9214] total_cache 0
[ 3436.492266][ T9214] total_rss 0
[ 3436.496318][ T9214] total_rss_huge 0
[ 3436.500093][ T9214] total_shmem 0
[ 3436.503569][ T9214] total_mapped_file 0
[ 3436.508320][ T9214] total_dirty 0
[ 3436.511801][ T9214] total_writeback 0
[ 3436.519026][ T9214] total_workingset_refault_anon 391761
[ 3436.529389][ T9214] total_workingset_refault_file 25
[ 3436.534703][ T9214] total_swap 2007040
[ 3436.538608][ T9214] total_swapcached 4096
[ 3436.542757][ T9214] total_pgpgin 903767
[ 3436.547091][ T9214] total_pgpgout 903766
[ 3436.551175][ T9214] total_pgfault 1585814
[ 3436.557941][ T9214] total_pgmajfault 376672
[ 3436.562284][ T9214] total_inactive_anon 0
[ 3436.566747][ T9214] total_active_anon 0
[ 3436.570734][ T9214] total_inactive_file 0
[ 3436.579395][ T9214] total_active_file 0
[ 3436.583405][ T9214] total_unevictable 0
[ 3436.588937][ T9214] anon_cost 0
[ 3436.592240][ T9214] file_cost 0
[ 3436.596827][ T9214] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9214,uid=0
23:31:35 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1e00}}}]}]}}]}, 0x74}}, 0x0)

[ 3436.613049][ T9214] Memory cgroup out of memory: Killed process 9214 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3436.644277][ T5095] Bluetooth: hci8: command 0x0409 tx timeout
[ 3436.866223][ T9216] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3436.880999][ T9216] CPU: 1 PID: 9216 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3436.891797][ T9216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3436.901865][ T9216] Call Trace:
[ 3436.905139][ T9216]  <TASK>
[ 3436.908059][ T9216]  dump_stack_lvl+0x1e7/0x2e0
[ 3436.912727][ T9216]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3436.917910][ T9216]  ? __pfx__printk+0x10/0x10
[ 3436.922499][ T9216]  ? ___ratelimit+0x4c4/0x670
[ 3436.927180][ T9216]  ? __pfx____ratelimit+0x10/0x10
[ 3436.932205][ T9216]  dump_header+0xda/0x6a0
[ 3436.936530][ T9216]  oom_kill_process+0x3a7/0x930
[ 3436.941377][ T9216]  out_of_memory+0xf67/0x1320
[ 3436.946073][ T9216]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3436.951701][ T9216]  ? __pfx___mutex_lock+0x10/0x10
[ 3436.956735][ T9216]  ? __pfx_out_of_memory+0x10/0x10
[ 3436.961858][ T9216]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3436.967406][ T9216]  ? __pfx_lock_release+0x10/0x10
[ 3436.972459][ T9216]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3436.978524][ T9216]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3436.983713][ T9216]  ? mem_cgroup_iter+0x422/0x560
[ 3436.988648][ T9216]  try_charge_memcg+0xda2/0x18a0
[ 3436.993572][ T9216]  ? mark_lock+0x9a/0x350
[ 3436.997914][ T9216]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3437.003292][ T9216]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3437.009439][ T9216]  charge_memcg+0xa2/0x160
[ 3437.013845][ T9216]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3437.019917][ T9216]  __read_swap_cache_async+0x480/0x8b0
[ 3437.025368][ T9216]  ? mark_lock+0x9a/0x350
[ 3437.029703][ T9216]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3437.035695][ T9216]  swap_cluster_readahead+0x67c/0x810
[ 3437.041059][ T9216]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3437.046948][ T9216]  ? __pfx_lock_release+0x10/0x10
[ 3437.051962][ T9216]  ? xas_descend+0x37e/0x470
[ 3437.056558][ T9216]  swapin_readahead+0x1ea/0x1070
[ 3437.061491][ T9216]  ? filemap_get_entry+0x127/0x4e0
[ 3437.066605][ T9216]  ? __pfx_swapin_readahead+0x10/0x10
[ 3437.071997][ T9216]  ? __filemap_get_folio+0x935/0xbc0
[ 3437.077293][ T9216]  ? swap_cache_get_folio+0x9f/0x570
[ 3437.082576][ T9216]  do_swap_page+0x791/0x3f40
[ 3437.087162][ T9216]  ? rcu_is_watching+0x15/0xb0
[ 3437.091926][ T9216]  ? do_swap_page+0x154/0x3f40
[ 3437.096688][ T9216]  ? __pfx_do_swap_page+0x10/0x10
[ 3437.101748][ T9216]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3437.107211][ T9216]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3437.113018][ T9216]  __handle_mm_fault+0x15e8/0x72d0
[ 3437.118152][ T9216]  ? reacquire_held_locks+0x3eb/0x690
[ 3437.123603][ T9216]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3437.129085][ T9216]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3437.134846][ T9216]  ? mtree_range_walk+0x6fd/0x8e0
[ 3437.139898][ T9216]  ? lock_vma_under_rcu+0x18a/0x730
[ 3437.145122][ T9216]  ? __pfx_lock_release+0x10/0x10
[ 3437.150172][ T9216]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3437.155410][ T9216]  ? lock_vma_under_rcu+0x18a/0x730
[ 3437.160663][ T9216]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3437.166233][ T9216]  handle_mm_fault+0x3c1/0x8a0
[ 3437.171024][ T9216]  exc_page_fault+0x456/0x870
[ 3437.175732][ T9216]  asm_exc_page_fault+0x26/0x30
[ 3437.180618][ T9216] RIP: 0033:0x7f30cb2a9ba0
[ 3437.185053][ T9216] Code: fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 48 85 c0 7c 18 74 01 <c3> 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 b8 3c 00 00 00 0f 05
[ 3437.204683][ T9216] RSP: 002b:00007f30cb4cf918 EFLAGS: 00010202
[ 3437.211211][ T9216] RAX: 000000000000729d RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3437.219205][ T9216] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3437.227196][ T9216] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3437.235188][ T9216] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3437.243180][ T9216] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3437.251191][ T9216]  </TASK>
[ 3437.258481][ T9216] memory: usage 307200kB, limit 307200kB, failcnt 572602
[ 3437.266477][ T9216] memory+swap: usage 309184kB, limit 9007199254740988kB, failcnt 0
[ 3437.274599][ T9216] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3437.295967][ T9216] Memory cgroup stats for /syz0:
[ 3437.296112][ T9216] cache 0
[ 3437.305952][ T9216] rss 0
[ 3437.308742][ T9216] rss_huge 0
[ 3437.311947][ T9216] shmem 0
[ 3437.315188][ T9216] mapped_file 0
[ 3437.318663][ T9216] dirty 0
[ 3437.321603][ T9216] writeback 0
[ 3437.325706][ T9216] workingset_refault_anon 391853
[ 3437.330663][ T9216] workingset_refault_file 25
[ 3437.339332][ T9216] swap 2035712
[ 3437.347886][ T9216] swapcached 0
[ 3437.351283][ T9216] pgpgin 903869
[ 3437.355257][ T9216] pgpgout 903869
[ 3437.358816][ T9216] pgfault 1585967
[ 3437.362458][ T9216] pgmajfault 376758
[ 3437.367524][ T9216] inactive_anon 0
[ 3437.371176][ T9216] active_anon 0
[ 3437.388181][ T9216] inactive_file 0
[ 3437.391857][ T9216] active_file 0
[ 3437.409117][ T9216] unevictable 0
[ 3437.412618][ T9216] hierarchical_memory_limit 314572800
[ 3437.434481][ T9216] hierarchical_memsw_limit 9223372036854771712
[ 3437.440683][ T9216] total_cache 0
[ 3437.454570][ T9216] total_rss 0
[ 3437.457901][ T9216] total_rss_huge 0
[ 3437.461628][ T9216] total_shmem 0
[ 3437.474311][ T9216] total_mapped_file 0
[ 3437.478343][ T9216] total_dirty 0
[ 3437.481802][ T9216] total_writeback 0
[ 3437.494458][ T9216] total_workingset_refault_anon 391853
[ 3437.499961][ T9216] total_workingset_refault_file 25
[ 3437.532406][ T9216] total_swap 2035712
[ 3437.536825][ T9216] total_swapcached 0
[ 3437.540742][ T9216] total_pgpgin 903869
[ 3437.554451][ T9216] total_pgpgout 903869
[ 3437.558573][ T9216] total_pgfault 1585967
[ 3437.562740][ T9216] total_pgmajfault 376758
[ 3437.580054][ T9216] total_inactive_anon 0
[ 3437.588755][ T9216] total_active_anon 0
[ 3437.592781][ T9216] total_inactive_file 0
[ 3437.604704][ T9216] total_active_file 0
[ 3437.609661][ T9216] total_unevictable 0
[ 3437.613668][ T9216] anon_cost 0
[ 3437.656496][ T9216] file_cost 0
[ 3437.659924][ T9216] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9216,uid=0
[ 3437.702864][ T9216] Memory cgroup out of memory: Killed process 9216 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:31:36 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1e03}}}]}]}}]}, 0x74}}, 0x0)

[ 3438.548257][ T9219] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3438.584212][ T9219] CPU: 0 PID: 9219 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3438.594254][ T9219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3438.604345][ T9219] Call Trace:
[ 3438.607648][ T9219]  <TASK>
[ 3438.610610][ T9219]  dump_stack_lvl+0x1e7/0x2e0
[ 3438.615322][ T9219]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3438.620550][ T9219]  ? __pfx__printk+0x10/0x10
[ 3438.625160][ T9219]  ? ___ratelimit+0x4c4/0x670
[ 3438.629880][ T9219]  ? __pfx____ratelimit+0x10/0x10
[ 3438.634947][ T9219]  dump_header+0xda/0x6a0
[ 3438.639317][ T9219]  oom_kill_process+0x3a7/0x930
[ 3438.644203][ T9219]  out_of_memory+0xf67/0x1320
[ 3438.648915][ T9219]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3438.654582][ T9219]  ? __pfx___mutex_lock+0x10/0x10
[ 3438.659641][ T9219]  ? __pfx_out_of_memory+0x10/0x10
[ 3438.664799][ T9219]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3438.670384][ T9219]  ? __pfx_lock_release+0x10/0x10
[ 3438.675450][ T9219]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3438.681563][ T9219]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3438.686809][ T9219]  ? mem_cgroup_iter+0x422/0x560
[ 3438.691805][ T9219]  try_charge_memcg+0xda2/0x18a0
[ 3438.696788][ T9219]  ? mark_lock+0x9a/0x350
[ 3438.701187][ T9219]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3438.706634][ T9219]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3438.712846][ T9219]  charge_memcg+0xa2/0x160
[ 3438.717326][ T9219]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3438.723450][ T9219]  __read_swap_cache_async+0x480/0x8b0
[ 3438.728955][ T9219]  ? mark_lock+0x9a/0x350
[ 3438.733333][ T9219]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3438.739376][ T9219]  swap_cluster_readahead+0x67c/0x810
[ 3438.744862][ T9219]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3438.750806][ T9219]  ? __pfx_lock_release+0x10/0x10
[ 3438.755885][ T9219]  ? xas_descend+0x37e/0x470
[ 3438.760519][ T9219]  swapin_readahead+0x1ea/0x1070
[ 3438.765497][ T9219]  ? filemap_get_entry+0x127/0x4e0
[ 3438.770684][ T9219]  ? __pfx_swapin_readahead+0x10/0x10
[ 3438.776280][ T9219]  ? __filemap_get_folio+0x935/0xbc0
[ 3438.781607][ T9219]  ? swap_cache_get_folio+0x9f/0x570
[ 3438.786940][ T9219]  do_swap_page+0x791/0x3f40
[ 3438.791566][ T9219]  ? rcu_is_watching+0x15/0xb0
[ 3438.796379][ T9219]  ? kasan_save_free_info+0x40/0x50
[ 3438.801617][ T9219]  ? do_swap_page+0x154/0x3f40
[ 3438.806415][ T9219]  ? __pfx_do_swap_page+0x10/0x10
[ 3438.811477][ T9219]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3438.816982][ T9219]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3438.822834][ T9219]  ? do_vfs_ioctl+0x1e77/0x2e40
[ 3438.827738][ T9219]  __handle_mm_fault+0x15e8/0x72d0
[ 3438.833006][ T9219]  ? reacquire_held_locks+0x3eb/0x690
[ 3438.838421][ T9219]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3438.843935][ T9219]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3438.849708][ T9219]  ? mtree_range_walk+0x6fd/0x8e0
[ 3438.854783][ T9219]  ? lock_vma_under_rcu+0x18a/0x730
[ 3438.860021][ T9219]  ? __pfx_lock_release+0x10/0x10
[ 3438.865085][ T9219]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3438.870346][ T9219]  ? lock_vma_under_rcu+0x18a/0x730
[ 3438.875589][ T9219]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3438.881179][ T9219]  handle_mm_fault+0x3c1/0x8a0
[ 3438.885997][ T9219]  exc_page_fault+0x456/0x870
[ 3438.890725][ T9219]  asm_exc_page_fault+0x26/0x30
[ 3438.895614][ T9219] RIP: 0033:0x7f30cb234bf1
[ 3438.900061][ T9219] Code: 75 67 48 8d 5d 08 4c 8d 65 0c eb 1e 0f 1f 44 00 00 45 31 c0 31 c9 ba 80 00 00 00 48 89 de bf ca 00 00 00 31 c0 e8 9f 91 04 00 <8b> 03 85 c0 74 e1 c7 45 08 00 00 00 00 48 89 ef e8 8a 9b ff ff 8b
[ 3438.919698][ T9219] RSP: 002b:00007f30cbf26180 EFLAGS: 00010202
[ 3438.925815][ T9219] RAX: 0000000000000000 RBX: 00007f30cb3abf88 RCX: 00007f30cb27db0b
[ 3438.933820][ T9219] RDX: 0000000000000000 RSI: 0000000000006364 RDI: 00000000000000d8
[ 3438.941823][ T9219] RBP: 00007f30cb3abf80 R08: 0000000000000000 R09: 00007f30cb4cfa47
[ 3438.949823][ T9219] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f30cb3abf8c
[ 3438.957825][ T9219] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3438.965846][ T9219]  </TASK>
[ 3438.974890][ T9219] memory: usage 307188kB, limit 307200kB, failcnt 573232
[ 3438.982004][ T5095] Bluetooth: hci8: command 0x041b tx timeout
[ 3438.990518][ T9219] memory+swap: usage 309164kB, limit 9007199254740988kB, failcnt 0
[ 3439.016736][ T9219] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3439.046173][ T9219] Memory cgroup stats for /syz0:
[ 3439.046575][ T9219] cache 0
[ 3439.056170][ T9219] rss 12288
[ 3439.066608][ T9219] rss_huge 0
[ 3439.074596][ T9219] shmem 0
[ 3439.077677][ T9219] mapped_file 0
[ 3439.094444][ T9219] dirty 0
[ 3439.097553][ T9219] writeback 0
[ 3439.100985][ T9219] workingset_refault_anon 392001
[ 3439.114555][ T9219] workingset_refault_file 25
[ 3439.124549][ T9219] swap 2023424
[ 3439.128084][ T9219] swapcached 8192
[ 3439.145105][ T9219] pgpgin 904027
[ 3439.148832][ T9219] pgpgout 904024
[ 3439.152491][ T9219] pgfault 1586200
[ 3439.164359][ T9219] pgmajfault 376893
[ 3439.168357][ T9219] inactive_anon 4096
[ 3439.183169][ T9219] active_anon 4096
[ 3439.187496][ T9219] inactive_file 0
[ 3439.191254][ T9219] active_file 0
[ 3439.204556][ T9219] unevictable 0
[ 3439.208062][ T9219] hierarchical_memory_limit 314572800
[ 3439.213446][ T9219] hierarchical_memsw_limit 9223372036854771712
[ 3439.232052][ T9219] total_cache 0
[ 3439.239328][ T9219] total_rss 12288
[ 3439.242999][ T9219] total_rss_huge 0
[ 3439.247900][ T9219] total_shmem 0
[ 3439.251387][ T9219] total_mapped_file 0
[ 3439.268875][ T9219] total_dirty 0
[ 3439.272421][ T9219] total_writeback 0
[ 3439.283889][ T9219] total_workingset_refault_anon 392001
[ 3439.304338][ T9219] total_workingset_refault_file 25
[ 3439.309501][ T9219] total_swap 2023424
[ 3439.313412][ T9219] total_swapcached 8192
[ 3439.331333][ T9219] total_pgpgin 904027
[ 3439.335818][ T9219] total_pgpgout 904024
[ 3439.339914][ T9219] total_pgfault 1586200
[ 3439.350729][ T9219] total_pgmajfault 376893
[ 3439.355681][ T9219] total_inactive_anon 4096
[ 3439.360114][ T9219] total_active_anon 4096
[ 3439.364954][ T9219] total_inactive_file 0
[ 3439.369125][ T9219] total_active_file 0
[ 3439.373159][ T9219] total_unevictable 0
[ 3439.377394][ T9219] anon_cost 0
23:31:37 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2602}}}]}]}}]}, 0x74}}, 0x0)

[ 3439.380732][ T9219] file_cost 0
[ 3439.384697][ T9219] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9218,uid=0
[ 3439.400457][ T9219] Memory cgroup out of memory: Killed process 9218 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3441.054531][ T5095] Bluetooth: hci8: command 0x040f tx timeout
23:31:40 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2800}}}]}]}}]}, 0x74}}, 0x0)

[ 3443.124405][ T5095] Bluetooth: hci8: command 0x0419 tx timeout
23:31:44 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2e01}}}]}]}}]}, 0x74}}, 0x0)

23:31:47 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3603}}}]}]}}]}, 0x74}}, 0x0)

[ 3450.968740][ T1240] ieee802154 phy0 wpan0: encryption failed: -22
[ 3450.975530][ T1240] ieee802154 phy1 wpan1: encryption failed: -22
23:31:50 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}}}]}]}}]}, 0x74}}, 0x0)

[ 3456.036302][ T9229] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3456.048453][ T9229] CPU: 0 PID: 9229 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3456.058467][ T9229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3456.068549][ T9229] Call Trace:
[ 3456.071830][ T9229]  <TASK>
[ 3456.074754][ T9229]  dump_stack_lvl+0x1e7/0x2e0
[ 3456.079523][ T9229]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3456.084712][ T9229]  ? __pfx__printk+0x10/0x10
[ 3456.089726][ T9229]  ? ___ratelimit+0x4c4/0x670
[ 3456.094403][ T9229]  ? __pfx____ratelimit+0x10/0x10
[ 3456.099493][ T9229]  dump_header+0xda/0x6a0
[ 3456.103844][ T9229]  oom_kill_process+0x3a7/0x930
[ 3456.108710][ T9229]  out_of_memory+0xf67/0x1320
[ 3456.113409][ T9229]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3456.119048][ T9229]  ? __pfx___mutex_lock+0x10/0x10
[ 3456.124084][ T9229]  ? __pfx_out_of_memory+0x10/0x10
[ 3456.129292][ T9229]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3456.134941][ T9229]  ? __pfx_lock_release+0x10/0x10
[ 3456.139968][ T9229]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3456.146045][ T9229]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3456.151246][ T9229]  ? mem_cgroup_iter+0x422/0x560
[ 3456.156187][ T9229]  try_charge_memcg+0xda2/0x18a0
[ 3456.161130][ T9229]  ? mark_lock+0x9a/0x350
[ 3456.165472][ T9229]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3456.170865][ T9229]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3456.177021][ T9229]  charge_memcg+0xa2/0x160
[ 3456.181442][ T9229]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3456.187513][ T9229]  __read_swap_cache_async+0x480/0x8b0
[ 3456.192975][ T9229]  ? mark_lock+0x9a/0x350
[ 3456.197308][ T9229]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3456.203294][ T9229]  swap_cluster_readahead+0x67c/0x810
[ 3456.208677][ T9229]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3456.214586][ T9229]  ? __pfx_lock_release+0x10/0x10
[ 3456.219615][ T9229]  ? xas_descend+0x37e/0x470
[ 3456.224232][ T9229]  swapin_readahead+0x1ea/0x1070
[ 3456.229170][ T9229]  ? filemap_get_entry+0x127/0x4e0
[ 3456.234294][ T9229]  ? __pfx_swapin_readahead+0x10/0x10
[ 3456.239675][ T9229]  ? __filemap_get_folio+0x935/0xbc0
[ 3456.244965][ T9229]  ? swap_cache_get_folio+0x9f/0x570
[ 3456.250256][ T9229]  do_swap_page+0x791/0x3f40
[ 3456.254854][ T9229]  ? rcu_is_watching+0x15/0xb0
[ 3456.259632][ T9229]  ? do_swap_page+0x154/0x3f40
[ 3456.264393][ T9229]  ? __pfx_do_swap_page+0x10/0x10
[ 3456.269416][ T9229]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3456.274874][ T9229]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3456.280685][ T9229]  __handle_mm_fault+0x15e8/0x72d0
[ 3456.285812][ T9229]  ? reacquire_held_locks+0x3eb/0x690
[ 3456.291184][ T9229]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3456.296647][ T9229]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3456.302376][ T9229]  ? mtree_range_walk+0x6fd/0x8e0
[ 3456.307406][ T9229]  ? lock_vma_under_rcu+0x18a/0x730
[ 3456.312611][ T9229]  ? __pfx_lock_release+0x10/0x10
[ 3456.317632][ T9229]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3456.322844][ T9229]  ? lock_vma_under_rcu+0x18a/0x730
[ 3456.328041][ T9229]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3456.333587][ T9229]  handle_mm_fault+0x3c1/0x8a0
[ 3456.338382][ T9229]  exc_page_fault+0x456/0x870
[ 3456.343066][ T9229]  asm_exc_page_fault+0x26/0x30
[ 3456.347922][ T9229] RIP: 0033:0x7f30cb239ac7
[ 3456.352345][ T9229] Code: 25 ff 0f 00 00 09 c5 80 3d 06 bc c9 00 00 0f 85 6f ff ff ff 44 0f b6 6c 24 0f 44 8d 55 04 89 e8 41 89 c1 41 81 e1 ff 1f 00 00 <43> 8b 14 8e 39 d5 0f 84 5e ff ff ff 85 d2 0f 84 65 01 00 00 83 c0
[ 3456.371952][ T9229] RSP: 002b:00007f30cb4cfa60 EFLAGS: 00010202
[ 3456.378105][ T9229] RAX: 0000000081405262 RBX: 00007f30cb3ac018 RCX: 0000000000000248
[ 3456.386070][ T9229] RDX: ffffffff81405444 RSI: 0000000080000000 RDI: 0000000000003c3e
[ 3456.394123][ T9229] RBP: 0000000081405262 R08: 0000001b31820000 R09: 0000000000001262
[ 3456.402086][ T9229] R10: 0000000081405266 R11: 0000000000000246 R12: 0000000000000248
[ 3456.410052][ T9229] R13: 0000000000000001 R14: 00007f30cb3a0000 R15: ffffffff81405444
[ 3456.418020][ T9229]  ? unwind_next_frame+0x6f4/0x29e0
[ 3456.423234][ T9229]  ? unwind_next_frame+0x6f4/0x29e0
[ 3456.428437][ T9229]  </TASK>
[ 3456.459143][ T9229] memory: usage 307200kB, limit 307200kB, failcnt 604428
[ 3456.466749][ T9229] memory+swap: usage 309140kB, limit 9007199254740988kB, failcnt 0
[ 3456.475336][ T9229] kmem: usage 307160kB, limit 9007199254740988kB, failcnt 0
[ 3456.482728][ T9229] Memory cgroup stats for /syz0:
[ 3456.482840][ T9229] cache 0
[ 3456.494224][ T9229] rss 40960
[ 3456.499363][ T9229] rss_huge 0
[ 3456.502587][ T9229] shmem 0
[ 3456.506159][ T9229] mapped_file 0
[ 3456.509638][ T9229] dirty 0
[ 3456.512585][ T9229] writeback 0
[ 3456.516436][ T9229] workingset_refault_anon 414364
[ 3456.521387][ T9229] workingset_refault_file 25
[ 3456.526212][ T9229] swap 1986560
[ 3456.529629][ T9229] swapcached 36864
[ 3456.533337][ T9229] pgpgin 926526
[ 3456.537064][ T9229] pgpgout 926516
[ 3456.540630][ T9229] pgfault 1613517
[ 3456.545519][ T9229] pgmajfault 398694
[ 3456.549358][ T9229] inactive_anon 8192
[ 3456.555794][ T9229] active_anon 4096
[ 3456.559697][ T9229] inactive_file 0
[ 3456.563375][ T9229] active_file 0
[ 3456.568330][ T9229] unevictable 0
[ 3456.571823][ T9229] hierarchical_memory_limit 314572800
[ 3456.581938][ T9229] hierarchical_memsw_limit 9223372036854771712
[ 3456.593308][ T9229] total_cache 0
[ 3456.597438][ T9229] total_rss 40960
[ 3456.601100][ T9229] total_rss_huge 0
[ 3456.605460][ T9229] total_shmem 0
[ 3456.608944][ T9229] total_mapped_file 0
[ 3456.613017][ T9229] total_dirty 0
[ 3456.617582][ T9229] total_writeback 0
[ 3456.623761][ T9229] total_workingset_refault_anon 414364
[ 3456.629976][ T9229] total_workingset_refault_file 25
[ 3456.640856][ T9229] total_swap 1986560
[ 3456.645341][ T9229] total_swapcached 36864
[ 3456.649695][ T9229] total_pgpgin 926526
[ 3456.653740][ T9229] total_pgpgout 926516
[ 3456.659787][ T9229] total_pgfault 1613517
[ 3456.664701][ T9229] total_pgmajfault 398694
[ 3456.669169][ T9229] total_inactive_anon 8192
[ 3456.673661][ T9229] total_active_anon 4096
[ 3456.678263][ T9229] total_inactive_file 0
[ 3456.682528][ T9229] total_active_file 0
[ 3456.686954][ T9229] total_unevictable 0
[ 3456.691113][ T9229] anon_cost 0
[ 3456.697103][ T9229] file_cost 0
[ 3456.700458][ T9229] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9229,uid=0
[ 3456.717024][ T9229] Memory cgroup out of memory: Killed process 9229 (syz-executor.0) total-vm:54508kB, anon-rss:516kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:31:55 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4600}}}]}]}}]}, 0x74}}, 0x0)

[ 3456.852281][ T9231] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3456.865178][ T9231] CPU: 0 PID: 9231 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3456.875201][ T9231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3456.885280][ T9231] Call Trace:
[ 3456.888657][ T9231]  <TASK>
[ 3456.891583][ T9231]  dump_stack_lvl+0x1e7/0x2e0
[ 3456.896263][ T9231]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3456.901457][ T9231]  ? __pfx__printk+0x10/0x10
[ 3456.906045][ T9231]  ? ___ratelimit+0x4c4/0x670
[ 3456.910724][ T9231]  ? __pfx____ratelimit+0x10/0x10
[ 3456.915751][ T9231]  dump_header+0xda/0x6a0
[ 3456.920085][ T9231]  oom_kill_process+0x3a7/0x930
[ 3456.924954][ T9231]  out_of_memory+0xf67/0x1320
[ 3456.929663][ T9231]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3456.935501][ T9231]  ? __pfx___mutex_lock+0x10/0x10
[ 3456.940542][ T9231]  ? __pfx_out_of_memory+0x10/0x10
[ 3456.945655][ T9231]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3456.951201][ T9231]  ? __pfx_lock_release+0x10/0x10
[ 3456.956225][ T9231]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3456.962311][ T9231]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3456.967530][ T9231]  ? mem_cgroup_iter+0x422/0x560
[ 3456.972520][ T9231]  try_charge_memcg+0xda2/0x18a0
[ 3456.977501][ T9231]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3456.982897][ T9231]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3456.988633][ T9231]  ? __pfx_lock_release+0x10/0x10
[ 3456.993669][ T9231]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3457.000433][ T9231]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3457.006149][ T9231]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3457.011961][ T9231]  obj_cgroup_charge+0x389/0x630
[ 3457.016900][ T9231]  ? obj_cgroup_charge+0x121/0x630
[ 3457.022008][ T9231]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 3457.027486][ T9231]  ? kmalloc_trace+0x4e/0x360
[ 3457.032188][ T9231]  ? __pfx___might_resched+0x10/0x10
[ 3457.037497][ T9231]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 3457.043311][ T9231]  ? copy_semundo+0xb5/0x240
[ 3457.047907][ T9231]  kmalloc_trace+0x216/0x360
[ 3457.052526][ T9231]  ? __asan_memcpy+0x40/0x70
[ 3457.057118][ T9231]  copy_semundo+0xb5/0x240
[ 3457.061532][ T9231]  copy_process+0x1bbe/0x3fc0
[ 3457.066215][ T9231]  ? copy_process+0x9be/0x3fc0
[ 3457.071058][ T9231]  ? __pfx_copy_process+0x10/0x10
[ 3457.076092][ T9231]  ? __might_fault+0xc5/0x120
[ 3457.080815][ T9231]  ? __asan_memset+0x23/0x50
[ 3457.085438][ T9231]  kernel_clone+0x21d/0x8d0
[ 3457.089963][ T9231]  ? __pfx_kernel_clone+0x10/0x10
[ 3457.094996][ T9231]  __se_sys_clone3+0x2cb/0x350
[ 3457.099754][ T9231]  ? __might_fault+0xa9/0x120
[ 3457.104442][ T9231]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3457.110035][ T9231]  ? do_syscall_64+0x108/0x240
[ 3457.114848][ T9231]  ? do_syscall_64+0xb4/0x240
[ 3457.119552][ T9231]  do_syscall_64+0xf9/0x240
[ 3457.124067][ T9231]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3457.129986][ T9231] RIP: 0033:0x7f30cb2a9b99
[ 3457.134424][ T9231] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3457.154046][ T9231] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3457.162464][ T9231] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3457.170529][ T9231] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3457.178519][ T9231] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3457.186514][ T9231] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3457.194498][ T9231] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3457.202560][ T9231]  </TASK>
[ 3457.217117][ T9231] memory: usage 307200kB, limit 307200kB, failcnt 604559
[ 3457.224399][ T9231] memory+swap: usage 309188kB, limit 9007199254740988kB, failcnt 0
[ 3457.232307][ T9231] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3457.240585][ T9231] Memory cgroup stats for /syz0:
[ 3457.240692][ T9231] cache 0
[ 3457.249298][ T9231] rss 20480
[ 3457.252431][ T9231] rss_huge 0
[ 3457.256328][ T9231] shmem 0
[ 3457.259279][ T9231] mapped_file 0
[ 3457.262733][ T9231] dirty 0
[ 3457.266127][ T9231] writeback 0
[ 3457.270639][ T9231] workingset_refault_anon 414400
[ 3457.276181][ T9231] workingset_refault_file 25
[ 3457.280866][ T9231] swap 2035712
[ 3457.285156][ T9231] swapcached 0
[ 3457.288573][ T9231] pgpgin 926572
[ 3457.292057][ T9231] pgpgout 926567
[ 3457.296090][ T9231] pgfault 1613596
[ 3457.299733][ T9231] pgmajfault 398727
[ 3457.303530][ T9231] inactive_anon 0
[ 3457.307509][ T9231] active_anon 0
[ 3457.310987][ T9231] inactive_file 0
[ 3457.315618][ T9231] active_file 0
[ 3457.319090][ T9231] unevictable 0
[ 3457.322540][ T9231] hierarchical_memory_limit 314572800
[ 3457.328703][ T9231] hierarchical_memsw_limit 9223372036854771712
[ 3457.336973][ T9231] total_cache 0
[ 3457.340538][ T9231] total_rss 20480
[ 3457.345138][ T9231] total_rss_huge 0
[ 3457.348953][ T9231] total_shmem 0
[ 3457.352521][ T9231] total_mapped_file 0
[ 3457.357347][ T9231] total_dirty 0
[ 3457.360905][ T9231] total_writeback 0
[ 3457.365393][ T9231] total_workingset_refault_anon 414400
[ 3457.371123][ T9231] total_workingset_refault_file 25
[ 3457.378334][ T9231] total_swap 2035712
[ 3457.382349][ T9231] total_swapcached 0
[ 3457.386992][ T9231] total_pgpgin 926572
[ 3457.391283][ T9231] total_pgpgout 926567
[ 3457.396075][ T9231] total_pgfault 1613596
[ 3457.400375][ T9231] total_pgmajfault 398727
[ 3457.405354][ T9231] total_inactive_anon 0
[ 3457.409613][ T9231] total_active_anon 0
[ 3457.413676][ T9231] total_inactive_file 0
[ 3457.418857][ T9231] total_active_file 0
[ 3457.422916][ T9231] total_unevictable 0
[ 3457.428151][ T9231] anon_cost 0
[ 3457.431504][ T9231] file_cost 0
[ 3457.435977][ T9231] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9231,uid=0
23:31:55 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4e00}}}]}]}}]}, 0x74}}, 0x0)

[ 3457.452886][ T9231] Memory cgroup out of memory: Killed process 9231 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3457.597639][ T9233] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3457.613596][ T9233] CPU: 0 PID: 9233 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3457.623620][ T9233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3457.633675][ T9233] Call Trace:
[ 3457.636951][ T9233]  <TASK>
[ 3457.639961][ T9233]  dump_stack_lvl+0x1e7/0x2e0
[ 3457.644638][ T9233]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3457.649845][ T9233]  ? __pfx__printk+0x10/0x10
[ 3457.654423][ T9233]  ? ___ratelimit+0x4c4/0x670
[ 3457.659102][ T9233]  ? __pfx____ratelimit+0x10/0x10
[ 3457.664232][ T9233]  dump_header+0xda/0x6a0
[ 3457.668608][ T9233]  oom_kill_process+0x3a7/0x930
[ 3457.673642][ T9233]  out_of_memory+0xf67/0x1320
[ 3457.678343][ T9233]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3457.684006][ T9233]  ? __pfx___mutex_lock+0x10/0x10
[ 3457.689050][ T9233]  ? __pfx_out_of_memory+0x10/0x10
[ 3457.694172][ T9233]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3457.699722][ T9233]  ? __pfx_lock_release+0x10/0x10
[ 3457.704763][ T9233]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3457.710848][ T9233]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3457.716158][ T9233]  ? mem_cgroup_iter+0x422/0x560
[ 3457.721112][ T9233]  try_charge_memcg+0xda2/0x18a0
[ 3457.726141][ T9233]  ? mark_lock+0x9a/0x350
[ 3457.730574][ T9233]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3457.735967][ T9233]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3457.742212][ T9233]  charge_memcg+0xa2/0x160
[ 3457.746635][ T9233]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3457.752732][ T9233]  __read_swap_cache_async+0x480/0x8b0
[ 3457.758217][ T9233]  ? mark_lock+0x9a/0x350
[ 3457.762562][ T9233]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3457.769082][ T9233]  swap_cluster_readahead+0x67c/0x810
[ 3457.774563][ T9233]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3457.780465][ T9233]  ? __pfx_lock_release+0x10/0x10
[ 3457.785499][ T9233]  ? xas_descend+0x37e/0x470
[ 3457.790104][ T9233]  swapin_readahead+0x1ea/0x1070
[ 3457.795046][ T9233]  ? filemap_get_entry+0x127/0x4e0
[ 3457.800170][ T9233]  ? __pfx_swapin_readahead+0x10/0x10
[ 3457.805550][ T9233]  ? __filemap_get_folio+0x935/0xbc0
[ 3457.810885][ T9233]  ? swap_cache_get_folio+0x9f/0x570
[ 3457.816183][ T9233]  do_swap_page+0x791/0x3f40
[ 3457.820776][ T9233]  ? rcu_is_watching+0x15/0xb0
[ 3457.825554][ T9233]  ? do_swap_page+0x154/0x3f40
[ 3457.830316][ T9233]  ? __pfx_do_swap_page+0x10/0x10
[ 3457.835433][ T9233]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3457.840898][ T9233]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3457.846702][ T9233]  ? __pfx_validate_chain+0x10/0x10
[ 3457.851907][ T9233]  __handle_mm_fault+0x15e8/0x72d0
[ 3457.857040][ T9233]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3457.862518][ T9233]  ? mt_find+0x226/0x850
[ 3457.866805][ T9233]  ? __pfx_lock_release+0x10/0x10
[ 3457.871849][ T9233]  ? mt_find+0x62d/0x850
[ 3457.876090][ T9233]  ? mt_find+0x226/0x850
[ 3457.880347][ T9233]  ? find_vma+0x142/0x1c0
[ 3457.884680][ T9233]  ? __pfx_find_vma+0x10/0x10
[ 3457.889354][ T9233]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3457.895343][ T9233]  handle_mm_fault+0x3c1/0x8a0
[ 3457.900116][ T9233]  exc_page_fault+0x2ad/0x870
[ 3457.904803][ T9233]  asm_exc_page_fault+0x26/0x30
[ 3457.909652][ T9233] RIP: 0010:__put_user_4+0x11/0x20
[ 3457.914768][ T9233] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 3457.934388][ T9233] RSP: 0018:ffffc90003597bd8 EFLAGS: 00050206
[ 3457.940455][ T9233] RAX: 00000000000072ad RBX: 0000000000000000 RCX: 00007f30cbf26990
[ 3457.948424][ T9233] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3457.956651][ T9233] RBP: ffffc90003597d10 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3457.964623][ T9233] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003597d78
[ 3457.972781][ T9233] R13: 00000000003d0f00 R14: ffffc90003597c40 R15: dffffc0000000000
[ 3457.980763][ T9233]  kernel_clone+0x363/0x8d0
[ 3457.985275][ T9233]  ? __pfx_kernel_clone+0x10/0x10
[ 3457.990312][ T9233]  __se_sys_clone3+0x2cb/0x350
[ 3457.995082][ T9233]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3458.000385][ T9233]  ? do_syscall_64+0x108/0x240
[ 3458.005152][ T9233]  ? do_syscall_64+0xb4/0x240
[ 3458.009830][ T9233]  do_syscall_64+0xf9/0x240
[ 3458.014345][ T9233]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3458.020246][ T9233] RIP: 0033:0x7f30cb2a9b99
[ 3458.024659][ T9233] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3458.044260][ T9233] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3458.052672][ T9233] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3458.060643][ T9233] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3458.068612][ T9233] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3458.076582][ T9233] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3458.084549][ T9233] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3458.092533][ T9233]  </TASK>
[ 3458.104457][ T9233] memory: usage 307200kB, limit 307200kB, failcnt 604721
[ 3458.111521][ T9233] memory+swap: usage 309212kB, limit 9007199254740988kB, failcnt 0
[ 3458.127979][ T9233] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3458.138660][ T9233] Memory cgroup stats for /syz0:
[ 3458.138767][ T9233] cache 0
[ 3458.146919][ T9233] rss 8192
[ 3458.149969][ T9233] rss_huge 0
[ 3458.153180][ T9233] shmem 0
[ 3458.156646][ T9233] mapped_file 0
[ 3458.160126][ T9233] dirty 0
[ 3458.163075][ T9233] writeback 0
[ 3458.166590][ T9233] workingset_refault_anon 414446
[ 3458.171532][ T9233] workingset_refault_file 25
[ 3458.176356][ T9233] swap 2052096
[ 3458.179739][ T9233] swapcached 4096
[ 3458.183358][ T9233] pgpgin 926628
[ 3458.187307][ T9233] pgpgout 926626
[ 3458.192461][ T9233] pgfault 1613682
[ 3458.196416][ T9233] pgmajfault 398767
[ 3458.200228][ T9233] inactive_anon 0
[ 3458.203846][ T9233] active_anon 8192
[ 3458.208642][ T9233] inactive_file 0
[ 3458.212323][ T9233] active_file 0
[ 3458.217611][ T9233] unevictable 0
[ 3458.221099][ T9233] hierarchical_memory_limit 314572800
[ 3458.227150][ T9233] hierarchical_memsw_limit 9223372036854771712
[ 3458.233332][ T9233] total_cache 0
[ 3458.237519][ T9233] total_rss 8192
[ 3458.241085][ T9233] total_rss_huge 0
[ 3458.245890][ T9233] total_shmem 0
[ 3458.249399][ T9233] total_mapped_file 0
[ 3458.253395][ T9233] total_dirty 0
[ 3458.257668][ T9233] total_writeback 0
[ 3458.261492][ T9233] total_workingset_refault_anon 414446
[ 3458.267574][ T9233] total_workingset_refault_file 25
[ 3458.272706][ T9233] total_swap 2052096
[ 3458.277234][ T9233] total_swapcached 4096
[ 3458.281411][ T9233] total_pgpgin 926628
[ 3458.286067][ T9233] total_pgpgout 926626
[ 3458.290152][ T9233] total_pgfault 1613682
[ 3458.295967][ T9233] total_pgmajfault 398767
[ 3458.300323][ T9233] total_inactive_anon 0
[ 3458.307117][ T9233] total_active_anon 8192
[ 3458.311421][ T9233] total_inactive_file 0
[ 3458.316405][ T9233] total_active_file 0
[ 3458.320406][ T9233] total_unevictable 0
[ 3458.325770][ T9233] anon_cost 0
[ 3458.329076][ T9233] file_cost 0
[ 3458.332364][ T9233] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9233,uid=0
[ 3458.348775][ T9233] Memory cgroup out of memory: Killed process 9233 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:31:56 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5601}}}]}]}}]}, 0x74}}, 0x0)

[ 3458.852056][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3458.865204][ T5099] CPU: 1 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3458.875318][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3458.885397][ T5099] Call Trace:
[ 3458.888692][ T5099]  <TASK>
[ 3458.891637][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3458.896347][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3458.901573][ T5099]  ? __pfx__printk+0x10/0x10
[ 3458.906185][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3458.910897][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3458.915957][ T5099]  dump_header+0xda/0x6a0
[ 3458.920321][ T5099]  oom_kill_process+0x3a7/0x930
[ 3458.925208][ T5099]  out_of_memory+0xf67/0x1320
[ 3458.929920][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3458.935581][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3458.940635][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3458.945792][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3458.951364][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3458.956415][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3458.962516][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3458.967747][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3458.973591][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3458.978548][ T5099]  ? mark_lock+0x9a/0x350
[ 3458.982930][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3458.988360][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3458.994546][ T5099]  charge_memcg+0xa2/0x160
[ 3458.998992][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3459.005102][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3459.010588][ T5099]  ? mark_lock+0x9a/0x350
[ 3459.015301][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3459.021422][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3459.026834][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3459.032775][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3459.037835][ T5099]  ? xas_descend+0x37e/0x470
[ 3459.042463][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3459.047425][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3459.052586][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3459.057998][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3459.063317][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3459.068642][ T5099]  do_swap_page+0x791/0x3f40
[ 3459.073434][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3459.078431][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3459.083313][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3459.088455][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3459.094056][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3459.099988][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3459.105164][ T5099]  ? reacquire_held_locks+0x3eb/0x690
[ 3459.110567][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3459.116077][ T5099]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3459.122097][ T5099]  ? mtree_range_walk+0x6fd/0x8e0
[ 3459.127239][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3459.132467][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3459.137520][ T5099]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3459.142768][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3459.148009][ T5099]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3459.153658][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3459.158451][ T5099]  exc_page_fault+0x456/0x870
[ 3459.163190][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3459.168059][ T5099] RIP: 0033:0x7f30cb2a4c20
[ 3459.172486][ T5099] Code: 48 8b 3c 25 00 03 00 00 e8 1d 13 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 e7 02 74 0b c3 66 2e 0f 1f 84 00 00 00 00 00 <64> 48 8b 04 25 10 00 00 00 8b 90 08 03 00 00 48 8d b8 08 03 00 00
[ 3459.192114][ T5099] RSP: 002b:00007f30cb4cfce8 EFLAGS: 00010246
[ 3459.198207][ T5099] RAX: 0000000000000000 RBX: 00000000000072ae RCX: 00007f30cb2a91b5
[ 3459.206201][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3459.214199][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3459.222198][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3459.230190][ T5099] R13: 000000000034c62c R14: 000000000034c62c R15: 0000000000000000
[ 3459.238219][ T5099]  </TASK>
[ 3459.304740][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 605662
[ 3459.321723][ T5099] memory+swap: usage 309168kB, limit 9007199254740988kB, failcnt 0
[ 3459.330190][ T5099] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3459.337970][ T5099] Memory cgroup stats for /syz0:
[ 3459.338106][ T5099] cache 0
[ 3459.346997][ T5099] rss 0
[ 3459.349793][ T5099] rss_huge 0
[ 3459.353004][ T5099] shmem 0
[ 3459.357433][ T5099] mapped_file 0
[ 3459.360924][ T5099] dirty 0
[ 3459.363880][ T5099] writeback 0
[ 3459.368096][ T5099] workingset_refault_anon 414654
[ 3459.373061][ T5099] workingset_refault_file 25
[ 3459.378310][ T5099] swap 2019328
[ 3459.381710][ T5099] swapcached 0
[ 3459.385811][ T5099] pgpgin 926849
[ 3459.389293][ T5099] pgpgout 926849
[ 3459.392871][ T5099] pgfault 1614004
[ 3459.397161][ T5099] pgmajfault 398966
[ 3459.400985][ T5099] inactive_anon 0
[ 3459.405298][ T5099] active_anon 0
[ 3459.408870][ T5099] inactive_file 0
[ 3459.412511][ T5099] active_file 0
[ 3459.416814][ T5099] unevictable 0
[ 3459.421548][ T5099] hierarchical_memory_limit 314572800
[ 3459.427633][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3459.433833][ T5099] total_cache 0
[ 3459.437829][ T5099] total_rss 0
[ 3459.441143][ T5099] total_rss_huge 0
[ 3459.445594][ T5099] total_shmem 0
[ 3459.449079][ T5099] total_mapped_file 0
[ 3459.453066][ T5099] total_dirty 0
[ 3459.457336][ T5099] total_writeback 0
[ 3459.461170][ T5099] total_workingset_refault_anon 414654
[ 3459.467922][ T5099] total_workingset_refault_file 25
[ 3459.473091][ T5099] total_swap 2019328
[ 3459.477221][ T5099] total_swapcached 0
[ 3459.481126][ T5099] total_pgpgin 926849
[ 3459.485876][ T5099] total_pgpgout 926849
[ 3459.489965][ T5099] total_pgfault 1614004
[ 3459.495475][ T5099] total_pgmajfault 398966
[ 3459.499831][ T5099] total_inactive_anon 0
[ 3459.504765][ T5099] total_active_anon 0
[ 3459.508772][ T5099] total_inactive_file 0
[ 3459.512940][ T5099] total_active_file 0
[ 3459.517594][ T5099] total_unevictable 0
[ 3459.521599][ T5099] anon_cost 0
[ 3459.527232][ T5099] file_cost 0
[ 3459.530605][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9236,uid=0
23:31:57 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5e00}}}]}]}}]}, 0x74}}, 0x0)

[ 3459.546929][ T5099] Memory cgroup out of memory: Killed process 9236 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3459.690127][ T9238] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3459.700730][ T9238] CPU: 1 PID: 9238 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3459.710804][ T9238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3459.720876][ T9238] Call Trace:
[ 3459.724168][ T9238]  <TASK>
[ 3459.727117][ T9238]  dump_stack_lvl+0x1e7/0x2e0
[ 3459.731901][ T9238]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3459.737264][ T9238]  ? __pfx__printk+0x10/0x10
[ 3459.742004][ T9238]  ? ___ratelimit+0x4c4/0x670
[ 3459.746699][ T9238]  ? __pfx____ratelimit+0x10/0x10
[ 3459.751743][ T9238]  dump_header+0xda/0x6a0
[ 3459.756093][ T9238]  oom_kill_process+0x3a7/0x930
[ 3459.760955][ T9238]  out_of_memory+0xf67/0x1320
[ 3459.765645][ T9238]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3459.771282][ T9238]  ? __pfx___mutex_lock+0x10/0x10
[ 3459.776314][ T9238]  ? __pfx_out_of_memory+0x10/0x10
[ 3459.781459][ T9238]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3459.787186][ T9238]  ? __pfx_lock_release+0x10/0x10
[ 3459.792219][ T9238]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3459.798293][ T9238]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3459.803491][ T9238]  ? mem_cgroup_iter+0x422/0x560
[ 3459.808431][ T9238]  try_charge_memcg+0xda2/0x18a0
[ 3459.813386][ T9238]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3459.818756][ T9238]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3459.824477][ T9238]  ? __pfx_lock_release+0x10/0x10
[ 3459.829513][ T9238]  ? memcg_account_kmem+0x1e7/0x210
[ 3459.834738][ T9238]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3459.840546][ T9238]  __memcg_kmem_charge_page+0xe1/0x250
[ 3459.846016][ T9238]  memcg_charge_kernel_stack+0x304/0x550
[ 3459.851655][ T9238]  dup_task_struct+0x40d/0x7d0
[ 3459.856424][ T9238]  copy_process+0x5d0/0x3fc0
[ 3459.861031][ T9238]  ? __pfx_lock_release+0x10/0x10
[ 3459.866063][ T9238]  ? __pfx_copy_process+0x10/0x10
[ 3459.871086][ T9238]  ? __might_fault+0xc5/0x120
[ 3459.875764][ T9238]  ? __asan_memset+0x23/0x50
[ 3459.880358][ T9238]  kernel_clone+0x21d/0x8d0
[ 3459.884868][ T9238]  ? __pfx_kernel_clone+0x10/0x10
[ 3459.889905][ T9238]  __se_sys_clone3+0x2cb/0x350
[ 3459.894674][ T9238]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3459.899982][ T9238]  ? do_syscall_64+0x108/0x240
[ 3459.904747][ T9238]  ? do_syscall_64+0xb4/0x240
[ 3459.909422][ T9238]  do_syscall_64+0xf9/0x240
[ 3459.913925][ T9238]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3459.919832][ T9238] RIP: 0033:0x7f30cb2a9b99
[ 3459.924252][ T9238] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3459.943874][ T9238] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3459.952333][ T9238] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3459.960305][ T9238] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3459.968278][ T9238] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3459.976253][ T9238] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3459.984742][ T9238] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3459.992723][ T9238]  </TASK>
[ 3460.002989][ T9238] memory: usage 307200kB, limit 307200kB, failcnt 605928
[ 3460.010366][ T9238] memory+swap: usage 309188kB, limit 9007199254740988kB, failcnt 0
[ 3460.018928][ T9238] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 3460.026905][ T9238] Memory cgroup stats for /syz0:
[ 3460.027043][ T9238] cache 0
[ 3460.036510][ T9238] rss 12288
[ 3460.039735][ T9238] rss_huge 0
[ 3460.043011][ T9238] shmem 0
[ 3460.046617][ T9238] mapped_file 0
[ 3460.050193][ T9238] dirty 0
[ 3460.053211][ T9238] writeback 0
[ 3460.057340][ T9238] workingset_refault_anon 414748
[ 3460.062376][ T9238] workingset_refault_file 25
[ 3460.067631][ T9238] swap 2035712
[ 3460.071067][ T9238] swapcached 12288
[ 3460.075423][ T9238] pgpgin 926954
[ 3460.078977][ T9238] pgpgout 926950
[ 3460.082664][ T9238] pgfault 1614162
[ 3460.087141][ T9238] pgmajfault 399057
[ 3460.091015][ T9238] inactive_anon 0
[ 3460.095339][ T9238] active_anon 12288
[ 3460.099269][ T9238] inactive_file 0
[ 3460.102983][ T9238] active_file 0
[ 3460.107952][ T9238] unevictable 0
[ 3460.111515][ T9238] hierarchical_memory_limit 314572800
[ 3460.117154][ T9238] hierarchical_memsw_limit 9223372036854771712
[ 3460.123318][ T9238] total_cache 0
[ 3460.127016][ T9238] total_rss 12288
[ 3460.130665][ T9238] total_rss_huge 0
[ 3460.134669][ T9238] total_shmem 0
[ 3460.138915][ T9238] total_mapped_file 0
[ 3460.142913][ T9238] total_dirty 0
[ 3460.146594][ T9238] total_writeback 0
[ 3460.150415][ T9238] total_workingset_refault_anon 414748
[ 3460.156237][ T9238] total_workingset_refault_file 25
[ 3460.161351][ T9238] total_swap 2035712
[ 3460.165472][ T9238] total_swapcached 12288
[ 3460.169732][ T9238] total_pgpgin 926954
[ 3460.173717][ T9238] total_pgpgout 926950
[ 3460.178259][ T9238] total_pgfault 1614162
[ 3460.182427][ T9238] total_pgmajfault 399057
[ 3460.187003][ T9238] total_inactive_anon 0
[ 3460.191171][ T9238] total_active_anon 12288
[ 3460.195727][ T9238] total_inactive_file 0
[ 3460.199899][ T9238] total_active_file 0
[ 3460.203884][ T9238] total_unevictable 0
[ 3460.209190][ T9238] anon_cost 0
[ 3460.212481][ T9238] file_cost 0
[ 3460.216599][ T9238] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9238,uid=0
23:31:58 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5e01}}}]}]}}]}, 0x74}}, 0x0)

[ 3460.232261][ T9238] Memory cgroup out of memory: Killed process 9238 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3460.366123][ T9240] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3460.376647][ T9240] CPU: 1 PID: 9240 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3460.386659][ T9240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3460.396741][ T9240] Call Trace:
[ 3460.400038][ T9240]  <TASK>
[ 3460.403079][ T9240]  dump_stack_lvl+0x1e7/0x2e0
[ 3460.407791][ T9240]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3460.413021][ T9240]  ? __pfx__printk+0x10/0x10
[ 3460.417628][ T9240]  ? ___ratelimit+0x4c4/0x670
[ 3460.422323][ T9240]  ? __pfx____ratelimit+0x10/0x10
[ 3460.427354][ T9240]  dump_header+0xda/0x6a0
[ 3460.431690][ T9240]  oom_kill_process+0x3a7/0x930
[ 3460.436548][ T9240]  out_of_memory+0xf67/0x1320
[ 3460.441401][ T9240]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3460.447034][ T9240]  ? __pfx___mutex_lock+0x10/0x10
[ 3460.452062][ T9240]  ? __pfx_out_of_memory+0x10/0x10
[ 3460.457196][ T9240]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3460.462741][ T9240]  ? __pfx_lock_release+0x10/0x10
[ 3460.467769][ T9240]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3460.473839][ T9240]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3460.479036][ T9240]  ? mem_cgroup_iter+0x422/0x560
[ 3460.483982][ T9240]  try_charge_memcg+0xda2/0x18a0
[ 3460.488946][ T9240]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3460.494322][ T9240]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3460.500049][ T9240]  ? __pfx_lock_release+0x10/0x10
[ 3460.505077][ T9240]  ? memcg_account_kmem+0x1e7/0x210
[ 3460.510284][ T9240]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3460.516090][ T9240]  __memcg_kmem_charge_page+0xe1/0x250
[ 3460.521729][ T9240]  memcg_charge_kernel_stack+0x210/0x550
[ 3460.527366][ T9240]  dup_task_struct+0x15d/0x7d0
[ 3460.532128][ T9240]  copy_process+0x5d0/0x3fc0
[ 3460.536727][ T9240]  ? __pfx_lock_release+0x10/0x10
[ 3460.541762][ T9240]  ? __pfx_copy_process+0x10/0x10
[ 3460.546786][ T9240]  ? __might_fault+0xc5/0x120
[ 3460.551464][ T9240]  ? __asan_memset+0x23/0x50
[ 3460.556059][ T9240]  kernel_clone+0x21d/0x8d0
[ 3460.560565][ T9240]  ? __pfx_kernel_clone+0x10/0x10
[ 3460.565654][ T9240]  __se_sys_clone3+0x2cb/0x350
[ 3460.570434][ T9240]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3460.575733][ T9240]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3460.581746][ T9240]  ? exc_page_fault+0x587/0x870
[ 3460.586611][ T9240]  ? do_syscall_64+0xb4/0x240
[ 3460.591294][ T9240]  do_syscall_64+0xf9/0x240
[ 3460.595803][ T9240]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3460.601714][ T9240] RIP: 0033:0x7f30cb2a9b99
[ 3460.606136][ T9240] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3460.625747][ T9240] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3460.634167][ T9240] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3460.642137][ T9240] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3460.650159][ T9240] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3460.658139][ T9240] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3460.666108][ T9240] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3460.674109][ T9240]  </TASK>
[ 3460.687973][ T9240] memory: usage 307200kB, limit 307200kB, failcnt 606142
[ 3460.701139][ T9240] memory+swap: usage 309168kB, limit 9007199254740988kB, failcnt 0
[ 3460.709842][ T9240] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3460.718046][ T9240] Memory cgroup stats for /syz0:
[ 3460.718193][ T9240] cache 0
[ 3460.727081][ T9240] rss 0
[ 3460.729868][ T9240] rss_huge 0
[ 3460.733069][ T9240] shmem 0
[ 3460.747240][ T9240] mapped_file 0
[ 3460.750842][ T9240] dirty 0
[ 3460.755260][ T9240] writeback 0
[ 3460.758804][ T9240] workingset_refault_anon 414831
[ 3460.763780][ T9240] workingset_refault_file 25
[ 3460.768794][ T9240] swap 2015232
[ 3460.772206][ T9240] swapcached 4096
[ 3460.776650][ T9240] pgpgin 927051
[ 3460.780141][ T9240] pgpgout 927050
[ 3460.783696][ T9240] pgfault 1614302
[ 3460.788701][ T9240] pgmajfault 399137
[ 3460.792525][ T9240] inactive_anon 0
[ 3460.797039][ T9240] active_anon 4096
[ 3460.800789][ T9240] inactive_file 0
[ 3460.805187][ T9240] active_file 0
[ 3460.808706][ T9240] unevictable 0
[ 3460.812175][ T9240] hierarchical_memory_limit 314572800
[ 3460.818355][ T9240] hierarchical_memsw_limit 9223372036854771712
[ 3460.825245][ T9240] total_cache 0
[ 3460.828737][ T9240] total_rss 0
[ 3460.832031][ T9240] total_rss_huge 0
[ 3460.836649][ T9240] total_shmem 0
[ 3460.840133][ T9240] total_mapped_file 0
[ 3460.844957][ T9240] total_dirty 0
[ 3460.848438][ T9240] total_writeback 0
[ 3460.852255][ T9240] total_workingset_refault_anon 414831
[ 3460.859994][ T9240] total_workingset_refault_file 25
[ 3460.865713][ T9240] total_swap 2015232
[ 3460.869635][ T9240] total_swapcached 4096
[ 3460.873795][ T9240] total_pgpgin 927051
[ 3460.878673][ T9240] total_pgpgout 927050
[ 3460.882764][ T9240] total_pgfault 1614302
[ 3460.887569][ T9240] total_pgmajfault 399137
[ 3460.891922][ T9240] total_inactive_anon 0
[ 3460.897409][ T9240] total_active_anon 4096
[ 3460.901719][ T9240] total_inactive_file 0
[ 3460.906514][ T9240] total_active_file 0
[ 3460.910511][ T9240] total_unevictable 0
[ 3460.915151][ T9240] anon_cost 0
[ 3460.918449][ T9240] file_cost 0
[ 3460.921720][ T9240] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9240,uid=0
[ 3460.947028][ T9240] Memory cgroup out of memory: Killed process 9240 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:31:59 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6e00}}}]}]}}]}, 0x74}}, 0x0)

[ 3461.175545][ T9242] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3461.189202][ T9242] CPU: 1 PID: 9242 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3461.199225][ T9242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3461.209304][ T9242] Call Trace:
[ 3461.212594][ T9242]  <TASK>
[ 3461.215530][ T9242]  dump_stack_lvl+0x1e7/0x2e0
[ 3461.220227][ T9242]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3461.225455][ T9242]  ? __pfx__printk+0x10/0x10
[ 3461.230073][ T9242]  ? ___ratelimit+0x4c4/0x670
[ 3461.234791][ T9242]  ? __pfx____ratelimit+0x10/0x10
[ 3461.239832][ T9242]  dump_header+0xda/0x6a0
[ 3461.244185][ T9242]  oom_kill_process+0x3a7/0x930
[ 3461.249062][ T9242]  out_of_memory+0xf67/0x1320
[ 3461.253752][ T9242]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3461.259393][ T9242]  ? __pfx___mutex_lock+0x10/0x10
[ 3461.264449][ T9242]  ? __pfx_out_of_memory+0x10/0x10
[ 3461.269600][ T9242]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3461.275259][ T9242]  ? __pfx_lock_release+0x10/0x10
[ 3461.280299][ T9242]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3461.286378][ T9242]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3461.291595][ T9242]  ? mem_cgroup_iter+0x422/0x560
[ 3461.296565][ T9242]  try_charge_memcg+0xda2/0x18a0
[ 3461.301528][ T9242]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3461.306906][ T9242]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3461.312637][ T9242]  ? __pfx_lock_release+0x10/0x10
[ 3461.317668][ T9242]  ? memcg_account_kmem+0x1e7/0x210
[ 3461.322884][ T9242]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3461.328710][ T9242]  __memcg_kmem_charge_page+0xe1/0x250
[ 3461.334200][ T9242]  memcg_charge_kernel_stack+0x28a/0x550
[ 3461.340030][ T9242]  dup_task_struct+0x15d/0x7d0
[ 3461.344836][ T9242]  copy_process+0x5d0/0x3fc0
[ 3461.349462][ T9242]  ? __pfx_lock_release+0x10/0x10
[ 3461.354519][ T9242]  ? __pfx_copy_process+0x10/0x10
[ 3461.359550][ T9242]  ? __might_fault+0xc5/0x120
[ 3461.364235][ T9242]  ? __asan_memset+0x23/0x50
[ 3461.368849][ T9242]  kernel_clone+0x21d/0x8d0
[ 3461.373377][ T9242]  ? __pfx_kernel_clone+0x10/0x10
[ 3461.378430][ T9242]  __se_sys_clone3+0x2cb/0x350
[ 3461.383208][ T9242]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3461.388618][ T9242]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3461.394641][ T9242]  ? exc_page_fault+0x587/0x870
[ 3461.399510][ T9242]  ? do_syscall_64+0xb4/0x240
[ 3461.404190][ T9242]  do_syscall_64+0xf9/0x240
[ 3461.408720][ T9242]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3461.414635][ T9242] RIP: 0033:0x7f30cb2a9b99
[ 3461.419059][ T9242] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3461.438665][ T9242] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3461.447093][ T9242] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3461.455086][ T9242] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3461.463266][ T9242] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3461.471349][ T9242] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3461.479420][ T9242] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3461.487418][ T9242]  </TASK>
[ 3461.501427][ T9242] memory: usage 307200kB, limit 307200kB, failcnt 606478
[ 3461.508626][ T9242] memory+swap: usage 309208kB, limit 9007199254740988kB, failcnt 0
[ 3461.517055][ T9242] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3461.524950][ T9242] Memory cgroup stats for /syz0:
[ 3461.525089][ T9242] cache 0
[ 3461.533164][ T9242] rss 12288
[ 3461.537321][ T9242] rss_huge 0
[ 3461.540537][ T9242] shmem 0
[ 3461.543467][ T9242] mapped_file 0
[ 3461.547864][ T9242] dirty 0
[ 3461.550828][ T9242] writeback 0
[ 3461.554901][ T9242] workingset_refault_anon 414964
[ 3461.559957][ T9242] workingset_refault_file 25
[ 3461.565235][ T9242] swap 2043904
[ 3461.568632][ T9242] swapcached 8192
[ 3461.573290][ T9242] pgpgin 927197
[ 3461.577677][ T9242] pgpgout 927194
[ 3461.581322][ T9242] pgfault 1614511
[ 3461.585606][ T9242] pgmajfault 399254
[ 3461.589443][ T9242] inactive_anon 12288
[ 3461.593462][ T9242] active_anon 0
[ 3461.598837][ T9242] inactive_file 0
[ 3461.602574][ T9242] active_file 0
[ 3461.607957][ T9242] unevictable 0
[ 3461.611549][ T9242] hierarchical_memory_limit 314572800
[ 3461.617994][ T9242] hierarchical_memsw_limit 9223372036854771712
[ 3461.624756][ T9242] total_cache 0
[ 3461.628439][ T9242] total_rss 12288
[ 3461.632099][ T9242] total_rss_huge 0
[ 3461.636790][ T9242] total_shmem 0
[ 3461.640393][ T9242] total_mapped_file 0
[ 3461.645296][ T9242] total_dirty 0
[ 3461.648778][ T9242] total_writeback 0
[ 3461.652666][ T9242] total_workingset_refault_anon 414964
[ 3461.659361][ T9242] total_workingset_refault_file 25
[ 3461.665171][ T9242] total_swap 2043904
[ 3461.669086][ T9242] total_swapcached 8192
[ 3461.674699][ T9242] total_pgpgin 927197
[ 3461.678840][ T9242] total_pgpgout 927194
[ 3461.683009][ T9242] total_pgfault 1614511
[ 3461.691341][ T9242] total_pgmajfault 399254
[ 3461.698560][ T9242] total_inactive_anon 12288
[ 3461.703181][ T9242] total_active_anon 0
[ 3461.708568][ T9242] total_inactive_file 0
[ 3461.712746][ T9242] total_active_file 0
[ 3461.717506][ T9242] total_unevictable 0
[ 3461.721502][ T9242] anon_cost 0
[ 3461.725522][ T9242] file_cost 0
23:32:00 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7203}}}]}]}}]}, 0x74}}, 0x0)

[ 3461.728885][ T9242] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9242,uid=0
[ 3461.745281][ T9242] Memory cgroup out of memory: Killed process 9242 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3461.926210][ T9244] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3461.936816][ T9244] CPU: 1 PID: 9244 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3461.946915][ T9244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3461.957008][ T9244] Call Trace:
[ 3461.960303][ T9244]  <TASK>
[ 3461.963227][ T9244]  dump_stack_lvl+0x1e7/0x2e0
[ 3461.967934][ T9244]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3461.973157][ T9244]  ? __pfx__printk+0x10/0x10
[ 3461.977752][ T9244]  ? ___ratelimit+0x4c4/0x670
[ 3461.982455][ T9244]  ? __pfx____ratelimit+0x10/0x10
[ 3461.987589][ T9244]  dump_header+0xda/0x6a0
[ 3461.991925][ T9244]  oom_kill_process+0x3a7/0x930
[ 3461.996794][ T9244]  out_of_memory+0xf67/0x1320
[ 3462.001628][ T9244]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3462.007269][ T9244]  ? __pfx___mutex_lock+0x10/0x10
[ 3462.012433][ T9244]  ? __pfx_out_of_memory+0x10/0x10
[ 3462.017568][ T9244]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3462.023119][ T9244]  ? __pfx_lock_release+0x10/0x10
[ 3462.028158][ T9244]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3462.034241][ T9244]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3462.039451][ T9244]  ? mem_cgroup_iter+0x422/0x560
[ 3462.044389][ T9244]  try_charge_memcg+0xda2/0x18a0
[ 3462.049348][ T9244]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3462.054722][ T9244]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3462.060562][ T9244]  ? __pfx_lock_release+0x10/0x10
[ 3462.065767][ T9244]  ? memcg_account_kmem+0x1e7/0x210
[ 3462.070976][ T9244]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3462.077022][ T9244]  __memcg_kmem_charge_page+0xe1/0x250
[ 3462.082581][ T9244]  memcg_charge_kernel_stack+0x28a/0x550
[ 3462.088227][ T9244]  dup_task_struct+0x15d/0x7d0
[ 3462.092996][ T9244]  copy_process+0x5d0/0x3fc0
[ 3462.097604][ T9244]  ? __pfx_lock_release+0x10/0x10
[ 3462.102725][ T9244]  ? __pfx_copy_process+0x10/0x10
[ 3462.107837][ T9244]  ? __might_fault+0xc5/0x120
[ 3462.112517][ T9244]  ? __asan_memset+0x23/0x50
[ 3462.117171][ T9244]  kernel_clone+0x21d/0x8d0
[ 3462.121685][ T9244]  ? __pfx_kernel_clone+0x10/0x10
[ 3462.126722][ T9244]  __se_sys_clone3+0x2cb/0x350
[ 3462.131533][ T9244]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3462.136839][ T9244]  ? do_syscall_64+0x108/0x240
[ 3462.141778][ T9244]  ? do_syscall_64+0xb4/0x240
[ 3462.146454][ T9244]  do_syscall_64+0xf9/0x240
[ 3462.150960][ T9244]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3462.156858][ T9244] RIP: 0033:0x7f30cb2a9b99
[ 3462.161274][ T9244] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3462.180885][ T9244] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3462.189393][ T9244] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3462.197369][ T9244] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3462.205341][ T9244] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3462.213310][ T9244] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3462.221283][ T9244] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3462.229352][ T9244]  </TASK>
[ 3462.238416][ T9244] memory: usage 307200kB, limit 307200kB, failcnt 606702
[ 3462.249154][ T9244] memory+swap: usage 309172kB, limit 9007199254740988kB, failcnt 0
[ 3462.264993][ T9244] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3462.272330][ T9244] Memory cgroup stats for /syz0:
[ 3462.272465][ T9244] cache 0
[ 3462.281133][ T9244] rss 12288
[ 3462.285146][ T9244] rss_huge 0
[ 3462.289823][ T9244] shmem 0
[ 3462.292868][ T9244] mapped_file 0
[ 3462.297230][ T9244] dirty 0
[ 3462.300190][ T9244] writeback 0
[ 3462.303481][ T9244] workingset_refault_anon 415063
[ 3462.313884][ T9244] workingset_refault_file 25
[ 3462.323869][ T9244] swap 2007040
[ 3462.327810][ T9244] swapcached 8192
[ 3462.331472][ T9244] pgpgin 927306
[ 3462.335232][ T9244] pgpgout 927303
[ 3462.338837][ T9244] pgfault 1614687
[ 3462.342457][ T9244] pgmajfault 399350
[ 3462.346528][ T9244] inactive_anon 12288
[ 3462.350533][ T9244] active_anon 0
[ 3462.354798][ T9244] inactive_file 0
[ 3462.358934][ T9244] active_file 0
[ 3462.362421][ T9244] unevictable 0
[ 3462.366158][ T9244] hierarchical_memory_limit 314572800
[ 3462.371547][ T9244] hierarchical_memsw_limit 9223372036854771712
[ 3462.377985][ T9244] total_cache 0
[ 3462.381454][ T9244] total_rss 12288
[ 3462.386111][ T9244] total_rss_huge 0
[ 3462.390258][ T9244] total_shmem 0
[ 3462.393724][ T9244] total_mapped_file 0
[ 3462.398053][ T9244] total_dirty 0
[ 3462.401527][ T9244] total_writeback 0
[ 3462.405985][ T9244] total_workingset_refault_anon 415063
[ 3462.411451][ T9244] total_workingset_refault_file 25
[ 3462.417021][ T9244] total_swap 2007040
[ 3462.420931][ T9244] total_swapcached 8192
[ 3462.425365][ T9244] total_pgpgin 927306
[ 3462.429366][ T9244] total_pgpgout 927303
[ 3462.433524][ T9244] total_pgfault 1614687
[ 3462.438039][ T9244] total_pgmajfault 399350
[ 3462.442393][ T9244] total_inactive_anon 12288
[ 3462.447463][ T9244] total_active_anon 0
[ 3462.451476][ T9244] total_inactive_file 0
[ 3462.455904][ T9244] total_active_file 0
[ 3462.459914][ T9244] total_unevictable 0
[ 3462.463907][ T9244] anon_cost 0
[ 3462.468283][ T9244] file_cost 0
23:32:00 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7600}}}]}]}}]}, 0x74}}, 0x0)

[ 3462.471588][ T9244] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9244,uid=0
[ 3462.488571][ T9244] Memory cgroup out of memory: Killed process 9244 (syz-executor.0) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3462.702206][ T9246] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3462.712809][ T9246] CPU: 0 PID: 9246 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3462.722821][ T9246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3462.732875][ T9246] Call Trace:
[ 3462.736178][ T9246]  <TASK>
[ 3462.739118][ T9246]  dump_stack_lvl+0x1e7/0x2e0
[ 3462.743843][ T9246]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3462.749045][ T9246]  ? __pfx__printk+0x10/0x10
[ 3462.753631][ T9246]  ? ___ratelimit+0x4c4/0x670
[ 3462.758331][ T9246]  ? __pfx____ratelimit+0x10/0x10
[ 3462.763382][ T9246]  dump_header+0xda/0x6a0
[ 3462.767738][ T9246]  oom_kill_process+0x3a7/0x930
[ 3462.772625][ T9246]  out_of_memory+0xf67/0x1320
[ 3462.777588][ T9246]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3462.783244][ T9246]  ? __pfx___mutex_lock+0x10/0x10
[ 3462.788279][ T9246]  ? __pfx_out_of_memory+0x10/0x10
[ 3462.793397][ T9246]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3462.798943][ T9246]  ? __pfx_lock_release+0x10/0x10
[ 3462.804013][ T9246]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3462.810115][ T9246]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3462.815323][ T9246]  ? mem_cgroup_iter+0x422/0x560
[ 3462.820311][ T9246]  try_charge_memcg+0xda2/0x18a0
[ 3462.825304][ T9246]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3462.830740][ T9246]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3462.836468][ T9246]  ? __pfx_lock_release+0x10/0x10
[ 3462.841864][ T9246]  ? memcg_account_kmem+0x1e7/0x210
[ 3462.847126][ T9246]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3462.852929][ T9246]  __memcg_kmem_charge_page+0xe1/0x250
[ 3462.858401][ T9246]  memcg_charge_kernel_stack+0x28a/0x550
[ 3462.864042][ T9246]  dup_task_struct+0x15d/0x7d0
[ 3462.868849][ T9246]  copy_process+0x5d0/0x3fc0
[ 3462.873482][ T9246]  ? __pfx_lock_release+0x10/0x10
[ 3462.878529][ T9246]  ? __pfx_copy_process+0x10/0x10
[ 3462.883594][ T9246]  ? __might_fault+0xc5/0x120
[ 3462.888356][ T9246]  ? __asan_memset+0x23/0x50
[ 3462.892947][ T9246]  kernel_clone+0x21d/0x8d0
[ 3462.897446][ T9246]  ? __pfx_kernel_clone+0x10/0x10
[ 3462.902502][ T9246]  __se_sys_clone3+0x2cb/0x350
[ 3462.907311][ T9246]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3462.912588][ T9246]  ? rcu_is_watching+0x15/0xb0
[ 3462.917378][ T9246]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3462.923392][ T9246]  ? exc_page_fault+0x587/0x870
[ 3462.928264][ T9246]  ? do_syscall_64+0xb4/0x240
[ 3462.932933][ T9246]  do_syscall_64+0xf9/0x240
[ 3462.937432][ T9246]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3462.943318][ T9246] RIP: 0033:0x7f30cb2a9b99
[ 3462.947731][ T9246] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3462.967345][ T9246] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3462.975785][ T9246] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3462.983766][ T9246] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3462.991728][ T9246] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3462.999691][ T9246] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3463.007659][ T9246] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3463.015657][ T9246]  </TASK>
[ 3463.029949][ T9246] memory: usage 307200kB, limit 307200kB, failcnt 607006
[ 3463.037329][ T9246] memory+swap: usage 309208kB, limit 9007199254740988kB, failcnt 0
[ 3463.045745][ T9246] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3463.053054][ T9246] Memory cgroup stats for /syz0:
[ 3463.053153][ T9246] cache 0
[ 3463.061296][ T9246] rss 0
[ 3463.064311][ T9246] rss_huge 0
[ 3463.067522][ T9246] shmem 0
[ 3463.070464][ T9246] mapped_file 0
[ 3463.074441][ T9246] dirty 0
[ 3463.077406][ T9246] writeback 0
[ 3463.080786][ T9246] workingset_refault_anon 415197
[ 3463.086049][ T9246] workingset_refault_file 25
[ 3463.090649][ T9246] swap 2056192
[ 3463.094294][ T9246] swapcached 0
[ 3463.097684][ T9246] pgpgin 927455
[ 3463.101153][ T9246] pgpgout 927455
[ 3463.105179][ T9246] pgfault 1614892
[ 3463.109153][ T9246] pgmajfault 399470
[ 3463.112967][ T9246] inactive_anon 0
[ 3463.116874][ T9246] active_anon 0
[ 3463.120342][ T9246] inactive_file 0
[ 3463.124951][ T9246] active_file 0
[ 3463.128443][ T9246] unevictable 0
[ 3463.131912][ T9246] hierarchical_memory_limit 314572800
[ 3463.138050][ T9246] hierarchical_memsw_limit 9223372036854771712
[ 3463.144432][ T9246] total_cache 0
[ 3463.147907][ T9246] total_rss 0
[ 3463.151202][ T9246] total_rss_huge 0
[ 3463.155267][ T9246] total_shmem 0
[ 3463.158749][ T9246] total_mapped_file 0
[ 3463.162764][ T9246] total_dirty 0
[ 3463.166771][ T9246] total_writeback 0
[ 3463.170596][ T9246] total_workingset_refault_anon 415197
[ 3463.176346][ T9246] total_workingset_refault_file 25
[ 3463.181467][ T9246] total_swap 2056192
[ 3463.185633][ T9246] total_swapcached 0
[ 3463.189576][ T9246] total_pgpgin 927455
[ 3463.193537][ T9246] total_pgpgout 927455
[ 3463.198147][ T9246] total_pgfault 1614892
[ 3463.202310][ T9246] total_pgmajfault 399470
[ 3463.206864][ T9246] total_inactive_anon 0
[ 3463.211763][ T9246] total_active_anon 0
[ 3463.216070][ T9246] total_inactive_file 0
[ 3463.220225][ T9246] total_active_file 0
[ 3463.224677][ T9246] total_unevictable 0
[ 3463.228710][ T9246] anon_cost 0
[ 3463.232009][ T9246] file_cost 0
[ 3463.236302][ T9246] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9246,uid=0
23:32:01 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7e00}}}]}]}}]}, 0x74}}, 0x0)

[ 3463.251923][ T9246] Memory cgroup out of memory: Killed process 9246 (syz-executor.0) total-vm:54508kB, anon-rss:504kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3463.434639][ T9248] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3463.445968][ T9248] CPU: 0 PID: 9248 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3463.455987][ T9248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3463.466077][ T9248] Call Trace:
[ 3463.469364][ T9248]  <TASK>
[ 3463.472311][ T9248]  dump_stack_lvl+0x1e7/0x2e0
[ 3463.477018][ T9248]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3463.482222][ T9248]  ? __pfx__printk+0x10/0x10
[ 3463.486803][ T9248]  ? ___ratelimit+0x4c4/0x670
[ 3463.491475][ T9248]  ? __pfx____ratelimit+0x10/0x10
[ 3463.496495][ T9248]  dump_header+0xda/0x6a0
[ 3463.500837][ T9248]  oom_kill_process+0x3a7/0x930
[ 3463.505690][ T9248]  out_of_memory+0xf67/0x1320
[ 3463.510395][ T9248]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3463.516056][ T9248]  ? __pfx___mutex_lock+0x10/0x10
[ 3463.521104][ T9248]  ? __pfx_out_of_memory+0x10/0x10
[ 3463.526235][ T9248]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3463.531797][ T9248]  ? __pfx_lock_release+0x10/0x10
[ 3463.536919][ T9248]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3463.542987][ T9248]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3463.548187][ T9248]  ? mem_cgroup_iter+0x422/0x560
[ 3463.553123][ T9248]  try_charge_memcg+0xda2/0x18a0
[ 3463.558088][ T9248]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3463.563461][ T9248]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3463.569179][ T9248]  ? __pfx_lock_release+0x10/0x10
[ 3463.574220][ T9248]  ? memcg_account_kmem+0x1e7/0x210
[ 3463.579438][ T9248]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3463.585250][ T9248]  __memcg_kmem_charge_page+0xe1/0x250
[ 3463.590818][ T9248]  memcg_charge_kernel_stack+0x28a/0x550
[ 3463.596547][ T9248]  dup_task_struct+0x15d/0x7d0
[ 3463.601311][ T9248]  copy_process+0x5d0/0x3fc0
[ 3463.606005][ T9248]  ? __pfx_lock_release+0x10/0x10
[ 3463.611044][ T9248]  ? __pfx_copy_process+0x10/0x10
[ 3463.616065][ T9248]  ? __might_fault+0xc5/0x120
[ 3463.620842][ T9248]  ? __asan_memset+0x23/0x50
[ 3463.625526][ T9248]  kernel_clone+0x21d/0x8d0
[ 3463.630037][ T9248]  ? __pfx_kernel_clone+0x10/0x10
[ 3463.635073][ T9248]  __se_sys_clone3+0x2cb/0x350
[ 3463.639840][ T9248]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3463.645421][ T9248]  ? do_syscall_64+0x108/0x240
[ 3463.650185][ T9248]  ? do_syscall_64+0xb4/0x240
[ 3463.654949][ T9248]  do_syscall_64+0xf9/0x240
[ 3463.659456][ T9248]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3463.665354][ T9248] RIP: 0033:0x7f30cb2a9b99
[ 3463.669763][ T9248] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3463.689362][ T9248] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3463.697775][ T9248] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3463.705748][ T9248] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3463.713719][ T9248] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3463.721689][ T9248] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3463.729672][ T9248] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3463.737653][ T9248]  </TASK>
[ 3463.752054][ T9248] memory: usage 307200kB, limit 307200kB, failcnt 607256
[ 3463.765075][ T9248] memory+swap: usage 309140kB, limit 9007199254740988kB, failcnt 0
[ 3463.773018][ T9248] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3463.780680][ T9248] Memory cgroup stats for /syz0:
[ 3463.780802][ T9248] cache 0
[ 3463.789121][ T9248] rss 20480
[ 3463.792236][ T9248] rss_huge 0
[ 3463.796104][ T9248] shmem 0
[ 3463.799055][ T9248] mapped_file 0
[ 3463.802525][ T9248] dirty 0
[ 3463.805829][ T9248] writeback 0
[ 3463.809134][ T9248] workingset_refault_anon 415309
[ 3463.814935][ T9248] workingset_refault_file 25
[ 3463.820081][ T9248] swap 1966080
[ 3463.825127][ T9248] swapcached 12288
[ 3463.828887][ T9248] pgpgin 927577
[ 3463.832372][ T9248] pgpgout 927572
[ 3463.836559][ T9248] pgfault 1615066
[ 3463.840194][ T9248] pgmajfault 399567
[ 3463.844287][ T9248] inactive_anon 0
[ 3463.847943][ T9248] active_anon 20480
[ 3463.851774][ T9248] inactive_file 0
[ 3463.856716][ T9248] active_file 0
[ 3463.860191][ T9248] unevictable 0
[ 3463.863648][ T9248] hierarchical_memory_limit 314572800
[ 3463.869307][ T9248] hierarchical_memsw_limit 9223372036854771712
[ 3463.875788][ T9248] total_cache 0
[ 3463.879260][ T9248] total_rss 20480
[ 3463.883243][ T9248] total_rss_huge 0
[ 3463.887545][ T9248] total_shmem 0
[ 3463.891018][ T9248] total_mapped_file 0
[ 3463.895273][ T9248] total_dirty 0
[ 3463.898734][ T9248] total_writeback 0
[ 3463.902524][ T9248] total_workingset_refault_anon 415309
[ 3463.908199][ T9248] total_workingset_refault_file 25
[ 3463.913314][ T9248] total_swap 1966080
[ 3463.917716][ T9248] total_swapcached 12288
[ 3463.921975][ T9248] total_pgpgin 927577
[ 3463.926978][ T9248] total_pgpgout 927572
[ 3463.931065][ T9248] total_pgfault 1615066
[ 3463.935581][ T9248] total_pgmajfault 399567
[ 3463.939931][ T9248] total_inactive_anon 0
[ 3463.944630][ T9248] total_active_anon 20480
[ 3463.948979][ T9248] total_inactive_file 0
[ 3463.953131][ T9248] total_active_file 0
[ 3463.957403][ T9248] total_unevictable 0
[ 3463.961395][ T9248] anon_cost 0
[ 3463.965656][ T9248] file_cost 0
[ 3463.968959][ T9248] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9248,uid=0
23:32:02 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7e01}}}]}]}}]}, 0x74}}, 0x0)

[ 3463.985162][ T9248] Memory cgroup out of memory: Killed process 9248 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3464.205743][ T9250] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3464.216201][ T9250] CPU: 1 PID: 9250 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3464.226378][ T9250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3464.236537][ T9250] Call Trace:
[ 3464.239818][ T9250]  <TASK>
[ 3464.242746][ T9250]  dump_stack_lvl+0x1e7/0x2e0
[ 3464.247428][ T9250]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3464.252665][ T9250]  ? __pfx__printk+0x10/0x10
[ 3464.257251][ T9250]  ? ___ratelimit+0x4c4/0x670
[ 3464.261935][ T9250]  ? __pfx____ratelimit+0x10/0x10
[ 3464.266969][ T9250]  dump_header+0xda/0x6a0
[ 3464.271311][ T9250]  oom_kill_process+0x3a7/0x930
[ 3464.276162][ T9250]  out_of_memory+0xf67/0x1320
[ 3464.280843][ T9250]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3464.286478][ T9250]  ? __pfx___mutex_lock+0x10/0x10
[ 3464.291505][ T9250]  ? __pfx_out_of_memory+0x10/0x10
[ 3464.296624][ T9250]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3464.302170][ T9250]  ? __pfx_lock_release+0x10/0x10
[ 3464.307197][ T9250]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3464.313265][ T9250]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3464.318462][ T9250]  ? mem_cgroup_iter+0x422/0x560
[ 3464.323405][ T9250]  try_charge_memcg+0xda2/0x18a0
[ 3464.328365][ T9250]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3464.333738][ T9250]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3464.339458][ T9250]  ? __pfx_lock_release+0x10/0x10
[ 3464.344488][ T9250]  ? memcg_account_kmem+0x1e7/0x210
[ 3464.349697][ T9250]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3464.355504][ T9250]  __memcg_kmem_charge_page+0xe1/0x250
[ 3464.360966][ T9250]  memcg_charge_kernel_stack+0x28a/0x550
[ 3464.366948][ T9250]  dup_task_struct+0x15d/0x7d0
[ 3464.371719][ T9250]  copy_process+0x5d0/0x3fc0
[ 3464.376323][ T9250]  ? __pfx_lock_release+0x10/0x10
[ 3464.381361][ T9250]  ? __pfx_copy_process+0x10/0x10
[ 3464.386383][ T9250]  ? __might_fault+0xc5/0x120
[ 3464.391063][ T9250]  ? __asan_memset+0x23/0x50
[ 3464.395659][ T9250]  kernel_clone+0x21d/0x8d0
[ 3464.400185][ T9250]  ? __pfx_kernel_clone+0x10/0x10
[ 3464.405225][ T9250]  __se_sys_clone3+0x2cb/0x350
[ 3464.409991][ T9250]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3464.415315][ T9250]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3464.421355][ T9250]  ? exc_page_fault+0x587/0x870
[ 3464.426215][ T9250]  ? do_syscall_64+0xb4/0x240
[ 3464.430911][ T9250]  do_syscall_64+0xf9/0x240
[ 3464.435418][ T9250]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3464.441358][ T9250] RIP: 0033:0x7f30cb2a9b99
[ 3464.445777][ T9250] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3464.465472][ T9250] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3464.473885][ T9250] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3464.482119][ T9250] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3464.490439][ T9250] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3464.498409][ T9250] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3464.506378][ T9250] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3464.514365][ T9250]  </TASK>
[ 3464.531010][ T9250] memory: usage 307200kB, limit 307200kB, failcnt 607560
[ 3464.538547][ T9250] memory+swap: usage 309176kB, limit 9007199254740988kB, failcnt 0
[ 3464.547090][ T9250] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 3464.554970][ T9250] Memory cgroup stats for /syz0:
[ 3464.555096][ T9250] cache 0
[ 3464.562976][ T9250] rss 24576
[ 3464.566606][ T9250] rss_huge 0
[ 3464.569825][ T9250] shmem 0
[ 3464.572773][ T9250] mapped_file 0
[ 3464.576556][ T9250] dirty 0
[ 3464.579510][ T9250] writeback 0
[ 3464.595054][ T9250] workingset_refault_anon 415446
[ 3464.600154][ T9250] workingset_refault_file 25
[ 3464.611680][ T9250] swap 1998848
[ 3464.615370][ T9250] swapcached 12288
[ 3464.619111][ T9250] pgpgin 927728
[ 3464.622601][ T9250] pgpgout 927722
[ 3464.629032][ T9250] pgfault 1615287
[ 3464.632708][ T9250] pgmajfault 399693
[ 3464.637839][ T9250] inactive_anon 0
[ 3464.641501][ T9250] active_anon 24576
[ 3464.647175][ T9250] inactive_file 0
[ 3464.650834][ T9250] active_file 0
[ 3464.654585][ T9250] unevictable 0
[ 3464.658222][ T9250] hierarchical_memory_limit 314572800
[ 3464.663616][ T9250] hierarchical_memsw_limit 9223372036854771712
[ 3464.670352][ T9250] total_cache 0
[ 3464.673823][ T9250] total_rss 24576
[ 3464.677964][ T9250] total_rss_huge 0
[ 3464.681681][ T9250] total_shmem 0
[ 3464.689363][ T9250] total_mapped_file 0
[ 3464.693368][ T9250] total_dirty 0
[ 3464.697780][ T9250] total_writeback 0
[ 3464.701647][ T9250] total_workingset_refault_anon 415446
[ 3464.713988][ T9250] total_workingset_refault_file 25
[ 3464.719132][ T9250] total_swap 1998848
[ 3464.723182][ T9250] total_swapcached 12288
[ 3464.728860][ T9250] total_pgpgin 927728
[ 3464.732898][ T9250] total_pgpgout 927722
[ 3464.737782][ T9250] total_pgfault 1615287
[ 3464.741972][ T9250] total_pgmajfault 399693
[ 3464.748738][ T9250] total_inactive_anon 0
[ 3464.752999][ T9250] total_active_anon 24576
[ 3464.758229][ T9250] total_inactive_file 0
23:32:03 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8100}}}]}]}}]}, 0x74}}, 0x0)

[ 3464.762483][ T9250] total_active_file 0
[ 3464.767340][ T9250] total_unevictable 0
[ 3464.771351][ T9250] anon_cost 0
[ 3464.775353][ T9250] file_cost 0
[ 3464.778686][ T9250] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9250,uid=0
[ 3464.794765][ T9250] Memory cgroup out of memory: Killed process 9250 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3464.994821][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3465.006679][ T5099] CPU: 1 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3465.016690][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3465.026768][ T5099] Call Trace:
[ 3465.030060][ T5099]  <TASK>
[ 3465.032996][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3465.037687][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3465.042897][ T5099]  ? __pfx__printk+0x10/0x10
[ 3465.047490][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3465.052201][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3465.057262][ T5099]  dump_header+0xda/0x6a0
[ 3465.061651][ T5099]  oom_kill_process+0x3a7/0x930
[ 3465.066524][ T5099]  out_of_memory+0xf67/0x1320
[ 3465.071229][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3465.076894][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3465.081934][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3465.087066][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3465.092653][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3465.097688][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3465.104047][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3465.109272][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3465.114243][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3465.119536][ T5099]  ? mark_lock+0x9a/0x350
[ 3465.123868][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3465.129278][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3465.135463][ T5099]  charge_memcg+0xa2/0x160
[ 3465.139909][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3465.146006][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3465.151481][ T5099]  ? mark_lock+0x9a/0x350
[ 3465.155829][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3465.161846][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3465.167258][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3465.173168][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3465.178206][ T5099]  ? xas_descend+0x37e/0x470
[ 3465.182832][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3465.187794][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3465.192930][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3465.198317][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3465.203629][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3465.208916][ T5099]  do_swap_page+0x791/0x3f40
[ 3465.213499][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3465.218288][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3465.223082][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3465.228130][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3465.233625][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3465.239462][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3465.244641][ T5099]  ? reacquire_held_locks+0x3eb/0x690
[ 3465.250087][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3465.255581][ T5099]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3465.261356][ T5099]  ? mtree_range_walk+0x6fd/0x8e0
[ 3465.266419][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3465.271688][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3465.276725][ T5099]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3465.281963][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3465.287182][ T5099]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3465.292783][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3465.297586][ T5099]  exc_page_fault+0x456/0x870
[ 3465.302316][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3465.307237][ T5099] RIP: 0033:0x7f30cb2a91b8
[ 3465.311768][ T5099] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 3465.331391][ T5099] RSP: 002b:00007f30cb4cfcf0 EFLAGS: 00010293
[ 3465.337479][ T5099] RAX: 0000000000000000 RBX: 00000000000072be RCX: 00007f30cb2a91b5
[ 3465.345564][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3465.353577][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3465.361564][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3465.369571][ T5099] R13: 000000000034de78 R14: 000000000034de78 R15: 0000000000000000
[ 3465.377595][ T5099]  </TASK>
[ 3465.388038][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 607838
[ 3465.395496][ T5099] memory+swap: usage 309152kB, limit 9007199254740988kB, failcnt 0
[ 3465.403484][ T5099] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3465.411467][ T5099] Memory cgroup stats for /syz0:
[ 3465.411607][ T5099] cache 0
[ 3465.420021][ T5099] rss 20480
[ 3465.423150][ T5099] rss_huge 0
[ 3465.426801][ T5099] shmem 0
[ 3465.429757][ T5099] mapped_file 0
[ 3465.433224][ T5099] dirty 0
[ 3465.436709][ T5099] writeback 0
[ 3465.440015][ T5099] workingset_refault_anon 415564
[ 3465.445548][ T5099] workingset_refault_file 25
[ 3465.450202][ T5099] swap 1998848
[ 3465.453577][ T5099] swapcached 16384
[ 3465.457860][ T5099] pgpgin 927860
[ 3465.462316][ T5099] pgpgout 927855
[ 3465.466324][ T5099] pgfault 1615472
[ 3465.469983][ T5099] pgmajfault 399798
[ 3465.473811][ T5099] inactive_anon 16384
[ 3465.478420][ T5099] active_anon 4096
[ 3465.482159][ T5099] inactive_file 0
[ 3465.486520][ T5099] active_file 0
[ 3465.490009][ T5099] unevictable 0
[ 3465.493482][ T5099] hierarchical_memory_limit 314572800
[ 3465.500033][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3465.506700][ T5099] total_cache 0
[ 3465.510182][ T5099] total_rss 20480
[ 3465.515177][ T5099] total_rss_huge 0
[ 3465.518918][ T5099] total_shmem 0
[ 3465.522382][ T5099] total_mapped_file 0
[ 3465.526925][ T5099] total_dirty 0
[ 3465.530402][ T5099] total_writeback 0
[ 3465.534730][ T5099] total_workingset_refault_anon 415564
[ 3465.540219][ T5099] total_workingset_refault_file 25
[ 3465.545866][ T5099] total_swap 1998848
[ 3465.549775][ T5099] total_swapcached 16384
[ 3465.554353][ T5099] total_pgpgin 927860
[ 3465.558416][ T5099] total_pgpgout 927855
[ 3465.562483][ T5099] total_pgfault 1615472
[ 3465.567846][ T5099] total_pgmajfault 399798
[ 3465.572200][ T5099] total_inactive_anon 16384
[ 3465.576935][ T5099] total_active_anon 4096
[ 3465.581230][ T5099] total_inactive_file 0
[ 3465.585650][ T5099] total_active_file 0
[ 3465.589651][ T5099] total_unevictable 0
[ 3465.593634][ T5099] anon_cost 0
23:32:03 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8603}}}]}]}}]}, 0x74}}, 0x0)

[ 3465.597241][ T5099] file_cost 0
[ 3465.600543][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9252,uid=0
[ 3465.617389][ T5099] Memory cgroup out of memory: Killed process 9252 (syz-executor.0) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3465.805002][ T9254] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3465.815497][ T9254] CPU: 1 PID: 9254 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3465.825686][ T9254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3465.835758][ T9254] Call Trace:
[ 3465.839038][ T9254]  <TASK>
[ 3465.841966][ T9254]  dump_stack_lvl+0x1e7/0x2e0
[ 3465.846653][ T9254]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3465.851850][ T9254]  ? __pfx__printk+0x10/0x10
[ 3465.856869][ T9254]  ? ___ratelimit+0x4c4/0x670
[ 3465.861552][ T9254]  ? __pfx____ratelimit+0x10/0x10
[ 3465.866583][ T9254]  dump_header+0xda/0x6a0
[ 3465.870936][ T9254]  oom_kill_process+0x3a7/0x930
[ 3465.875814][ T9254]  out_of_memory+0xf67/0x1320
[ 3465.880503][ T9254]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3465.886142][ T9254]  ? __pfx___mutex_lock+0x10/0x10
[ 3465.891442][ T9254]  ? __pfx_out_of_memory+0x10/0x10
[ 3465.896559][ T9254]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3465.902104][ T9254]  ? __pfx_lock_release+0x10/0x10
[ 3465.907134][ T9254]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3465.913202][ T9254]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3465.918399][ T9254]  ? mem_cgroup_iter+0x422/0x560
[ 3465.923335][ T9254]  try_charge_memcg+0xda2/0x18a0
[ 3465.928289][ T9254]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3465.933662][ T9254]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3465.939379][ T9254]  ? __pfx_lock_release+0x10/0x10
[ 3465.944413][ T9254]  ? memcg_account_kmem+0x1e7/0x210
[ 3465.949618][ T9254]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3465.955525][ T9254]  __memcg_kmem_charge_page+0xe1/0x250
[ 3465.960989][ T9254]  memcg_charge_kernel_stack+0x28a/0x550
[ 3465.966627][ T9254]  dup_task_struct+0x15d/0x7d0
[ 3465.971388][ T9254]  copy_process+0x5d0/0x3fc0
[ 3465.975983][ T9254]  ? __pfx_lock_release+0x10/0x10
[ 3465.981014][ T9254]  ? __pfx_copy_process+0x10/0x10
[ 3465.986039][ T9254]  ? __might_fault+0xc5/0x120
[ 3465.990735][ T9254]  ? __asan_memset+0x23/0x50
[ 3465.995347][ T9254]  kernel_clone+0x21d/0x8d0
[ 3465.999883][ T9254]  ? __pfx_kernel_clone+0x10/0x10
[ 3466.004938][ T9254]  __se_sys_clone3+0x2cb/0x350
[ 3466.009708][ T9254]  ? __might_fault+0xa9/0x120
[ 3466.014393][ T9254]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3466.019734][ T9254]  ? do_syscall_64+0x108/0x240
[ 3466.024504][ T9254]  ? do_syscall_64+0xb4/0x240
[ 3466.029186][ T9254]  do_syscall_64+0xf9/0x240
[ 3466.033692][ T9254]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3466.039641][ T9254] RIP: 0033:0x7f30cb2a9b99
[ 3466.044063][ T9254] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3466.063706][ T9254] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3466.072143][ T9254] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3466.080126][ T9254] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3466.088112][ T9254] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3466.096099][ T9254] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3466.104075][ T9254] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3466.112070][ T9254]  </TASK>
[ 3466.132229][ T9254] memory: usage 307200kB, limit 307200kB, failcnt 608102
[ 3466.139533][ T9254] memory+swap: usage 309136kB, limit 9007199254740988kB, failcnt 0
[ 3466.148036][ T9254] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3466.155795][ T9254] Memory cgroup stats for /syz0:
[ 3466.155901][ T9254] cache 0
[ 3466.163775][ T9254] rss 20480
[ 3466.169274][ T9254] rss_huge 0
[ 3466.172545][ T9254] shmem 0
[ 3466.176172][ T9254] mapped_file 0
[ 3466.181367][ T9254] dirty 0
[ 3466.184959][ T9254] writeback 0
[ 3466.188261][ T9254] workingset_refault_anon 415675
[ 3466.193199][ T9254] workingset_refault_file 25
[ 3466.198642][ T9254] swap 1961984
[ 3466.202030][ T9254] swapcached 12288
[ 3466.206492][ T9254] pgpgin 927984
[ 3466.210232][ T9254] pgpgout 927979
[ 3466.213803][ T9254] pgfault 1615651
[ 3466.218152][ T9254] pgmajfault 399901
[ 3466.230599][ T9254] inactive_anon 0
[ 3466.235280][ T9254] active_anon 20480
[ 3466.239113][ T9254] inactive_file 0
[ 3466.242755][ T9254] active_file 0
[ 3466.247195][ T9254] unevictable 0
[ 3466.250686][ T9254] hierarchical_memory_limit 314572800
[ 3466.257387][ T9254] hierarchical_memsw_limit 9223372036854771712
[ 3466.263566][ T9254] total_cache 0
[ 3466.269760][ T9254] total_rss 20480
[ 3466.273440][ T9254] total_rss_huge 0
[ 3466.278079][ T9254] total_shmem 0
[ 3466.283178][ T9254] total_mapped_file 0
[ 3466.287889][ T9254] total_dirty 0
[ 3466.291365][ T9254] total_writeback 0
[ 3466.295826][ T9254] total_workingset_refault_anon 415675
[ 3466.301292][ T9254] total_workingset_refault_file 25
[ 3466.307055][ T9254] total_swap 1961984
[ 3466.310965][ T9254] total_swapcached 12288
[ 3466.315819][ T9254] total_pgpgin 927984
[ 3466.319827][ T9254] total_pgpgout 927979
[ 3466.323916][ T9254] total_pgfault 1615651
[ 3466.328760][ T9254] total_pgmajfault 399901
[ 3466.333106][ T9254] total_inactive_anon 0
[ 3466.338639][ T9254] total_active_anon 20480
[ 3466.342981][ T9254] total_inactive_file 0
[ 3466.348295][ T9254] total_active_file 0
[ 3466.352300][ T9254] total_unevictable 0
23:32:04 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9600}}}]}]}}]}, 0x74}}, 0x0)

[ 3466.356962][ T9254] anon_cost 0
[ 3466.360253][ T9254] file_cost 0
[ 3466.363532][ T9254] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9254,uid=0
[ 3466.379230][ T9254] Memory cgroup out of memory: Killed process 9254 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3466.590472][ T9256] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3466.600996][ T9256] CPU: 0 PID: 9256 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3466.611002][ T9256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3466.621067][ T9256] Call Trace:
[ 3466.624337][ T9256]  <TASK>
[ 3466.627253][ T9256]  dump_stack_lvl+0x1e7/0x2e0
[ 3466.631922][ T9256]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3466.637120][ T9256]  ? __pfx__printk+0x10/0x10
[ 3466.641691][ T9256]  ? ___ratelimit+0x4c4/0x670
[ 3466.646362][ T9256]  ? __pfx____ratelimit+0x10/0x10
[ 3466.651376][ T9256]  dump_header+0xda/0x6a0
[ 3466.655717][ T9256]  oom_kill_process+0x3a7/0x930
[ 3466.660594][ T9256]  out_of_memory+0xf67/0x1320
[ 3466.665291][ T9256]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3466.670929][ T9256]  ? __pfx___mutex_lock+0x10/0x10
[ 3466.675946][ T9256]  ? __pfx_out_of_memory+0x10/0x10
[ 3466.681049][ T9256]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3466.686581][ T9256]  ? __pfx_lock_release+0x10/0x10
[ 3466.691609][ T9256]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3466.697679][ T9256]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3466.702871][ T9256]  ? mem_cgroup_iter+0x422/0x560
[ 3466.707833][ T9256]  try_charge_memcg+0xda2/0x18a0
[ 3466.712825][ T9256]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3466.718214][ T9256]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3466.723990][ T9256]  ? __pfx_lock_release+0x10/0x10
[ 3466.729049][ T9256]  ? memcg_account_kmem+0x1e7/0x210
[ 3466.734342][ T9256]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3466.740169][ T9256]  __memcg_kmem_charge_page+0xe1/0x250
[ 3466.745629][ T9256]  memcg_charge_kernel_stack+0x28a/0x550
[ 3466.751248][ T9256]  dup_task_struct+0x15d/0x7d0
[ 3466.756021][ T9256]  copy_process+0x5d0/0x3fc0
[ 3466.760649][ T9256]  ? __pfx_lock_release+0x10/0x10
[ 3466.765701][ T9256]  ? __pfx_copy_process+0x10/0x10
[ 3466.770732][ T9256]  ? __might_fault+0xc5/0x120
[ 3466.775402][ T9256]  ? __asan_memset+0x23/0x50
[ 3466.779999][ T9256]  kernel_clone+0x21d/0x8d0
[ 3466.784494][ T9256]  ? __pfx_kernel_clone+0x10/0x10
[ 3466.789515][ T9256]  __se_sys_clone3+0x2cb/0x350
[ 3466.794276][ T9256]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3466.799568][ T9256]  ? do_syscall_64+0x108/0x240
[ 3466.804334][ T9256]  ? do_syscall_64+0xb4/0x240
[ 3466.809036][ T9256]  do_syscall_64+0xf9/0x240
[ 3466.813563][ T9256]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3466.819461][ T9256] RIP: 0033:0x7f30cb2a9b99
[ 3466.823864][ T9256] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3466.843541][ T9256] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3466.851940][ T9256] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3466.859914][ T9256] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3466.867894][ T9256] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3466.875871][ T9256] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3466.883826][ T9256] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3466.891792][ T9256]  </TASK>
[ 3466.934212][ T9256] memory: usage 307180kB, limit 307200kB, failcnt 608348
[ 3466.961648][ T9256] memory+swap: usage 309152kB, limit 9007199254740988kB, failcnt 0
[ 3466.992315][ T9256] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3467.013394][ T9256] Memory cgroup stats for /syz0:
[ 3467.013530][ T9256] cache 0
[ 3467.022053][ T9256] rss 0
[ 3467.026170][ T9256] rss_huge 0
[ 3467.029393][ T9256] shmem 0
[ 3467.032342][ T9256] mapped_file 0
[ 3467.058794][ T9256] dirty 0
[ 3467.061785][ T9256] writeback 0
[ 3467.074239][ T9256] workingset_refault_anon 415773
[ 3467.079208][ T9256] workingset_refault_file 25
[ 3467.094871][ T9256] swap 2019328
[ 3467.098278][ T9256] swapcached 0
[ 3467.115719][ T9256] pgpgin 928095
[ 3467.119218][ T9256] pgpgout 928095
[ 3467.122773][ T9256] pgfault 1615808
[ 3467.138299][ T9256] pgmajfault 399989
[ 3467.142141][ T9256] inactive_anon 0
[ 3467.154171][ T9256] active_anon 0
[ 3467.157660][ T9256] inactive_file 0
[ 3467.161296][ T9256] active_file 0
[ 3467.176395][ T9256] unevictable 0
[ 3467.180049][ T9256] hierarchical_memory_limit 314572800
[ 3467.194792][ T9256] hierarchical_memsw_limit 9223372036854771712
[ 3467.200987][ T9256] total_cache 0
[ 3467.222388][ T9256] total_rss 0
[ 3467.231519][ T9256] total_rss_huge 0
[ 3467.235590][ T9256] total_shmem 0
[ 3467.239060][ T9256] total_mapped_file 0
[ 3467.243046][ T9256] total_dirty 0
[ 3467.274199][ T9256] total_writeback 0
[ 3467.278060][ T9256] total_workingset_refault_anon 415773
[ 3467.283527][ T9256] total_workingset_refault_file 25
[ 3467.303801][ T9256] total_swap 2019328
[ 3467.325433][ T9256] total_swapcached 0
[ 3467.329367][ T9256] total_pgpgin 928095
[ 3467.333354][ T9256] total_pgpgout 928095
[ 3467.348969][ T9256] total_pgfault 1615808
[ 3467.353168][ T9256] total_pgmajfault 399989
[ 3467.361929][ T9256] total_inactive_anon 0
[ 3467.374112][ T9256] total_active_anon 0
[ 3467.378131][ T9256] total_inactive_file 0
[ 3467.382296][ T9256] total_active_file 0
[ 3467.397715][ T9256] total_unevictable 0
[ 3467.401729][ T9256] anon_cost 0
[ 3467.414851][ T9256] file_cost 0
[ 3467.418178][ T9256] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9256,uid=0
[ 3467.464208][ T9256] Memory cgroup out of memory: Killed process 9256 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:32:05 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9e00}}}]}]}}]}, 0x74}}, 0x0)

[ 3468.327224][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3468.340667][ T5099] CPU: 1 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3468.350678][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3468.360749][ T5099] Call Trace:
[ 3468.364045][ T5099]  <TASK>
[ 3468.366998][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3468.371706][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3468.376929][ T5099]  ? __pfx__printk+0x10/0x10
[ 3468.381533][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3468.386239][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3468.391294][ T5099]  dump_header+0xda/0x6a0
[ 3468.395657][ T5099]  oom_kill_process+0x3a7/0x930
[ 3468.400534][ T5099]  out_of_memory+0xf67/0x1320
[ 3468.405238][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3468.410897][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3468.415953][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3468.421093][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3468.426665][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3468.431717][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3468.437817][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3468.443039][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3468.448007][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3468.452958][ T5099]  ? mark_lock+0x9a/0x350
[ 3468.457304][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3468.462701][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3468.468866][ T5099]  charge_memcg+0xa2/0x160
[ 3468.473290][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3468.479371][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3468.484830][ T5099]  ? mark_lock+0x9a/0x350
[ 3468.489164][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3468.495154][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3468.500557][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3468.506471][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3468.511517][ T5099]  ? xas_descend+0x37e/0x470
[ 3468.516124][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3468.521067][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3468.526192][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3468.531573][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3468.536865][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3468.542154][ T5099]  do_swap_page+0x791/0x3f40
[ 3468.546741][ T5099]  ? __lock_acquire+0x1345/0x1fd0
[ 3468.551767][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3468.556540][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3468.561299][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3468.566328][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3468.571787][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3468.577593][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3468.582792][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3468.587941][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3468.593417][ T5099]  ? mt_find+0x226/0x850
[ 3468.597670][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3468.602712][ T5099]  ? mt_find+0x62d/0x850
[ 3468.606962][ T5099]  ? mt_find+0x226/0x850
[ 3468.611219][ T5099]  ? find_vma+0x142/0x1c0
[ 3468.615548][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3468.620218][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3468.626200][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3468.630970][ T5099]  exc_page_fault+0x2ad/0x870
[ 3468.635660][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3468.640523][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3468.645636][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3468.665241][ T5099] RSP: 0000:ffffc90003ebfd78 EFLAGS: 00050202
[ 3468.671310][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3468.679279][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3468.687242][ T5099] RBP: ffffc90003ebfec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3468.695314][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfd80
[ 3468.703303][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3468.711295][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3468.717251][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3468.723674][ T5099]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3468.729481][ T5099]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3468.735112][ T5099]  exc_page_fault+0x587/0x870
[ 3468.739800][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3468.744651][ T5099] RIP: 0033:0x7f30cb2a4c15
[ 3468.749063][ T5099] Code: 00 00 f0 83 88 08 03 00 00 10 64 48 8b 3c 25 00 03 00 00 e8 1d 13 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 e7 02 74 0b <c3> 66 2e 0f 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 8b 90
[ 3468.768671][ T5099] RSP: 002b:00007f30cb4cfce8 EFLAGS: 00010297
[ 3468.774768][ T5099] RAX: 0000000000000002 RBX: 00000000000072c4 RCX: 0000000000000000
[ 3468.782732][ T5099] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005555559c3788
[ 3468.790695][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3468.798660][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3468.806709][ T5099] R13: 000000000034e920 R14: 000000000034e920 R15: 0000000000000000
[ 3468.814692][ T5099]  </TASK>
[ 3468.874541][ T5099] memory: usage 307196kB, limit 307200kB, failcnt 609470
[ 3468.890064][ T5099] memory+swap: usage 309152kB, limit 9007199254740988kB, failcnt 0
[ 3468.907708][ T5099] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3468.940551][ T5099] Memory cgroup stats for /syz0:
[ 3468.940694][ T5099] cache 0
[ 3468.956723][ T5099] rss 20480
[ 3468.959867][ T5099] rss_huge 0
[ 3468.963078][ T5099] shmem 0
[ 3469.014311][ T5099] mapped_file 0
[ 3469.017811][ T5099] dirty 0
[ 3469.035689][ T5099] writeback 0
[ 3469.039020][ T5099] workingset_refault_anon 416108
[ 3469.104173][ T5099] workingset_refault_file 25
[ 3469.174340][ T5099] swap 2002944
[ 3469.190096][ T5099] swapcached 16384
[ 3469.193861][ T5099] pgpgin 928452
[ 3469.234580][ T5099] pgpgout 928447
[ 3469.238179][ T5099] pgfault 1616343
[ 3469.241818][ T5099] pgmajfault 400316
[ 3469.314233][ T5099] inactive_anon 0
[ 3469.317932][ T5099] active_anon 20480
[ 3469.321753][ T5099] inactive_file 0
[ 3469.364713][ T5099] active_file 0
[ 3469.368227][ T5099] unevictable 0
[ 3469.371691][ T5099] hierarchical_memory_limit 314572800
[ 3469.468796][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3469.504244][ T5099] total_cache 0
[ 3469.507765][ T5099] total_rss 20480
[ 3469.511410][ T5099] total_rss_huge 0
[ 3469.558628][ T5099] total_shmem 0
[ 3469.562155][ T5099] total_mapped_file 0
[ 3469.605462][ T5099] total_dirty 0
[ 3469.608994][ T5099] total_writeback 0
[ 3469.612833][ T5099] total_workingset_refault_anon 416108
[ 3469.658405][ T5090] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 3469.672026][ T5090] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 3469.681200][ T5090] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 3469.689585][ T5090] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 3469.690668][ T5099] total_workingset_refault_file 25
[ 3469.697721][ T5090] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 3469.711167][ T5090] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 3469.755046][ T5090] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 3469.771832][ T5090] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 3469.772005][ T5099] total_swap 2002944
[ 3469.784345][ T5090] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 3469.806355][ T5090] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 3469.814662][ T5099] total_swapcached 16384
[ 3469.819315][ T5099] total_pgpgin 928452
[ 3469.823418][ T5090] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[ 3469.833345][ T5099] total_pgpgout 928447
[ 3469.837863][ T5090] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 3469.845608][ T5099] total_pgfault 1616343
[ 3469.849796][ T5099] total_pgmajfault 400316
[ 3469.854322][ T5099] total_inactive_anon 0
[ 3469.862868][ T5099] total_active_anon 20480
[ 3469.870555][ T5099] total_inactive_file 0
[ 3469.875051][ T5099] total_active_file 0
[ 3469.879113][ T5099] total_unevictable 0
[ 3469.883100][ T5099] anon_cost 0
[ 3469.887728][ T5099] file_cost 0
[ 3469.891054][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9258,uid=0
23:32:08 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xa601}}}]}]}}]}, 0x74}}, 0x0)

[ 3469.913919][ T9005] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 3469.921708][ T5099] Memory cgroup out of memory: Killed process 9258 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3469.951993][ T9005] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 3469.961359][ T9005] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 3469.974626][ T9005] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 3469.989213][ T9005] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[ 3469.999034][ T9005] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 3471.764344][ T9128] Bluetooth: hci9: command 0x0409 tx timeout
[ 3471.924836][ T9128] Bluetooth: hci10: command 0x0409 tx timeout
[ 3472.084445][ T9128] Bluetooth: hci11: command 0x0409 tx timeout
23:32:11 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xae00}}}]}]}}]}, 0x74}}, 0x0)

[ 3473.378426][ T9274] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3473.390121][ T9274] CPU: 1 PID: 9274 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3473.400127][ T9274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3473.410236][ T9274] Call Trace:
[ 3473.413509][ T9274]  <TASK>
[ 3473.416444][ T9274]  dump_stack_lvl+0x1e7/0x2e0
[ 3473.421150][ T9274]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3473.426369][ T9274]  ? __pfx__printk+0x10/0x10
[ 3473.430963][ T9274]  ? ___ratelimit+0x4c4/0x670
[ 3473.435652][ T9274]  ? __pfx____ratelimit+0x10/0x10
[ 3473.440704][ T9274]  dump_header+0xda/0x6a0
[ 3473.445069][ T9274]  oom_kill_process+0x3a7/0x930
[ 3473.449948][ T9274]  out_of_memory+0xf67/0x1320
[ 3473.454658][ T9274]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3473.460418][ T9274]  ? __pfx___mutex_lock+0x10/0x10
[ 3473.465470][ T9274]  ? __pfx_out_of_memory+0x10/0x10
[ 3473.470611][ T9274]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3473.476250][ T9274]  ? __pfx_lock_release+0x10/0x10
[ 3473.481298][ T9274]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3473.487416][ T9274]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3473.492802][ T9274]  ? mem_cgroup_iter+0x422/0x560
[ 3473.497755][ T9274]  try_charge_memcg+0xda2/0x18a0
[ 3473.502743][ T9274]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3473.508176][ T9274]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3473.514336][ T9274]  charge_memcg+0xa2/0x160
[ 3473.518780][ T9274]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3473.524874][ T9274]  __read_swap_cache_async+0x480/0x8b0
[ 3473.530371][ T9274]  ? mark_lock+0x9a/0x350
[ 3473.534736][ T9274]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3473.540838][ T9274]  swap_cluster_readahead+0x67c/0x810
[ 3473.546418][ T9274]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3473.552331][ T9274]  ? __pfx_lock_release+0x10/0x10
[ 3473.557376][ T9274]  ? xas_descend+0x37e/0x470
[ 3473.562007][ T9274]  swapin_readahead+0x1ea/0x1070
[ 3473.567240][ T9274]  ? filemap_get_entry+0x127/0x4e0
[ 3473.572380][ T9274]  ? __pfx_swapin_readahead+0x10/0x10
[ 3473.577950][ T9274]  ? __filemap_get_folio+0x935/0xbc0
[ 3473.583273][ T9274]  ? swap_cache_get_folio+0x9f/0x570
[ 3473.588600][ T9274]  do_swap_page+0x791/0x3f40
[ 3473.593218][ T9274]  ? rcu_is_watching+0x15/0xb0
[ 3473.598013][ T9274]  ? do_swap_page+0x154/0x3f40
[ 3473.602788][ T9274]  ? __pfx_do_swap_page+0x10/0x10
[ 3473.607821][ T9274]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3473.613331][ T9274]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3473.619169][ T9274]  __handle_mm_fault+0x15e8/0x72d0
[ 3473.624348][ T9274]  ? reacquire_held_locks+0x3eb/0x690
[ 3473.629750][ T9274]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3473.635248][ T9274]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3473.641607][ T9274]  ? mtree_range_walk+0x6fd/0x8e0
[ 3473.646646][ T9274]  ? lock_vma_under_rcu+0x18a/0x730
[ 3473.652118][ T9274]  ? __pfx_lock_release+0x10/0x10
[ 3473.657167][ T9274]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3473.662396][ T9274]  ? lock_vma_under_rcu+0x18a/0x730
[ 3473.667618][ T9274]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3473.673214][ T9274]  handle_mm_fault+0x3c1/0x8a0
[ 3473.678011][ T9274]  exc_page_fault+0x456/0x870
[ 3473.682744][ T9274]  asm_exc_page_fault+0x26/0x30
[ 3473.687630][ T9274] RIP: 0033:0x7f30cb239ac7
[ 3473.692056][ T9274] Code: 25 ff 0f 00 00 09 c5 80 3d 06 bc c9 00 00 0f 85 6f ff ff ff 44 0f b6 6c 24 0f 44 8d 55 04 89 e8 41 89 c1 41 81 e1 ff 1f 00 00 <43> 8b 14 8e 39 d5 0f 84 5e ff ff ff 85 d2 0f 84 65 01 00 00 83 c0
[ 3473.711672][ T9274] RSP: 002b:00007f30cb4cfa60 EFLAGS: 00010202
[ 3473.717760][ T9274] RAX: 0000000081405262 RBX: 00007f30cb3ac018 RCX: 00000000000000be
[ 3473.725753][ T9274] RDX: ffffffff81405444 RSI: 0000000080000000 RDI: 0000000000003c3e
[ 3473.733736][ T9274] RBP: 0000000081405262 R08: 0000001b31820000 R09: 0000000000001262
[ 3473.741713][ T9274] R10: 0000000081405266 R11: 0000000000000246 R12: 00000000000000be
[ 3473.749697][ T9274] R13: 0000000000000001 R14: 00007f30cb3a0000 R15: ffffffff81405444
[ 3473.757683][ T9274]  ? unwind_next_frame+0x6f4/0x29e0
[ 3473.762914][ T9274]  ? unwind_next_frame+0x6f4/0x29e0
[ 3473.768132][ T9274]  </TASK>
[ 3473.785092][ T9274] memory: usage 307200kB, limit 307200kB, failcnt 613606
[ 3473.792231][ T9274] memory+swap: usage 309140kB, limit 9007199254740988kB, failcnt 0
[ 3473.800752][ T9274] kmem: usage 307160kB, limit 9007199254740988kB, failcnt 0
[ 3473.809314][ T9274] Memory cgroup stats for /syz0:
[ 3473.809446][ T9274] cache 0
[ 3473.818928][ T9274] rss 40960
[ 3473.824724][ T9274] rss_huge 0
[ 3473.828021][ T9274] shmem 0
[ 3473.831032][ T9274] mapped_file 0
[ 3473.835229][ T9274] dirty 0
[ 3473.838280][ T9274] writeback 0
[ 3473.841653][ T9274] workingset_refault_anon 418661
[ 3473.846859][ T9128] Bluetooth: hci9: command 0x041b tx timeout
[ 3473.850152][ T9274] workingset_refault_file 25
[ 3473.858955][ T9274] swap 1986560
[ 3473.862448][ T9274] swapcached 0
[ 3473.866752][ T9274] pgpgin 931102
[ 3473.870338][ T9274] pgpgout 931092
[ 3473.874696][ T9274] pgfault 1619876
[ 3473.878352][ T9274] pgmajfault 402535
[ 3473.882163][ T9274] inactive_anon 0
[ 3473.887361][ T9274] active_anon 12288
[ 3473.891250][ T9274] inactive_file 0
[ 3473.895633][ T9274] active_file 0
[ 3473.899201][ T9274] unevictable 0
[ 3473.902744][ T9274] hierarchical_memory_limit 314572800
[ 3473.909052][ T9274] hierarchical_memsw_limit 9223372036854771712
[ 3473.915800][ T9274] total_cache 0
[ 3473.919377][ T9274] total_rss 40960
[ 3473.923100][ T9274] total_rss_huge 0
[ 3473.927981][ T9274] total_shmem 0
[ 3473.931556][ T9274] total_mapped_file 0
[ 3473.936311][ T9274] total_dirty 0
[ 3473.939840][ T9274] total_writeback 0
[ 3473.943676][ T9274] total_workingset_refault_anon 418661
[ 3473.950027][ T9274] total_workingset_refault_file 25
[ 3473.955814][ T9274] total_swap 1986560
[ 3473.959802][ T9274] total_swapcached 0
[ 3473.965485][ T9274] total_pgpgin 931102
[ 3473.969580][ T9274] total_pgpgout 931092
[ 3473.973731][ T9274] total_pgfault 1619876
[ 3473.978830][ T9274] total_pgmajfault 402535
[ 3473.983240][ T9274] total_inactive_anon 0
[ 3473.988252][ T9274] total_active_anon 12288
[ 3473.992624][ T9274] total_inactive_file 0
[ 3473.998072][ T9274] total_active_file 0
[ 3474.002064][ T9274] total_unevictable 0
[ 3474.006416][ T9128] Bluetooth: hci10: command 0x041b tx timeout
[ 3474.013364][ T9274] anon_cost 0
[ 3474.017266][ T9274] file_cost 0
[ 3474.020577][ T9274] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9274,uid=0
23:32:12 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb603}}}]}]}}]}, 0x74}}, 0x0)

[ 3474.036861][ T9274] Memory cgroup out of memory: Killed process 9274 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3474.142720][ T9276] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3474.155502][ T9276] CPU: 1 PID: 9276 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3474.165516][ T9276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3474.175686][ T9276] Call Trace:
[ 3474.178976][ T9276]  <TASK>
[ 3474.181920][ T9276]  dump_stack_lvl+0x1e7/0x2e0
[ 3474.186628][ T9276]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3474.191853][ T9276]  ? __pfx__printk+0x10/0x10
[ 3474.196465][ T9276]  ? ___ratelimit+0x4c4/0x670
[ 3474.201160][ T9276]  ? __pfx____ratelimit+0x10/0x10
[ 3474.206199][ T9276]  dump_header+0xda/0x6a0
[ 3474.210537][ T9276]  oom_kill_process+0x3a7/0x930
[ 3474.215392][ T9276]  out_of_memory+0xf67/0x1320
[ 3474.220093][ T9276]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3474.225835][ T9276]  ? __pfx___mutex_lock+0x10/0x10
[ 3474.230886][ T9276]  ? __pfx_out_of_memory+0x10/0x10
[ 3474.236016][ T9276]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3474.241568][ T9276]  ? __pfx_lock_release+0x10/0x10
[ 3474.246620][ T9276]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3474.252702][ T9276]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3474.257904][ T9276]  ? mem_cgroup_iter+0x422/0x560
[ 3474.262873][ T9276]  try_charge_memcg+0xda2/0x18a0
[ 3474.267855][ T9276]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3474.273242][ T9276]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3474.279321][ T9276]  ? __pfx_lock_release+0x10/0x10
[ 3474.284363][ T9276]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3474.290355][ T9276]  ? get_mem_cgroup_from_objcg+0x19/0x150
[ 3474.296075][ T9276]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[ 3474.301999][ T9276]  obj_cgroup_charge+0x389/0x630
[ 3474.306944][ T9276]  ? obj_cgroup_charge+0x121/0x630
[ 3474.312074][ T9276]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 3474.317563][ T9276]  ? kmalloc_trace+0x4e/0x360
[ 3474.322510][ T9276]  ? __pfx___might_resched+0x10/0x10
[ 3474.327802][ T9276]  __memcg_slab_pre_alloc_hook+0x28d/0x2b0
[ 3474.333654][ T9276]  ? copy_semundo+0xb5/0x240
[ 3474.338248][ T9276]  kmalloc_trace+0x216/0x360
[ 3474.342855][ T9276]  ? __asan_memcpy+0x40/0x70
[ 3474.347449][ T9276]  copy_semundo+0xb5/0x240
[ 3474.351862][ T9276]  copy_process+0x1bbe/0x3fc0
[ 3474.356547][ T9276]  ? copy_process+0x9be/0x3fc0
[ 3474.361312][ T9276]  ? __pfx_copy_process+0x10/0x10
[ 3474.366333][ T9276]  ? __might_fault+0xc5/0x120
[ 3474.371015][ T9276]  ? __asan_memset+0x23/0x50
[ 3474.375612][ T9276]  kernel_clone+0x21d/0x8d0
[ 3474.380116][ T9276]  ? __pfx_kernel_clone+0x10/0x10
[ 3474.385153][ T9276]  __se_sys_clone3+0x2cb/0x350
[ 3474.389916][ T9276]  ? __pfx___se_sys_clone3+0x10/0x10
[ 3474.395218][ T9276]  ? do_syscall_64+0x108/0x240
[ 3474.399978][ T9276]  ? do_syscall_64+0xb4/0x240
[ 3474.404649][ T9276]  do_syscall_64+0xf9/0x240
[ 3474.409149][ T9276]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3474.415040][ T9276] RIP: 0033:0x7f30cb2a9b99
[ 3474.419457][ T9276] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7
[ 3474.439060][ T9276] RSP: 002b:00007f30cb4cf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3
[ 3474.447476][ T9276] RAX: ffffffffffffffda RBX: 00007f30cb252270 RCX: 00007f30cb2a9b99
[ 3474.455440][ T9276] RDX: 00007f30cb252270 RSI: 0000000000000058 RDI: 00007f30cb4cf960
[ 3474.463402][ T9276] RBP: 00007f30cbf266c0 R08: 00007f30cbf266c0 R09: 00007f30cb4cfa47
[ 3474.471368][ T9276] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0
[ 3474.479361][ T9276] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3474.487358][ T9276]  </TASK>
[ 3474.503649][ T9128] Bluetooth: hci11: command 0x041b tx timeout
[ 3474.514625][ T9276] memory: usage 307188kB, limit 307200kB, failcnt 613744
[ 3474.521983][ T9276] memory+swap: usage 309180kB, limit 9007199254740988kB, failcnt 0
[ 3474.533386][ T9276] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3474.544853][ T9276] Memory cgroup stats for /syz0:
[ 3474.544993][ T9276] cache 0
[ 3474.552988][ T9276] rss 12288
[ 3474.556823][ T9276] rss_huge 0
[ 3474.560129][ T9276] shmem 0
[ 3474.563140][ T9276] mapped_file 0
[ 3474.567552][ T9276] dirty 0
[ 3474.570606][ T9276] writeback 0
[ 3474.574245][ T9276] workingset_refault_anon 418709
[ 3474.581546][ T9276] workingset_refault_file 25
[ 3474.586832][ T9276] swap 2039808
[ 3474.590580][ T9276] swapcached 0
[ 3474.594581][ T9276] pgpgin 931163
[ 3474.598064][ T9276] pgpgout 931160
[ 3474.601643][ T9276] pgfault 1619970
[ 3474.606554][ T9276] pgmajfault 402583
[ 3474.610386][ T9276] inactive_anon 0
[ 3474.614339][ T9276] active_anon 8192
[ 3474.618115][ T9276] inactive_file 0
[ 3474.621750][ T9276] active_file 0
[ 3474.625460][ T9276] unevictable 0
[ 3474.629000][ T9276] hierarchical_memory_limit 314572800
[ 3474.635110][ T9276] hierarchical_memsw_limit 9223372036854771712
[ 3474.641292][ T9276] total_cache 0
[ 3474.644952][ T9276] total_rss 12288
[ 3474.648600][ T9276] total_rss_huge 0
[ 3474.652331][ T9276] total_shmem 0
[ 3474.656432][ T9276] total_mapped_file 0
[ 3474.660443][ T9276] total_dirty 0
[ 3474.663892][ T9276] total_writeback 0
[ 3474.668160][ T9276] total_workingset_refault_anon 418709
[ 3474.673638][ T9276] total_workingset_refault_file 25
[ 3474.680363][ T9276] total_swap 2039808
[ 3474.684553][ T9276] total_swapcached 0
[ 3474.688508][ T9276] total_pgpgin 931163
[ 3474.692585][ T9276] total_pgpgout 931160
[ 3474.696943][ T9276] total_pgfault 1619970
[ 3474.701108][ T9276] total_pgmajfault 402583
[ 3474.705696][ T9276] total_inactive_anon 0
[ 3474.709996][ T9276] total_active_anon 8192
[ 3474.715287][ T9276] total_inactive_file 0
[ 3474.719574][ T9276] total_active_file 0
[ 3474.723627][ T9276] total_unevictable 0
[ 3474.728019][ T9276] anon_cost 0
[ 3474.731419][ T9276] file_cost 0
[ 3474.734997][ T9276] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9276,uid=0
23:32:13 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xbe01}}}]}]}}]}, 0x74}}, 0x0)

[ 3474.750749][ T9276] Memory cgroup out of memory: Killed process 9276 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3474.979060][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3474.997579][ T5099] CPU: 0 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3475.007613][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3475.017681][ T5099] Call Trace:
[ 3475.020956][ T5099]  <TASK>
[ 3475.023882][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3475.028563][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3475.033751][ T5099]  ? __pfx__printk+0x10/0x10
[ 3475.038327][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3475.043004][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3475.048029][ T5099]  dump_header+0xda/0x6a0
[ 3475.052358][ T5099]  oom_kill_process+0x3a7/0x930
[ 3475.057213][ T5099]  out_of_memory+0xf67/0x1320
[ 3475.061889][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3475.067515][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3475.072557][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3475.078538][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3475.084086][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3475.089198][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3475.095264][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3475.100455][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3475.106179][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3475.111112][ T5099]  ? mark_lock+0x9a/0x350
[ 3475.115455][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3475.120852][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3475.127004][ T5099]  charge_memcg+0xa2/0x160
[ 3475.131418][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3475.137485][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3475.142941][ T5099]  ? mark_lock+0x9a/0x350
[ 3475.147270][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3475.153258][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3475.158642][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3475.164542][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3475.169581][ T5099]  ? xas_descend+0x37e/0x470
[ 3475.174178][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3475.179127][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3475.184249][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3475.189636][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3475.194967][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3475.200266][ T5099]  do_swap_page+0x791/0x3f40
[ 3475.204861][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3475.209636][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3475.214396][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3475.219413][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3475.224868][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3475.230681][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3475.235812][ T5099]  ? reacquire_held_locks+0x3eb/0x690
[ 3475.241264][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3475.246726][ T5099]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3475.252453][ T5099]  ? mtree_range_walk+0x6fd/0x8e0
[ 3475.257490][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3475.262684][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3475.267718][ T5099]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3475.273100][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3475.278294][ T5099]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3475.283836][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3475.288603][ T5099]  exc_page_fault+0x456/0x870
[ 3475.293288][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3475.298139][ T5099] RIP: 0033:0x7f30cb2a4b90
[ 3475.302551][ T5099] Code: 6e c7 89 13 48 8b 50 08 0f 16 40 50 0f 11 00 48 89 50 50 48 8b 50 10 48 89 78 10 48 89 50 40 48 89 d7 eb b2 66 0f 1f 44 00 00 <64> 48 8b 0c 25 10 00 00 00 8b 91 08 03 00 00 48 8d b9 08 03 00 00
[ 3475.322153][ T5099] RSP: 002b:00007f30cb4cfd28 EFLAGS: 00010206
[ 3475.328218][ T5099] RAX: 0000000000000039 RBX: 00000000000072cc RCX: 0000000000000000
[ 3475.336192][ T5099] RDX: 0000000040000001 RSI: 00007f30cb4cfdbc RDI: 00000000ffffffff
[ 3475.344159][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000010 R09: 00007ffc3913c0b0
[ 3475.352124][ T5099] R10: 0000000000000000 R11: 00000000000a7330 R12: 0000000000000032
[ 3475.360093][ T5099] R13: 0000000000350552 R14: 0000000000350552 R15: 0000000000000000
[ 3475.368076][ T5099]  </TASK>
[ 3475.395873][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 614139
[ 3475.402945][ T5099] memory+swap: usage 309164kB, limit 9007199254740988kB, failcnt 0
[ 3475.411074][ T5099] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3475.418656][ T5099] Memory cgroup stats for /syz0:
[ 3475.418781][ T5099] cache 0
[ 3475.426886][ T5099] rss 4096
[ 3475.429931][ T5099] rss_huge 0
[ 3475.433140][ T5099] shmem 0
[ 3475.436321][ T5099] mapped_file 0
[ 3475.439796][ T5099] dirty 0
[ 3475.442778][ T5099] writeback 0
[ 3475.446504][ T5099] workingset_refault_anon 418831
[ 3475.451458][ T5099] workingset_refault_file 25
[ 3475.456243][ T5099] swap 2011136
[ 3475.459628][ T5099] swapcached 0
[ 3475.463007][ T5099] pgpgin 931297
[ 3475.466799][ T5099] pgpgout 931296
[ 3475.470363][ T5099] pgfault 1620141
[ 3475.474251][ T5099] pgmajfault 402678
[ 3475.478505][ T5099] inactive_anon 4096
[ 3475.482404][ T5099] active_anon 0
[ 3475.486123][ T5099] inactive_file 0
[ 3475.489784][ T5099] active_file 0
[ 3475.493256][ T5099] unevictable 0
[ 3475.497898][ T5099] hierarchical_memory_limit 314572800
[ 3475.503298][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3475.510362][ T5099] total_cache 0
[ 3475.513850][ T5099] total_rss 4096
[ 3475.517679][ T5099] total_rss_huge 0
[ 3475.521438][ T5099] total_shmem 0
[ 3475.525768][ T5099] total_mapped_file 0
[ 3475.529768][ T5099] total_dirty 0
[ 3475.533382][ T5099] total_writeback 0
[ 3475.537519][ T5099] total_workingset_refault_anon 418831
[ 3475.543184][ T5099] total_workingset_refault_file 25
[ 3475.548710][ T5099] total_swap 2011136
[ 3475.552710][ T5099] total_swapcached 0
[ 3475.556813][ T5099] total_pgpgin 931297
[ 3475.560853][ T5099] total_pgpgout 931296
[ 3475.565291][ T5099] total_pgfault 1620141
[ 3475.569461][ T5099] total_pgmajfault 402678
[ 3475.575567][ T5099] total_inactive_anon 4096
[ 3475.579995][ T5099] total_active_anon 0
[ 3475.585769][ T5099] total_inactive_file 0
[ 3475.589950][ T5099] total_active_file 0
[ 3475.594388][ T5099] total_unevictable 0
[ 3475.598381][ T5099] anon_cost 0
[ 3475.602703][ T5099] file_cost 0
[ 3475.606461][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9278,uid=0
[ 3475.631498][ T5099] Memory cgroup out of memory: Killed process 9278 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:32:14 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xbe02}}}]}]}}]}, 0x74}}, 0x0)

[ 3475.882448][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3475.895913][ T5099] CPU: 0 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3475.905932][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3475.916010][ T5099] Call Trace:
[ 3475.919300][ T5099]  <TASK>
[ 3475.922230][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3475.926940][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3475.932141][ T5099]  ? __pfx__printk+0x10/0x10
[ 3475.936725][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3475.941413][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3475.946482][ T5099]  dump_header+0xda/0x6a0
[ 3475.950820][ T5099]  oom_kill_process+0x3a7/0x930
[ 3475.955670][ T5099]  out_of_memory+0xf67/0x1320
[ 3475.961127][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3475.966757][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3475.971781][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3475.976897][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3475.982462][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3475.987511][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3475.993691][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3475.998909][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3476.003857][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3476.008799][ T5099]  ? mark_lock+0x9a/0x350
[ 3476.013151][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3476.018547][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3476.024708][ T5099]  charge_memcg+0xa2/0x160
[ 3476.029142][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3476.035212][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3476.040842][ T5099]  ? mark_lock+0x9a/0x350
[ 3476.045176][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3476.051245][ T5099]  ? blk_start_plug+0x6f/0x1b0
[ 3476.056021][ T5099]  swap_cluster_readahead+0x398/0x810
[ 3476.061401][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3476.067293][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3476.072328][ T5099]  ? xas_descend+0x37e/0x470
[ 3476.076924][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3476.081862][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3476.086994][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3476.092372][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3476.097664][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3476.102951][ T5099]  do_swap_page+0x791/0x3f40
[ 3476.107542][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3476.112320][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3476.117085][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3476.122110][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3476.127568][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3476.133368][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3476.138567][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3476.143728][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3476.149220][ T5099]  ? mt_find+0x226/0x850
[ 3476.153475][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3476.158521][ T5099]  ? mt_find+0x62d/0x850
[ 3476.163028][ T5099]  ? mt_find+0x226/0x850
[ 3476.167726][ T5099]  ? find_vma+0x142/0x1c0
[ 3476.172057][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3476.176782][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3476.182792][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3476.187573][ T5099]  exc_page_fault+0x2ad/0x870
[ 3476.192259][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3476.197122][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3476.202250][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3476.222205][ T5099] RSP: 0018:ffffc90003ebfd98 EFLAGS: 00050202
[ 3476.228276][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3476.236241][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3476.244213][ T5099] RBP: ffffc90003ebfec8 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3476.252186][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfda0
[ 3476.260149][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3476.268128][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3476.274039][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3476.280541][ T5099]  ? syscall_exit_to_user_mode+0xa2/0x360
[ 3476.286254][ T5099]  syscall_exit_to_user_mode+0x113/0x360
[ 3476.291894][ T5099]  do_syscall_64+0x108/0x240
[ 3476.296488][ T5099]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3476.302407][ T5099] RIP: 0033:0x7f30cb2a91b5
[ 3476.306820][ T5099] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[ 3476.326443][ T5099] RSP: 002b:00007f30cb4cfcf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[ 3476.334860][ T5099] RAX: 0000000000000000 RBX: 00000000000072ce RCX: 00007f30cb2a91b5
[ 3476.342825][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3476.350793][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3476.358758][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3476.366721][ T5099] R13: 00000000003508ec R14: 00000000003508ec R15: 0000000000000000
[ 3476.374697][ T5099]  </TASK>
[ 3476.382168][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 614598
[ 3476.390184][ T5099] memory+swap: usage 309136kB, limit 9007199254740988kB, failcnt 0
[ 3476.401584][ T5099] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 3476.409258][ T9128] Bluetooth: hci9: command 0x040f tx timeout
[ 3476.409270][ T9005] Bluetooth: hci10: command 0x040f tx timeout
[ 3476.426563][ T5099] Memory cgroup stats for /syz0:
[ 3476.426707][ T5099] cache 0
[ 3476.434823][ T5099] rss 0
[ 3476.437602][ T5099] rss_huge 0
[ 3476.440842][ T5099] shmem 0
[ 3476.443784][ T5099] mapped_file 0
[ 3476.447489][ T5099] dirty 0
[ 3476.450452][ T5099] writeback 0
[ 3476.453744][ T5099] workingset_refault_anon 418997
[ 3476.458929][ T5099] workingset_refault_file 25
[ 3476.463543][ T5099] swap 1982464
[ 3476.467199][ T5099] swapcached 0
[ 3476.470582][ T5099] pgpgin 931476
[ 3476.474299][ T5099] pgpgout 931476
[ 3476.477857][ T5099] pgfault 1620375
[ 3476.481483][ T5099] pgmajfault 402809
[ 3476.486285][ T5099] inactive_anon 0
[ 3476.489945][ T5099] active_anon 0
[ 3476.493412][ T5099] inactive_file 0
[ 3476.497369][ T5099] active_file 0
[ 3476.500855][ T5099] unevictable 0
[ 3476.504733][ T5099] hierarchical_memory_limit 314572800
[ 3476.510127][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3476.516480][ T5099] total_cache 0
[ 3476.519952][ T5099] total_rss 0
[ 3476.523915][ T5099] total_rss_huge 0
[ 3476.527891][ T5099] total_shmem 0
[ 3476.531358][ T5099] total_mapped_file 0
[ 3476.535605][ T5099] total_dirty 0
[ 3476.539064][ T5099] total_writeback 0
[ 3476.542854][ T5099] total_workingset_refault_anon 418997
[ 3476.548536][ T5099] total_workingset_refault_file 25
[ 3476.553648][ T5099] total_swap 1982464
[ 3476.557732][ T5099] total_swapcached 0
[ 3476.561628][ T5099] total_pgpgin 931476
[ 3476.566858][ T9128] Bluetooth: hci11: command 0x040f tx timeout
[ 3476.573030][ T5099] total_pgpgout 931476
[ 3476.577498][ T5099] total_pgfault 1620375
[ 3476.582567][ T5099] total_pgmajfault 402809
[ 3476.587301][ T5099] total_inactive_anon 0
[ 3476.591558][ T5099] total_active_anon 0
[ 3476.596571][ T5099] total_inactive_file 0
[ 3476.600827][ T5099] total_active_file 0
[ 3476.605053][ T5099] total_unevictable 0
[ 3476.609223][ T5099] anon_cost 0
[ 3476.612511][ T5099] file_cost 0
[ 3476.616255][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9280,uid=0
23:32:15 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xc603}}}]}]}}]}, 0x74}}, 0x0)

[ 3476.632491][ T5099] Memory cgroup out of memory: Killed process 9280 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3476.873633][ T9283] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3476.885703][ T9283] CPU: 0 PID: 9283 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3476.895715][ T9283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3476.905783][ T9283] Call Trace:
[ 3476.909059][ T9283]  <TASK>
[ 3476.911984][ T9283]  dump_stack_lvl+0x1e7/0x2e0
[ 3476.916683][ T9283]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3476.921891][ T9283]  ? __pfx__printk+0x10/0x10
[ 3476.926481][ T9283]  ? ___ratelimit+0x4c4/0x670
[ 3476.931167][ T9283]  ? __pfx____ratelimit+0x10/0x10
[ 3476.936207][ T9283]  dump_header+0xda/0x6a0
[ 3476.940545][ T9283]  oom_kill_process+0x3a7/0x930
[ 3476.945521][ T9283]  out_of_memory+0xf67/0x1320
[ 3476.950202][ T9283]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3476.955829][ T9283]  ? __pfx___mutex_lock+0x10/0x10
[ 3476.960851][ T9283]  ? __pfx_out_of_memory+0x10/0x10
[ 3476.965961][ T9283]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3476.972565][ T9283]  ? __pfx_lock_release+0x10/0x10
[ 3476.977621][ T9283]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3476.983696][ T9283]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3476.988890][ T9283]  ? mem_cgroup_iter+0x422/0x560
[ 3476.993824][ T9283]  try_charge_memcg+0xda2/0x18a0
[ 3476.998756][ T9283]  ? mark_lock+0x9a/0x350
[ 3477.003097][ T9283]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3477.008483][ T9283]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3477.014636][ T9283]  charge_memcg+0xa2/0x160
[ 3477.019051][ T9283]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3477.025121][ T9283]  __read_swap_cache_async+0x480/0x8b0
[ 3477.030577][ T9283]  ? mark_lock+0x9a/0x350
[ 3477.034921][ T9283]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3477.040904][ T9283]  ? blk_start_plug+0x6f/0x1b0
[ 3477.045671][ T9283]  swap_cluster_readahead+0x398/0x810
[ 3477.051046][ T9283]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3477.056945][ T9283]  ? __pfx_lock_release+0x10/0x10
[ 3477.061968][ T9283]  ? xas_descend+0x37e/0x470
[ 3477.066561][ T9283]  swapin_readahead+0x1ea/0x1070
[ 3477.071498][ T9283]  ? filemap_get_entry+0x127/0x4e0
[ 3477.076616][ T9283]  ? __pfx_swapin_readahead+0x10/0x10
[ 3477.081990][ T9283]  ? __filemap_get_folio+0x935/0xbc0
[ 3477.087275][ T9283]  ? swap_cache_get_folio+0x9f/0x570
[ 3477.092558][ T9283]  do_swap_page+0x791/0x3f40
[ 3477.097145][ T9283]  ? __lock_acquire+0x1345/0x1fd0
[ 3477.102167][ T9283]  ? rcu_is_watching+0x15/0xb0
[ 3477.106936][ T9283]  ? do_swap_page+0x154/0x3f40
[ 3477.111695][ T9283]  ? __pfx_do_swap_page+0x10/0x10
[ 3477.116714][ T9283]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3477.122169][ T9283]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3477.127970][ T9283]  ? __pfx_validate_chain+0x10/0x10
[ 3477.133166][ T9283]  __handle_mm_fault+0x15e8/0x72d0
[ 3477.138300][ T9283]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3477.143764][ T9283]  ? mt_find+0x226/0x850
[ 3477.148003][ T9283]  ? __pfx_lock_release+0x10/0x10
[ 3477.153038][ T9283]  ? mt_find+0x62d/0x850
[ 3477.157621][ T9283]  ? mt_find+0x226/0x850
[ 3477.161868][ T9283]  ? find_vma+0x142/0x1c0
[ 3477.166192][ T9283]  ? __pfx_find_vma+0x10/0x10
[ 3477.170862][ T9283]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3477.176843][ T9283]  handle_mm_fault+0x3c1/0x8a0
[ 3477.181617][ T9283]  exc_page_fault+0x2ad/0x870
[ 3477.186295][ T9283]  asm_exc_page_fault+0x26/0x30
[ 3477.191138][ T9283] RIP: 0010:__get_user_8+0x11/0x20
[ 3477.196247][ T9283] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3477.215847][ T9283] RSP: 0000:ffffc9000374fd78 EFLAGS: 00050206
[ 3477.221908][ T9283] RAX: 00007f30cbf26fe8 RBX: ffff88802af8b2f8 RCX: ffffc9000374fc03
[ 3477.229959][ T9283] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3477.237928][ T9283] RBP: ffffc9000374fec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3477.245909][ T9283] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc9000374fd80
[ 3477.253878][ T9283] R13: ffffc9000374ffd8 R14: dffffc0000000000 R15: ffff88802af89dc0
[ 3477.261858][ T9283]  __rseq_handle_notify_resume+0x158/0x1490
[ 3477.267761][ T9283]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3477.274091][ T9283]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3477.279890][ T9283]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3477.285533][ T9283]  exc_page_fault+0x587/0x870
[ 3477.290247][ T9283]  asm_exc_page_fault+0x26/0x30
[ 3477.295104][ T9283] RIP: 0033:0x7f30cb234b70
[ 3477.299531][ T9283] Code: 77 0b ca 00 01 e9 3f ff ff ff a8 10 74 0c c6 05 66 0b ca 00 01 e9 2f ff ff ff c6 05 5d 0b ca 00 01 e9 23 ff ff ff 0f 1f 40 00 <0f> b6 05 4e 0b ca 00 84 c0 74 0b 0f b6 05 32 0b ca 00 84 c0 74 0a
[ 3477.319306][ T9283] RSP: 002b:00007f30cbf26178 EFLAGS: 00010246
[ 3477.325368][ T9283] RAX: 00007f30cbf266c0 RBX: 00007f30cbf266c0 RCX: 00007f30cb252386
[ 3477.333327][ T9283] RDX: 0000000000000000 RSI: 00007f30cbf26fb0 RDI: 00007f30cb3abf80
[ 3477.341308][ T9283] RBP: 00007f30cb3abf80 R08: 0000000000000000 R09: 00007f30cb4cfa47
[ 3477.349304][ T9283] R10: 0000000000000008 R11: 0000000000000246 R12: ffffffffffffffb0
[ 3477.357269][ T9283] R13: 000000000000000b R14: 00007f30cb4cf960 R15: 00007f30cb4cfa48
[ 3477.365245][ T9283]  </TASK>
[ 3477.414609][ T9283] memory: usage 307200kB, limit 307200kB, failcnt 614991
[ 3477.421696][ T9283] memory+swap: usage 309132kB, limit 9007199254740988kB, failcnt 0
[ 3477.456540][ T9283] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 3477.463886][ T9283] Memory cgroup stats for /syz0:
[ 3477.472989][ T9283] cache 0
[ 3477.489769][ T9283] rss 4096
[ 3477.492841][ T9283] rss_huge 0
[ 3477.512792][ T9283] shmem 0
[ 3477.519960][ T9283] mapped_file 0
[ 3477.523479][ T9283] dirty 0
[ 3477.535171][ T9283] writeback 0
[ 3477.538502][ T9283] workingset_refault_anon 419152
[ 3477.543456][ T9283] workingset_refault_file 25
[ 3477.574496][ T9283] swap 1978368
[ 3477.577922][ T9283] swapcached 0
[ 3477.581295][ T9283] pgpgin 931641
[ 3477.648228][ T9283] pgpgout 931640
[ 3477.651831][ T9283] pgfault 1620582
[ 3477.657250][ T9283] pgmajfault 402933
[ 3477.661094][ T9283] inactive_anon 0
[ 3477.666334][ T9283] active_anon 4096
[ 3477.674788][ T9283] inactive_file 0
[ 3477.678454][ T9283] active_file 0
[ 3477.681949][ T9283] unevictable 0
[ 3477.686782][ T9283] hierarchical_memory_limit 314572800
[ 3477.692171][ T9283] hierarchical_memsw_limit 9223372036854771712
[ 3477.705937][ T9283] total_cache 0
[ 3477.709435][ T9283] total_rss 4096
[ 3477.712988][ T9283] total_rss_huge 0
[ 3477.717785][ T9283] total_shmem 0
[ 3477.721286][ T9283] total_mapped_file 0
[ 3477.726632][ T9283] total_dirty 0
[ 3477.730115][ T9283] total_writeback 0
[ 3477.733908][ T9283] total_workingset_refault_anon 419152
[ 3477.739787][ T9283] total_workingset_refault_file 25
[ 3477.745722][ T9283] total_swap 1978368
[ 3477.750789][ T9283] total_swapcached 0
[ 3477.755116][ T9283] total_pgpgin 931641
[ 3477.759406][ T9283] total_pgpgout 931640
[ 3477.763614][ T9283] total_pgfault 1620582
[ 3477.768417][ T9283] total_pgmajfault 402933
[ 3477.772881][ T9283] total_inactive_anon 0
[ 3477.777410][ T9283] total_active_anon 4096
[ 3477.781774][ T9283] total_inactive_file 0
[ 3477.786374][ T9283] total_active_file 0
[ 3477.790498][ T9283] total_unevictable 0
[ 3477.794787][ T9283] anon_cost 0
[ 3477.798204][ T9283] file_cost 0
23:32:16 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xca01}}}]}]}}]}, 0x74}}, 0x0)

[ 3477.801595][ T9283] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9282,uid=0
[ 3477.818217][ T9283] Memory cgroup out of memory: Killed process 9282 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3478.237355][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3478.260709][ T5099] CPU: 0 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3478.270754][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3478.280840][ T5099] Call Trace:
[ 3478.284153][ T5099]  <TASK>
[ 3478.287106][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3478.292160][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3478.297385][ T5099]  ? __pfx__printk+0x10/0x10
[ 3478.301996][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3478.306709][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3478.311771][ T5099]  dump_header+0xda/0x6a0
[ 3478.316128][ T5099]  oom_kill_process+0x3a7/0x930
[ 3478.320986][ T5099]  out_of_memory+0xf67/0x1320
[ 3478.325663][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3478.331468][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3478.336497][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3478.341612][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3478.347170][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3478.352193][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3478.358258][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3478.363454][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3478.368395][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3478.373415][ T5099]  ? mark_lock+0x9a/0x350
[ 3478.377930][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3478.383319][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3478.389470][ T5099]  charge_memcg+0xa2/0x160
[ 3478.393888][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3478.399957][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3478.405413][ T5099]  ? mark_lock+0x9a/0x350
[ 3478.409742][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3478.415729][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3478.421111][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3478.427005][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3478.432200][ T5099]  ? xas_descend+0x37e/0x470
[ 3478.436795][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3478.441726][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3478.446845][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3478.452397][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3478.457681][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3478.462963][ T5099]  do_swap_page+0x791/0x3f40
[ 3478.467552][ T5099]  ? __lock_acquire+0x1345/0x1fd0
[ 3478.472587][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3478.477357][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3478.482112][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3478.487128][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3478.492581][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3478.498391][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3478.503586][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3478.508892][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3478.514365][ T5099]  ? mt_find+0x226/0x850
[ 3478.518626][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3478.523659][ T5099]  ? mt_find+0x62d/0x850
[ 3478.527896][ T5099]  ? mt_find+0x226/0x850
[ 3478.532168][ T5099]  ? find_vma+0x142/0x1c0
[ 3478.536514][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3478.541636][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3478.547646][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3478.552425][ T5099]  exc_page_fault+0x2ad/0x870
[ 3478.557123][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3478.561976][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3478.567093][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3478.586704][ T5099] RSP: 0000:ffffc90003ebfd78 EFLAGS: 00050202
[ 3478.592765][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3478.600728][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3478.608862][ T5099] RBP: ffffc90003ebfec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3478.616827][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfd80
[ 3478.624794][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3478.632790][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3478.638697][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3478.645028][ T5099]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3478.650827][ T5099]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3478.656456][ T5099]  exc_page_fault+0x587/0x870
[ 3478.661135][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3478.665985][ T5099] RIP: 0033:0x7f30cb27a780
[ 3478.670396][ T5099] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 3478.690013][ T5099] RSP: 002b:00007f30cb4cfd58 EFLAGS: 00010246
[ 3478.696081][ T5099] RAX: 00000000000000c1 RBX: 00000000000072d2 RCX: 0000000000000000
[ 3478.704045][ T5099] RDX: 0000000040000001 RSI: 00007f30cb4cfdbc RDI: 00000000ffffffff
[ 3478.712006][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000010 R09: 00007ffc3913c0b0
[ 3478.719990][ T5099] R10: 00007ffc3913c080 R11: 00000000000a74de R12: 0000000000000032
[ 3478.727966][ T5099] R13: 0000000000351157 R14: 0000000000351157 R15: 0000000000000000
[ 3478.736125][ T5099]  </TASK>
[ 3478.747502][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 615982
[ 3478.755617][ T5099] memory+swap: usage 309124kB, limit 9007199254740988kB, failcnt 0
[ 3478.784627][ T5099] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3478.791961][ T5099] Memory cgroup stats for /syz0:
[ 3478.792085][ T5099] cache 0
[ 3478.826488][ T5099] rss 8192
[ 3478.829571][ T5099] rss_huge 0
[ 3478.832774][ T5099] shmem 0
[ 3478.836532][ T9128] Bluetooth: hci9: command 0x0419 tx timeout
[ 3478.842573][ T9128] Bluetooth: hci11: command 0x0419 tx timeout
[ 3478.850415][ T9128] Bluetooth: hci10: command 0x0419 tx timeout
[ 3478.878183][ T5099] mapped_file 0
[ 3478.881700][ T5099] dirty 0
[ 3478.886733][ T5099] writeback 0
[ 3478.890049][ T5099] workingset_refault_anon 419391
[ 3478.900190][ T5099] workingset_refault_file 25
[ 3478.909916][ T5099] swap 1970176
[ 3478.913321][ T5099] swapcached 4096
[ 3478.917683][ T5099] pgpgin 931892
[ 3478.921164][ T5099] pgpgout 931889
[ 3478.925424][ T5099] pgfault 1620875
[ 3478.929078][ T5099] pgmajfault 403108
[ 3478.932887][ T5099] inactive_anon 8192
[ 3478.937693][ T5099] active_anon 4096
[ 3478.941449][ T5099] inactive_file 0
[ 3478.946239][ T5099] active_file 0
[ 3478.949718][ T5099] unevictable 0
[ 3478.953179][ T5099] hierarchical_memory_limit 314572800
[ 3478.963894][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3478.970759][ T5099] total_cache 0
[ 3478.974526][ T5099] total_rss 8192
[ 3478.983873][ T5099] total_rss_huge 0
[ 3479.001726][ T5099] total_shmem 0
[ 3479.011271][ T5099] total_mapped_file 0
[ 3479.034172][ T5099] total_dirty 0
[ 3479.037694][ T5099] total_writeback 0
[ 3479.041522][ T5099] total_workingset_refault_anon 419391
[ 3479.064477][ T5099] total_workingset_refault_file 25
[ 3479.069640][ T5099] total_swap 1970176
[ 3479.073536][ T5099] total_swapcached 4096
[ 3479.079393][ T5099] total_pgpgin 931892
[ 3479.103329][ T5099] total_pgpgout 931889
[ 3479.119185][ T5099] total_pgfault 1620875
[ 3479.123386][ T5099] total_pgmajfault 403108
[ 3479.134461][ T5099] total_inactive_anon 8192
[ 3479.138939][ T5099] total_active_anon 4096
[ 3479.143202][ T5099] total_inactive_file 0
[ 3479.160837][ T5099] total_active_file 0
[ 3479.165499][ T5099] total_unevictable 0
[ 3479.174392][ T5099] anon_cost 0
[ 3479.185259][ T5099] file_cost 0
[ 3479.188587][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9284,uid=0
23:32:17 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe600}}}]}]}}]}, 0x74}}, 0x0)

[ 3479.215563][ T5099] Memory cgroup out of memory: Killed process 9284 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3479.441063][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3479.474222][ T5099] CPU: 0 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3479.484256][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3479.494330][ T5099] Call Trace:
[ 3479.497627][ T5099]  <TASK>
[ 3479.500574][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3479.505279][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3479.510506][ T5099]  ? __pfx__printk+0x10/0x10
[ 3479.515122][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3479.519838][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3479.524899][ T5099]  dump_header+0xda/0x6a0
[ 3479.529270][ T5099]  oom_kill_process+0x3a7/0x930
[ 3479.534166][ T5099]  out_of_memory+0xf67/0x1320
[ 3479.538883][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3479.544538][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3479.549587][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3479.554738][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3479.560318][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3479.565373][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3479.571482][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3479.576712][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3479.583426][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3479.588382][ T5099]  ? mark_lock+0x9a/0x350
[ 3479.592742][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3479.598165][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3479.604323][ T5099]  charge_memcg+0xa2/0x160
[ 3479.608743][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3479.614821][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3479.620278][ T5099]  ? mark_lock+0x9a/0x350
[ 3479.624610][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3479.630591][ T5099]  ? blk_start_plug+0x6f/0x1b0
[ 3479.635359][ T5099]  swap_cluster_readahead+0x398/0x810
[ 3479.640736][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3479.646635][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3479.651657][ T5099]  ? xas_descend+0x37e/0x470
[ 3479.656251][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3479.661187][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3479.666303][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3479.671679][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3479.676967][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3479.682247][ T5099]  do_swap_page+0x791/0x3f40
[ 3479.686833][ T5099]  ? __lock_acquire+0x1345/0x1fd0
[ 3479.691855][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3479.696623][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3479.701403][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3479.706532][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3479.711999][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3479.717811][ T5099]  ? __pfx_validate_chain+0x10/0x10
[ 3479.723011][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3479.728144][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3479.733605][ T5099]  ? mt_find+0x226/0x850
[ 3479.737843][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3479.742885][ T5099]  ? mt_find+0x62d/0x850
[ 3479.747121][ T5099]  ? mt_find+0x226/0x850
[ 3479.751372][ T5099]  ? find_vma+0x142/0x1c0
[ 3479.755693][ T5099]  ? __pfx_find_vma+0x10/0x10
[ 3479.760362][ T5099]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3479.766363][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3479.771158][ T5099]  exc_page_fault+0x2ad/0x870
[ 3479.775935][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3479.780785][ T5099] RIP: 0010:__get_user_8+0x11/0x20
[ 3479.785899][ T5099] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90
[ 3479.805513][ T5099] RSP: 0000:ffffc90003ebfd78 EFLAGS: 00050202
[ 3479.811578][ T5099] RAX: 00005555559c3da8 RBX: ffff88801a341538 RCX: ffffc90003ebfc03
[ 3479.819540][ T5099] RDX: 0000000000000000 RSI: ffffffff8baac600 RDI: ffffffff8bfe7780
[ 3479.828018][ T5099] RBP: ffffc90003ebfec0 R08: ffffffff8f857eef R09: 1ffffffff1f0afdd
[ 3479.836003][ T5099] R10: dffffc0000000000 R11: fffffbfff1f0afde R12: ffffc90003ebfd80
[ 3479.844332][ T5099] R13: ffffc90003ebffd8 R14: dffffc0000000000 R15: ffff88801a340000
[ 3479.852322][ T5099]  __rseq_handle_notify_resume+0x158/0x1490
[ 3479.858236][ T5099]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[ 3479.864576][ T5099]  ? irqentry_exit_to_user_mode+0x52/0x270
[ 3479.870376][ T5099]  irqentry_exit_to_user_mode+0xbb/0x270
[ 3479.876002][ T5099]  exc_page_fault+0x587/0x870
[ 3479.880687][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3479.885536][ T5099] RIP: 0033:0x7f30cb27a780
[ 3479.889946][ T5099] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00
[ 3479.909550][ T5099] RSP: 002b:00007f30cb4cfd58 EFLAGS: 00010246
[ 3479.915620][ T5099] RAX: 000000000000003c RBX: 00000000000072d4 RCX: 0000000000000000
[ 3479.923585][ T5099] RDX: 0000000040000001 RSI: 00007f30cb4cfdbc RDI: 00000000ffffffff
[ 3479.931550][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000010 R09: 00007ffc3913c0b0
[ 3479.939515][ T5099] R10: 00007ffc3913c080 R11: 00000000000a758a R12: 0000000000000032
[ 3479.947480][ T5099] R13: 00000000003516c4 R14: 00000000003516c4 R15: 0000000000000000
[ 3479.955458][ T5099]  </TASK>
[ 3480.067204][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 617043
[ 3480.085303][ T5099] memory+swap: usage 309152kB, limit 9007199254740988kB, failcnt 0
[ 3480.093258][ T5099] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 3480.113865][ T5099] Memory cgroup stats for /syz0:
[ 3480.116182][ T5099] cache 0
[ 3480.137785][ T5099] rss 20480
[ 3480.140955][ T5099] rss_huge 0
[ 3480.152009][ T5099] shmem 0
[ 3480.159600][ T5099] mapped_file 0
[ 3480.163096][ T5099] dirty 0
[ 3480.166553][ T5099] writeback 0
[ 3480.169863][ T5099] workingset_refault_anon 419923
[ 3480.189440][ T5099] workingset_refault_file 25
[ 3480.202585][ T5099] swap 1998848
[ 3480.206355][ T5099] swapcached 0
[ 3480.210798][ T5099] pgpgin 932456
[ 3480.224209][ T5099] pgpgout 932451
[ 3480.227799][ T5099] pgfault 1621585
[ 3480.231456][ T5099] pgmajfault 403500
[ 3480.248450][ T5099] inactive_anon 0
[ 3480.252131][ T5099] active_anon 0
[ 3480.263194][ T5099] inactive_file 0
[ 3480.271572][ T5099] active_file 0
[ 3480.275560][ T5099] unevictable 0
[ 3480.279036][ T5099] hierarchical_memory_limit 314572800
[ 3480.297827][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3480.305301][ T5099] total_cache 0
[ 3480.314230][ T5099] total_rss 20480
[ 3480.317891][ T5099] total_rss_huge 0
[ 3480.321623][ T5099] total_shmem 0
[ 3480.338101][ T5099] total_mapped_file 0
[ 3480.342129][ T5099] total_dirty 0
[ 3480.353366][ T5099] total_writeback 0
[ 3480.361888][ T5099] total_workingset_refault_anon 419923
[ 3480.367893][ T5099] total_workingset_refault_file 25
[ 3480.373028][ T5099] total_swap 1998848
[ 3480.388324][ T5099] total_swapcached 0
[ 3480.392263][ T5099] total_pgpgin 932456
[ 3480.404363][ T5099] total_pgpgout 932451
[ 3480.408470][ T5099] total_pgfault 1621585
[ 3480.413717][ T5099] total_pgmajfault 403500
[ 3480.431345][ T5099] total_inactive_anon 0
[ 3480.440198][ T5099] total_active_anon 0
[ 3480.453367][ T5099] total_inactive_file 0
[ 3480.462274][ T5099] total_active_file 0
[ 3480.466859][ T5099] total_unevictable 0
[ 3480.470866][ T5099] anon_cost 0
[ 3480.494427][ T5099] file_cost 0
[ 3480.497763][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9286,uid=0
23:32:18 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ff}}}]}]}}]}, 0x74}}, 0x0)

[ 3480.537991][ T5099] Memory cgroup out of memory: Killed process 9286 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3481.052565][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 3481.078225][ T5099] CPU: 0 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3481.088255][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3481.098323][ T5099] Call Trace:
[ 3481.101637][ T5099]  <TASK>
[ 3481.104569][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3481.109592][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3481.114773][ T5099]  ? __pfx__printk+0x10/0x10
[ 3481.119342][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3481.124008][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3481.129038][ T5099]  dump_header+0xda/0x6a0
[ 3481.133383][ T5099]  oom_kill_process+0x3a7/0x930
[ 3481.138251][ T5099]  out_of_memory+0xf67/0x1320
[ 3481.142954][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3481.149038][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3481.154082][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3481.159219][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3481.164776][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3481.169813][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3481.175883][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3481.181072][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3481.186017][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3481.190967][ T5099]  ? mark_lock+0x9a/0x350
[ 3481.195331][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3481.200985][ T5099]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3481.207127][ T5099]  charge_memcg+0xa2/0x160
[ 3481.211532][ T5099]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3481.217594][ T5099]  __read_swap_cache_async+0x480/0x8b0
[ 3481.223069][ T5099]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3481.229039][ T5099]  ? mlock_drain_local+0x79/0x490
[ 3481.234107][ T5099]  ? mlock_drain_local+0x79/0x490
[ 3481.239149][ T5099]  ? mlock_drain_local+0x28c/0x490
[ 3481.244288][ T5099]  swap_cluster_readahead+0x67c/0x810
[ 3481.249675][ T5099]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3481.255560][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3481.260589][ T5099]  ? xas_descend+0x37e/0x470
[ 3481.265607][ T5099]  swapin_readahead+0x1ea/0x1070
[ 3481.270535][ T5099]  ? filemap_get_entry+0x127/0x4e0
[ 3481.275640][ T5099]  ? __pfx_swapin_readahead+0x10/0x10
[ 3481.281002][ T5099]  ? __filemap_get_folio+0x935/0xbc0
[ 3481.286295][ T5099]  ? swap_cache_get_folio+0x9f/0x570
[ 3481.291604][ T5099]  do_swap_page+0x791/0x3f40
[ 3481.296215][ T5099]  ? rcu_is_watching+0x15/0xb0
[ 3481.301102][ T5099]  ? do_swap_page+0x154/0x3f40
[ 3481.305872][ T5099]  ? __pfx_do_swap_page+0x10/0x10
[ 3481.310905][ T5099]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3481.316366][ T5099]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3481.322169][ T5099]  __handle_mm_fault+0x15e8/0x72d0
[ 3481.327307][ T5099]  ? reacquire_held_locks+0x3eb/0x690
[ 3481.332678][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3481.338167][ T5099]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3481.343937][ T5099]  ? mtree_range_walk+0x6fd/0x8e0
[ 3481.348968][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3481.354155][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3481.359166][ T5099]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3481.364547][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3481.370509][ T5099]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3481.376055][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3481.380809][ T5099]  exc_page_fault+0x456/0x870
[ 3481.385500][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3481.390540][ T5099] RIP: 0033:0x7f30cb2a91b8
[ 3481.394962][ T5099] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[ 3481.414592][ T5099] RSP: 002b:00007f30cb4cfcf0 EFLAGS: 00010293
[ 3481.420643][ T5099] RAX: 0000000000000000 RBX: 00000000000072d6 RCX: 00007f30cb2a91b5
[ 3481.428774][ T5099] RDX: 00007f30cb4cfd30 RSI: 0000000000000000 RDI: 0000000000000000
[ 3481.436747][ T5099] RBP: 00007f30cb4cfdbc R08: 0000000000000000 R09: 00007ffc3913c0b0
[ 3481.444737][ T5099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
[ 3481.452714][ T5099] R13: 0000000000351bff R14: 0000000000351bff R15: 0000000000000000
[ 3481.460690][ T5099]  </TASK>
[ 3481.466688][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 618365
[ 3481.473751][ T5099] memory+swap: usage 309132kB, limit 9007199254740988kB, failcnt 0
[ 3481.482505][ T5099] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 3481.499872][ T5099] Memory cgroup stats for /syz0:
[ 3481.500019][ T5099] cache 0
[ 3481.508334][ T5099] rss 0
[ 3481.511099][ T5099] rss_huge 0
[ 3481.514620][ T5099] shmem 0
[ 3481.517751][ T5099] mapped_file 0
[ 3481.521228][ T5099] dirty 0
[ 3481.524835][ T5099] writeback 0
[ 3481.528143][ T5099] workingset_refault_anon 420437
[ 3481.533082][ T5099] workingset_refault_file 25
[ 3481.538657][ T5099] swap 1978368
[ 3481.542087][ T5099] swapcached 4096
[ 3481.546155][ T5099] pgpgin 932984
[ 3481.549616][ T5099] pgpgout 932983
[ 3481.553175][ T5099] pgfault 1622242
[ 3481.560725][ T5099] pgmajfault 403889
[ 3481.569832][ T5099] inactive_anon 0
[ 3481.573487][ T5099] active_anon 0
[ 3481.577674][ T5099] inactive_file 0
[ 3481.581331][ T5099] active_file 0
[ 3481.589077][ T5099] unevictable 0
[ 3481.592562][ T5099] hierarchical_memory_limit 314572800
[ 3481.598358][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3481.604932][ T5099] total_cache 0
[ 3481.608589][ T5099] total_rss 0
[ 3481.611869][ T5099] total_rss_huge 0
[ 3481.616393][ T5099] total_shmem 0
[ 3481.619871][ T5099] total_mapped_file 0
[ 3481.623855][ T5099] total_dirty 0
[ 3481.627578][ T5099] total_writeback 0
[ 3481.631404][ T5099] total_workingset_refault_anon 420437
[ 3481.637092][ T5099] total_workingset_refault_file 25
[ 3481.642963][ T5099] total_swap 1978368
[ 3481.647401][ T5099] total_swapcached 4096
[ 3481.651576][ T5099] total_pgpgin 932984
[ 3481.655884][ T5099] total_pgpgout 932983
[ 3481.659951][ T5099] total_pgfault 1622242
[ 3481.664369][ T5099] total_pgmajfault 403889
[ 3481.668716][ T5099] total_inactive_anon 0
[ 3481.672877][ T5099] total_active_anon 0
[ 3481.677358][ T5099] total_inactive_file 0
[ 3481.681519][ T5099] total_active_file 0
[ 3481.686128][ T5099] total_unevictable 0
[ 3481.690535][ T5099] anon_cost 0
[ 3481.693860][ T5099] file_cost 0
23:32:20 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xf600}}}]}]}}]}, 0x74}}, 0x0)

[ 3481.697503][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9288,uid=0
[ 3481.713508][ T5099] Memory cgroup out of memory: Killed process 9288 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:32:23 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfff2}}}]}]}}]}, 0x74}}, 0x0)

23:32:26 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x34000}}}]}]}}]}, 0x74}}, 0x0)

23:32:29 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}}}]}]}}]}, 0x74}}, 0x0)

23:32:32 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x400300}}}]}]}}]}, 0x74}}, 0x0)

[ 3494.004813][ T9128] Bluetooth: hci1: command 0x0406 tx timeout
23:32:35 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}}}]}]}}]}, 0x74}}, 0x0)

23:32:38 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}}}]}]}}]}, 0x74}}, 0x0)

[ 3501.151066][ T9128] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 3501.162230][ T9128] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 3501.171295][ T9128] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 3501.181345][ T9128] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 3501.200703][ T9128] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[ 3501.214554][ T9128] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 3501.352329][ T9303] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3501.365056][ T9303] CPU: 1 PID: 9303 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3501.375070][ T9303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3501.385147][ T9303] Call Trace:
[ 3501.388436][ T9303]  <TASK>
[ 3501.391375][ T9303]  dump_stack_lvl+0x1e7/0x2e0
[ 3501.396082][ T9303]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3501.401303][ T9303]  ? __pfx__printk+0x10/0x10
[ 3501.405910][ T9303]  ? ___ratelimit+0x4c4/0x670
[ 3501.410616][ T9303]  ? __pfx____ratelimit+0x10/0x10
[ 3501.415668][ T9303]  dump_header+0xda/0x6a0
[ 3501.420027][ T9303]  oom_kill_process+0x3a7/0x930
[ 3501.424913][ T9303]  out_of_memory+0xf67/0x1320
[ 3501.429614][ T9303]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3501.435264][ T9303]  ? __pfx___mutex_lock+0x10/0x10
[ 3501.440312][ T9303]  ? __pfx_out_of_memory+0x10/0x10
[ 3501.445457][ T9303]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3501.451021][ T9303]  ? __pfx_lock_release+0x10/0x10
[ 3501.456066][ T9303]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3501.462159][ T9303]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3501.467381][ T9303]  ? mem_cgroup_iter+0x422/0x560
[ 3501.472345][ T9303]  try_charge_memcg+0xda2/0x18a0
[ 3501.477298][ T9303]  ? mark_lock+0x9a/0x350
[ 3501.481673][ T9303]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3501.487146][ T9303]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3501.493315][ T9303]  charge_memcg+0xa2/0x160
[ 3501.497758][ T9303]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3501.503858][ T9303]  __read_swap_cache_async+0x480/0x8b0
[ 3501.509343][ T9303]  ? mark_lock+0x9a/0x350
[ 3501.513702][ T9303]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3501.519739][ T9303]  swap_cluster_readahead+0x67c/0x810
[ 3501.525164][ T9303]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3501.531087][ T9303]  ? __pfx_lock_release+0x10/0x10
[ 3501.536147][ T9303]  ? xas_descend+0x37e/0x470
[ 3501.540811][ T9303]  swapin_readahead+0x1ea/0x1070
[ 3501.545782][ T9303]  ? filemap_get_entry+0x127/0x4e0
[ 3501.550942][ T9303]  ? __pfx_swapin_readahead+0x10/0x10
[ 3501.556439][ T9303]  ? __filemap_get_folio+0x935/0xbc0
[ 3501.561774][ T9303]  ? swap_cache_get_folio+0x9f/0x570
[ 3501.567094][ T9303]  do_swap_page+0x791/0x3f40
[ 3501.571722][ T9303]  ? rcu_is_watching+0x15/0xb0
[ 3501.576527][ T9303]  ? do_swap_page+0x154/0x3f40
[ 3501.581311][ T9303]  ? __pfx_do_swap_page+0x10/0x10
[ 3501.586373][ T9303]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3501.591865][ T9303]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3501.597710][ T9303]  __handle_mm_fault+0x15e8/0x72d0
[ 3501.602875][ T9303]  ? reacquire_held_locks+0x3eb/0x690
[ 3501.608271][ T9303]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3501.613775][ T9303]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3501.619537][ T9303]  ? mtree_range_walk+0x6fd/0x8e0
[ 3501.624599][ T9303]  ? lock_vma_under_rcu+0x18a/0x730
[ 3501.630428][ T9303]  ? __pfx_lock_release+0x10/0x10
[ 3501.635474][ T9303]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3501.640713][ T9303]  ? lock_vma_under_rcu+0x18a/0x730
[ 3501.645968][ T9303]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3501.651534][ T9303]  handle_mm_fault+0x3c1/0x8a0
[ 3501.656329][ T9303]  exc_page_fault+0x456/0x870
[ 3501.661044][ T9303]  asm_exc_page_fault+0x26/0x30
[ 3501.665927][ T9303] RIP: 0033:0x7f30cb239ac7
[ 3501.670358][ T9303] Code: 25 ff 0f 00 00 09 c5 80 3d 06 bc c9 00 00 0f 85 6f ff ff ff 44 0f b6 6c 24 0f 44 8d 55 04 89 e8 41 89 c1 41 81 e1 ff 1f 00 00 <43> 8b 14 8e 39 d5 0f 84 5e ff ff ff 85 d2 0f 84 65 01 00 00 83 c0
[ 3501.690087][ T9303] RSP: 002b:00007f30cb4cfa60 EFLAGS: 00010202
[ 3501.696189][ T9303] RAX: 0000000081405a79 RBX: 00007f30cb3ac018 RCX: 0000000000000219
[ 3501.704190][ T9303] RDX: ffffffff81405286 RSI: 0000000080000000 RDI: 00000000000007c6
[ 3501.712192][ T9303] RBP: 0000000081405a79 R08: 0000001b31820000 R09: 0000000000001a79
[ 3501.720226][ T9303] R10: 0000000081405a7d R11: 0000000000000246 R12: 0000000000000219
[ 3501.728234][ T9303] R13: 0000000000000001 R14: 00007f30cb3a0000 R15: ffffffff81405286
[ 3501.736338][ T9303]  ? unwind_next_frame+0x536/0x29e0
[ 3501.741578][ T9303]  ? unwind_next_frame+0x536/0x29e0
[ 3501.746830][ T9303]  </TASK>
[ 3501.757012][ T9303] memory: usage 307200kB, limit 307200kB, failcnt 650036
[ 3501.764595][ T9303] memory+swap: usage 309140kB, limit 9007199254740988kB, failcnt 0
[ 3501.773560][ T9303] kmem: usage 307160kB, limit 9007199254740988kB, failcnt 0
[ 3501.787231][ T9303] Memory cgroup stats for /syz0:
[ 3501.787374][ T9303] cache 0
[ 3501.796285][ T9303] rss 40960
[ 3501.799603][ T9303] rss_huge 0
[ 3501.802896][ T9303] shmem 0
[ 3501.807110][ T9303] mapped_file 0
[ 3501.810691][ T9303] dirty 0
[ 3501.824449][ T9303] writeback 0
[ 3501.828058][ T9303] workingset_refault_anon 442956
[ 3501.833134][ T9303] workingset_refault_file 25
[ 3501.838847][ T9303] swap 1986560
[ 3501.842331][ T9303] swapcached 0
[ 3501.847436][ T9303] pgpgin 955684
[ 3501.851001][ T9303] pgpgout 955674
[ 3501.857719][ T9303] pgfault 1648367
[ 3501.861482][ T9303] pgmajfault 423245
[ 3501.875504][ T9303] inactive_anon 12288
[ 3501.879634][ T9303] active_anon 0
[ 3501.883236][ T9303] inactive_file 0
[ 3501.887818][ T9303] active_file 0
[ 3501.891420][ T9303] unevictable 0
[ 3501.895735][ T9303] hierarchical_memory_limit 314572800
[ 3501.901246][ T9303] hierarchical_memsw_limit 9223372036854771712
[ 3501.908449][ T9303] total_cache 0
[ 3501.922266][ T9303] total_rss 40960
[ 3501.926650][ T9303] total_rss_huge 0
[ 3501.930500][ T9303] total_shmem 0
[ 3501.934769][ T9303] total_mapped_file 0
[ 3501.938862][ T9303] total_dirty 0
[ 3501.942412][ T9303] total_writeback 0
[ 3501.947074][ T9303] total_workingset_refault_anon 442956
[ 3501.952666][ T9303] total_workingset_refault_file 25
[ 3501.958685][ T9303] total_swap 1986560
[ 3501.969331][ T9303] total_swapcached 0
[ 3501.973269][ T9303] total_pgpgin 955684
[ 3501.984512][ T9303] total_pgpgout 955674
[ 3501.988623][ T9303] total_pgfault 1648367
[ 3501.992792][ T9303] total_pgmajfault 423245
[ 3502.014597][ T9303] total_inactive_anon 12288
[ 3502.019654][ T9303] total_active_anon 0
[ 3502.023660][ T9303] total_inactive_file 0
[ 3502.044432][ T9303] total_active_file 0
[ 3502.048467][ T9303] total_unevictable 0
[ 3502.052463][ T9303] anon_cost 0
[ 3502.068621][ T9303] file_cost 0
[ 3502.071970][ T9303] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9303,uid=0
[ 3502.089477][ T9303] Memory cgroup out of memory: Killed process 9303 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
23:32:40 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}}}]}]}}]}, 0x74}}, 0x0)

[ 3503.285134][ T9269] Bluetooth: hci12: command 0x0409 tx timeout
[ 3504.077916][ T9310] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 3504.107438][ T9310] CPU: 1 PID: 9310 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3504.117472][ T9310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3504.127549][ T9310] Call Trace:
[ 3504.130846][ T9310]  <TASK>
[ 3504.133793][ T9310]  dump_stack_lvl+0x1e7/0x2e0
[ 3504.138589][ T9310]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3504.143808][ T9310]  ? __pfx__printk+0x10/0x10
[ 3504.148413][ T9310]  ? ___ratelimit+0x4c4/0x670
[ 3504.153129][ T9310]  ? __pfx____ratelimit+0x10/0x10
[ 3504.158186][ T9310]  dump_header+0xda/0x6a0
[ 3504.162541][ T9310]  oom_kill_process+0x3a7/0x930
[ 3504.167422][ T9310]  out_of_memory+0xf67/0x1320
[ 3504.175521][ T9310]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3504.181181][ T9310]  ? __pfx___mutex_lock+0x10/0x10
[ 3504.186228][ T9310]  ? __pfx_out_of_memory+0x10/0x10
[ 3504.191376][ T9310]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3504.196943][ T9310]  ? __pfx_lock_release+0x10/0x10
[ 3504.202163][ T9310]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3504.208254][ T9310]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3504.213473][ T9310]  ? mem_cgroup_iter+0x422/0x560
[ 3504.218433][ T9310]  try_charge_memcg+0xda2/0x18a0
[ 3504.223386][ T9310]  ? mark_lock+0x9a/0x350
[ 3504.227757][ T9310]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3504.233179][ T9310]  ? mem_cgroup_swapin_charge_folio+0x35/0x3a0
[ 3504.239361][ T9310]  charge_memcg+0xa2/0x160
[ 3504.243817][ T9310]  mem_cgroup_swapin_charge_folio+0x267/0x3a0
[ 3504.249921][ T9310]  __read_swap_cache_async+0x480/0x8b0
[ 3504.255480][ T9310]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 3504.261461][ T9310]  ? mlock_drain_local+0x79/0x490
[ 3504.266483][ T9310]  ? mlock_drain_local+0x79/0x490
[ 3504.271505][ T9310]  ? mlock_drain_local+0x28c/0x490
[ 3504.276622][ T9310]  swap_cluster_readahead+0x67c/0x810
[ 3504.282005][ T9310]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 3504.287901][ T9310]  ? __pfx_lock_release+0x10/0x10
[ 3504.292932][ T9310]  ? xas_descend+0x37e/0x470
[ 3504.297526][ T9310]  swapin_readahead+0x1ea/0x1070
[ 3504.302461][ T9310]  ? filemap_get_entry+0x127/0x4e0
[ 3504.307579][ T9310]  ? __pfx_swapin_readahead+0x10/0x10
[ 3504.312954][ T9310]  ? __filemap_get_folio+0x935/0xbc0
[ 3504.318238][ T9310]  ? swap_cache_get_folio+0x9f/0x570
[ 3504.323520][ T9310]  do_swap_page+0x791/0x3f40
[ 3504.328154][ T9310]  ? rcu_is_watching+0x15/0xb0
[ 3504.333018][ T9310]  ? do_swap_page+0x154/0x3f40
[ 3504.337778][ T9310]  ? __pfx_do_swap_page+0x10/0x10
[ 3504.342795][ T9310]  ? pte_offset_map_nolock+0x137/0x1f0
[ 3504.348249][ T9310]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 3504.354070][ T9310]  __handle_mm_fault+0x15e8/0x72d0
[ 3504.359646][ T9310]  ? reacquire_held_locks+0x3eb/0x690
[ 3504.365014][ T9310]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3504.370485][ T9310]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3504.376218][ T9310]  ? mtree_range_walk+0x6fd/0x8e0
[ 3504.381240][ T9310]  ? lock_vma_under_rcu+0x18a/0x730
[ 3504.386436][ T9310]  ? __pfx_lock_release+0x10/0x10
[ 3504.391457][ T9310]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3504.396666][ T9310]  ? lock_vma_under_rcu+0x18a/0x730
[ 3504.401860][ T9310]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3504.407422][ T9310]  handle_mm_fault+0x3c1/0x8a0
[ 3504.412214][ T9310]  exc_page_fault+0x456/0x870
[ 3504.416915][ T9310]  asm_exc_page_fault+0x26/0x30
[ 3504.421772][ T9310] RIP: 0033:0x7f30cb239aa4
[ 3504.426188][ T9310] Code: 00 25 ff 0f 00 00 83 f0 3d 8d 3c c0 89 f8 c1 e8 04 31 f8 69 c0 2d eb d4 27 89 c7 c1 ef 0f 31 f8 48 31 d0 25 ff 0f 00 00 09 c5 <80> 3d 06 bc c9 00 00 0f 85 6f ff ff ff 44 0f b6 6c 24 0f 44 8d 55
[ 3504.445805][ T9310] RSP: 002b:00007f30cb4cfa60 EFLAGS: 00010286
[ 3504.451876][ T9310] RAX: 0000000000000795 RBX: 00007f30cb3ac018 RCX: 0000000000000046
[ 3504.459846][ T9310] RDX: ffffffff8b628728 RSI: 0000000080000000 RDI: 000000000000d26f
[ 3504.467814][ T9310] RBP: 000000008b628795 R08: 0000001b31820000 R09: 0000000000000574
[ 3504.475783][ T9310] R10: 000000008b628578 R11: 0000000000000246 R12: 0000000000000046
[ 3504.483756][ T9310] R13: 0000000000000001 R14: 00007f30cb3a0000 R15: ffffffff8b628728
[ 3504.491730][ T9310]  ? xas_start+0x3f8/0x7b0
[ 3504.496163][ T9310]  ? xas_start+0x3f8/0x7b0
[ 3504.500606][ T9310]  </TASK>
[ 3504.553873][ T9310] memory: usage 307180kB, limit 307200kB, failcnt 651636
[ 3504.574615][ T9310] memory+swap: usage 309140kB, limit 9007199254740988kB, failcnt 0
[ 3504.583129][ T9310] kmem: usage 307160kB, limit 9007199254740988kB, failcnt 0
[ 3504.598776][ T9310] Memory cgroup stats for /syz0:
[ 3504.598887][ T9310] cache 0
[ 3504.608000][ T9310] rss 12288
[ 3504.611126][ T9310] rss_huge 0
[ 3504.615808][ T9310] shmem 0
[ 3504.618777][ T9310] mapped_file 0
[ 3504.622296][ T9310] dirty 0
[ 3504.625554][ T9310] writeback 0
[ 3504.628856][ T9310] workingset_refault_anon 443739
[ 3504.633797][ T9310] workingset_refault_file 25
[ 3504.639289][ T9310] swap 2007040
[ 3504.642687][ T9310] swapcached 8192
[ 3504.646526][ T9310] pgpgin 956518
[ 3504.649994][ T9310] pgpgout 956513
[ 3504.653545][ T9310] pgfault 1649553
[ 3504.663920][ T9310] pgmajfault 423975
[ 3504.668101][ T9310] inactive_anon 4096
[ 3504.672006][ T9310] active_anon 16384
[ 3504.676284][ T9310] inactive_file 0
[ 3504.679939][ T9310] active_file 0
[ 3504.684205][ T9310] unevictable 0
[ 3504.687691][ T9310] hierarchical_memory_limit 314572800
[ 3504.693105][ T9310] hierarchical_memsw_limit 9223372036854771712
[ 3504.699684][ T9310] total_cache 0
[ 3504.703158][ T9310] total_rss 12288
[ 3504.707092][ T9310] total_rss_huge 0
[ 3504.710822][ T9310] total_shmem 0
[ 3504.714525][ T9310] total_mapped_file 0
[ 3504.718520][ T9310] total_dirty 0
[ 3504.722002][ T9310] total_writeback 0
[ 3504.727197][ T9310] total_workingset_refault_anon 443739
[ 3504.732828][ T9310] total_workingset_refault_file 25
[ 3504.738249][ T9310] total_swap 2007040
[ 3504.742991][ T9310] total_swapcached 8192
[ 3504.748457][ T9310] total_pgpgin 956518
[ 3504.752565][ T9310] total_pgpgout 956513
[ 3504.757135][ T9310] total_pgfault 1649553
[ 3504.761605][ T9310] total_pgmajfault 423975
[ 3504.769075][ T9310] total_inactive_anon 4096
[ 3504.773546][ T9310] total_active_anon 16384
[ 3504.778577][ T9310] total_inactive_file 0
[ 3504.782760][ T9310] total_active_file 0
[ 3504.791869][ T9310] total_unevictable 0
[ 3504.796247][ T9310] anon_cost 0
[ 3504.799549][ T9310] file_cost 0
23:32:43 executing program 0:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000060c0)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x1100, r4, {}, {}, {0xffff}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x17, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}}}]}]}}]}, 0x74}}, 0x0)

[ 3504.802860][ T9310] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9310,uid=0
[ 3504.819008][ T9310] Memory cgroup out of memory: Killed process 9310 (syz-executor.0) total-vm:54508kB, anon-rss:240kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3504.891666][ T5099] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 3504.901998][ T5099] CPU: 0 PID: 5099 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3504.911994][ T5099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3504.922046][ T5099] Call Trace:
[ 3504.925318][ T5099]  <TASK>
[ 3504.928244][ T5099]  dump_stack_lvl+0x1e7/0x2e0
[ 3504.932921][ T5099]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3504.938110][ T5099]  ? __pfx__printk+0x10/0x10
[ 3504.942685][ T5099]  ? ___ratelimit+0x4c4/0x670
[ 3504.947363][ T5099]  ? __pfx____ratelimit+0x10/0x10
[ 3504.952388][ T5099]  dump_header+0xda/0x6a0
[ 3504.956719][ T5099]  oom_kill_process+0x3a7/0x930
[ 3504.961574][ T5099]  out_of_memory+0xf67/0x1320
[ 3504.966251][ T5099]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3504.971875][ T5099]  ? __pfx___mutex_lock+0x10/0x10
[ 3504.976894][ T5099]  ? __pfx_out_of_memory+0x10/0x10
[ 3504.982006][ T5099]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3504.987550][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3504.992574][ T5099]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3504.998657][ T5099]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3505.003851][ T5099]  ? mem_cgroup_iter+0x422/0x560
[ 3505.008789][ T5099]  try_charge_memcg+0xda2/0x18a0
[ 3505.013748][ T5099]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3505.019116][ T5099]  ? percpu_ref_tryget+0x14/0x180
[ 3505.024149][ T5099]  charge_memcg+0xa2/0x160
[ 3505.028563][ T5099]  __mem_cgroup_charge+0x27/0x80
[ 3505.033497][ T5099]  folio_prealloc+0x52/0x170
[ 3505.038083][ T5099]  do_wp_page+0x1222/0x4c90
[ 3505.042601][ T5099]  ? __pfx_do_wp_page+0x10/0x10
[ 3505.047451][ T5099]  ? __pfx_lock_acquire+0x10/0x10
[ 3505.052472][ T5099]  ? do_raw_spin_lock+0x14e/0x370
[ 3505.057505][ T5099]  __handle_mm_fault+0x26ad/0x72d0
[ 3505.062630][ T5099]  ? reacquire_held_locks+0x3eb/0x690
[ 3505.067996][ T5099]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3505.073455][ T5099]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3505.079175][ T5099]  ? mtree_range_walk+0x6fd/0x8e0
[ 3505.084199][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3505.089389][ T5099]  ? __pfx_lock_release+0x10/0x10
[ 3505.094408][ T5099]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3505.099617][ T5099]  ? lock_vma_under_rcu+0x18a/0x730
[ 3505.104821][ T5099]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3505.110366][ T5099]  handle_mm_fault+0x3c1/0x8a0
[ 3505.115132][ T5099]  exc_page_fault+0x456/0x870
[ 3505.119820][ T5099]  asm_exc_page_fault+0x26/0x30
[ 3505.124667][ T5099] RIP: 0033:0x7f30cb25a1d3
[ 3505.129273][ T5099] Code: 7b ff ff eb a7 66 90 80 3d 41 06 c8 00 00 74 57 41 54 45 31 e4 55 48 8d 2d 9a 54 12 00 53 48 89 eb 66 0f 1f 44 00 00 44 89 e0 <87> 03 83 f8 01 7f 26 48 8b 9b 70 08 00 00 48 39 eb 75 ea 31 c0 87
[ 3505.148961][ T5099] RSP: 002b:00007f30cb4cfc40 EFLAGS: 00010246
[ 3505.155033][ T5099] RAX: 0000000000000000 RBX: 00007f30cb37f660 RCX: 00007f30cb27add3
[ 3505.162998][ T5099] RDX: 00000000000072e8 RSI: 0000000000000000 RDI: 0000000001200011
[ 3505.170964][ T5099] RBP: 00007f30cb37f660 R08: 0000000000000000 R09: 0000000000000000
[ 3505.178925][ T5099] R10: 00005555559c3750 R11: 0000000000000246 R12: 0000000000000000
[ 3505.187324][ T5099] R13: ffffffffffffffb0 R14: 0000000000000002 R15: 0000000000000001
[ 3505.195304][ T5099]  </TASK>
[ 3505.212801][ T5099] memory: usage 307200kB, limit 307200kB, failcnt 651728
[ 3505.220250][ T5099] memory+swap: usage 309036kB, limit 9007199254740988kB, failcnt 0
[ 3505.228432][ T5099] kmem: usage 307116kB, limit 9007199254740988kB, failcnt 0
[ 3505.235907][ T5099] Memory cgroup stats for /syz0:
[ 3505.236009][ T5099] cache 0
[ 3505.243907][ T5099] rss 69632
[ 3505.247290][ T5099] rss_huge 0
[ 3505.250536][ T5099] shmem 0
[ 3505.253475][ T5099] mapped_file 0
[ 3505.266047][ T5099] dirty 0
[ 3505.269018][ T5099] writeback 0
[ 3505.272308][ T5099] workingset_refault_anon 443741
[ 3505.287085][ T5099] workingset_refault_file 25
[ 3505.291710][ T5099] swap 1880064
[ 3505.296187][ T5099] swapcached 0
[ 3505.299619][ T5099] pgpgin 956535
[ 3505.303081][ T5099] pgpgout 956518
[ 3505.308194][ T5099] pgfault 1649579
[ 3505.311838][ T5099] pgmajfault 423986
[ 3505.316586][ T5099] inactive_anon 4096
[ 3505.320506][ T5099] active_anon 65536
[ 3505.324942][ T5099] inactive_file 0
[ 3505.328590][ T5099] active_file 0
[ 3505.332041][ T5099] unevictable 0
[ 3505.339603][ T5099] hierarchical_memory_limit 314572800
[ 3505.345582][ T5099] hierarchical_memsw_limit 9223372036854771712
[ 3505.351777][ T5099] total_cache 0
[ 3505.355977][ T5099] total_rss 69632
[ 3505.359627][ T5099] total_rss_huge 0
[ 3505.363347][ T5099] total_shmem 0
[ 3505.364408][ T9269] Bluetooth: hci12: command 0x041b tx timeout
[ 3505.368045][ T5099] total_mapped_file 0
[ 3505.377468][ T5099] total_dirty 0
[ 3505.380942][ T5099] total_writeback 0
[ 3505.385377][ T5099] total_workingset_refault_anon 443741
[ 3505.390874][ T5099] total_workingset_refault_file 25
[ 3505.396941][ T5099] total_swap 1880064
[ 3505.402769][ T5099] total_swapcached 0
[ 3505.407309][ T5099] total_pgpgin 956535
[ 3505.411307][ T5099] total_pgpgout 956518
[ 3505.416696][ T5099] total_pgfault 1649579
[ 3505.420860][ T5099] total_pgmajfault 423986
[ 3505.425994][ T5099] total_inactive_anon 4096
[ 3505.430430][ T5099] total_active_anon 65536
[ 3505.435014][ T5099] total_inactive_file 0
[ 3505.439189][ T5099] total_active_file 0
[ 3505.443171][ T5099] total_unevictable 0
[ 3505.447582][ T5099] anon_cost 0
[ 3505.450877][ T5099] file_cost 0
[ 3505.454626][ T5099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9109,uid=0
[ 3505.470539][ T5099] Memory cgroup out of memory: Killed process 9109 (syz-executor.0) total-vm:56688kB, anon-rss:328kB, file-rss:8320kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3505.701445][ T9312] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3505.713383][ T9312] CPU: 1 PID: 9312 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3505.723430][ T9312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3505.733488][ T9312] Call Trace:
[ 3505.736779][ T9312]  <TASK>
[ 3505.739722][ T9312]  dump_stack_lvl+0x1e7/0x2e0
[ 3505.744425][ T9312]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3505.749648][ T9312]  ? __pfx__printk+0x10/0x10
[ 3505.754259][ T9312]  ? ___ratelimit+0x4c4/0x670
[ 3505.758961][ T9312]  ? __pfx____ratelimit+0x10/0x10
[ 3505.764006][ T9312]  dump_header+0xda/0x6a0
[ 3505.768359][ T9312]  oom_kill_process+0x3a7/0x930
[ 3505.773223][ T9312]  out_of_memory+0xf67/0x1320
[ 3505.778040][ T9312]  ? mem_cgroup_out_of_memory+0xf7/0x3b0
[ 3505.783819][ T9312]  ? __pfx___mutex_lock+0x10/0x10
[ 3505.788857][ T9312]  ? __pfx_out_of_memory+0x10/0x10
[ 3505.793978][ T9312]  mem_cgroup_out_of_memory+0x263/0x3b0
[ 3505.799642][ T9312]  ? __pfx_lock_release+0x10/0x10
[ 3505.804688][ T9312]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 3505.810770][ T9312]  ? do_raw_spin_unlock+0x13b/0x8b0
[ 3505.815976][ T9312]  ? mem_cgroup_iter+0x422/0x560
[ 3505.820925][ T9312]  try_charge_memcg+0xda2/0x18a0
[ 3505.825898][ T9312]  ? __pfx_try_charge_memcg+0x10/0x10
[ 3505.831280][ T9312]  ? percpu_ref_tryget+0x14/0x180
[ 3505.836333][ T9312]  charge_memcg+0xa2/0x160
[ 3505.840760][ T9312]  __mem_cgroup_charge+0x27/0x80
[ 3505.845704][ T9312]  __handle_mm_fault+0x5120/0x72d0
[ 3505.850839][ T9312]  ? reacquire_held_locks+0x3eb/0x690
[ 3505.856218][ T9312]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3505.861690][ T9312]  ? __pfx_reacquire_held_locks+0x10/0x10
[ 3505.867427][ T9312]  ? mtree_range_walk+0x6fd/0x8e0
[ 3505.872461][ T9312]  ? lock_vma_under_rcu+0x18a/0x730
[ 3505.877661][ T9312]  ? __pfx_lock_release+0x10/0x10
[ 3505.882692][ T9312]  ? lock_vma_under_rcu+0x2f9/0x730
[ 3505.887919][ T9312]  ? lock_vma_under_rcu+0x18a/0x730
[ 3505.893121][ T9312]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 3505.898670][ T9312]  handle_mm_fault+0x3c1/0x8a0
[ 3505.903443][ T9312]  exc_page_fault+0x456/0x870
[ 3505.908134][ T9312]  asm_exc_page_fault+0x26/0x30
[ 3505.913013][ T9312] RIP: 0033:0x7f30cb22c493
[ 3505.917433][ T9312] Code: 8b 44 24 08 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 7a 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 d2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 44 24 08 48
[ 3505.937067][ T9312] RSP: 002b:00007f30cb4cfaf0 EFLAGS: 00010246
[ 3505.943146][ T9312] RAX: 0000000020005840 RBX: 0000000000000008 RCX: 0000000000000000
[ 3505.951110][ T9312] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005555559c3360
[ 3505.959083][ T9312] RBP: 0000000000000008 R08: 0000000000000000 R09: 0000000000000000
[ 3505.967065][ T9312] R10: 00007ffc3913c080 R11: 00000000000a8958 R12: 00007f30cae00558
[ 3505.975062][ T9312] R13: fffffffffffffffe R14: 00007f30cae00000 R15: 00007f30cae00560
[ 3505.983061][ T9312]  </TASK>
[ 3505.993036][ T9312] memory: usage 307200kB, limit 307200kB, failcnt 651847
[ 3506.000512][ T9312] memory+swap: usage 308900kB, limit 9007199254740988kB, failcnt 0
[ 3506.008896][ T9312] kmem: usage 307072kB, limit 9007199254740988kB, failcnt 0
[ 3506.017710][ T9312] Memory cgroup stats for /syz0:
[ 3506.017839][ T9312] cache 8192
[ 3506.026581][ T9312] rss 114688
[ 3506.029896][ T9312] rss_huge 0
[ 3506.033146][ T9312] shmem 8192
[ 3506.036942][ T9312] mapped_file 8192
[ 3506.040793][ T9312] dirty 0
[ 3506.043787][ T9312] writeback 0
[ 3506.047689][ T9312] workingset_refault_anon 443762
[ 3506.052773][ T9312] workingset_refault_file 25
[ 3506.057876][ T9312] swap 1740800
[ 3506.061364][ T9312] swapcached 16384
[ 3506.065680][ T9312] pgpgin 956582
[ 3506.069269][ T9312] pgpgout 956550
[ 3506.072919][ T9312] pgfault 1649667
[ 3506.077170][ T9312] pgmajfault 424004
[ 3506.081097][ T9312] inactive_anon 32768
[ 3506.089385][ T9312] active_anon 86016
[ 3506.093201][ T9312] inactive_file 0
[ 3506.097619][ T9312] active_file 0
[ 3506.101169][ T9312] unevictable 0
[ 3506.118543][ T9312] hierarchical_memory_limit 314572800
[ 3506.124270][ T9312] hierarchical_memsw_limit 9223372036854771712
[ 3506.130454][ T9312] total_cache 8192
[ 3506.134406][ T9312] total_rss 114688
[ 3506.138312][ T9312] total_rss_huge 0
[ 3506.142028][ T9312] total_shmem 8192
[ 3506.145988][ T9312] total_mapped_file 8192
[ 3506.150242][ T9312] total_dirty 0
[ 3506.153702][ T9312] total_writeback 0
[ 3506.157698][ T9312] total_workingset_refault_anon 443762
[ 3506.163160][ T9312] total_workingset_refault_file 25
[ 3506.168456][ T9312] total_swap 1740800
[ 3506.172363][ T9312] total_swapcached 16384
[ 3506.177077][ T9312] total_pgpgin 956582
[ 3506.181078][ T9312] total_pgpgout 956550
[ 3506.185559][ T9312] total_pgfault 1649667
[ 3506.189819][ T9312] total_pgmajfault 424004
[ 3506.194390][ T9312] total_inactive_anon 32768
[ 3506.198993][ T9312] total_active_anon 86016
[ 3506.203447][ T9312] total_inactive_file 0
[ 3506.207977][ T9312] total_active_file 0
[ 3506.212054][ T9312] total_unevictable 0
[ 3506.217911][ T9312] anon_cost 0
[ 3506.221307][ T9312] file_cost 0
[ 3506.224898][ T9312] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=9312,uid=0
[ 3506.240667][ T9312] Memory cgroup out of memory: Killed process 9312 (syz-executor.0) total-vm:54640kB, anon-rss:252kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000
[ 3507.444471][ T9269] Bluetooth: hci12: command 0x040f tx timeout
[ 3508.343822][   T30] oom_reaper: reaped process 9312 (syz-executor.0), now anon-rss:12kB, file-rss:8152kB, shmem-rss:0kB
[ 3509.524513][ T9269] Bluetooth: hci12: command 0x0419 tx timeout
[ 3512.411823][ T1240] ieee802154 phy0 wpan0: encryption failed: -22
[ 3512.418331][ T1240] ieee802154 phy1 wpan1: encryption failed: -22
[ 3518.165293][   T29] INFO: task dhcpcd:4734 blocked for more than 143 seconds.
[ 3518.172644][   T29]       Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3518.180958][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3518.190094][   T29] task:dhcpcd          state:D stack:20952 pid:4734  tgid:4734  ppid:4733   flags:0x00004002
[ 3518.201877][   T29] Call Trace:
[ 3518.205767][   T29]  <TASK>
[ 3518.208729][   T29]  __schedule+0x17d1/0x49f0
[ 3518.213273][   T29]  ? __pfx___schedule+0x10/0x10
[ 3518.218931][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3518.225237][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3518.230738][   T29]  ? schedule+0x8e/0x260
[ 3518.235391][   T29]  schedule+0x149/0x260
[ 3518.239543][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3518.245829][   T29]  __mutex_lock+0x6a3/0xd70
[ 3518.250353][   T29]  ? __mutex_lock+0x526/0xd70
[ 3518.255937][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3518.261164][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3518.266624][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3518.271687][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3518.277550][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3518.283037][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 3518.290272][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3518.296041][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3518.301553][   T29]  ? mark_lock+0x9a/0x350
[ 3518.306670][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3518.311890][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3518.317906][   T29]  ? mark_lock+0x9a/0x350
[ 3518.322255][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3518.328030][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3518.332816][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3518.339582][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3518.345701][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3518.350920][   T29]  netlink_unicast+0x7ea/0x980
[ 3518.356321][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3518.361619][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3518.367375][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3518.372418][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3518.378372][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3518.383520][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3518.388996][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3518.394557][   T29]  ? __import_iovec+0x536/0x820
[ 3518.399422][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3518.405594][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3518.410905][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3518.416599][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3518.421903][   T29]  __sock_sendmsg+0x221/0x270
[ 3518.427444][   T29]  ____sys_sendmsg+0x525/0x7d0
[ 3518.432235][   T29]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 3518.437729][   T29]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 3518.443667][   T29]  __sys_sendmsg+0x2b0/0x3a0
[ 3518.448515][   T29]  ? __pfx___sys_sendmsg+0x10/0x10
[ 3518.453660][   T29]  ? netlink_bind+0xaeb/0xc90
[ 3518.458622][   T29]  ? __pfx___sys_bind+0x10/0x10
[ 3518.463501][   T29]  ? fd_install+0x35b/0x5d0
[ 3518.468231][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3518.474795][   T29]  ? do_syscall_64+0x108/0x240
[ 3518.479576][   T29]  ? do_syscall_64+0xb4/0x240
[ 3518.484578][   T29]  do_syscall_64+0xf9/0x240
[ 3518.489116][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3518.495224][   T29] RIP: 0033:0x7f23c6edda4b
[ 3518.499652][   T29] RSP: 002b:00007ffdf6eab3e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3518.509566][   T29] RAX: ffffffffffffffda RBX: 00007f23c6e056c0 RCX: 00007f23c6edda4b
[ 3518.517756][   T29] RDX: 0000000000000000 RSI: 00007ffdf6ebf598 RDI: 000000000000000f
[ 3518.525936][   T29] RBP: 000000000000000f R08: 0000000000000000 R09: 00007ffdf6ebf598
[ 3518.533915][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff
[ 3518.541935][   T29] R13: 00007ffdf6ebf598 R14: 0000000000000030 R15: 0000000000000001
[ 3518.550675][   T29]  </TASK>
[ 3518.556680][   T29] INFO: task syz-executor.1:9059 blocked for more than 143 seconds.
[ 3518.565018][   T29]       Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3518.572212][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3518.581855][   T29] task:syz-executor.1  state:D stack:24944 pid:9059  tgid:9057  ppid:5100   flags:0x00004006
[ 3518.595728][   T29] Call Trace:
[ 3518.599150][   T29]  <TASK>
[ 3518.602163][   T29]  __schedule+0x17d1/0x49f0
[ 3518.607809][   T29]  ? __pfx___schedule+0x10/0x10
[ 3518.612734][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3518.618096][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3518.623600][   T29]  ? schedule+0x8e/0x260
[ 3518.631512][   T29]  schedule+0x149/0x260
[ 3518.637194][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3518.642703][   T29]  __mutex_lock+0x6a3/0xd70
[ 3518.647799][   T29]  ? __mutex_lock+0x526/0xd70
[ 3518.652525][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3518.658565][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3518.663645][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3518.668947][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3518.674427][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3518.680004][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3518.686333][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3518.692803][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3518.698464][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 3518.703684][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3518.710121][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3518.715833][   T29]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 3518.721602][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3518.727741][   T29]  ? __dev_queue_xmit+0x15fd/0x3b10
[ 3518.732998][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3518.738379][   T29]  ? ref_tracker_free+0x643/0x7e0
[ 3518.743443][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3518.748413][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3518.753897][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3518.759613][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3518.765623][   T29]  netlink_unicast+0x7ea/0x980
[ 3518.770430][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3518.775936][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3518.781069][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3518.786370][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3518.791687][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3518.797019][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3518.801805][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3518.807626][   T29]  ? __fget_files+0x28/0x470
[ 3518.813003][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3518.818197][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3518.823515][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3518.829326][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3518.834818][   T29]  __sock_sendmsg+0x221/0x270
[ 3518.839783][   T29]  __sys_sendto+0x3a4/0x4f0
[ 3518.845071][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 3518.850155][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3518.856543][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3518.862895][   T29]  ? exc_page_fault+0x587/0x870
[ 3518.868129][   T29]  __x64_sys_sendto+0xde/0x100
[ 3518.872924][   T29]  do_syscall_64+0xf9/0x240
[ 3518.878009][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3518.885513][   T29] RIP: 0033:0x7fc01127fa9c
[ 3518.890047][   T29] RSP: 002b:00007fc011fa0f60 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 3518.899081][   T29] RAX: ffffffffffffffda RBX: 00007fc011fa1050 RCX: 00007fc01127fa9c
[ 3518.907358][   T29] RDX: 0000000000000020 RSI: 00007fc011fa10a0 RDI: 0000000000000005
[ 3518.916239][   T29] RBP: 0000000000000000 R08: 00007fc011fa0fb4 R09: 000000000000000c
[ 3518.924537][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005
[ 3518.932516][   T29] R13: 00007fc011fa1008 R14: 00007fc011fa10a0 R15: 0000000000000000
[ 3518.940710][   T29]  </TASK>
[ 3518.943856][   T29] INFO: task syz-executor.1:9061 blocked for more than 144 seconds.
[ 3518.952723][   T29]       Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3518.960480][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3518.969412][   T29] task:syz-executor.1  state:D stack:26768 pid:9061  tgid:9057  ppid:5100   flags:0x00004006
[ 3518.980008][   T29] Call Trace:
[ 3518.983334][   T29]  <TASK>
[ 3518.987267][   T29]  __schedule+0x17d1/0x49f0
[ 3518.991825][   T29]  ? __pfx___schedule+0x10/0x10
[ 3518.997062][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3519.002109][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3519.008029][   T29]  ? schedule+0x8e/0x260
[ 3519.012289][   T29]  schedule+0x149/0x260
[ 3519.017974][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3519.023460][   T29]  __mutex_lock+0x6a3/0xd70
[ 3519.028317][   T29]  ? __mutex_lock+0x526/0xd70
[ 3519.033010][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3519.038582][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3519.043634][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3519.049040][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3519.054431][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3519.059924][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3519.066150][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3519.072506][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3519.078110][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 3519.083416][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3519.088999][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3519.094442][   T29]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 3519.100199][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3519.106090][   T29]  ? __dev_queue_xmit+0x15fd/0x3b10
[ 3519.111336][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3519.116704][   T29]  ? ref_tracker_free+0x643/0x7e0
[ 3519.122290][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3519.127400][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3519.132889][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3519.138660][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3519.144250][   T29]  netlink_unicast+0x7ea/0x980
[ 3519.149048][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3519.154553][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3519.159696][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3519.165070][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3519.170378][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3519.176041][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3519.180860][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3519.186421][   T29]  ? __import_iovec+0x536/0x820
[ 3519.191312][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3519.196697][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3519.202007][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3519.208105][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3519.213419][   T29]  __sock_sendmsg+0x221/0x270
[ 3519.219128][   T29]  ____sys_sendmsg+0x525/0x7d0
[ 3519.224958][   T29]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 3519.230918][   T29]  __sys_sendmsg+0x2b0/0x3a0
[ 3519.235892][   T29]  ? __pfx___sys_sendmsg+0x10/0x10
[ 3519.241081][   T29]  ? restore_fpregs_from_fpstate+0x100/0x250
[ 3519.247566][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3519.253922][   T29]  ? do_syscall_64+0x108/0x240
[ 3519.258987][   T29]  ? do_syscall_64+0xb4/0x240
[ 3519.263693][   T29]  do_syscall_64+0xf9/0x240
[ 3519.268666][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3519.274968][   T29] RIP: 0033:0x7fc01127dda9
[ 3519.279598][   T29] RSP: 002b:00007fc011f810c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3519.288400][   T29] RAX: ffffffffffffffda RBX: 00007fc0113ac050 RCX: 00007fc01127dda9
[ 3519.296754][   T29] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 3519.305087][   T29] RBP: 00007fc0112ca47a R08: 0000000000000000 R09: 0000000000000000
[ 3519.313072][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3519.321437][   T29] R13: 000000000000006e R14: 00007fc0113ac050 R15: 00007fc0114cfa48
[ 3519.330764][   T29]  </TASK>
[ 3519.333846][   T29] INFO: task syz-executor.1:9063 blocked for more than 144 seconds.
[ 3519.342059][   T29]       Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3519.349494][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3519.358341][   T29] task:syz-executor.1  state:D stack:26768 pid:9063  tgid:9057  ppid:5100   flags:0x00004006
[ 3519.368788][   T29] Call Trace:
[ 3519.372079][   T29]  <TASK>
[ 3519.375399][   T29]  __schedule+0x17d1/0x49f0
[ 3519.379959][   T29]  ? __pfx___schedule+0x10/0x10
[ 3519.385172][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3519.390229][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3519.396105][   T29]  ? schedule+0x8e/0x260
[ 3519.400373][   T29]  schedule+0x149/0x260
[ 3519.404937][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3519.410411][   T29]  __mutex_lock+0x6a3/0xd70
[ 3519.415263][   T29]  ? __mutex_lock+0x526/0xd70
[ 3519.419968][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3519.425558][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3519.431215][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3519.437160][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3519.442825][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3519.449026][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3519.455393][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3519.461755][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3519.467543][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 3519.472764][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3519.478494][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3519.483632][   T29]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 3519.489880][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3519.495302][   T29]  ? __dev_queue_xmit+0x15fd/0x3b10
[ 3519.500540][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3519.506039][   T29]  ? ref_tracker_free+0x643/0x7e0
[ 3519.511087][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3519.516279][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3519.521770][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3519.527755][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3519.533472][   T29]  netlink_unicast+0x7ea/0x980
[ 3519.538593][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3519.544782][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3519.549917][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3519.555151][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3519.560741][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3519.566070][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3519.570873][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3519.576394][   T29]  ? __import_iovec+0x536/0x820
[ 3519.581269][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3519.586443][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3519.591755][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3519.597415][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3519.602722][   T29]  __sock_sendmsg+0x221/0x270
[ 3519.607668][   T29]  ____sys_sendmsg+0x525/0x7d0
[ 3519.612471][   T29]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 3519.617971][   T29]  __sys_sendmsg+0x2b0/0x3a0
[ 3519.622591][   T29]  ? __pfx___sys_sendmsg+0x10/0x10
[ 3519.628328][   T29]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 3519.635305][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3519.641682][   T29]  ? do_syscall_64+0x108/0x240
[ 3519.646649][   T29]  ? do_syscall_64+0xb4/0x240
[ 3519.651449][   T29]  do_syscall_64+0xf9/0x240
[ 3519.656858][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3519.662869][   T29] RIP: 0033:0x7fc01127dda9
[ 3519.667536][   T29] RSP: 002b:00007fc011f600c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3519.676209][   T29] RAX: ffffffffffffffda RBX: 00007fc0113ac120 RCX: 00007fc01127dda9
[ 3519.684584][   T29] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[ 3519.692592][   T29] RBP: 00007fc0112ca47a R08: 0000000000000000 R09: 0000000000000000
[ 3519.700846][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3519.709045][   T29] R13: 000000000000006e R14: 00007fc0113ac120 R15: 00007fc0114cfa48
[ 3519.717230][   T29]  </TASK>
[ 3519.720334][   T29] INFO: task syz-executor.2:9065 blocked for more than 144 seconds.
[ 3519.728626][   T29]       Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3519.736585][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3519.745738][   T29] task:syz-executor.2  state:D stack:27184 pid:9065  tgid:9064  ppid:15928  flags:0x00004006
[ 3519.756121][   T29] Call Trace:
[ 3519.759488][   T29]  <TASK>
[ 3519.762435][   T29]  __schedule+0x17d1/0x49f0
[ 3519.768983][   T29]  ? __pfx___schedule+0x10/0x10
[ 3519.773882][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3519.779140][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3519.784952][   T29]  ? schedule+0x8e/0x260
[ 3519.789225][   T29]  schedule+0x149/0x260
[ 3519.793397][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3519.799069][   T29]  __mutex_lock+0x6a3/0xd70
[ 3519.803592][   T29]  ? __mutex_lock+0x526/0xd70
[ 3519.808511][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3519.813725][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3519.818996][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3519.824277][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3519.829501][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3519.835174][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3519.842502][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3519.849195][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3519.855371][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 3519.860609][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3519.866235][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3519.871371][   T29]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 3519.877963][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3519.883106][   T29]  ? __dev_queue_xmit+0x15fd/0x3b10
[ 3519.888775][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3519.893918][   T29]  ? ref_tracker_free+0x643/0x7e0
[ 3519.899180][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3519.904389][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3519.910051][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3519.915604][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3519.920818][   T29]  netlink_unicast+0x7ea/0x980
[ 3519.925875][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3519.931178][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3519.936562][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3519.942302][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3519.948127][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3519.953261][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3519.958483][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3519.963786][   T29]  ? __fget_files+0x28/0x470
[ 3519.968860][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3519.973812][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3519.979550][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3519.986044][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3519.991355][   T29]  __sock_sendmsg+0x221/0x270
[ 3519.996457][   T29]  __sys_sendto+0x3a4/0x4f0
[ 3520.000997][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 3520.006499][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3520.012515][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3520.019254][   T29]  ? exc_page_fault+0x587/0x870
[ 3520.024546][   T29]  __x64_sys_sendto+0xde/0x100
[ 3520.029342][   T29]  do_syscall_64+0xf9/0x240
[ 3520.033851][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3520.040191][   T29] RIP: 0033:0x7f099787fa9c
[ 3520.046035][   T29] RSP: 002b:00007f0998678f60 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 3520.054828][   T29] RAX: ffffffffffffffda RBX: 00007f0998679050 RCX: 00007f099787fa9c
[ 3520.062809][   T29] RDX: 0000000000000020 RSI: 00007f09986790a0 RDI: 0000000000000005
[ 3520.071105][   T29] RBP: 0000000000000000 R08: 00007f0998678fb4 R09: 000000000000000c
[ 3520.079477][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005
[ 3520.088419][   T29] R13: 00007f0998679008 R14: 00007f09986790a0 R15: 0000000000000000
[ 3520.097430][   T29]  </TASK>
[ 3520.100538][   T29] INFO: task syz-executor.2:9068 blocked for more than 145 seconds.
[ 3520.109005][   T29]       Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3520.116587][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3520.125619][   T29] task:syz-executor.2  state:D stack:26768 pid:9068  tgid:9064  ppid:15928  flags:0x00004006
[ 3520.136184][   T29] Call Trace:
[ 3520.139478][   T29]  <TASK>
[ 3520.142413][   T29]  __schedule+0x17d1/0x49f0
[ 3520.148620][   T29]  ? __pfx___schedule+0x10/0x10
[ 3520.153553][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3520.158971][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3520.164872][   T29]  ? schedule+0x8e/0x260
[ 3520.169136][   T29]  schedule+0x149/0x260
[ 3520.173307][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3520.179521][   T29]  __mutex_lock+0x6a3/0xd70
[ 3520.184399][   T29]  ? __mutex_lock+0x526/0xd70
[ 3520.189112][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3520.194713][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3520.199790][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3520.205626][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3520.210851][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3520.216779][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3520.222800][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3520.229555][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3520.235321][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 3520.240539][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3520.247293][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3520.252443][   T29]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 3520.258590][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3520.263724][   T29]  ? __dev_queue_xmit+0x15fd/0x3b10
[ 3520.269363][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3520.274885][   T29]  ? ref_tracker_free+0x643/0x7e0
[ 3520.279943][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3520.285111][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3520.290585][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3520.296337][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3520.301565][   T29]  netlink_unicast+0x7ea/0x980
[ 3520.306769][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3520.312069][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3520.318130][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3520.323175][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3520.329044][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3520.334499][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3520.339302][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3520.345012][   T29]  ? __import_iovec+0x536/0x820
[ 3520.350368][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3520.355738][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3520.361055][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3520.366944][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3520.372245][   T29]  __sock_sendmsg+0x221/0x270
[ 3520.377292][   T29]  ____sys_sendmsg+0x525/0x7d0
[ 3520.382092][   T29]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 3520.388630][   T29]  __sys_sendmsg+0x2b0/0x3a0
[ 3520.393260][   T29]  ? __pfx___sys_sendmsg+0x10/0x10
[ 3520.398869][   T29]  ? restore_fpregs_from_fpstate+0x100/0x250
[ 3520.405381][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3520.411736][   T29]  ? do_syscall_64+0x108/0x240
[ 3520.417036][   T29]  ? do_syscall_64+0xb4/0x240
[ 3520.421716][   T29]  do_syscall_64+0xf9/0x240
[ 3520.426550][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3520.432458][   T29] RIP: 0033:0x7f099787dda9
[ 3520.437789][   T29] RSP: 002b:00007f09986590c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3520.446569][   T29] RAX: ffffffffffffffda RBX: 00007f09979ac050 RCX: 00007f099787dda9
[ 3520.455149][   T29] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 3520.463322][   T29] RBP: 00007f09978ca47a R08: 0000000000000000 R09: 0000000000000000
[ 3520.471659][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3520.480211][   T29] R13: 000000000000006e R14: 00007f09979ac050 R15: 00007f0997acfa48
[ 3520.489114][   T29]  </TASK>
[ 3520.492207][   T29] INFO: task syz-executor.2:9070 blocked for more than 145 seconds.
[ 3520.500692][   T29]       Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3520.508407][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3520.517333][   T29] task:syz-executor.2  state:D stack:26768 pid:9070  tgid:9064  ppid:15928  flags:0x00004006
[ 3520.527730][   T29] Call Trace:
[ 3520.531023][   T29]  <TASK>
[ 3520.534529][   T29]  __schedule+0x17d1/0x49f0
[ 3520.539099][   T29]  ? __pfx___schedule+0x10/0x10
[ 3520.544885][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3520.549939][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3520.555984][   T29]  ? schedule+0x8e/0x260
[ 3520.560244][   T29]  schedule+0x149/0x260
[ 3520.564918][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3520.570400][   T29]  __mutex_lock+0x6a3/0xd70
[ 3520.575163][   T29]  ? __mutex_lock+0x526/0xd70
[ 3520.579850][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3520.585269][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3520.590314][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3520.596057][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3520.601279][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3520.607029][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3520.613023][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3520.619550][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3520.625449][   T29]  ? lockdep_hardirqs_on+0x98/0x140
[ 3520.630677][   T29]  ? __local_bh_enable_ip+0x168/0x200
[ 3520.636484][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3520.641609][   T29]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 3520.647606][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3520.652738][   T29]  ? __dev_queue_xmit+0x15fd/0x3b10
[ 3520.659636][   T29]  ? __dev_queue_xmit+0x2c4/0x3b10
[ 3520.665057][   T29]  ? ref_tracker_free+0x643/0x7e0
[ 3520.670122][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3520.675183][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3520.680665][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3520.686477][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3520.691696][   T29]  netlink_unicast+0x7ea/0x980
[ 3520.696723][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3520.702031][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3520.707451][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3520.712497][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3520.718357][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3520.724360][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3520.729180][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3520.734674][   T29]  ? __import_iovec+0x536/0x820
[ 3520.739534][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3520.744997][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3520.750665][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3520.756430][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3520.762189][   T29]  __sock_sendmsg+0x221/0x270
[ 3520.767876][   T29]  ____sys_sendmsg+0x525/0x7d0
[ 3520.772748][   T29]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 3520.778729][   T29]  __sys_sendmsg+0x2b0/0x3a0
[ 3520.783361][   T29]  ? __pfx___sys_sendmsg+0x10/0x10
[ 3520.788902][   T29]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 3520.795137][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3520.801493][   T29]  ? do_syscall_64+0x108/0x240
[ 3520.806859][   T29]  ? do_syscall_64+0xb4/0x240
[ 3520.811569][   T29]  do_syscall_64+0xf9/0x240
[ 3520.816369][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3520.822290][   T29] RIP: 0033:0x7f099787dda9
[ 3520.827034][   T29] RSP: 002b:00007f09986380c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3520.835973][   T29] RAX: ffffffffffffffda RBX: 00007f09979ac120 RCX: 00007f099787dda9
[ 3520.844268][   T29] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[ 3520.852360][   T29] RBP: 00007f09978ca47a R08: 0000000000000000 R09: 0000000000000000
[ 3520.860999][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3520.869509][   T29] R13: 000000000000006e R14: 00007f09979ac120 R15: 00007f0997acfa48
[ 3520.878406][   T29]  </TASK>
[ 3520.895975][   T29] INFO: task syz-executor.4:9067 blocked for more than 146 seconds.
[ 3520.905720][   T29]       Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3520.913036][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3520.922613][   T29] task:syz-executor.4  state:D stack:27184 pid:9067  tgid:9066  ppid:5101   flags:0x00004006
[ 3520.933310][   T29] Call Trace:
[ 3520.936769][   T29]  <TASK>
[ 3520.939720][   T29]  __schedule+0x17d1/0x49f0
[ 3520.944601][   T29]  ? __pfx___schedule+0x10/0x10
[ 3520.949498][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3520.954790][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3520.960366][   T29]  ? schedule+0x8e/0x260
[ 3520.965750][   T29]  schedule+0x149/0x260
[ 3520.969953][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3520.976019][   T29]  __mutex_lock+0x6a3/0xd70
[ 3520.980596][   T29]  ? __mutex_lock+0x526/0xd70
[ 3520.986336][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3520.991583][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3520.997277][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3521.002328][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3521.007839][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3521.013326][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 3521.019708][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3521.025150][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3521.030371][   T29]  ? mark_lock+0x9a/0x350
[ 3521.034898][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3521.040122][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3521.045398][   T29]  ? mark_lock+0x9a/0x350
[ 3521.049835][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3521.055098][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3521.059883][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3521.066499][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3521.071821][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3521.077410][   T29]  netlink_unicast+0x7ea/0x980
[ 3521.082203][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3521.087733][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3521.092859][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3521.098693][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3521.104269][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3521.109414][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3521.114562][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3521.119869][   T29]  ? __fget_files+0x28/0x470
[ 3521.127799][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3521.132772][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3521.138276][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3521.143761][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3521.149332][   T29]  __sock_sendmsg+0x221/0x270
[ 3521.154301][   T29]  __sys_sendto+0x3a4/0x4f0
[ 3521.158826][   T29]  ? __pfx___sys_sendto+0x10/0x10
[ 3521.163851][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 3521.171294][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3521.177939][   T29]  ? exc_page_fault+0x587/0x870
[ 3521.182813][   T29]  __x64_sys_sendto+0xde/0x100
[ 3521.187965][   T29]  do_syscall_64+0xf9/0x240
[ 3521.192488][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3521.198685][   T29] RIP: 0033:0x7ff9f807fa9c
[ 3521.203108][   T29] RSP: 002b:00007ff9f8dd4f60 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 3521.212781][   T29] RAX: ffffffffffffffda RBX: 00007ff9f8dd5050 RCX: 00007ff9f807fa9c
[ 3521.221057][   T29] RDX: 0000000000000020 RSI: 00007ff9f8dd50a0 RDI: 0000000000000006
[ 3521.229272][   T29] RBP: 0000000000000000 R08: 00007ff9f8dd4fb4 R09: 000000000000000c
[ 3521.237519][   T29] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006
[ 3521.246199][   T29] R13: 00007ff9f8dd5008 R14: 00007ff9f8dd50a0 R15: 0000000000000000
[ 3521.254474][   T29]  </TASK>
[ 3521.257589][   T29] INFO: task syz-executor.4:9069 blocked for more than 146 seconds.
[ 3521.265762][   T29]       Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3521.274699][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3521.283390][   T29] task:syz-executor.4  state:D stack:26768 pid:9069  tgid:9066  ppid:5101   flags:0x00004006
[ 3521.293904][   T29] Call Trace:
[ 3521.297322][   T29]  <TASK>
[ 3521.300261][   T29]  __schedule+0x17d1/0x49f0
[ 3521.305021][   T29]  ? __pfx___schedule+0x10/0x10
[ 3521.309900][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3521.315787][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3521.321291][   T29]  ? schedule+0x8e/0x260
[ 3521.325754][   T29]  schedule+0x149/0x260
[ 3521.329931][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3521.335624][   T29]  __mutex_lock+0x6a3/0xd70
[ 3521.340144][   T29]  ? __mutex_lock+0x526/0xd70
[ 3521.345046][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3521.350274][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3521.355765][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3521.360895][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3521.366525][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3521.373542][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 3521.379925][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3521.385342][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3521.390579][   T29]  ? mark_lock+0x9a/0x350
[ 3521.395160][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3521.400372][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3521.405574][   T29]  ? mark_lock+0x9a/0x350
[ 3521.409926][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3521.415213][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3521.419993][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3521.426291][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3521.431632][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3521.437048][   T29]  netlink_unicast+0x7ea/0x980
[ 3521.441837][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3521.447351][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3521.452492][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3521.457764][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3521.463581][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3521.468860][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3521.473645][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3521.479812][   T29]  ? __import_iovec+0x536/0x820
[ 3521.484921][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3521.489880][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3521.495402][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3521.500878][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3521.506363][   T29]  __sock_sendmsg+0x221/0x270
[ 3521.511074][   T29]  ____sys_sendmsg+0x525/0x7d0
[ 3521.516133][   T29]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 3521.521458][   T29]  __sys_sendmsg+0x2b0/0x3a0
[ 3521.526244][   T29]  ? __pfx___sys_sendmsg+0x10/0x10
[ 3521.531390][   T29]  ? restore_fpregs_from_fpstate+0x100/0x250
[ 3521.538227][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3521.544830][   T29]  ? do_syscall_64+0x108/0x240
[ 3521.549611][   T29]  ? do_syscall_64+0xb4/0x240
[ 3521.554525][   T29]  do_syscall_64+0xf9/0x240
[ 3521.559064][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3521.565190][   T29] RIP: 0033:0x7ff9f807dda9
[ 3521.569614][   T29] RSP: 002b:00007ff9f8db50c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3521.579310][   T29] RAX: ffffffffffffffda RBX: 00007ff9f81ac050 RCX: 00007ff9f807dda9
[ 3521.588412][   T29] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[ 3521.596775][   T29] RBP: 00007ff9f80ca47a R08: 0000000000000000 R09: 0000000000000000
[ 3521.605121][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3521.613107][   T29] R13: 000000000000006e R14: 00007ff9f81ac050 R15: 00007ff9f82cfa48
[ 3521.621311][   T29]  </TASK>
[ 3521.624565][   T29] INFO: task syz-executor.4:9071 blocked for more than 146 seconds.
[ 3521.632569][   T29]       Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3521.640117][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3521.649575][   T29] task:syz-executor.4  state:D stack:26768 pid:9071  tgid:9066  ppid:5101   flags:0x00004006
[ 3521.660054][   T29] Call Trace:
[ 3521.663351][   T29]  <TASK>
[ 3521.666561][   T29]  __schedule+0x17d1/0x49f0
[ 3521.671112][   T29]  ? __pfx___schedule+0x10/0x10
[ 3521.676257][   T29]  ? __pfx_lock_release+0x10/0x10
[ 3521.682237][   T29]  ? __mutex_trylock_common+0x91/0x2e0
[ 3521.687976][   T29]  ? schedule+0x8e/0x260
[ 3521.692245][   T29]  schedule+0x149/0x260
[ 3521.696757][   T29]  schedule_preempt_disabled+0x13/0x30
[ 3521.702252][   T29]  __mutex_lock+0x6a3/0xd70
[ 3521.707040][   T29]  ? __mutex_lock+0x526/0xd70
[ 3521.711738][   T29]  ? rtnetlink_rcv_msg+0x82c/0x1040
[ 3521.717321][   T29]  ? __pfx___mutex_lock+0x10/0x10
[ 3521.722559][   T29]  rtnetlink_rcv_msg+0x82c/0x1040
[ 3521.727890][   T29]  ? rtnetlink_rcv_msg+0x208/0x1040
[ 3521.733113][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3521.738942][   T29]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 3521.745550][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3521.750771][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3521.756886][   T29]  ? mark_lock+0x9a/0x350
[ 3521.761352][   T29]  ? __pfx_validate_chain+0x10/0x10
[ 3521.766810][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3521.771872][   T29]  ? mark_lock+0x9a/0x350
[ 3521.776451][   T29]  ? __lock_acquire+0x1345/0x1fd0
[ 3521.782306][   T29]  netlink_rcv_skb+0x1e3/0x430
[ 3521.787309][   T29]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 3521.792789][   T29]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 3521.798369][   T29]  ? netlink_deliver_tap+0x2e/0x1b0
[ 3521.803596][   T29]  netlink_unicast+0x7ea/0x980
[ 3521.808571][   T29]  ? __pfx_netlink_unicast+0x10/0x10
[ 3521.813871][   T29]  ? __virt_addr_valid+0x44e/0x520
[ 3521.819334][   T29]  ? __phys_addr_symbol+0x2f/0x70
[ 3521.824613][   T29]  ? __check_object_size+0x4bb/0xa00
[ 3521.829921][   T29]  ? bpf_lsm_netlink_send+0x9/0x10
[ 3521.835464][   T29]  netlink_sendmsg+0xa3b/0xd70
[ 3521.840263][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3521.846524][   T29]  ? __import_iovec+0x536/0x820
[ 3521.851405][   T29]  ? aa_sock_msg_perm+0x91/0x160
[ 3521.856596][   T29]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3521.861904][   T29]  ? security_socket_sendmsg+0x87/0xb0
[ 3521.868319][   T29]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 3521.873634][   T29]  __sock_sendmsg+0x221/0x270
[ 3521.878615][   T29]  ____sys_sendmsg+0x525/0x7d0
[ 3521.883403][   T29]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 3521.889682][   T29]  __sys_sendmsg+0x2b0/0x3a0
[ 3521.894618][   T29]  ? __pfx___sys_sendmsg+0x10/0x10
[ 3521.899786][   T29]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 3521.905923][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 3521.912269][   T29]  ? do_syscall_64+0x108/0x240
[ 3521.917283][   T29]  ? do_syscall_64+0xb4/0x240
[ 3521.921977][   T29]  do_syscall_64+0xf9/0x240
[ 3521.926877][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[ 3521.932908][   T29] RIP: 0033:0x7ff9f807dda9
[ 3521.937647][   T29] RSP: 002b:00007ff9f8d940c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3521.946271][   T29] RAX: ffffffffffffffda RBX: 00007ff9f81ac120 RCX: 00007ff9f807dda9
[ 3521.954557][   T29] RDX: 0000000000000000 RSI: 0000000020005840 RDI: 0000000000000003
[ 3521.962542][   T29] RBP: 00007ff9f80ca47a R08: 0000000000000000 R09: 0000000000000000
[ 3521.970709][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3521.979545][   T29] R13: 000000000000006e R14: 00007ff9f81ac120 R15: 00007ff9f82cfa48
[ 3521.988638][   T29]  </TASK>
[ 3521.991682][   T29] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[ 3522.001182][   T29] 
[ 3522.001182][   T29] Showing all locks held in the system:
[ 3522.009125][   T29] 1 lock held by khungtaskd/29:
[ 3522.014186][   T29]  #0: ffffffff8e130b60 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[ 3522.025251][   T29] 1 lock held by dhcpcd/4734:
[ 3522.029946][   T29]  #0: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3522.039705][   T29] 2 locks held by getty/4818:
[ 3522.044605][   T29]  #0: ffff88802ad0f0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 3522.054742][   T29]  #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b4/0x1e10
[ 3522.065065][   T29] 3 locks held by kworker/1:4/5135:
[ 3522.070267][   T29]  #0: ffff88802a0c2d38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3522.082057][   T29]  #1: ffffc9000413fd20 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3522.098605][   T29]  #2: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[ 3522.108493][   T29] 5 locks held by kworker/u4:2/1946:
[ 3522.113802][   T29]  #0: ffff888015ea0938 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3522.125091][   T29]  #1: ffffc9000417fd20 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3522.136026][   T29]  #2: ffffffff8f36aa90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0xf5/0xb90
[ 3522.145625][   T29]  #3: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe8/0x9d0
[ 3522.155919][   T29]  #4: ffffffff8e1364f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x3a3/0x890
[ 3522.167136][   T29] 3 locks held by kworker/0:9/23435:
[ 3522.172424][   T29]  #0: ffff88802a0c2d38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3522.184579][   T29]  #1: ffffc9000ab1fd20 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3522.199865][   T29]  #2: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[ 3522.210152][   T29] 2 locks held by syz-executor.3/9010:
[ 3522.215838][   T29]  #0: ffffffff8f36aa90 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3522.225471][   T29]  #1: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: wg_netns_pre_exit+0x1f/0x1e0
[ 3522.235145][   T29] 1 lock held by syz-executor.1/9059:
[ 3522.240532][   T29]  #0: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3522.250748][   T29] 1 lock held by syz-executor.1/9061:
[ 3522.256362][   T29]  #0: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3522.266088][   T29] 1 lock held by syz-executor.1/9063:
[ 3522.271480][   T29]  #0: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3522.281288][   T29] 1 lock held by syz-executor.2/9065:
[ 3522.287072][   T29]  #0: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3522.298049][   T29] 1 lock held by syz-executor.2/9068:
[ 3522.303482][   T29]  #0: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3522.313790][   T29] 1 lock held by syz-executor.2/9070:
[ 3522.320005][   T29]  #0: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3522.329944][   T29] 1 lock held by syz-executor.4/9067:
[ 3522.335727][   T29]  #0: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3522.345627][   T29] 1 lock held by syz-executor.4/9069:
[ 3522.351012][   T29]  #0: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3522.360836][   T29] 1 lock held by syz-executor.4/9071:
[ 3522.366660][   T29]  #0: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3522.376535][   T29] 2 locks held by kworker/0:0/9108:
[ 3522.381743][   T29]  #0: ffff888014c7a538 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3522.393119][   T29]  #1: ffffc900031afd20 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_scheduled_works+0x825/0x1420
[ 3522.408343][   T29] 2 locks held by syz-executor.1/9129:
[ 3522.413815][   T29]  #0: ffffffff8f36aa90 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3522.423531][   T29]  #1: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3522.433736][   T29] 2 locks held by syz-executor.2/9133:
[ 3522.439483][   T29]  #0: ffffffff8f36aa90 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3522.449352][   T29]  #1: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3522.459079][   T29] 2 locks held by syz-executor.4/9137:
[ 3522.464981][   T29]  #0: ffffffff8f36aa90 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3522.474840][   T29]  #1: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3522.484702][   T29] 2 locks held by syz-executor.3/9212:
[ 3522.490182][   T29]  #0: ffffffff8f36aa90 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3522.500907][   T29]  #1: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3522.510665][   T29] 2 locks held by syz-executor.1/9266:
[ 3522.516571][   T29]  #0: ffffffff8f36aa90 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3522.526466][   T29]  #1: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3522.536956][   T29] 2 locks held by syz-executor.2/9270:
[ 3522.542438][   T29]  #0: ffffffff8f36aa90 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3522.552326][   T29]  #1: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3522.562104][   T29] 2 locks held by syz-executor.4/9271:
[ 3522.568161][   T29]  #0: ffffffff8f36aa90 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3522.577969][   T29]  #1: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3522.587863][   T29] 2 locks held by syz-executor.3/9309:
[ 3522.593414][   T29]  #0: ffffffff8f36aa90 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x4c7/0x7b0
[ 3522.604195][   T29]  #1: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: smc_pnet_net_init+0x10a/0x1e0
[ 3522.613669][   T29] 1 lock held by syz-executor.0/9313:
[ 3522.620520][   T29]  #0: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3522.630600][   T29] 1 lock held by syz-executor.0/9314:
[ 3522.636481][   T29]  #0: ffffffff8f377008 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040
[ 3522.647412][   T29] 
[ 3522.649892][   T29] =============================================
[ 3522.649892][   T29] 
[ 3522.658544][   T29] NMI backtrace for cpu 1
[ 3522.662887][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3522.672352][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3522.682397][   T29] Call Trace:
[ 3522.685678][   T29]  <TASK>
[ 3522.688620][   T29]  dump_stack_lvl+0x1e7/0x2e0
[ 3522.693405][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[ 3522.698824][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3522.704038][   T29]  ? __pfx__printk+0x10/0x10
[ 3522.708659][   T29]  ? vprintk_emit+0x607/0x720
[ 3522.713350][   T29]  ? __pfx_vprintk_emit+0x10/0x10
[ 3522.718381][   T29]  nmi_cpu_backtrace+0x49c/0x4d0
[ 3522.723321][   T29]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 3522.728885][   T29]  ? _printk+0xd5/0x120
[ 3522.733075][   T29]  ? __pfx__printk+0x10/0x10
[ 3522.737700][   T29]  ? __wake_up_klogd+0xcc/0x110
[ 3522.742655][   T29]  ? __pfx__printk+0x10/0x10
[ 3522.747282][   T29]  ? __rcu_read_unlock+0xa0/0x110
[ 3522.752334][   T29]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 3522.758836][   T29]  nmi_trigger_cpumask_backtrace+0x198/0x320
[ 3522.764821][   T29]  watchdog+0xfaf/0xff0
[ 3522.769014][   T29]  ? watchdog+0x1e9/0xff0
[ 3522.773365][   T29]  ? __pfx_watchdog+0x10/0x10
[ 3522.778067][   T29]  kthread+0x2ef/0x390
[ 3522.782143][   T29]  ? __pfx_watchdog+0x10/0x10
[ 3522.786823][   T29]  ? __pfx_kthread+0x10/0x10
[ 3522.791406][   T29]  ret_from_fork+0x4b/0x80
[ 3522.795820][   T29]  ? __pfx_kthread+0x10/0x10
[ 3522.800406][   T29]  ret_from_fork_asm+0x1b/0x30
[ 3522.805177][   T29]  </TASK>
[ 3522.809758][   T29] Sending NMI from CPU 1 to CPUs 0:
[ 3522.815310][    C0] NMI backtrace for cpu 0
[ 3522.815321][    C0] CPU: 0 PID: 28694 Comm: kworker/u4:15 Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3522.815342][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3522.815352][    C0] Workqueue: bat_events batadv_nc_worker
[ 3522.815472][    C0] RIP: 0010:__lock_acquire+0xe80/0x1fd0
[ 3522.815497][    C0] Code: c3 4c 89 e0 48 c1 e8 20 29 c3 89 c1 c1 c1 04 31 d9 44 01 e0 41 29 cc 89 ca c1 c2 06 44 31 e2 01 c1 29 d0 89 d6 c1 c6 08 31 c6 <01> ca 29 f1 89 f3 c1 c3 10 31 cb 01 d6 29 da 89 dd c1 c5 13 31 d5
[ 3522.815512][    C0] RSP: 0018:ffffc900166cf890 EFLAGS: 00000002
[ 3522.815525][    C0] RAX: 0000000050596707 RBX: 000000005ce1f7fe RCX: 00000000fc79cb29
[ 3522.815537][    C0] RDX: 000000003f1f48ee RSI: 000000004f118938 RDI: dffffc0000000000
[ 3522.815549][    C0] RBP: ffff888024200b10 R08: ffffffff92c904ff R09: 1ffffffff259209f
[ 3522.815562][    C0] R10: dffffc0000000000 R11: fffffbfff25920a0 R12: 000000007f5985f5
[ 3522.815574][    C0] R13: ffff888024200000 R14: 0000000000000000 R15: ffff888024200000
[ 3522.815586][    C0] FS:  0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[ 3522.815602][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3522.815614][    C0] CR2: 000000c0053b9240 CR3: 000000007f8ea000 CR4: 00000000003506f0
[ 3522.815630][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 3522.815641][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 3522.815652][    C0] Call Trace:
[ 3522.815658][    C0]  <NMI>
[ 3522.815665][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 3522.815686][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 3522.815707][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 3522.815733][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 3522.815752][    C0]  ? nmi_handle+0x14f/0x580
[ 3522.815768][    C0]  ? nmi_handle+0x2a/0x580
[ 3522.815784][    C0]  ? __lock_acquire+0xe80/0x1fd0
[ 3522.815804][    C0]  ? default_do_nmi+0x63/0x160
[ 3522.815823][    C0]  ? exc_nmi+0x123/0x1f0
[ 3522.815841][    C0]  ? end_repeat_nmi+0xf/0x60
[ 3522.815865][    C0]  ? __lock_acquire+0xe80/0x1fd0
[ 3522.815885][    C0]  ? __lock_acquire+0xe80/0x1fd0
[ 3522.815906][    C0]  ? __lock_acquire+0xe80/0x1fd0
[ 3522.815926][    C0]  </NMI>
[ 3522.815931][    C0]  <TASK>
[ 3522.815944][    C0]  lock_acquire+0x1e3/0x530
[ 3522.815963][    C0]  ? batadv_nc_purge_paths+0xe8/0x3b0
[ 3522.815988][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 3522.816008][    C0]  ? __local_bh_disable_ip+0x187/0x220
[ 3522.816030][    C0]  ? lockdep_hardirqs_on+0x98/0x140
[ 3522.816050][    C0]  ? batadv_nc_purge_paths+0xe8/0x3b0
[ 3522.816070][    C0]  ? __pfx___local_bh_disable_ip+0x10/0x10
[ 3522.816090][    C0]  ? __local_bh_enable_ip+0x168/0x200
[ 3522.816112][    C0]  ? batadv_nc_purge_paths+0x30f/0x3b0
[ 3522.816140][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 3522.816162][    C0]  ? batadv_nc_purge_paths+0xe8/0x3b0
[ 3522.816183][    C0]  _raw_spin_lock_bh+0x35/0x50
[ 3522.816205][    C0]  ? batadv_nc_purge_paths+0xe8/0x3b0
[ 3522.816224][    C0]  ? __pfx_batadv_nc_to_purge_nc_path_coding+0x10/0x10
[ 3522.816245][    C0]  batadv_nc_purge_paths+0xe8/0x3b0
[ 3522.816270][    C0]  batadv_nc_worker+0x328/0x610
[ 3522.816290][    C0]  ? batadv_nc_worker+0xcb/0x610
[ 3522.816310][    C0]  ? process_scheduled_works+0x825/0x1420
[ 3522.816332][    C0]  process_scheduled_works+0x913/0x1420
[ 3522.816363][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 3522.816387][    C0]  ? assign_work+0x364/0x3d0
[ 3522.816409][    C0]  worker_thread+0xa5f/0x1000
[ 3522.816438][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 3522.816458][    C0]  kthread+0x2ef/0x390
[ 3522.816474][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 3522.816494][    C0]  ? __pfx_kthread+0x10/0x10
[ 3522.816510][    C0]  ret_from_fork+0x4b/0x80
[ 3522.816530][    C0]  ? __pfx_kthread+0x10/0x10
[ 3522.816546][    C0]  ret_from_fork_asm+0x1b/0x30
[ 3522.816572][    C0]  </TASK>
[ 3522.818840][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[ 3523.194796][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.8.0-syzkaller-00295-g0f1a876682f0 #0
[ 3523.204264][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 3523.214453][   T29] Call Trace:
[ 3523.217751][   T29]  <TASK>
[ 3523.220691][   T29]  dump_stack_lvl+0x1e7/0x2e0
[ 3523.225394][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 3523.230599][   T29]  ? __pfx__printk+0x10/0x10
[ 3523.235192][   T29]  ? vscnprintf+0x5d/0x90
[ 3523.239538][   T29]  panic+0x349/0x860
[ 3523.243440][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 3523.249592][   T29]  ? __pfx_panic+0x10/0x10
[ 3523.254025][   T29]  ? tick_nohz_tick_stopped+0x7b/0xc0
[ 3523.259521][   T29]  ? __irq_work_queue_local+0x137/0x3e0
[ 3523.265092][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[ 3523.270476][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 3523.276633][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[ 3523.282804][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[ 3523.288979][   T29]  watchdog+0xfee/0xff0
[ 3523.293174][   T29]  ? watchdog+0x1e9/0xff0
[ 3523.297544][   T29]  ? __pfx_watchdog+0x10/0x10
[ 3523.302262][   T29]  kthread+0x2ef/0x390
[ 3523.306341][   T29]  ? __pfx_watchdog+0x10/0x10
[ 3523.311031][   T29]  ? __pfx_kthread+0x10/0x10
[ 3523.315821][   T29]  ret_from_fork+0x4b/0x80
[ 3523.320272][   T29]  ? __pfx_kthread+0x10/0x10
[ 3523.324907][   T29]  ret_from_fork_asm+0x1b/0x30
[ 3523.329702][   T29]  </TASK>
[ 3523.333045][   T29] Kernel Offset: disabled
[ 3523.337356][   T29] Rebooting in 86400 seconds..