77.618302][T11862]  ? mem_cgroup_margin+0x130/0x130
[ 3177.623458][T11862]  ? lock_downgrade+0x6e0/0x6e0
[ 3177.628347][T11862]  try_charge_memcg+0xefb/0x12f0
[ 3177.633302][T11862]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3177.639299][T11862]  ? lock_downgrade+0x6e0/0x6e0
[ 3177.644196][T11862]  charge_memcg+0x90/0x3b0
[ 3177.648644][T11862]  __mem_cgroup_charge+0x2b/0x90
[ 3177.653602][T11862]  do_wp_page+0x7ec/0x3370
[ 3177.658054][T11862]  ? lock_release+0x810/0x810
[ 3177.662742][T11862]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3177.668127][T11862]  ? do_raw_spin_lock+0x124/0x2b0
[ 3177.673168][T11862]  ? rwlock_bug.part.0+0x90/0x90
[ 3177.678113][T11862]  ? lock_chain_count+0x20/0x20
[ 3177.682983][T11862]  __handle_mm_fault+0x1f58/0x3c90
[ 3177.688114][T11862]  ? vm_iomap_memory+0x190/0x190
[ 3177.693091][T11862]  handle_mm_fault+0x1b6/0x850
[ 3177.697871][T11862]  do_user_addr_fault+0x475/0x1210
[ 3177.703006][T11862]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3177.708568][T11862]  exc_page_fault+0x98/0x170
[ 3177.713173][T11862]  asm_exc_page_fault+0x26/0x30
[ 3177.718031][T11862] RIP: 0033:0x7fbb9f039570
[ 3177.722473][T11862] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3177.742096][T11862] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3177.748167][T11862] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3177.756160][T11862] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3177.764140][T11862] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3177.772102][T11862] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3177.780082][T11862] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3177.788072][T11862]  ? __sys_socket+0x7c/0x250
[ 3177.792703][T11862]  </TASK>
[ 3177.797291][  T561] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3177.799984][T11862] memory: usage 307200kB, limit 307200kB, failcnt 152348
[ 3177.814955][T11862] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3177.821921][T11862] Memory cgroup stats for /syz4:
[ 3177.822135][T11862] anon 102400
[ 3177.822135][T11862] file 438272
[ 3177.822135][T11862] kernel 314011648
[ 3177.822135][T11862] kernel_stack 65536
[ 3177.822135][T11862] pagetables 73728
[ 3177.822135][T11862] sec_pagetables 0
[ 3177.822135][T11862] percpu 5617024
[ 3177.822135][T11862] sock 4096
[ 3177.822135][T11862] vmalloc 0
[ 3177.822135][T11862] shmem 438272
[ 3177.822135][T11862] zswap 0
[ 3177.822135][T11862] zswapped 0
[ 3177.822135][T11862] file_mapped 393216
[ 3177.822135][T11862] file_dirty 0
[ 3177.822135][T11862] file_writeback 0
[ 3177.822135][T11862] swapcached 0
[ 3177.822135][T11862] anon_thp 0
[ 3177.822135][T11862] file_thp 0
[ 3177.822135][T11862] shmem_thp 0
[ 3177.822135][T11862] inactive_anon 106496
[ 3177.822135][T11862] active_anon 425984
[ 3177.822135][T11862] inactive_file 0
[ 3177.822135][T11862] active_file 0
[ 3177.822135][T11862] unevictable 0
[ 3177.822135][T11862] slab_reclaimable 23024
[ 3177.822135][T11862] slab_unreclaimable 308203328
[ 3177.920053][T11862] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=11862,uid=0
[ 3177.935836][T11862] Memory cgroup out of memory: Killed process 11862 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3177.963591][T11851] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3177.984506][T11851] CPU: 1 PID: 11851 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3177.993222][T11851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3178.003291][T11851] Call Trace:
[ 3178.006563][T11851]  <TASK>
[ 3178.009484][T11851]  dump_stack_lvl+0xd1/0x138
[ 3178.014072][T11851]  dump_header+0x10b/0x85f
[ 3178.018490][T11851]  oom_kill_process.cold+0x10/0x15
[ 3178.023601][T11851]  out_of_memory+0x35c/0x14a0
[ 3178.028280][T11851]  ? oom_killer_disable+0x280/0x280
[ 3178.033480][T11851]  ? find_held_lock+0x2d/0x110
[ 3178.038267][T11851]  mem_cgroup_out_of_memory+0x206/0x270
[ 3178.043855][T11851]  ? mem_cgroup_margin+0x130/0x130
[ 3178.049008][T11851]  ? lock_downgrade+0x6e0/0x6e0
[ 3178.053899][T11851]  try_charge_memcg+0xefb/0x12f0
[ 3178.058880][T11851]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3178.064889][T11851]  ? lock_downgrade+0x6e0/0x6e0
[ 3178.069766][T11851]  charge_memcg+0x90/0x3b0
[ 3178.074177][T11851]  __mem_cgroup_charge+0x2b/0x90
[ 3178.079108][T11851]  ? copy_mc_to_kernel+0x3e/0x90
[ 3178.084036][T11851]  do_wp_page+0x7ec/0x3370
[ 3178.088469][T11851]  ? lock_release+0x810/0x810
[ 3178.093169][T11851]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3178.098573][T11851]  ? do_raw_spin_lock+0x124/0x2b0
[ 3178.103609][T11851]  ? rwlock_bug.part.0+0x90/0x90
[ 3178.108538][T11851]  ? lock_chain_count+0x20/0x20
[ 3178.113384][T11851]  __handle_mm_fault+0x1f58/0x3c90
[ 3178.118502][T11851]  ? vm_iomap_memory+0x190/0x190
[ 3178.123458][T11851]  handle_mm_fault+0x1b6/0x850
[ 3178.128226][T11851]  do_user_addr_fault+0x475/0x1210
[ 3178.133334][T11851]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3178.138910][T11851]  exc_page_fault+0x98/0x170
[ 3178.143547][T11851]  asm_exc_page_fault+0x26/0x30
[ 3178.148428][T11851] RIP: 0033:0x7f36ee036645
[ 3178.152859][T11851] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
[ 3178.172512][T11851] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
[ 3178.178591][T11851] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3178.186566][T11851] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3178.194558][T11851] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
[ 3178.202556][T11851] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 0000000000307c24
10:32:19 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xf82c0400}, 0x0)

10:32:19 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xf1bc}}], 0x2, 0x0)

10:32:19 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x3000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:19 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000f0000000000000000000500010006"], 0x1c}}, 0x0)

10:32:19 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xf72c0400}, 0x0)

[ 3178.210543][T11851] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3178.218526][T11851]  </TASK>
[ 3178.225692][T11851] memory: usage 307200kB, limit 307200kB, failcnt 28340
[ 3178.232663][T11851] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3178.248652][T11851] Memory cgroup stats for /syz5:
[ 3178.248865][T11851] anon 94208
[ 3178.248865][T11851] file 425984
[ 3178.248865][T11851] kernel 314052608
[ 3178.248865][T11851] kernel_stack 65536
[ 3178.248865][T11851] pagetables 77824
[ 3178.248865][T11851] sec_pagetables 0
[ 3178.248865][T11851] percpu 5429952
[ 3178.248865][T11851] sock 0
[ 3178.248865][T11851] vmalloc 8192
[ 3178.248865][T11851] shmem 425984
[ 3178.248865][T11851] zswap 0
[ 3178.248865][T11851] zswapped 0
[ 3178.248865][T11851] file_mapped 393216
[ 3178.248865][T11851] file_dirty 0
[ 3178.248865][T11851] file_writeback 0
[ 3178.248865][T11851] swapcached 0
[ 3178.248865][T11851] anon_thp 0
[ 3178.248865][T11851] file_thp 0
10:32:19 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000051140000000000000000000500010006"], 0x1c}}, 0x0)

10:32:19 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xf401}}], 0x2, 0x0)

[ 3178.248865][T11851] shmem_thp 0
[ 3178.248865][T11851] inactive_anon 221184
[ 3178.248865][T11851] active_anon 299008
[ 3178.248865][T11851] inactive_file 0
[ 3178.248865][T11851] active_file 0
[ 3178.248865][T11851] unevictable 0
[ 3178.248865][T11851] slab_reclaimable 218328
[ 3178.248865][T11851] slab_unreclaimable 308218520
[ 3178.385517][T11851] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=11851,uid=0
10:32:19 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x6c00)

10:32:19 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x3f00, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:19 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000001f0000000000000000000500010006"], 0x1c}}, 0x0)

10:32:19 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfc00}}], 0x2, 0x0)

[ 3178.441220][T11851] Memory cgroup out of memory: Killed process 11851 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3178.480445][T11874] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
10:32:19 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3178.529317][T11874] CPU: 0 PID: 11874 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3178.538054][T11874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3178.548135][T11874] Call Trace:
[ 3178.551439][T11874]  <TASK>
[ 3178.554400][T11874]  dump_stack_lvl+0xd1/0x138
[ 3178.559035][T11874]  dump_header+0x10b/0x85f
[ 3178.563501][T11874]  oom_kill_process.cold+0x10/0x15
[ 3178.568662][T11874]  out_of_memory+0x35c/0x14a0
[ 3178.573397][T11874]  ? oom_killer_disable+0x280/0x280
[ 3178.578648][T11874]  ? find_held_lock+0x2d/0x110
[ 3178.583468][T11874]  mem_cgroup_out_of_memory+0x206/0x270
[ 3178.589064][T11874]  ? mem_cgroup_margin+0x130/0x130
[ 3178.594216][T11874]  ? lock_downgrade+0x6e0/0x6e0
[ 3178.599113][T11874]  try_charge_memcg+0xefb/0x12f0
[ 3178.604090][T11874]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3178.610101][T11874]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3178.615865][T11874]  ? lock_downgrade+0x6e0/0x6e0
[ 3178.620766][T11874]  obj_cgroup_charge+0x2af/0x5e0
[ 3178.625737][T11874]  ? __anon_vma_prepare+0x64/0x580
[ 3178.630885][T11874]  kmem_cache_alloc+0xb5/0x430
[ 3178.635688][T11874]  __anon_vma_prepare+0x64/0x580
[ 3178.640664][T11874]  ? __pmd_alloc+0x30c/0x5d0
[ 3178.645294][T11874]  __handle_mm_fault+0x392f/0x3c90
[ 3178.650441][T11874]  ? vm_iomap_memory+0x190/0x190
[ 3178.655437][T11874]  handle_mm_fault+0x1b6/0x850
[ 3178.660247][T11874]  do_user_addr_fault+0x475/0x1210
[ 3178.665401][T11874]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3178.670996][T11874]  exc_page_fault+0x98/0x170
[ 3178.675619][T11874]  asm_exc_page_fault+0x26/0x30
[ 3178.680499][T11874] RIP: 0033:0x7fde80a2bd49
[ 3178.684938][T11874] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3178.704570][T11874] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3178.710664][T11874] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3178.718657][T11874] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3178.726652][T11874] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3178.734646][T11874] R10: 00007fde80600068 R11: 0000000000000246 R12: 0000000000307f9a
[ 3178.742638][T11874] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3178.750650][T11874]  </TASK>
[ 3178.757594][T11874] memory: usage 307200kB, limit 307200kB, failcnt 34907
[ 3178.776202][T11874] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3178.791788][T11874] Memory cgroup stats for /syz2:
[ 3178.791966][T11874] anon 131072
[ 3178.791966][T11874] file 307200
[ 3178.791966][T11874] kernel 314134528
[ 3178.791966][T11874] kernel_stack 65536
[ 3178.791966][T11874] pagetables 86016
[ 3178.791966][T11874] sec_pagetables 0
[ 3178.791966][T11874] percpu 5433504
[ 3178.791966][T11874] sock 0
[ 3178.791966][T11874] vmalloc 16384
[ 3178.791966][T11874] shmem 307200
[ 3178.791966][T11874] zswap 0
[ 3178.791966][T11874] zswapped 0
[ 3178.791966][T11874] file_mapped 299008
[ 3178.791966][T11874] file_dirty 0
[ 3178.791966][T11874] file_writeback 0
[ 3178.791966][T11874] swapcached 0
[ 3178.791966][T11874] anon_thp 0
[ 3178.791966][T11874] file_thp 0
[ 3178.791966][T11874] shmem_thp 0
[ 3178.791966][T11874] inactive_anon 139264
[ 3178.791966][T11874] active_anon 299008
[ 3178.791966][T11874] inactive_file 0
[ 3178.791966][T11874] active_file 0
[ 3178.791966][T11874] unevictable 0
[ 3178.791966][T11874] slab_reclaimable 112984
[ 3178.791966][T11874] slab_unreclaimable 308388280
[ 3178.889754][T11874] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11874,uid=0
[ 3178.905587][T11874] Memory cgroup out of memory: Killed process 11874 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3178.932317][T11891] syz-executor.5 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3178.951443][T11891] CPU: 0 PID: 11891 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3178.960152][T11891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3178.970228][T11891] Call Trace:
[ 3178.973528][T11891]  <TASK>
[ 3178.976478][T11891]  dump_stack_lvl+0xd1/0x138
10:32:19 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xf92c0400}, 0x0)

10:32:19 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfe80}}], 0x2, 0x0)

10:32:19 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000600000000000000000000500010006"], 0x1c}}, 0x0)

10:32:19 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4800, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3178.981112][T11891]  dump_header+0x10b/0x85f
[ 3178.985574][T11891]  oom_kill_process.cold+0x10/0x15
[ 3178.990730][T11891]  out_of_memory+0x35c/0x14a0
[ 3178.995458][T11891]  ? find_held_lock+0x2d/0x110
[ 3179.000267][T11891]  ? oom_killer_disable+0x280/0x280
[ 3179.005515][T11891]  ? find_held_lock+0x2d/0x110
[ 3179.010324][T11891]  mem_cgroup_out_of_memory+0x206/0x270
[ 3179.015916][T11891]  ? mem_cgroup_margin+0x130/0x130
[ 3179.021067][T11891]  ? lock_downgrade+0x6e0/0x6e0
[ 3179.025964][T11891]  try_charge_memcg+0xefb/0x12f0
[ 3179.030942][T11891]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3179.036954][T11891]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3179.042720][T11891]  ? lock_downgrade+0x6e0/0x6e0
[ 3179.047604][T11891]  ? lock_downgrade+0x6e0/0x6e0
[ 3179.052481][T11891]  ? rcu_read_unlock+0x9/0x60
[ 3179.057230][T11891]  obj_cgroup_charge+0x2af/0x5e0
[ 3179.062204][T11891]  __kmem_cache_alloc_node+0xb2/0x430
[ 3179.067601][T11891]  ? copy_semundo+0x18b/0x300
[ 3179.072318][T11891]  kmalloc_trace+0x26/0x60
[ 3179.076773][T11891]  copy_semundo+0x18b/0x300
[ 3179.081311][T11891]  copy_process+0x2457/0x7520
[ 3179.086052][T11891]  ? __cleanup_sighand+0xb0/0xb0
[ 3179.091016][T11891]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3179.097030][T11891]  ? psi_memstall_leave+0x174/0x250
[ 3179.102272][T11891]  kernel_clone+0xeb/0x990
[ 3179.106725][T11891]  ? create_io_thread+0xf0/0xf0
[ 3179.111606][T11891]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3179.117889][T11891]  ? lock_downgrade+0x6e0/0x6e0
[ 3179.122783][T11891]  __do_sys_clone+0xba/0x100
[ 3179.127402][T11891]  ? kernel_clone+0x990/0x990
[ 3179.132123][T11891]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3179.138058][T11891]  do_syscall_64+0x39/0xb0
[ 3179.142518][T11891]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3179.148440][T11891] RIP: 0033:0x7f36ee08d4f1
[ 3179.152880][T11891] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3179.172519][T11891] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3179.180968][T11891] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3179.188964][T11891] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3179.196959][T11891] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3179.204958][T11891] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3179.212955][T11891] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3179.220976][T11891]  </TASK>
[ 3179.229818][T11891] memory: usage 307188kB, limit 307200kB, failcnt 28446
[ 3179.244010][T11891] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3179.250971][T11891] Memory cgroup stats for /syz5:
[ 3179.251161][T11891] anon 86016
[ 3179.251161][T11891] file 425984
[ 3179.251161][T11891] kernel 314048512
[ 3179.251161][T11891] kernel_stack 65536
[ 3179.251161][T11891] pagetables 77824
[ 3179.251161][T11891] sec_pagetables 0
[ 3179.251161][T11891] percpu 5429952
[ 3179.251161][T11891] sock 0
[ 3179.251161][T11891] vmalloc 8192
[ 3179.251161][T11891] shmem 425984
[ 3179.251161][T11891] zswap 0
[ 3179.251161][T11891] zswapped 0
[ 3179.251161][T11891] file_mapped 393216
[ 3179.251161][T11891] file_dirty 0
[ 3179.251161][T11891] file_writeback 0
[ 3179.251161][T11891] swapcached 0
[ 3179.251161][T11891] anon_thp 0
[ 3179.251161][T11891] file_thp 0
[ 3179.251161][T11891] shmem_thp 0
[ 3179.251161][T11891] inactive_anon 212992
[ 3179.251161][T11891] active_anon 299008
[ 3179.251161][T11891] inactive_file 0
[ 3179.251161][T11891] active_file 0
[ 3179.251161][T11891] unevictable 0
[ 3179.251161][T11891] slab_reclaimable 216400
[ 3179.251161][T11891] slab_unreclaimable 308217408
[ 3179.349285][T11891] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=11891,uid=0
[ 3179.367705][T11891] Memory cgroup out of memory: Killed process 11891 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3179.386906][T11872] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3179.397638][T11872] CPU: 1 PID: 11872 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3179.406352][T11872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3179.416430][T11872] Call Trace:
[ 3179.419726][T11872]  <TASK>
[ 3179.422668][T11872]  dump_stack_lvl+0xd1/0x138
[ 3179.427264][T11872]  dump_header+0x10b/0x85f
[ 3179.431720][T11872]  oom_kill_process.cold+0x10/0x15
[ 3179.436863][T11872]  out_of_memory+0x35c/0x14a0
[ 3179.441553][T11872]  ? oom_killer_disable+0x280/0x280
[ 3179.446779][T11872]  ? find_held_lock+0x2d/0x110
[ 3179.451543][T11872]  mem_cgroup_out_of_memory+0x206/0x270
[ 3179.457107][T11872]  ? mem_cgroup_margin+0x130/0x130
[ 3179.462248][T11872]  ? lock_downgrade+0x6e0/0x6e0
[ 3179.467138][T11872]  try_charge_memcg+0xefb/0x12f0
[ 3179.472096][T11872]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3179.478092][T11872]  ? lock_downgrade+0x6e0/0x6e0
[ 3179.482992][T11872]  charge_memcg+0x90/0x3b0
[ 3179.487422][T11872]  __mem_cgroup_charge+0x2b/0x90
[ 3179.492371][T11872]  do_wp_page+0x7ec/0x3370
[ 3179.496828][T11872]  ? lock_release+0x810/0x810
[ 3179.501514][T11872]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3179.506906][T11872]  ? do_raw_spin_lock+0x124/0x2b0
[ 3179.511943][T11872]  ? rwlock_bug.part.0+0x90/0x90
[ 3179.516887][T11872]  ? lock_chain_count+0x20/0x20
[ 3179.521749][T11872]  __handle_mm_fault+0x1f58/0x3c90
[ 3179.526880][T11872]  ? vm_iomap_memory+0x190/0x190
[ 3179.531852][T11872]  handle_mm_fault+0x1b6/0x850
[ 3179.536634][T11872]  do_user_addr_fault+0x475/0x1210
[ 3179.541764][T11872]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3179.547330][T11872]  exc_page_fault+0x98/0x170
[ 3179.551927][T11872]  asm_exc_page_fault+0x26/0x30
[ 3179.556785][T11872] RIP: 0033:0x7fbb9f039570
[ 3179.561204][T11872] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3179.580818][T11872] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3179.586891][T11872] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3179.594864][T11872] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3179.602836][T11872] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3179.610807][T11872] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3179.618814][T11872] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3179.626786][T11872]  ? security_socket_create+0x3f/0xc0
[ 3179.632206][T11872]  </TASK>
[ 3179.640767][T11872] memory: usage 307200kB, limit 307200kB, failcnt 152467
[ 3179.648528][T11872] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3179.655773][T11872] Memory cgroup stats for /syz4:
[ 3179.655985][T11872] anon 118784
[ 3179.655985][T11872] file 438272
[ 3179.655985][T11872] kernel 314011648
[ 3179.655985][T11872] kernel_stack 65536
[ 3179.655985][T11872] pagetables 73728
[ 3179.655985][T11872] sec_pagetables 0
[ 3179.655985][T11872] percpu 5617024
[ 3179.655985][T11872] sock 4096
[ 3179.655985][T11872] vmalloc 0
[ 3179.655985][T11872] shmem 438272
[ 3179.655985][T11872] zswap 0
[ 3179.655985][T11872] zswapped 0
[ 3179.655985][T11872] file_mapped 393216
[ 3179.655985][T11872] file_dirty 0
[ 3179.655985][T11872] file_writeback 0
[ 3179.655985][T11872] swapcached 0
[ 3179.655985][T11872] anon_thp 0
[ 3179.655985][T11872] file_thp 0
[ 3179.655985][T11872] shmem_thp 0
[ 3179.655985][T11872] inactive_anon 131072
[ 3179.655985][T11872] active_anon 425984
[ 3179.655985][T11872] inactive_file 0
[ 3179.655985][T11872] active_file 0
[ 3179.655985][T11872] unevictable 0
10:32:20 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000f0000000000000000000500010006"], 0x1c}}, 0x0)

10:32:20 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4c00, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:20 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfec0}}], 0x2, 0x0)

10:32:20 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000001800000000000000000000500010006"], 0x1c}}, 0x0)

10:32:20 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x7003)

[ 3179.655985][T11872] slab_reclaimable 23024
[ 3179.655985][T11872] slab_unreclaimable 308200776
[ 3179.756795][T11872] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=11872,uid=0
[ 3179.772842][T11872] Memory cgroup out of memory: Killed process 11872 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:20 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x5b00, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:20 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xff00}}], 0x2, 0x0)

10:32:20 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603ffffff9e0000000000000000000500010006"], 0x1c}}, 0x0)

[ 3179.902738][T11901] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3179.944078][T11901] CPU: 0 PID: 11901 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3179.952813][T11901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3179.962899][T11901] Call Trace:
[ 3179.966204][T11901]  <TASK>
[ 3179.969182][T11901]  dump_stack_lvl+0xd1/0x138
[ 3179.973795][T11901]  dump_header+0x10b/0x85f
[ 3179.978236][T11901]  oom_kill_process.cold+0x10/0x15
[ 3179.983377][T11901]  out_of_memory+0x35c/0x14a0
[ 3179.988085][T11901]  ? find_held_lock+0x2d/0x110
[ 3179.992880][T11901]  ? oom_killer_disable+0x280/0x280
[ 3179.999331][T11901]  ? find_held_lock+0x2d/0x110
[ 3180.004116][T11901]  mem_cgroup_out_of_memory+0x206/0x270
[ 3180.009703][T11901]  ? mem_cgroup_margin+0x130/0x130
[ 3180.014839][T11901]  ? lock_downgrade+0x6e0/0x6e0
[ 3180.019715][T11901]  try_charge_memcg+0xefb/0x12f0
[ 3180.024680][T11901]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3180.030701][T11901]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3180.036458][T11901]  ? lock_downgrade+0x6e0/0x6e0
[ 3180.041328][T11901]  ? lock_downgrade+0x6e0/0x6e0
[ 3180.046204][T11901]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3180.051784][T11901]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3180.057959][T11901]  copy_process+0x4e3/0x7520
[ 3180.062655][T11901]  ? __lock_acquire+0xbc3/0x56d0
[ 3180.068134][T11901]  ? __cleanup_sighand+0xb0/0xb0
[ 3180.073084][T11901]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3180.079598][T11901]  ? psi_memstall_leave+0x174/0x250
[ 3180.084822][T11901]  kernel_clone+0xeb/0x990
[ 3180.089259][T11901]  ? create_io_thread+0xf0/0xf0
[ 3180.094126][T11901]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3180.100396][T11901]  ? lock_downgrade+0x6e0/0x6e0
[ 3180.105300][T11901]  __do_sys_clone+0xba/0x100
[ 3180.109912][T11901]  ? kernel_clone+0x990/0x990
[ 3180.114611][T11901]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3180.120530][T11901]  do_syscall_64+0x39/0xb0
[ 3180.124967][T11901]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3180.130900][T11901] RIP: 0033:0x7f36ee08d4f1
[ 3180.135326][T11901] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3180.154943][T11901] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3180.163384][T11901] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3180.171367][T11901] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3180.179348][T11901] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3180.187325][T11901] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3180.195304][T11901] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3180.203388][T11901]  </TASK>
[ 3180.257098][T11901] memory: usage 307196kB, limit 307200kB, failcnt 28526
[ 3180.264185][T11901] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3180.272293][T11901] Memory cgroup stats for /syz5:
[ 3180.272501][T11901] anon 86016
[ 3180.272501][T11901] file 425984
[ 3180.272501][T11901] kernel 314056704
[ 3180.272501][T11901] kernel_stack 32768
[ 3180.272501][T11901] pagetables 77824
[ 3180.272501][T11901] sec_pagetables 0
[ 3180.272501][T11901] percpu 5430016
[ 3180.272501][T11901] sock 0
[ 3180.272501][T11901] vmalloc 8192
[ 3180.272501][T11901] shmem 425984
[ 3180.272501][T11901] zswap 0
[ 3180.272501][T11901] zswapped 0
[ 3180.272501][T11901] file_mapped 393216
[ 3180.272501][T11901] file_dirty 0
[ 3180.272501][T11901] file_writeback 0
[ 3180.272501][T11901] swapcached 0
[ 3180.272501][T11901] anon_thp 0
[ 3180.272501][T11901] file_thp 0
[ 3180.272501][T11901] shmem_thp 0
[ 3180.272501][T11901] inactive_anon 212992
[ 3180.272501][T11901] active_anon 299008
[ 3180.272501][T11901] inactive_file 0
[ 3180.272501][T11901] active_file 0
[ 3180.272501][T11901] unevictable 0
[ 3180.272501][T11901] slab_reclaimable 216400
[ 3180.272501][T11901] slab_unreclaimable 308229192
[ 3180.371650][T11901] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=11901,uid=0
[ 3180.388877][T11901] Memory cgroup out of memory: Killed process 11901 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3180.414447][T11898] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3180.441966][T11898] CPU: 1 PID: 11898 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3180.450687][T11898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3180.460777][T11898] Call Trace:
[ 3180.464049][T11898]  <TASK>
[ 3180.466976][T11898]  dump_stack_lvl+0xd1/0x138
[ 3180.471579][T11898]  dump_header+0x10b/0x85f
[ 3180.476029][T11898]  oom_kill_process.cold+0x10/0x15
[ 3180.481171][T11898]  out_of_memory+0x35c/0x14a0
[ 3180.485856][T11898]  ? oom_killer_disable+0x280/0x280
[ 3180.491058][T11898]  ? find_held_lock+0x2d/0x110
[ 3180.495840][T11898]  mem_cgroup_out_of_memory+0x206/0x270
[ 3180.501420][T11898]  ? mem_cgroup_margin+0x130/0x130
[ 3180.506574][T11898]  ? lock_downgrade+0x6e0/0x6e0
[ 3180.511447][T11898]  try_charge_memcg+0xefb/0x12f0
[ 3180.516402][T11898]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3180.522390][T11898]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3180.528127][T11898]  ? lock_downgrade+0x6e0/0x6e0
[ 3180.533005][T11898]  obj_cgroup_charge+0x2af/0x5e0
[ 3180.537954][T11898]  ? __anon_vma_prepare+0x64/0x580
[ 3180.543081][T11898]  kmem_cache_alloc+0xb5/0x430
[ 3180.547861][T11898]  __anon_vma_prepare+0x64/0x580
[ 3180.552900][T11898]  ? __pmd_alloc+0x30c/0x5d0
[ 3180.557507][T11898]  __handle_mm_fault+0x392f/0x3c90
[ 3180.562648][T11898]  ? vm_iomap_memory+0x190/0x190
[ 3180.567625][T11898]  handle_mm_fault+0x1b6/0x850
[ 3180.572415][T11898]  do_user_addr_fault+0x475/0x1210
[ 3180.577541][T11898]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3180.583131][T11898]  exc_page_fault+0x98/0x170
[ 3180.587731][T11898]  asm_exc_page_fault+0x26/0x30
[ 3180.592587][T11898] RIP: 0033:0x7fde80a2bd49
[ 3180.597010][T11898] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3180.616623][T11898] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3180.622701][T11898] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3180.630679][T11898] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3180.638661][T11898] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3180.646636][T11898] R10: 00007fde80600068 R11: 0000000000000246 R12: 000000000030852c
[ 3180.654627][T11898] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3180.662624][T11898]  </TASK>
[ 3180.677074][T11898] memory: usage 307200kB, limit 307200kB, failcnt 35044
[ 3180.684050][T11898] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3180.692680][T11898] Memory cgroup stats for /syz2:
[ 3180.692886][T11898] anon 131072
[ 3180.692886][T11898] file 307200
[ 3180.692886][T11898] kernel 314134528
[ 3180.692886][T11898] kernel_stack 65536
[ 3180.692886][T11898] pagetables 86016
[ 3180.692886][T11898] sec_pagetables 0
[ 3180.692886][T11898] percpu 5433504
[ 3180.692886][T11898] sock 0
[ 3180.692886][T11898] vmalloc 16384
[ 3180.692886][T11898] shmem 307200
[ 3180.692886][T11898] zswap 0
[ 3180.692886][T11898] zswapped 0
[ 3180.692886][T11898] file_mapped 299008
[ 3180.692886][T11898] file_dirty 0
[ 3180.692886][T11898] file_writeback 0
[ 3180.692886][T11898] swapcached 0
[ 3180.692886][T11898] anon_thp 0
[ 3180.692886][T11898] file_thp 0
[ 3180.692886][T11898] shmem_thp 0
[ 3180.692886][T11898] inactive_anon 139264
[ 3180.692886][T11898] active_anon 299008
[ 3180.692886][T11898] inactive_file 0
[ 3180.692886][T11898] active_file 0
[ 3180.692886][T11898] unevictable 0
[ 3180.692886][T11898] slab_reclaimable 112984
[ 3180.692886][T11898] slab_unreclaimable 308388280
[ 3180.791479][T11898] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11898,uid=0
[ 3180.807641][T11898] Memory cgroup out of memory: Killed process 11898 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3180.826623][T11909] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3180.837061][T11909] CPU: 0 PID: 11909 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3180.845764][T11909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3180.855924][T11909] Call Trace:
[ 3180.859220][T11909]  <TASK>
[ 3180.862166][T11909]  dump_stack_lvl+0xd1/0x138
[ 3180.866786][T11909]  dump_header+0x10b/0x85f
[ 3180.871245][T11909]  oom_kill_process.cold+0x10/0x15
[ 3180.876400][T11909]  out_of_memory+0x35c/0x14a0
[ 3180.881121][T11909]  ? oom_killer_disable+0x280/0x280
[ 3180.886368][T11909]  ? find_held_lock+0x2d/0x110
[ 3180.891173][T11909]  mem_cgroup_out_of_memory+0x206/0x270
[ 3180.896762][T11909]  ? mem_cgroup_margin+0x130/0x130
[ 3180.901911][T11909]  ? lock_downgrade+0x6e0/0x6e0
[ 3180.906805][T11909]  try_charge_memcg+0xefb/0x12f0
[ 3180.911779][T11909]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3180.917796][T11909]  ? lock_downgrade+0x6e0/0x6e0
[ 3180.922692][T11909]  charge_memcg+0x90/0x3b0
[ 3180.927151][T11909]  __mem_cgroup_charge+0x2b/0x90
[ 3180.932123][T11909]  do_wp_page+0x7ec/0x3370
[ 3180.936585][T11909]  ? lock_release+0x810/0x810
[ 3180.941280][T11909]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3180.946676][T11909]  ? do_raw_spin_lock+0x124/0x2b0
[ 3180.951729][T11909]  ? rwlock_bug.part.0+0x90/0x90
[ 3180.956695][T11909]  ? lock_chain_count+0x20/0x20
[ 3180.961765][T11909]  __handle_mm_fault+0x1f58/0x3c90
[ 3180.966899][T11909]  ? vm_iomap_memory+0x190/0x190
[ 3180.971919][T11909]  handle_mm_fault+0x1b6/0x850
[ 3180.976727][T11909]  do_user_addr_fault+0x475/0x1210
[ 3180.981872][T11909]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3180.987459][T11909]  exc_page_fault+0x98/0x170
[ 3180.992082][T11909]  asm_exc_page_fault+0x26/0x30
[ 3180.996967][T11909] RIP: 0033:0x7fbb9f039570
[ 3181.001400][T11909] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3181.021380][T11909] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
10:32:21 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfa030000}, 0x0)

10:32:21 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000ec00000000000000000000500010006"], 0x1c}}, 0x0)

10:32:21 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x6800, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:21 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x20480}}], 0x2, 0x0)

[ 3181.027474][T11909] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3181.035478][T11909] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3181.043460][T11909] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3181.051437][T11909] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3181.059432][T11909] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3181.067426][T11909]  ? security_socket_create+0x3f/0xc0
[ 3181.072868][T11909]  </TASK>
[ 3181.150143][T11909] memory: usage 307200kB, limit 307200kB, failcnt 152565
[ 3181.157407][T11909] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3181.164912][T11909] Memory cgroup stats for /syz4:
[ 3181.165085][T11909] anon 118784
[ 3181.165085][T11909] file 438272
[ 3181.165085][T11909] kernel 314011648
[ 3181.165085][T11909] kernel_stack 65536
[ 3181.165085][T11909] pagetables 73728
[ 3181.165085][T11909] sec_pagetables 0
[ 3181.165085][T11909] percpu 5617024
[ 3181.165085][T11909] sock 4096
[ 3181.165085][T11909] vmalloc 0
[ 3181.165085][T11909] shmem 438272
[ 3181.165085][T11909] zswap 0
[ 3181.165085][T11909] zswapped 0
[ 3181.165085][T11909] file_mapped 393216
[ 3181.165085][T11909] file_dirty 0
[ 3181.165085][T11909] file_writeback 0
[ 3181.165085][T11909] swapcached 0
[ 3181.165085][T11909] anon_thp 0
[ 3181.165085][T11909] file_thp 0
[ 3181.165085][T11909] shmem_thp 0
[ 3181.165085][T11909] inactive_anon 131072
[ 3181.165085][T11909] active_anon 425984
[ 3181.165085][T11909] inactive_file 0
[ 3181.165085][T11909] active_file 0
[ 3181.165085][T11909] unevictable 0
[ 3181.165085][T11909] slab_reclaimable 23024
[ 3181.165085][T11909] slab_unreclaimable 308200776
[ 3181.266800][T11909] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=11909,uid=0
[ 3181.282894][T11909] Memory cgroup out of memory: Killed process 11909 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3181.319236][T11922] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3181.332366][T11922] CPU: 0 PID: 11922 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3181.341083][T11922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3181.351162][T11922] Call Trace:
[ 3181.354444][T11922]  <TASK>
[ 3181.357387][T11922]  dump_stack_lvl+0xd1/0x138
[ 3181.362013][T11922]  dump_header+0x10b/0x85f
[ 3181.366473][T11922]  oom_kill_process.cold+0x10/0x15
[ 3181.371627][T11922]  out_of_memory+0x35c/0x14a0
[ 3181.376348][T11922]  ? find_held_lock+0x2d/0x110
[ 3181.381156][T11922]  ? oom_killer_disable+0x280/0x280
[ 3181.386394][T11922]  ? find_held_lock+0x2d/0x110
[ 3181.391197][T11922]  mem_cgroup_out_of_memory+0x206/0x270
[ 3181.396780][T11922]  ? mem_cgroup_margin+0x130/0x130
[ 3181.401920][T11922]  ? lock_downgrade+0x6e0/0x6e0
[ 3181.406816][T11922]  try_charge_memcg+0xefb/0x12f0
[ 3181.411788][T11922]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3181.417805][T11922]  ? lock_downgrade+0x6e0/0x6e0
[ 3181.422695][T11922]  charge_memcg+0x90/0x3b0
[ 3181.427155][T11922]  __mem_cgroup_charge+0x2b/0x90
[ 3181.432127][T11922]  ? _compound_head+0x5d/0x150
[ 3181.436918][T11922]  __handle_mm_fault+0x187d/0x3c90
[ 3181.442056][T11922]  ? vm_iomap_memory+0x190/0x190
[ 3181.447035][T11922]  handle_mm_fault+0x1b6/0x850
[ 3181.451818][T11922]  do_user_addr_fault+0x475/0x1210
[ 3181.456947][T11922]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3181.462515][T11922]  exc_page_fault+0x98/0x170
[ 3181.467128][T11922]  asm_exc_page_fault+0x26/0x30
[ 3181.471983][T11922] RIP: 0033:0x7fde80a2bd49
[ 3181.476403][T11922] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3181.496013][T11922] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3181.502089][T11922] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3181.510069][T11922] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
10:32:22 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000f0000000000000000000500010006"], 0x1c}}, 0x0)

10:32:22 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x7400)

10:32:22 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x6c00, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:22 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000003e80000000000000000000500010006"], 0x1c}}, 0x0)

10:32:22 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x34000}}], 0x2, 0x0)

[ 3181.518042][T11922] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3181.526015][T11922] R10: 00007fde80600068 R11: 0000000000000246 R12: 0000000000308a34
[ 3181.533995][T11922] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3181.541995][T11922]  </TASK>
10:32:22 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x7400, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:22 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x40000}}], 0x2, 0x0)

10:32:22 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603fffffff00000000000000000000500010006"], 0x1c}}, 0x0)

[ 3181.584954][T11922] memory: usage 307200kB, limit 307200kB, failcnt 35152
[ 3181.605778][T11922] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3181.620336][T11922] Memory cgroup stats for /syz2:
[ 3181.620554][T11922] anon 131072
[ 3181.620554][T11922] file 307200
[ 3181.620554][T11922] kernel 314126336
[ 3181.620554][T11922] kernel_stack 65536
[ 3181.620554][T11922] pagetables 86016
[ 3181.620554][T11922] sec_pagetables 0
[ 3181.620554][T11922] percpu 5433504
[ 3181.620554][T11922] sock 0
[ 3181.620554][T11922] vmalloc 16384
[ 3181.620554][T11922] shmem 307200
[ 3181.620554][T11922] zswap 0
[ 3181.620554][T11922] zswapped 0
[ 3181.620554][T11922] file_mapped 299008
[ 3181.620554][T11922] file_dirty 0
[ 3181.620554][T11922] file_writeback 0
[ 3181.620554][T11922] swapcached 0
[ 3181.620554][T11922] anon_thp 0
[ 3181.620554][T11922] file_thp 0
[ 3181.620554][T11922] shmem_thp 0
[ 3181.620554][T11922] inactive_anon 139264
[ 3181.620554][T11922] active_anon 299008
[ 3181.620554][T11922] inactive_file 0
[ 3181.620554][T11922] active_file 0
[ 3181.620554][T11922] unevictable 0
[ 3181.620554][T11922] slab_reclaimable 112984
[ 3181.620554][T11922] slab_unreclaimable 308382520
[ 3181.790367][T11922] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11922,uid=0
[ 3181.816583][T11922] Memory cgroup out of memory: Killed process 11922 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
10:32:22 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfa2c0400}, 0x0)

10:32:22 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x7a00, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:22 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300f0ffff0000000000000000000500010006"], 0x1c}}, 0x0)

10:32:22 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x100000}}], 0x2, 0x0)

[ 3181.853005][T11938] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3181.869366][T11938] CPU: 0 PID: 11938 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3181.878085][T11938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3181.888160][T11938] Call Trace:
[ 3181.891463][T11938]  <TASK>
[ 3181.894417][T11938]  dump_stack_lvl+0xd1/0x138
[ 3181.899068][T11938]  dump_header+0x10b/0x85f
[ 3181.903541][T11938]  oom_kill_process.cold+0x10/0x15
[ 3181.908705][T11938]  out_of_memory+0x35c/0x14a0
[ 3181.913443][T11938]  ? oom_killer_disable+0x280/0x280
[ 3181.918688][T11938]  ? find_held_lock+0x2d/0x110
[ 3181.923497][T11938]  mem_cgroup_out_of_memory+0x206/0x270
[ 3181.929091][T11938]  ? mem_cgroup_margin+0x130/0x130
[ 3181.934243][T11938]  ? lock_downgrade+0x6e0/0x6e0
[ 3181.939139][T11938]  try_charge_memcg+0xefb/0x12f0
[ 3181.944115][T11938]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3181.950128][T11938]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3181.955894][T11938]  ? lock_downgrade+0x6e0/0x6e0
[ 3181.960779][T11938]  ? lock_downgrade+0x6e0/0x6e0
[ 3181.965675][T11938]  obj_cgroup_charge+0x2af/0x5e0
[ 3181.970654][T11938]  kmem_cache_alloc_lru+0x145/0x760
[ 3181.975877][T11938]  ? sock_alloc_inode+0x27/0x1d0
[ 3181.980865][T11938]  sock_alloc_inode+0x27/0x1d0
[ 3181.985663][T11938]  ? sock_free_inode+0x30/0x30
[ 3181.990484][T11938]  alloc_inode+0x61/0x230
[ 3181.994858][T11938]  new_inode_pseudo+0x17/0x80
[ 3181.999577][T11938]  sock_alloc+0x40/0x260
[ 3182.003856][T11938]  __sock_create+0xbd/0x790
[ 3182.008404][T11938]  __sys_socket+0x133/0x250
[ 3182.012942][T11938]  ? __sys_socket_file+0x1f0/0x1f0
[ 3182.018104][T11938]  __x64_sys_socket+0x73/0xb0
[ 3182.022816][T11938]  do_syscall_64+0x39/0xb0
[ 3182.027269][T11938]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3182.033188][T11938] RIP: 0033:0x7f36ee08c0c9
[ 3182.037633][T11938] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3182.057272][T11938] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3182.065716][T11938] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3182.073716][T11938] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3182.081708][T11938] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3182.089702][T11938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3182.097700][T11938] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3182.105718][T11938]  </TASK>
[ 3182.124139][T11938] memory: usage 307200kB, limit 307200kB, failcnt 28672
[ 3182.131943][T11938] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3182.144739][T11938] Memory cgroup stats for /syz5:
[ 3182.144970][T11938] anon 94208
[ 3182.144970][T11938] file 425984
[ 3182.144970][T11938] kernel 314052608
[ 3182.144970][T11938] kernel_stack 65536
[ 3182.144970][T11938] pagetables 77824
[ 3182.144970][T11938] sec_pagetables 0
[ 3182.144970][T11938] percpu 5429952
[ 3182.144970][T11938] sock 0
[ 3182.144970][T11938] vmalloc 8192
[ 3182.144970][T11938] shmem 425984
[ 3182.144970][T11938] zswap 0
[ 3182.144970][T11938] zswapped 0
[ 3182.144970][T11938] file_mapped 393216
[ 3182.144970][T11938] file_dirty 0
[ 3182.144970][T11938] file_writeback 0
[ 3182.144970][T11938] swapcached 0
[ 3182.144970][T11938] anon_thp 0
[ 3182.144970][T11938] file_thp 0
[ 3182.144970][T11938] shmem_thp 0
[ 3182.144970][T11938] inactive_anon 221184
[ 3182.144970][T11938] active_anon 299008
[ 3182.144970][T11938] inactive_file 0
[ 3182.144970][T11938] active_file 0
[ 3182.144970][T11938] unevictable 0
[ 3182.144970][T11938] slab_reclaimable 216400
[ 3182.144970][T11938] slab_unreclaimable 308217872
[ 3182.247359][T11938] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=11927,uid=0
[ 3182.264787][T11938] Memory cgroup out of memory: Killed process 11927 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3182.294488][T11940] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3182.296620][T11938] socket: no more sockets
[ 3182.314683][T11940] CPU: 0 PID: 11940 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3182.323399][T11940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3182.333487][T11940] Call Trace:
[ 3182.336789][T11940]  <TASK>
[ 3182.339744][T11940]  dump_stack_lvl+0xd1/0x138
[ 3182.344378][T11940]  dump_header+0x10b/0x85f
[ 3182.348845][T11940]  oom_kill_process.cold+0x10/0x15
[ 3182.354010][T11940]  out_of_memory+0x35c/0x14a0
[ 3182.358727][T11940]  ? oom_killer_disable+0x280/0x280
[ 3182.363954][T11940]  ? find_held_lock+0x2d/0x110
[ 3182.368743][T11940]  mem_cgroup_out_of_memory+0x206/0x270
[ 3182.374328][T11940]  ? mem_cgroup_margin+0x130/0x130
[ 3182.379466][T11940]  ? lock_downgrade+0x6e0/0x6e0
[ 3182.384350][T11940]  try_charge_memcg+0xefb/0x12f0
[ 3182.389313][T11940]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3182.395302][T11940]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3182.401044][T11940]  ? lock_downgrade+0x6e0/0x6e0
[ 3182.405907][T11940]  ? lock_downgrade+0x6e0/0x6e0
[ 3182.410782][T11940]  obj_cgroup_charge+0x2af/0x5e0
[ 3182.415742][T11940]  kmem_cache_alloc_lru+0x145/0x760
[ 3182.420945][T11940]  ? __d_alloc+0x32/0x980
[ 3182.425294][T11940]  __d_alloc+0x32/0x980
[ 3182.429461][T11940]  ? alloc_fd+0x2d8/0x6d0
[ 3182.433805][T11940]  d_alloc_pseudo+0x1d/0x70
[ 3182.438321][T11940]  alloc_file_pseudo+0xca/0x250
[ 3182.443188][T11940]  ? alloc_file+0x800/0x800
[ 3182.447705][T11940]  ? _raw_spin_unlock+0x28/0x40
[ 3182.452568][T11940]  ? alloc_fd+0x2d8/0x6d0
[ 3182.456910][T11940]  sock_alloc_file+0x53/0x190
[ 3182.461607][T11940]  __sys_socket+0x1a8/0x250
[ 3182.466130][T11940]  ? __sys_socket_file+0x1f0/0x1f0
[ 3182.471269][T11940]  __x64_sys_socket+0x73/0xb0
[ 3182.475968][T11940]  do_syscall_64+0x39/0xb0
[ 3182.480402][T11940]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3182.486333][T11940] RIP: 0033:0x7fbb9f08c0c9
[ 3182.490751][T11940] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3182.510361][T11940] RSP: 002b:00007fbb9fe42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3182.518779][T11940] RAX: ffffffffffffffda RBX: 00007fbb9f1abf80 RCX: 00007fbb9f08c0c9
[ 3182.526758][T11940] RDX: 000000000000000c RSI: 0000000000000003 RDI: 0000000000000010
[ 3182.534734][T11940] RBP: 00007fbb9f0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3182.542710][T11940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3182.550683][T11940] R13: 00007fff7101e80f R14: 00007fbb9fe42300 R15: 0000000000022000
[ 3182.558673][T11940]  </TASK>
[ 3182.565487][T11940] memory: usage 307200kB, limit 307200kB, failcnt 152670
[ 3182.572657][T11940] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3182.580684][T11940] Memory cgroup stats for /syz4:
[ 3182.580907][T11940] anon 102400
[ 3182.580907][T11940] file 438272
[ 3182.580907][T11940] kernel 314028032
[ 3182.580907][T11940] kernel_stack 65536
[ 3182.580907][T11940] pagetables 81920
[ 3182.580907][T11940] sec_pagetables 0
[ 3182.580907][T11940] percpu 5617024
[ 3182.580907][T11940] sock 4096
[ 3182.580907][T11940] vmalloc 0
[ 3182.580907][T11940] shmem 438272
[ 3182.580907][T11940] zswap 0
[ 3182.580907][T11940] zswapped 0
[ 3182.580907][T11940] file_mapped 393216
[ 3182.580907][T11940] file_dirty 0
[ 3182.580907][T11940] file_writeback 0
[ 3182.580907][T11940] swapcached 0
[ 3182.580907][T11940] anon_thp 0
[ 3182.580907][T11940] file_thp 0
[ 3182.580907][T11940] shmem_thp 0
[ 3182.580907][T11940] inactive_anon 114688
[ 3182.580907][T11940] active_anon 425984
[ 3182.580907][T11940] inactive_file 0
[ 3182.580907][T11940] active_file 0
[ 3182.580907][T11940] unevictable 0
[ 3182.580907][T11940] slab_reclaimable 22640
[ 3182.580907][T11940] slab_unreclaimable 308208888
[ 3182.678113][T11940] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=11935,uid=0
[ 3182.695770][T11940] Memory cgroup out of memory: Killed process 11935 (syz-executor.4) total-vm:56720kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3182.743839][T11946] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3182.754638][T11946] CPU: 1 PID: 11946 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3182.763339][T11946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3182.773413][T11946] Call Trace:
[ 3182.776717][T11946]  <TASK>
[ 3182.779653][T11946]  dump_stack_lvl+0xd1/0x138
[ 3182.784243][T11946]  dump_header+0x10b/0x85f
[ 3182.788687][T11946]  oom_kill_process.cold+0x10/0x15
[ 3182.793807][T11946]  out_of_memory+0x35c/0x14a0
[ 3182.798485][T11946]  ? find_held_lock+0x2d/0x110
[ 3182.803244][T11946]  ? oom_killer_disable+0x280/0x280
[ 3182.808463][T11946]  ? find_held_lock+0x2d/0x110
[ 3182.813265][T11946]  mem_cgroup_out_of_memory+0x206/0x270
[ 3182.818846][T11946]  ? mem_cgroup_margin+0x130/0x130
[ 3182.823985][T11946]  ? lock_downgrade+0x6e0/0x6e0
[ 3182.828881][T11946]  try_charge_memcg+0xefb/0x12f0
[ 3182.833857][T11946]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3182.839852][T11946]  ? lock_downgrade+0x6e0/0x6e0
[ 3182.844701][T11946]  charge_memcg+0x90/0x3b0
[ 3182.849110][T11946]  __mem_cgroup_charge+0x2b/0x90
[ 3182.854042][T11946]  do_wp_page+0x7ec/0x3370
[ 3182.858478][T11946]  ? lock_release+0x810/0x810
[ 3182.863179][T11946]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3182.868577][T11946]  ? do_raw_spin_lock+0x124/0x2b0
[ 3182.873610][T11946]  ? rwlock_bug.part.0+0x90/0x90
[ 3182.878554][T11946]  ? lock_chain_count+0x20/0x20
[ 3182.883412][T11946]  __handle_mm_fault+0x1f58/0x3c90
[ 3182.888547][T11946]  ? vm_iomap_memory+0x190/0x190
[ 3182.893520][T11946]  handle_mm_fault+0x1b6/0x850
[ 3182.898300][T11946]  do_user_addr_fault+0x475/0x1210
[ 3182.903428][T11946]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3182.908992][T11946]  exc_page_fault+0x98/0x170
[ 3182.913592][T11946]  asm_exc_page_fault+0x26/0x30
[ 3182.918450][T11946] RIP: 0033:0x7fde80a39570
[ 3182.922869][T11946] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3182.942477][T11946] RSP: 002b:00007ffd6245db10 EFLAGS: 00010246
[ 3182.948548][T11946] RAX: 00000000213ae1be RBX: 00007fde80bac018 RCX: 0000001b32820000
10:32:23 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000f0000000000000000000500010006"], 0x1c}}, 0x0)

10:32:23 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706037fffffff0000000000000000000500010006"], 0x1c}}, 0x0)

10:32:23 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x80fe, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:23 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x400300}}], 0x2, 0x0)

10:32:23 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x7a00)

[ 3182.956520][T11946] RDX: 0000000000000000 RSI: 0000001b32820018 RDI: 000000000a2028c9
[ 3182.964497][T11946] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3182.972470][T11946] R10: 00007ffd6245dcd0 R11: 0000000000000246 R12: 00007fde80ba0000
[ 3182.980441][T11946] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3182.988421][T11946]  ? security_socket_create+0x3f/0xc0
[ 3182.993831][T11946]  </TASK>
[ 3183.002209][T11946] memory: usage 307200kB, limit 307200kB, failcnt 35270
[ 3183.009511][T11946] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
10:32:23 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xad0004}}], 0x2, 0x0)

[ 3183.052861][T11946] Memory cgroup stats for /syz2:
[ 3183.053049][T11946] anon 118784
[ 3183.053049][T11946] file 307200
[ 3183.053049][T11946] kernel 314122240
[ 3183.053049][T11946] kernel_stack 65536
[ 3183.053049][T11946] pagetables 77824
[ 3183.053049][T11946] sec_pagetables 0
[ 3183.053049][T11946] percpu 5433504
[ 3183.053049][T11946] sock 0
[ 3183.053049][T11946] vmalloc 16384
[ 3183.053049][T11946] shmem 307200
[ 3183.053049][T11946] zswap 0
[ 3183.053049][T11946] zswapped 0
[ 3183.053049][T11946] file_mapped 299008
10:32:23 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706039effffff0000000000000000000500010006"], 0x1c}}, 0x0)

10:32:23 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xaa05, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3183.053049][T11946] file_dirty 0
[ 3183.053049][T11946] file_writeback 0
[ 3183.053049][T11946] swapcached 0
[ 3183.053049][T11946] anon_thp 0
[ 3183.053049][T11946] file_thp 0
[ 3183.053049][T11946] shmem_thp 0
[ 3183.053049][T11946] inactive_anon 126976
[ 3183.053049][T11946] active_anon 299008
[ 3183.053049][T11946] inactive_file 0
[ 3183.053049][T11946] active_file 0
[ 3183.053049][T11946] unevictable 0
[ 3183.053049][T11946] slab_reclaimable 112984
[ 3183.053049][T11946] slab_unreclaimable 308382424
[ 3183.199310][T11946] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11946,uid=0
[ 3183.228778][T11946] Memory cgroup out of memory: Killed process 11946 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
10:32:24 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfb000000}, 0x0)

10:32:24 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x1000000}}], 0x2, 0x0)

10:32:24 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xb80b, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:24 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603f0ffffff0000000000000000000500010006"], 0x1c}}, 0x0)

[ 3183.268022][T11962] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3183.306778][T11962] CPU: 1 PID: 11962 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3183.315512][T11962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3183.325591][T11962] Call Trace:
[ 3183.328889][T11962]  <TASK>
[ 3183.331843][T11962]  dump_stack_lvl+0xd1/0x138
[ 3183.336484][T11962]  dump_header+0x10b/0x85f
[ 3183.340951][T11962]  oom_kill_process.cold+0x10/0x15
[ 3183.346115][T11962]  out_of_memory+0x35c/0x14a0
[ 3183.350851][T11962]  ? oom_killer_disable+0x280/0x280
[ 3183.356105][T11962]  ? find_held_lock+0x2d/0x110
[ 3183.360915][T11962]  mem_cgroup_out_of_memory+0x206/0x270
[ 3183.366505][T11962]  ? mem_cgroup_margin+0x130/0x130
[ 3183.371653][T11962]  ? lock_downgrade+0x6e0/0x6e0
[ 3183.376547][T11962]  try_charge_memcg+0xefb/0x12f0
[ 3183.381530][T11962]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3183.387544][T11962]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3183.393310][T11962]  ? lock_downgrade+0x6e0/0x6e0
[ 3183.398200][T11962]  ? lock_downgrade+0x6e0/0x6e0
[ 3183.403095][T11962]  obj_cgroup_charge+0x2af/0x5e0
[ 3183.408072][T11962]  kmem_cache_alloc_lru+0x145/0x760
[ 3183.413296][T11962]  ? sock_alloc_inode+0x27/0x1d0
[ 3183.418301][T11962]  sock_alloc_inode+0x27/0x1d0
[ 3183.423099][T11962]  ? sock_free_inode+0x30/0x30
[ 3183.427905][T11962]  alloc_inode+0x61/0x230
[ 3183.432277][T11962]  new_inode_pseudo+0x17/0x80
[ 3183.436982][T11962]  sock_alloc+0x40/0x260
[ 3183.441222][T11962]  __sock_create+0xbd/0x790
[ 3183.445727][T11962]  __sys_socket+0x133/0x250
[ 3183.450225][T11962]  ? __sys_socket_file+0x1f0/0x1f0
[ 3183.455359][T11962]  __x64_sys_socket+0x73/0xb0
[ 3183.460072][T11962]  do_syscall_64+0x39/0xb0
[ 3183.464523][T11962]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3183.470440][T11962] RIP: 0033:0x7f36ee08c0c9
[ 3183.474869][T11962] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3183.494471][T11962] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3183.502901][T11962] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3183.510879][T11962] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3183.518875][T11962] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3183.526866][T11962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3183.534829][T11962] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3183.542808][T11962]  </TASK>
[ 3183.549321][T11962] memory: usage 307200kB, limit 307200kB, failcnt 28806
[ 3183.556479][T11962] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3183.563479][T11962] Memory cgroup stats for /syz5:
[ 3183.563682][T11962] anon 94208
[ 3183.563682][T11962] file 425984
[ 3183.563682][T11962] kernel 314052608
[ 3183.563682][T11962] kernel_stack 65536
[ 3183.563682][T11962] pagetables 77824
[ 3183.563682][T11962] sec_pagetables 0
[ 3183.563682][T11962] percpu 5429952
[ 3183.563682][T11962] sock 0
[ 3183.563682][T11962] vmalloc 8192
[ 3183.563682][T11962] shmem 425984
[ 3183.563682][T11962] zswap 0
[ 3183.563682][T11962] zswapped 0
[ 3183.563682][T11962] file_mapped 393216
[ 3183.563682][T11962] file_dirty 0
[ 3183.563682][T11962] file_writeback 0
[ 3183.563682][T11962] swapcached 0
[ 3183.563682][T11962] anon_thp 0
[ 3183.563682][T11962] file_thp 0
[ 3183.563682][T11962] shmem_thp 0
[ 3183.563682][T11962] inactive_anon 221184
[ 3183.563682][T11962] active_anon 299008
[ 3183.563682][T11962] inactive_file 0
[ 3183.563682][T11962] active_file 0
[ 3183.563682][T11962] unevictable 0
[ 3183.563682][T11962] slab_reclaimable 216400
[ 3183.563682][T11962] slab_unreclaimable 308217872
[ 3183.659434][T11962] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=11953,uid=0
[ 3183.685384][T11962] Memory cgroup out of memory: Killed process 11953 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3183.714165][T11973] syz-executor.2 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3183.723964][T11962] socket: no more sockets
[ 3183.738088][T11973] CPU: 1 PID: 11973 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3183.746811][T11973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3183.756896][T11973] Call Trace:
[ 3183.760198][T11973]  <TASK>
[ 3183.763154][T11973]  dump_stack_lvl+0xd1/0x138
[ 3183.767779][T11973]  dump_header+0x10b/0x85f
[ 3183.772201][T11973]  oom_kill_process.cold+0x10/0x15
[ 3183.777314][T11973]  out_of_memory+0x35c/0x14a0
[ 3183.782008][T11973]  ? find_held_lock+0x2d/0x110
[ 3183.786784][T11973]  ? oom_killer_disable+0x280/0x280
[ 3183.792033][T11973]  ? find_held_lock+0x2d/0x110
[ 3183.796848][T11973]  mem_cgroup_out_of_memory+0x206/0x270
[ 3183.802431][T11973]  ? mem_cgroup_margin+0x130/0x130
[ 3183.807574][T11973]  ? lock_downgrade+0x6e0/0x6e0
[ 3183.812448][T11973]  try_charge_memcg+0xefb/0x12f0
[ 3183.817389][T11973]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3183.823361][T11973]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3183.829079][T11973]  ? lock_downgrade+0x6e0/0x6e0
[ 3183.833923][T11973]  ? lock_downgrade+0x6e0/0x6e0
[ 3183.838799][T11973]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3183.844377][T11973]  __alloc_pages+0x1f3/0x5b0
[ 3183.848983][T11973]  ? __alloc_pages_slowpath.constprop.0+0x23d0/0x23d0
[ 3183.855802][T11973]  alloc_pages+0x1aa/0x270
[ 3183.860232][T11973]  __pmd_alloc+0x3f/0x5d0
[ 3183.864578][T11973]  __handle_mm_fault+0x932/0x3c90
[ 3183.869623][T11973]  ? vm_iomap_memory+0x190/0x190
[ 3183.874608][T11973]  handle_mm_fault+0x1b6/0x850
[ 3183.879394][T11973]  do_user_addr_fault+0x475/0x1210
[ 3183.884519][T11973]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3183.890085][T11973]  exc_page_fault+0x98/0x170
[ 3183.894685][T11973]  asm_exc_page_fault+0x26/0x30
[ 3183.899543][T11973] RIP: 0033:0x7fde80a2bd49
[ 3183.903960][T11973] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3183.923573][T11973] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3183.929670][T11973] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3183.937642][T11973] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3183.945615][T11973] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3183.953586][T11973] R10: 00007fde80600068 R11: 0000000000000246 R12: 00000000003092d9
[ 3183.961565][T11973] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3183.969562][T11973]  </TASK>
[ 3183.978379][T11973] memory: usage 307200kB, limit 307200kB, failcnt 35342
[ 3183.985687][T11973] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3183.993766][T11973] Memory cgroup stats for /syz2:
[ 3183.993974][T11973] anon 131072
[ 3183.993974][T11973] file 307200
[ 3183.993974][T11973] kernel 314118144
[ 3183.993974][T11973] kernel_stack 65536
[ 3183.993974][T11973] pagetables 77824
[ 3183.993974][T11973] sec_pagetables 0
[ 3183.993974][T11973] percpu 5433504
[ 3183.993974][T11973] sock 0
[ 3183.993974][T11973] vmalloc 16384
[ 3183.993974][T11973] shmem 307200
[ 3183.993974][T11973] zswap 0
[ 3183.993974][T11973] zswapped 0
[ 3183.993974][T11973] file_mapped 299008
[ 3183.993974][T11973] file_dirty 0
[ 3183.993974][T11973] file_writeback 0
[ 3183.993974][T11973] swapcached 0
[ 3183.993974][T11973] anon_thp 0
[ 3183.993974][T11973] file_thp 0
[ 3183.993974][T11973] shmem_thp 0
[ 3183.993974][T11973] inactive_anon 139264
[ 3183.993974][T11973] active_anon 299008
[ 3183.993974][T11973] inactive_file 0
[ 3183.993974][T11973] active_file 0
[ 3183.993974][T11973] unevictable 0
[ 3183.993974][T11973] slab_reclaimable 112984
[ 3183.993974][T11973] slab_unreclaimable 308384672
[ 3184.089321][T11973] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11973,uid=0
[ 3184.111390][T11973] Memory cgroup out of memory: Killed process 11973 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 3184.129177][T11959] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3184.142418][T11959] CPU: 1 PID: 11959 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3184.151132][T11959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3184.161211][T11959] Call Trace:
[ 3184.164508][T11959]  <TASK>
[ 3184.167459][T11959]  dump_stack_lvl+0xd1/0x138
[ 3184.172085][T11959]  dump_header+0x10b/0x85f
[ 3184.176532][T11959]  oom_kill_process.cold+0x10/0x15
[ 3184.181691][T11959]  out_of_memory+0x35c/0x14a0
[ 3184.186418][T11959]  ? oom_killer_disable+0x280/0x280
[ 3184.191659][T11959]  ? find_held_lock+0x2d/0x110
[ 3184.196468][T11959]  mem_cgroup_out_of_memory+0x206/0x270
[ 3184.202061][T11959]  ? mem_cgroup_margin+0x130/0x130
[ 3184.207207][T11959]  ? lock_downgrade+0x6e0/0x6e0
[ 3184.212100][T11959]  try_charge_memcg+0xefb/0x12f0
[ 3184.217076][T11959]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3184.223095][T11959]  ? lock_downgrade+0x6e0/0x6e0
[ 3184.227992][T11959]  charge_memcg+0x90/0x3b0
[ 3184.232454][T11959]  __mem_cgroup_charge+0x2b/0x90
[ 3184.237423][T11959]  do_wp_page+0x7ec/0x3370
[ 3184.241876][T11959]  ? lock_release+0x810/0x810
[ 3184.246575][T11959]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3184.251983][T11959]  ? do_raw_spin_lock+0x124/0x2b0
[ 3184.257038][T11959]  ? rwlock_bug.part.0+0x90/0x90
[ 3184.262001][T11959]  ? lock_chain_count+0x20/0x20
[ 3184.266880][T11959]  __handle_mm_fault+0x1f58/0x3c90
[ 3184.272035][T11959]  ? vm_iomap_memory+0x190/0x190
[ 3184.277042][T11959]  handle_mm_fault+0x1b6/0x850
[ 3184.281855][T11959]  do_user_addr_fault+0x475/0x1210
[ 3184.286998][T11959]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3184.292584][T11959]  exc_page_fault+0x98/0x170
[ 3184.297214][T11959]  asm_exc_page_fault+0x26/0x30
[ 3184.302103][T11959] RIP: 0033:0x7fbb9f039570
[ 3184.306538][T11959] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3184.326169][T11959] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3184.332260][T11959] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3184.340258][T11959] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3184.348251][T11959] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3184.356244][T11959] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3184.364241][T11959] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3184.372233][T11959]  ? security_socket_create+0x3f/0xc0
[ 3184.377678][T11959]  </TASK>
[ 3184.384551][T11959] memory: usage 307200kB, limit 307200kB, failcnt 152836
[ 3184.391611][T11959] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3184.402788][T11959] Memory cgroup stats for /syz4:
[ 3184.402993][T11959] anon 118784
[ 3184.402993][T11959] file 438272
[ 3184.402993][T11959] kernel 314011648
[ 3184.402993][T11959] kernel_stack 65536
[ 3184.402993][T11959] pagetables 73728
[ 3184.402993][T11959] sec_pagetables 0
[ 3184.402993][T11959] percpu 5617024
[ 3184.402993][T11959] sock 4096
[ 3184.402993][T11959] vmalloc 0
[ 3184.402993][T11959] shmem 438272
[ 3184.402993][T11959] zswap 0
[ 3184.402993][T11959] zswapped 0
[ 3184.402993][T11959] file_mapped 393216
[ 3184.402993][T11959] file_dirty 0
[ 3184.402993][T11959] file_writeback 0
[ 3184.402993][T11959] swapcached 0
[ 3184.402993][T11959] anon_thp 0
[ 3184.402993][T11959] file_thp 0
[ 3184.402993][T11959] shmem_thp 0
[ 3184.402993][T11959] inactive_anon 131072
[ 3184.402993][T11959] active_anon 425984
[ 3184.402993][T11959] inactive_file 0
[ 3184.402993][T11959] active_file 0
[ 3184.402993][T11959] unevictable 0
[ 3184.402993][T11959] slab_reclaimable 23024
[ 3184.402993][T11959] slab_unreclaimable 308200776
[ 3184.497752][T11959] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=11959,uid=0
10:32:25 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706039effffff0000000000000000000500010006"], 0x1c}}, 0x0)

10:32:25 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xe803, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:25 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000008001000000000000000500010006"], 0x1c}}, 0x0)

10:32:25 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x2000000}}], 0x2, 0x0)

10:32:25 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x8100)

10:32:25 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfb020000}, 0x0)

[ 3184.517892][T11959] Memory cgroup out of memory: Killed process 11959 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:25 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xf401, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:25 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x3000000}}], 0x2, 0x0)

10:32:25 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000010000000000000500010006"], 0x1c}}, 0x0)

[ 3184.651689][T11979] syz-executor.2 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3184.674881][T11979] CPU: 1 PID: 11979 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3184.683606][T11979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3184.693684][T11979] Call Trace:
[ 3184.696980][T11979]  <TASK>
[ 3184.699936][T11979]  dump_stack_lvl+0xd1/0x138
[ 3184.704566][T11979]  dump_header+0x10b/0x85f
[ 3184.709035][T11979]  oom_kill_process.cold+0x10/0x15
[ 3184.714191][T11979]  out_of_memory+0x35c/0x14a0
[ 3184.718935][T11979]  ? find_held_lock+0x2d/0x110
[ 3184.723722][T11979]  ? oom_killer_disable+0x280/0x280
[ 3184.728970][T11979]  ? find_held_lock+0x2d/0x110
[ 3184.733750][T11979]  mem_cgroup_out_of_memory+0x206/0x270
[ 3184.739315][T11979]  ? mem_cgroup_margin+0x130/0x130
[ 3184.744437][T11979]  ? lock_downgrade+0x6e0/0x6e0
[ 3184.749314][T11979]  try_charge_memcg+0xefb/0x12f0
[ 3184.754276][T11979]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3184.760268][T11979]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3184.766001][T11979]  ? lock_downgrade+0x6e0/0x6e0
[ 3184.770869][T11979]  ? lock_downgrade+0x6e0/0x6e0
[ 3184.775738][T11979]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3184.781298][T11979]  __alloc_pages+0x1f3/0x5b0
[ 3184.785900][T11979]  ? __alloc_pages_slowpath.constprop.0+0x23d0/0x23d0
[ 3184.792692][T11979]  alloc_pages+0x1aa/0x270
[ 3184.797119][T11979]  __pmd_alloc+0x3f/0x5d0
[ 3184.801555][T11979]  __handle_mm_fault+0x932/0x3c90
[ 3184.806601][T11979]  ? vm_iomap_memory+0x190/0x190
[ 3184.811574][T11979]  handle_mm_fault+0x1b6/0x850
[ 3184.816379][T11979]  do_user_addr_fault+0x475/0x1210
[ 3184.821507][T11979]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3184.827072][T11979]  exc_page_fault+0x98/0x170
[ 3184.831672][T11979]  asm_exc_page_fault+0x26/0x30
[ 3184.836529][T11979] RIP: 0033:0x7fde80a2bd49
[ 3184.840945][T11979] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3184.860553][T11979] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3184.866624][T11979] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3184.874597][T11979] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3184.882585][T11979] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3184.890556][T11979] R10: 00007fde80600068 R11: 0000000000000246 R12: 00000000003097ab
[ 3184.898530][T11979] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3184.906518][T11979]  </TASK>
10:32:25 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000040000000000000500010006"], 0x1c}}, 0x0)

10:32:25 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x4000000}}], 0x2, 0x0)

10:32:25 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xfe80, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3184.979794][T11979] memory: usage 307200kB, limit 307200kB, failcnt 35399
[ 3185.005793][T11979] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3185.025212][T11979] Memory cgroup stats for /syz2:
[ 3185.025421][T11979] anon 131072
[ 3185.025421][T11979] file 307200
[ 3185.025421][T11979] kernel 314134528
[ 3185.025421][T11979] kernel_stack 65536
[ 3185.025421][T11979] pagetables 77824
[ 3185.025421][T11979] sec_pagetables 0
[ 3185.025421][T11979] percpu 5433568
[ 3185.025421][T11979] sock 0
[ 3185.025421][T11979] vmalloc 16384
[ 3185.025421][T11979] shmem 307200
[ 3185.025421][T11979] zswap 0
[ 3185.025421][T11979] zswapped 0
[ 3185.025421][T11979] file_mapped 299008
[ 3185.025421][T11979] file_dirty 0
[ 3185.025421][T11979] file_writeback 0
[ 3185.025421][T11979] swapcached 0
[ 3185.025421][T11979] anon_thp 0
[ 3185.025421][T11979] file_thp 0
[ 3185.025421][T11979] shmem_thp 0
[ 3185.025421][T11979] inactive_anon 139264
[ 3185.025421][T11979] active_anon 299008
[ 3185.025421][T11979] inactive_file 0
[ 3185.025421][T11979] active_file 0
[ 3185.025421][T11979] unevictable 0
[ 3185.025421][T11979] slab_reclaimable 112984
[ 3185.025421][T11979] slab_unreclaimable 308393904
[ 3185.144746][T11979] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11979,uid=0
[ 3185.161960][T11979] Memory cgroup out of memory: Killed process 11979 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
10:32:26 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706039effffff0000000000000000000500010006"], 0x1c}}, 0x0)

10:32:26 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x400ad00}}], 0x2, 0x0)

10:32:26 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xff00, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:26 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000003400000000000000500010006"], 0x1c}}, 0x0)

10:32:26 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfb2c0400}, 0x0)

10:32:26 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x8603)

[ 3185.180540][T11985] Memory cgroup out of memory: Killed process 11978 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3185.205326][T11984] Memory cgroup out of memory: Killed process 11984 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:26 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x5000000}}], 0x2, 0x0)

10:32:26 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603fffffffffffff00000000000000500010006"], 0x1c}}, 0x0)

10:32:26 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xff02, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:26 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000100000000000500010006"], 0x1c}}, 0x0)

10:32:26 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x6000000}}], 0x2, 0x0)

10:32:26 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x34000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3185.416889][T12005] Memory cgroup out of memory: Killed process 12005 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
10:32:26 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfc2c0400}, 0x0)

[ 3185.477253][T12006] oom_kill_process: 3 callbacks suppressed
[ 3185.477271][T12006] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3185.519354][T12006] CPU: 1 PID: 12006 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3185.528090][T12006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3185.538183][T12006] Call Trace:
[ 3185.541485][T12006]  <TASK>
[ 3185.544439][T12006]  dump_stack_lvl+0xd1/0x138
[ 3185.549061][T12006]  dump_header+0x10b/0x85f
[ 3185.553506][T12006]  oom_kill_process.cold+0x10/0x15
[ 3185.558663][T12006]  out_of_memory+0x35c/0x14a0
[ 3185.563391][T12006]  ? oom_killer_disable+0x280/0x280
[ 3185.568634][T12006]  ? find_held_lock+0x2d/0x110
[ 3185.573438][T12006]  mem_cgroup_out_of_memory+0x206/0x270
[ 3185.579027][T12006]  ? mem_cgroup_margin+0x130/0x130
[ 3185.584180][T12006]  ? lock_downgrade+0x6e0/0x6e0
[ 3185.589082][T12006]  try_charge_memcg+0xefb/0x12f0
[ 3185.594067][T12006]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3185.600117][T12006]  ? lock_downgrade+0x6e0/0x6e0
[ 3185.605025][T12006]  charge_memcg+0x90/0x3b0
[ 3185.609479][T12006]  __mem_cgroup_charge+0x2b/0x90
[ 3185.614449][T12006]  do_wp_page+0x7ec/0x3370
[ 3185.618903][T12006]  ? lock_release+0x810/0x810
[ 3185.623622][T12006]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3185.629011][T12006]  ? do_raw_spin_lock+0x124/0x2b0
[ 3185.634054][T12006]  ? rwlock_bug.part.0+0x90/0x90
[ 3185.639112][T12006]  ? lock_chain_count+0x20/0x20
[ 3185.643967][T12006]  __handle_mm_fault+0x1f58/0x3c90
[ 3185.649105][T12006]  ? vm_iomap_memory+0x190/0x190
[ 3185.654083][T12006]  handle_mm_fault+0x1b6/0x850
[ 3185.658908][T12006]  do_user_addr_fault+0x475/0x1210
[ 3185.664028][T12006]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3185.669591][T12006]  exc_page_fault+0x98/0x170
[ 3185.674197][T12006]  asm_exc_page_fault+0x26/0x30
[ 3185.679049][T12006] RIP: 0033:0x7fbb9f039570
[ 3185.683466][T12006] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3185.703074][T12006] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3185.709157][T12006] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3185.717152][T12006] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3185.725149][T12006] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3185.733144][T12006] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3185.741175][T12006] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3185.749170][T12006]  ? __sys_socket+0x7c/0x250
[ 3185.753818][T12006]  </TASK>
[ 3185.779721][T12006] memory: usage 307200kB, limit 307200kB, failcnt 153036
[ 3185.787462][T12006] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3185.794446][T12006] Memory cgroup stats for /syz4:
[ 3185.794658][T12006] anon 102400
[ 3185.794658][T12006] file 438272
[ 3185.794658][T12006] kernel 314028032
[ 3185.794658][T12006] kernel_stack 65536
[ 3185.794658][T12006] pagetables 73728
[ 3185.794658][T12006] sec_pagetables 0
[ 3185.794658][T12006] percpu 5617088
[ 3185.794658][T12006] sock 4096
[ 3185.794658][T12006] vmalloc 0
[ 3185.794658][T12006] shmem 438272
[ 3185.794658][T12006] zswap 0
[ 3185.794658][T12006] zswapped 0
[ 3185.794658][T12006] file_mapped 393216
[ 3185.794658][T12006] file_dirty 0
[ 3185.794658][T12006] file_writeback 0
[ 3185.794658][T12006] swapcached 0
[ 3185.794658][T12006] anon_thp 0
[ 3185.794658][T12006] file_thp 0
[ 3185.794658][T12006] shmem_thp 0
[ 3185.794658][T12006] inactive_anon 114688
[ 3185.794658][T12006] active_anon 425984
[ 3185.794658][T12006] inactive_file 0
[ 3185.794658][T12006] active_file 0
[ 3185.794658][T12006] unevictable 0
10:32:26 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706039effffff0000000000000000000500010006"], 0x1c}}, 0x0)

10:32:26 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x100000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:26 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000200000000000500010006"], 0x1c}}, 0x0)

10:32:26 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x7000000}}], 0x2, 0x0)

[ 3185.794658][T12006] slab_reclaimable 23024
[ 3185.794658][T12006] slab_unreclaimable 308212560
[ 3185.894190][T12006] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12006,uid=0
[ 3185.910159][T12006] Memory cgroup out of memory: Killed process 12006 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3186.008288][T12022] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3186.064414][T12022] CPU: 0 PID: 12022 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3186.073153][T12022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3186.083233][T12022] Call Trace:
[ 3186.086519][T12022]  <TASK>
[ 3186.089442][T12022]  dump_stack_lvl+0xd1/0x138
[ 3186.094032][T12022]  dump_header+0x10b/0x85f
[ 3186.098457][T12022]  oom_kill_process.cold+0x10/0x15
[ 3186.103563][T12022]  out_of_memory+0x35c/0x14a0
[ 3186.108258][T12022]  ? find_held_lock+0x2d/0x110
[ 3186.113028][T12022]  ? oom_killer_disable+0x280/0x280
[ 3186.118237][T12022]  ? find_held_lock+0x2d/0x110
[ 3186.123005][T12022]  mem_cgroup_out_of_memory+0x206/0x270
[ 3186.128584][T12022]  ? mem_cgroup_margin+0x130/0x130
[ 3186.133738][T12022]  ? lock_downgrade+0x6e0/0x6e0
[ 3186.138649][T12022]  try_charge_memcg+0xefb/0x12f0
[ 3186.143634][T12022]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3186.149647][T12022]  ? lock_downgrade+0x6e0/0x6e0
[ 3186.154502][T12022]  charge_memcg+0x90/0x3b0
[ 3186.158919][T12022]  __mem_cgroup_charge+0x2b/0x90
[ 3186.163946][T12022]  do_wp_page+0x7ec/0x3370
[ 3186.168367][T12022]  ? lock_release+0x810/0x810
[ 3186.173061][T12022]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3186.178460][T12022]  ? do_raw_spin_lock+0x124/0x2b0
[ 3186.183502][T12022]  ? rwlock_bug.part.0+0x90/0x90
[ 3186.188454][T12022]  ? lock_chain_count+0x20/0x20
[ 3186.193318][T12022]  __handle_mm_fault+0x1f58/0x3c90
[ 3186.198456][T12022]  ? vm_iomap_memory+0x190/0x190
[ 3186.203438][T12022]  handle_mm_fault+0x1b6/0x850
[ 3186.208228][T12022]  do_user_addr_fault+0x475/0x1210
[ 3186.213361][T12022]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3186.219022][T12022]  exc_page_fault+0x98/0x170
[ 3186.223715][T12022]  asm_exc_page_fault+0x26/0x30
[ 3186.228580][T12022] RIP: 0033:0x7fde80a39570
[ 3186.233001][T12022] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3186.252857][T12022] RSP: 002b:00007ffd6245db10 EFLAGS: 00010246
[ 3186.258936][T12022] RAX: 000000000cb6f9d9 RBX: 00007fde80bac018 RCX: 0000001b32820000
[ 3186.266913][T12022] RDX: 0000000000000000 RSI: 0000001b32820018 RDI: 000000000c5b1b00
[ 3186.275237][T12022] RBP: 000000000cb6f9d9 R08: 00000000000019d9 R09: 000000000cb6f9dd
[ 3186.283214][T12022] R10: 00007ffd6245dcd0 R11: 0000000000000246 R12: 00007fde80ba0000
[ 3186.291191][T12022] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff87beef82
[ 3186.299167][T12022]  ? __sock_create+0x62/0x790
[ 3186.303914][T12022]  </TASK>
[ 3186.317911][T12022] memory: usage 307200kB, limit 307200kB, failcnt 35606
[ 3186.325647][T12022] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3186.332720][T12022] Memory cgroup stats for /syz2:
[ 3186.332940][T12022] anon 114688
[ 3186.332940][T12022] file 307200
[ 3186.332940][T12022] kernel 314134528
[ 3186.332940][T12022] kernel_stack 65536
[ 3186.332940][T12022] pagetables 77824
[ 3186.332940][T12022] sec_pagetables 0
[ 3186.332940][T12022] percpu 5433568
[ 3186.332940][T12022] sock 0
[ 3186.332940][T12022] vmalloc 16384
[ 3186.332940][T12022] shmem 307200
[ 3186.332940][T12022] zswap 0
[ 3186.332940][T12022] zswapped 0
[ 3186.332940][T12022] file_mapped 299008
[ 3186.332940][T12022] file_dirty 0
[ 3186.332940][T12022] file_writeback 0
[ 3186.332940][T12022] swapcached 0
[ 3186.332940][T12022] anon_thp 0
[ 3186.332940][T12022] file_thp 0
[ 3186.332940][T12022] shmem_thp 0
[ 3186.332940][T12022] inactive_anon 122880
[ 3186.332940][T12022] active_anon 299008
[ 3186.332940][T12022] inactive_file 0
[ 3186.332940][T12022] active_file 0
[ 3186.332940][T12022] unevictable 0
[ 3186.332940][T12022] slab_reclaimable 112984
[ 3186.332940][T12022] slab_unreclaimable 308394208
[ 3186.432849][T12022] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12022,uid=0
[ 3186.451347][T12022] Memory cgroup out of memory: Killed process 12022 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 3186.469276][T12007] syz-executor.5 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3186.481752][T12007] CPU: 0 PID: 12007 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3186.490460][T12007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3186.500537][T12007] Call Trace:
[ 3186.503834][T12007]  <TASK>
[ 3186.506774][T12007]  dump_stack_lvl+0xd1/0x138
[ 3186.511365][T12007]  dump_header+0x10b/0x85f
[ 3186.515785][T12007]  oom_kill_process.cold+0x10/0x15
[ 3186.520896][T12007]  out_of_memory+0x35c/0x14a0
[ 3186.525583][T12007]  ? oom_killer_disable+0x280/0x280
[ 3186.530780][T12007]  ? find_held_lock+0x2d/0x110
[ 3186.535564][T12007]  mem_cgroup_out_of_memory+0x206/0x270
[ 3186.541157][T12007]  ? mem_cgroup_margin+0x130/0x130
[ 3186.546304][T12007]  ? lock_downgrade+0x6e0/0x6e0
[ 3186.551193][T12007]  try_charge_memcg+0xefb/0x12f0
[ 3186.556169][T12007]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3186.562171][T12007]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3186.567914][T12007]  ? lock_downgrade+0x6e0/0x6e0
[ 3186.572773][T12007]  ? lock_downgrade+0x6e0/0x6e0
[ 3186.577634][T12007]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3186.583207][T12007]  __alloc_pages+0x1f3/0x5b0
[ 3186.587818][T12007]  ? __alloc_pages_slowpath.constprop.0+0x23d0/0x23d0
[ 3186.594616][T12007]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3186.600651][T12007]  alloc_pages+0x1aa/0x270
[ 3186.605112][T12007]  __pmd_alloc+0x3f/0x5d0
[ 3186.609447][T12007]  __handle_mm_fault+0x932/0x3c90
[ 3186.614472][T12007]  ? vm_iomap_memory+0x190/0x190
[ 3186.619435][T12007]  ? __rcu_read_unlock+0x2a0/0x5b0
[ 3186.624559][T12007]  handle_mm_fault+0x1b6/0x850
[ 3186.629333][T12007]  do_user_addr_fault+0x475/0x1210
[ 3186.634458][T12007]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3186.640059][T12007]  exc_page_fault+0x98/0x170
[ 3186.644681][T12007]  asm_exc_page_fault+0x26/0x30
[ 3186.649559][T12007] RIP: 0033:0x7f36ee02bd49
[ 3186.654020][T12007] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3186.673651][T12007] RSP: 002b:00007ffc6b5fd870 EFLAGS: 00010246
[ 3186.679713][T12007] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3186.687693][T12007] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005555568372e8
[ 3186.695685][T12007] RBP: 00007ffc6b5fd968 R08: 0000000000000000 R09: 0000000000000000
[ 3186.703664][T12007] R10: 00007f36edc00068 R11: 000000000008b202 R12: 0000000000309ced
[ 3186.711627][T12007] R13: 00007ffc6b5fd990 R14: 00007ffc6b5fd9b0 R15: 0000000000000032
[ 3186.719605][T12007]  </TASK>
[ 3186.726859][T12007] memory: usage 307200kB, limit 307200kB, failcnt 29108
[ 3186.735397][T12007] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3186.742426][T12007] Memory cgroup stats for /syz5:
[ 3186.742634][T12007] anon 94208
[ 3186.742634][T12007] file 425984
[ 3186.742634][T12007] kernel 314052608
[ 3186.742634][T12007] kernel_stack 65536
[ 3186.742634][T12007] pagetables 77824
[ 3186.742634][T12007] sec_pagetables 0
[ 3186.742634][T12007] percpu 5429952
[ 3186.742634][T12007] sock 0
[ 3186.742634][T12007] vmalloc 8192
[ 3186.742634][T12007] shmem 425984
[ 3186.742634][T12007] zswap 0
[ 3186.742634][T12007] zswapped 0
[ 3186.742634][T12007] file_mapped 393216
[ 3186.742634][T12007] file_dirty 0
[ 3186.742634][T12007] file_writeback 0
[ 3186.742634][T12007] swapcached 0
[ 3186.742634][T12007] anon_thp 0
[ 3186.742634][T12007] file_thp 0
[ 3186.742634][T12007] shmem_thp 0
[ 3186.742634][T12007] inactive_anon 221184
[ 3186.742634][T12007] active_anon 299008
[ 3186.742634][T12007] inactive_file 0
[ 3186.742634][T12007] active_file 0
[ 3186.742634][T12007] unevictable 0
[ 3186.742634][T12007] slab_reclaimable 216400
[ 3186.742634][T12007] slab_unreclaimable 308217872
[ 3186.841313][T12007] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12007,uid=0
[ 3186.858075][T12007] Memory cgroup out of memory: Killed process 12007 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3186.887097][T12023] socket: no more sockets
10:32:27 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x8a02)

10:32:27 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000300000000000500010006"], 0x1c}}, 0x0)

10:32:27 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x400300, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:27 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x8000000}}], 0x2, 0x0)

10:32:27 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfcffffff}, 0x0)

[ 3186.919724][T12031] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3186.959557][T12031] CPU: 1 PID: 12031 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3186.968289][T12031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3186.978369][T12031] Call Trace:
[ 3186.981669][T12031]  <TASK>
[ 3186.984628][T12031]  dump_stack_lvl+0xd1/0x138
[ 3186.989259][T12031]  dump_header+0x10b/0x85f
[ 3186.993727][T12031]  oom_kill_process.cold+0x10/0x15
[ 3186.998893][T12031]  out_of_memory+0x35c/0x14a0
[ 3187.003623][T12031]  ? find_held_lock+0x2d/0x110
[ 3187.008434][T12031]  ? oom_killer_disable+0x280/0x280
[ 3187.013690][T12031]  ? find_held_lock+0x2d/0x110
[ 3187.018508][T12031]  mem_cgroup_out_of_memory+0x206/0x270
[ 3187.024108][T12031]  ? mem_cgroup_margin+0x130/0x130
[ 3187.029255][T12031]  ? lock_downgrade+0x6e0/0x6e0
[ 3187.034162][T12031]  try_charge_memcg+0xefb/0x12f0
[ 3187.039143][T12031]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3187.045166][T12031]  ? lock_downgrade+0x6e0/0x6e0
[ 3187.050076][T12031]  charge_memcg+0x90/0x3b0
[ 3187.054535][T12031]  __mem_cgroup_charge+0x2b/0x90
[ 3187.059502][T12031]  do_wp_page+0x7ec/0x3370
[ 3187.063941][T12031]  ? lock_release+0x810/0x810
[ 3187.068626][T12031]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3187.074039][T12031]  ? do_raw_spin_lock+0x124/0x2b0
[ 3187.079074][T12031]  ? rwlock_bug.part.0+0x90/0x90
[ 3187.084022][T12031]  ? lock_chain_count+0x20/0x20
[ 3187.088884][T12031]  __handle_mm_fault+0x1f58/0x3c90
[ 3187.094037][T12031]  ? vm_iomap_memory+0x190/0x190
[ 3187.099015][T12031]  handle_mm_fault+0x1b6/0x850
[ 3187.103799][T12031]  do_user_addr_fault+0x475/0x1210
[ 3187.108929][T12031]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3187.114500][T12031]  exc_page_fault+0x98/0x170
[ 3187.119120][T12031]  asm_exc_page_fault+0x26/0x30
[ 3187.123982][T12031] RIP: 0033:0x7fbb9f039570
[ 3187.128402][T12031] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3187.148111][T12031] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3187.154187][T12031] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3187.162165][T12031] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3187.170230][T12031] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3187.178207][T12031] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3187.186185][T12031] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3187.194161][T12031]  ? __sys_socket+0x7c/0x250
[ 3187.198788][T12031]  </TASK>
10:32:28 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x8c40e61}}], 0x2, 0x0)

10:32:28 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000400000000000500010006"], 0x1c}}, 0x0)

10:32:28 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x1000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3187.224317][T12031] memory: usage 307200kB, limit 307200kB, failcnt 153144
[ 3187.231393][T12031] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3187.303361][T12031] Memory cgroup stats for /syz4:
[ 3187.303582][T12031] anon 102400
[ 3187.303582][T12031] file 438272
[ 3187.303582][T12031] kernel 314011648
[ 3187.303582][T12031] kernel_stack 65536
[ 3187.303582][T12031] pagetables 73728
[ 3187.303582][T12031] sec_pagetables 0
[ 3187.303582][T12031] percpu 5617024
[ 3187.303582][T12031] sock 4096
[ 3187.303582][T12031] vmalloc 0
[ 3187.303582][T12031] shmem 438272
[ 3187.303582][T12031] zswap 0
[ 3187.303582][T12031] zswapped 0
[ 3187.303582][T12031] file_mapped 393216
[ 3187.303582][T12031] file_dirty 0
[ 3187.303582][T12031] file_writeback 0
[ 3187.303582][T12031] swapcached 0
[ 3187.303582][T12031] anon_thp 0
[ 3187.303582][T12031] file_thp 0
[ 3187.303582][T12031] shmem_thp 0
[ 3187.303582][T12031] inactive_anon 114688
[ 3187.303582][T12031] active_anon 425984
[ 3187.303582][T12031] inactive_file 0
[ 3187.303582][T12031] active_file 0
[ 3187.303582][T12031] unevictable 0
[ 3187.303582][T12031] slab_reclaimable 23024
[ 3187.303582][T12031] slab_unreclaimable 308200776
[ 3187.403891][T12031] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12031,uid=0
[ 3187.421764][T12031] Memory cgroup out of memory: Killed process 12031 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3187.442511][T12041] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3187.454146][T12041] CPU: 1 PID: 12041 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3187.462858][T12041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3187.472930][T12041] Call Trace:
[ 3187.476228][T12041]  <TASK>
[ 3187.479180][T12041]  dump_stack_lvl+0xd1/0x138
[ 3187.483809][T12041]  dump_header+0x10b/0x85f
[ 3187.488278][T12041]  oom_kill_process.cold+0x10/0x15
[ 3187.493443][T12041]  out_of_memory+0x35c/0x14a0
[ 3187.498178][T12041]  ? oom_killer_disable+0x280/0x280
[ 3187.503438][T12041]  ? find_held_lock+0x2d/0x110
[ 3187.508250][T12041]  mem_cgroup_out_of_memory+0x206/0x270
[ 3187.513838][T12041]  ? mem_cgroup_margin+0x130/0x130
[ 3187.519005][T12041]  ? lock_downgrade+0x6e0/0x6e0
[ 3187.526025][T12041]  try_charge_memcg+0xefb/0x12f0
[ 3187.531003][T12041]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3187.537027][T12041]  ? lock_downgrade+0x6e0/0x6e0
[ 3187.541924][T12041]  charge_memcg+0x90/0x3b0
[ 3187.546376][T12041]  __mem_cgroup_charge+0x2b/0x90
[ 3187.551343][T12041]  ? copy_mc_to_kernel+0x3e/0x90
[ 3187.556315][T12041]  do_wp_page+0x7ec/0x3370
[ 3187.560755][T12041]  ? lock_release+0x810/0x810
[ 3187.565439][T12041]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3187.570828][T12041]  ? do_raw_spin_lock+0x124/0x2b0
[ 3187.575866][T12041]  ? rwlock_bug.part.0+0x90/0x90
[ 3187.580843][T12041]  ? lock_chain_count+0x20/0x20
[ 3187.585714][T12041]  __handle_mm_fault+0x1f58/0x3c90
[ 3187.590851][T12041]  ? vm_iomap_memory+0x190/0x190
[ 3187.595833][T12041]  handle_mm_fault+0x1b6/0x850
[ 3187.600619][T12041]  do_user_addr_fault+0x475/0x1210
[ 3187.605748][T12041]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3187.611316][T12041]  exc_page_fault+0x98/0x170
[ 3187.615923][T12041]  asm_exc_page_fault+0x26/0x30
[ 3187.620782][T12041] RIP: 0033:0x7f36ee036645
[ 3187.625204][T12041] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
[ 3187.644836][T12041] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
10:32:28 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x8c40e61}}], 0x2, 0x0)

10:32:28 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x9000000}}], 0x2, 0x0)

10:32:28 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000500000000000500010006"], 0x1c}}, 0x0)

10:32:28 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x2000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3187.651018][T12041] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3187.658998][T12041] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3187.666992][T12041] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
[ 3187.674968][T12041] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 000000000030a229
[ 3187.682941][T12041] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3187.691057][T12041]  </TASK>
[ 3187.735717][T12041] memory: usage 307200kB, limit 307200kB, failcnt 29252
[ 3187.773756][T12041] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3187.784379][T12041] Memory cgroup stats for /syz5:
[ 3187.784549][T12041] anon 94208
[ 3187.784549][T12041] file 425984
[ 3187.784549][T12041] kernel 314052608
[ 3187.784549][T12041] kernel_stack 65536
[ 3187.784549][T12041] pagetables 77824
[ 3187.784549][T12041] sec_pagetables 0
[ 3187.784549][T12041] percpu 5429952
[ 3187.784549][T12041] sock 0
[ 3187.784549][T12041] vmalloc 8192
[ 3187.784549][T12041] shmem 425984
[ 3187.784549][T12041] zswap 0
[ 3187.784549][T12041] zswapped 0
[ 3187.784549][T12041] file_mapped 393216
[ 3187.784549][T12041] file_dirty 0
[ 3187.784549][T12041] file_writeback 0
[ 3187.784549][T12041] swapcached 0
[ 3187.784549][T12041] anon_thp 0
[ 3187.784549][T12041] file_thp 0
[ 3187.784549][T12041] shmem_thp 0
[ 3187.784549][T12041] inactive_anon 221184
[ 3187.784549][T12041] active_anon 299008
[ 3187.784549][T12041] inactive_file 0
[ 3187.784549][T12041] active_file 0
[ 3187.784549][T12041] unevictable 0
[ 3187.784549][T12041] slab_reclaimable 218328
[ 3187.784549][T12041] slab_unreclaimable 308218520
[ 3187.910866][T12041] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12041,uid=0
[ 3187.929534][T12041] Memory cgroup out of memory: Killed process 12041 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:32:28 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x8b02)

10:32:28 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xa000000}}], 0x2, 0x0)

10:32:28 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x3000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:28 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000600000000000500010006"], 0x1c}}, 0x0)

10:32:28 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfd2c0400}, 0x0)

[ 3187.981916][T12055] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
10:32:28 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000700000000000500010006"], 0x1c}}, 0x0)

[ 3188.065190][T12055] CPU: 1 PID: 12055 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3188.073930][T12055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3188.084030][T12055] Call Trace:
[ 3188.087333][T12055]  <TASK>
[ 3188.090292][T12055]  dump_stack_lvl+0xd1/0x138
[ 3188.094923][T12055]  dump_header+0x10b/0x85f
[ 3188.099393][T12055]  oom_kill_process.cold+0x10/0x15
[ 3188.104555][T12055]  out_of_memory+0x35c/0x14a0
[ 3188.109278][T12055]  ? find_held_lock+0x2d/0x110
[ 3188.114079][T12055]  ? oom_killer_disable+0x280/0x280
[ 3188.119329][T12055]  ? find_held_lock+0x2d/0x110
[ 3188.124234][T12055]  mem_cgroup_out_of_memory+0x206/0x270
[ 3188.129855][T12055]  ? mem_cgroup_margin+0x130/0x130
[ 3188.135001][T12055]  ? lock_downgrade+0x6e0/0x6e0
[ 3188.139895][T12055]  try_charge_memcg+0xefb/0x12f0
[ 3188.144871][T12055]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3188.150896][T12055]  ? lock_downgrade+0x6e0/0x6e0
[ 3188.155793][T12055]  charge_memcg+0x90/0x3b0
[ 3188.160248][T12055]  __mem_cgroup_charge+0x2b/0x90
[ 3188.165224][T12055]  do_wp_page+0x7ec/0x3370
[ 3188.169688][T12055]  ? lock_release+0x810/0x810
[ 3188.174391][T12055]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3188.179807][T12055]  ? do_raw_spin_lock+0x124/0x2b0
[ 3188.184917][T12055]  ? rwlock_bug.part.0+0x90/0x90
[ 3188.189897][T12055]  ? lock_chain_count+0x20/0x20
[ 3188.194786][T12055]  __handle_mm_fault+0x1f58/0x3c90
[ 3188.199958][T12055]  ? vm_iomap_memory+0x190/0x190
[ 3188.204970][T12055]  handle_mm_fault+0x1b6/0x850
[ 3188.209782][T12055]  do_user_addr_fault+0x475/0x1210
10:32:28 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xc4b2550}}], 0x2, 0x0)

10:32:28 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3188.214944][T12055]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3188.220543][T12055]  exc_page_fault+0x98/0x170
[ 3188.225257][T12055]  asm_exc_page_fault+0x26/0x30
[ 3188.230140][T12055] RIP: 0033:0x7fbb9f039570
[ 3188.234586][T12055] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3188.254225][T12055] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3188.260345][T12055] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3188.268350][T12055] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3188.276354][T12055] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3188.284359][T12055] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3188.292372][T12055] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3188.300379][T12055]  ? __sys_socket+0x7c/0x250
[ 3188.305032][T12055]  </TASK>
[ 3188.346173][T12055] memory: usage 307184kB, limit 307200kB, failcnt 153254
[ 3188.353367][T12055] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3188.361243][T12055] Memory cgroup stats for /syz4:
[ 3188.361466][T12055] anon 102400
[ 3188.361466][T12055] file 438272
[ 3188.361466][T12055] kernel 314011648
[ 3188.361466][T12055] kernel_stack 65536
[ 3188.361466][T12055] pagetables 73728
[ 3188.361466][T12055] sec_pagetables 0
[ 3188.361466][T12055] percpu 5617024
[ 3188.361466][T12055] sock 4096
[ 3188.361466][T12055] vmalloc 0
[ 3188.361466][T12055] shmem 438272
[ 3188.361466][T12055] zswap 0
[ 3188.361466][T12055] zswapped 0
[ 3188.361466][T12055] file_mapped 393216
[ 3188.361466][T12055] file_dirty 0
[ 3188.361466][T12055] file_writeback 0
[ 3188.361466][T12055] swapcached 0
[ 3188.361466][T12055] anon_thp 0
[ 3188.361466][T12055] file_thp 0
[ 3188.361466][T12055] shmem_thp 0
[ 3188.361466][T12055] inactive_anon 114688
[ 3188.361466][T12055] active_anon 425984
[ 3188.361466][T12055] inactive_file 0
[ 3188.361466][T12055] active_file 0
[ 3188.361466][T12055] unevictable 0
[ 3188.361466][T12055] slab_reclaimable 23024
[ 3188.361466][T12055] slab_unreclaimable 308202640
[ 3188.458616][T12055] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12055,uid=0
[ 3188.477657][T12055] Memory cgroup out of memory: Killed process 12055 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:29 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x8c40e61}}], 0x2, 0x0)

10:32:29 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x5000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:29 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xd1357bb}}], 0x2, 0x0)

10:32:29 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000900000000000500010006"], 0x1c}}, 0x0)

[ 3188.521864][T12069] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3188.551926][T12069] CPU: 0 PID: 12069 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3188.560648][T12069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3188.570724][T12069] Call Trace:
[ 3188.574019][T12069]  <TASK>
[ 3188.576971][T12069]  dump_stack_lvl+0xd1/0x138
[ 3188.581600][T12069]  dump_header+0x10b/0x85f
[ 3188.586067][T12069]  oom_kill_process.cold+0x10/0x15
[ 3188.591226][T12069]  out_of_memory+0x35c/0x14a0
[ 3188.595986][T12069]  ? find_held_lock+0x2d/0x110
[ 3188.600801][T12069]  ? oom_killer_disable+0x280/0x280
[ 3188.606044][T12069]  ? find_held_lock+0x2d/0x110
[ 3188.610848][T12069]  mem_cgroup_out_of_memory+0x206/0x270
[ 3188.616435][T12069]  ? mem_cgroup_margin+0x130/0x130
[ 3188.621581][T12069]  ? lock_downgrade+0x6e0/0x6e0
[ 3188.626481][T12069]  try_charge_memcg+0xefb/0x12f0
[ 3188.631475][T12069]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3188.637482][T12069]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3188.643244][T12069]  ? lock_downgrade+0x6e0/0x6e0
[ 3188.648124][T12069]  ? lock_downgrade+0x6e0/0x6e0
[ 3188.653014][T12069]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3188.658592][T12069]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3188.664783][T12069]  copy_process+0x4e3/0x7520
[ 3188.669408][T12069]  ? __lock_acquire+0xbc3/0x56d0
[ 3188.674384][T12069]  ? __cleanup_sighand+0xb0/0xb0
[ 3188.679355][T12069]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3188.685355][T12069]  ? psi_memstall_leave+0x174/0x250
[ 3188.690558][T12069]  kernel_clone+0xeb/0x990
[ 3188.694973][T12069]  ? create_io_thread+0xf0/0xf0
[ 3188.699859][T12069]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3188.706132][T12069]  ? lock_downgrade+0x6e0/0x6e0
[ 3188.711024][T12069]  __do_sys_clone+0xba/0x100
[ 3188.715643][T12069]  ? kernel_clone+0x990/0x990
[ 3188.720368][T12069]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3188.726281][T12069]  do_syscall_64+0x39/0xb0
[ 3188.730699][T12069]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3188.736604][T12069] RIP: 0033:0x7f36ee08d4f1
[ 3188.741013][T12069] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3188.760655][T12069] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3188.769095][T12069] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3188.777079][T12069] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3188.785063][T12069] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3188.793035][T12069] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3188.801011][T12069] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3188.809016][T12069]  </TASK>
[ 3188.835989][T12069] memory: usage 307200kB, limit 307200kB, failcnt 29381
[ 3188.843057][T12069] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3188.851844][T12069] Memory cgroup stats for /syz5:
[ 3188.852046][T12069] anon 86016
[ 3188.852046][T12069] file 425984
[ 3188.852046][T12069] kernel 314060800
[ 3188.852046][T12069] kernel_stack 32768
[ 3188.852046][T12069] pagetables 77824
[ 3188.852046][T12069] sec_pagetables 0
[ 3188.852046][T12069] percpu 5430016
[ 3188.852046][T12069] sock 0
[ 3188.852046][T12069] vmalloc 8192
[ 3188.852046][T12069] shmem 425984
[ 3188.852046][T12069] zswap 0
[ 3188.852046][T12069] zswapped 0
[ 3188.852046][T12069] file_mapped 393216
[ 3188.852046][T12069] file_dirty 0
[ 3188.852046][T12069] file_writeback 0
[ 3188.852046][T12069] swapcached 0
[ 3188.852046][T12069] anon_thp 0
[ 3188.852046][T12069] file_thp 0
[ 3188.852046][T12069] shmem_thp 0
[ 3188.852046][T12069] inactive_anon 212992
[ 3188.852046][T12069] active_anon 299008
[ 3188.852046][T12069] inactive_file 0
[ 3188.852046][T12069] active_file 0
10:32:29 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x8e00)

10:32:29 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000e00000000000500010006"], 0x1c}}, 0x0)

10:32:29 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfe000000}, 0x0)

10:32:29 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xd144f11}}], 0x2, 0x0)

10:32:29 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x6000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3188.852046][T12069] unevictable 0
[ 3188.852046][T12069] slab_reclaimable 216400
[ 3188.852046][T12069] slab_unreclaimable 308229192
[ 3188.947348][T12069] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12069,uid=0
[ 3188.967752][T12069] Memory cgroup out of memory: Killed process 12069 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:32:29 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000f00000000000500010006"], 0x1c}}, 0x0)

10:32:29 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xd23d815}}], 0x2, 0x0)

10:32:29 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x7000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3189.086632][T12077] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3189.123227][T12077] CPU: 1 PID: 12077 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3189.131959][T12077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3189.142036][T12077] Call Trace:
[ 3189.145333][T12077]  <TASK>
[ 3189.148288][T12077]  dump_stack_lvl+0xd1/0x138
[ 3189.152922][T12077]  dump_header+0x10b/0x85f
[ 3189.157386][T12077]  oom_kill_process.cold+0x10/0x15
[ 3189.162548][T12077]  out_of_memory+0x35c/0x14a0
[ 3189.167294][T12077]  ? find_held_lock+0x2d/0x110
[ 3189.172079][T12077]  ? oom_killer_disable+0x280/0x280
[ 3189.177300][T12077]  ? find_held_lock+0x2d/0x110
[ 3189.182102][T12077]  mem_cgroup_out_of_memory+0x206/0x270
[ 3189.187752][T12077]  ? mem_cgroup_margin+0x130/0x130
[ 3189.192885][T12077]  ? lock_downgrade+0x6e0/0x6e0
[ 3189.197762][T12077]  try_charge_memcg+0xefb/0x12f0
[ 3189.202717][T12077]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3189.208715][T12077]  ? lock_downgrade+0x6e0/0x6e0
[ 3189.213588][T12077]  charge_memcg+0x90/0x3b0
[ 3189.218021][T12077]  __mem_cgroup_charge+0x2b/0x90
[ 3189.222975][T12077]  do_wp_page+0x7ec/0x3370
[ 3189.227414][T12077]  ? lock_release+0x810/0x810
[ 3189.232099][T12077]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3189.237487][T12077]  ? do_raw_spin_lock+0x124/0x2b0
[ 3189.242522][T12077]  ? rwlock_bug.part.0+0x90/0x90
[ 3189.247492][T12077]  ? lock_chain_count+0x20/0x20
[ 3189.252353][T12077]  __handle_mm_fault+0x1f58/0x3c90
[ 3189.257484][T12077]  ? vm_iomap_memory+0x190/0x190
[ 3189.262458][T12077]  handle_mm_fault+0x1b6/0x850
[ 3189.267242][T12077]  do_user_addr_fault+0x475/0x1210
[ 3189.272368][T12077]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3189.277936][T12077]  exc_page_fault+0x98/0x170
[ 3189.282536][T12077]  asm_exc_page_fault+0x26/0x30
[ 3189.287393][T12077] RIP: 0033:0x7fbb9f039570
[ 3189.291813][T12077] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3189.311442][T12077] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3189.317530][T12077] RAX: 0000000047165cfb RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3189.325509][T12077] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 0000000000000022
[ 3189.333497][T12077] RBP: 0000000047165cfb R08: 0000000000001cfb R09: 0000000047165cff
[ 3189.341479][T12077] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3189.349562][T12077] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff87bf1591
[ 3189.357538][T12077]  ? __x64_sys_socket+0x11/0xb0
[ 3189.362425][T12077]  </TASK>
[ 3189.432241][T12077] memory: usage 307200kB, limit 307200kB, failcnt 153365
[ 3189.439617][T12077] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3189.447596][T12077] Memory cgroup stats for /syz4:
[ 3189.447816][T12077] anon 98304
[ 3189.447816][T12077] file 438272
[ 3189.447816][T12077] kernel 314032128
[ 3189.447816][T12077] kernel_stack 65536
[ 3189.447816][T12077] pagetables 73728
[ 3189.447816][T12077] sec_pagetables 0
[ 3189.447816][T12077] percpu 5617088
[ 3189.447816][T12077] sock 4096
[ 3189.447816][T12077] vmalloc 0
[ 3189.447816][T12077] shmem 438272
[ 3189.447816][T12077] zswap 0
[ 3189.447816][T12077] zswapped 0
[ 3189.447816][T12077] file_mapped 393216
[ 3189.447816][T12077] file_dirty 0
[ 3189.447816][T12077] file_writeback 0
[ 3189.447816][T12077] swapcached 0
[ 3189.447816][T12077] anon_thp 0
[ 3189.447816][T12077] file_thp 0
[ 3189.447816][T12077] shmem_thp 0
[ 3189.447816][T12077] inactive_anon 110592
[ 3189.447816][T12077] active_anon 425984
[ 3189.447816][T12077] inactive_file 0
[ 3189.447816][T12077] active_file 0
[ 3189.447816][T12077] unevictable 0
[ 3189.447816][T12077] slab_reclaimable 23024
[ 3189.447816][T12077] slab_unreclaimable 308214424
[ 3189.548908][T12077] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12077,uid=0
[ 3189.565094][T12077] Memory cgroup out of memory: Killed process 12077 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:30 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x8c40e61}}], 0x2, 0x0)

10:32:30 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xe000000}}], 0x2, 0x0)

10:32:30 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000511400000000000500010006"], 0x1c}}, 0x0)

10:32:30 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x8000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3189.583153][T12088] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000
[ 3189.601738][T12088] CPU: 1 PID: 12088 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3189.610464][T12088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3189.620546][T12088] Call Trace:
[ 3189.623852][T12088]  <TASK>
[ 3189.626810][T12088]  dump_stack_lvl+0xd1/0x138
[ 3189.631424][T12088]  dump_header+0x10b/0x85f
[ 3189.635891][T12088]  oom_kill_process.cold+0x10/0x15
[ 3189.641028][T12088]  out_of_memory+0x35c/0x14a0
[ 3189.645740][T12088]  ? oom_killer_disable+0x280/0x280
[ 3189.650966][T12088]  ? find_held_lock+0x2d/0x110
[ 3189.655753][T12088]  mem_cgroup_out_of_memory+0x206/0x270
[ 3189.661325][T12088]  ? mem_cgroup_margin+0x130/0x130
[ 3189.666451][T12088]  ? lock_downgrade+0x6e0/0x6e0
[ 3189.671325][T12088]  try_charge_memcg+0xefb/0x12f0
[ 3189.676279][T12088]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3189.682272][T12088]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3189.688015][T12088]  ? lock_downgrade+0x6e0/0x6e0
[ 3189.692894][T12088]  obj_cgroup_charge+0x2af/0x5e0
[ 3189.697851][T12088]  __kmem_cache_alloc_node+0xb2/0x430
[ 3189.703231][T12088]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3189.708615][T12088]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3189.714023][T12088]  __kmalloc_node_track_caller+0x4b/0xc0
[ 3189.719678][T12088]  kmemdup+0x2c/0x60
[ 3189.723587][T12088]  neigh_sysctl_register+0x9e/0x5f0
[ 3189.728802][T12088]  ? neigh_stat_seq_show+0x420/0x420
[ 3189.734097][T12088]  ? inetdev_init+0x23d/0x580
[ 3189.738790][T12088]  ? inetdev_event+0xe20/0x16c0
[ 3189.743650][T12088]  ? notifier_call_chain+0xb5/0x200
[ 3189.748864][T12088]  ? call_netdevice_notifiers_info+0xb5/0x130
[ 3189.754972][T12088]  ? register_netdevice+0xfb4/0x1640
[ 3189.760275][T12088]  ? br_dev_newlink+0x27/0x110
[ 3189.765060][T12088]  ? __rtnl_newlink+0x10c2/0x1840
[ 3189.770119][T12088]  ? rtnl_newlink+0x68/0xa0
[ 3189.774635][T12088]  ? rtnetlink_rcv_msg+0x43e/0xca0
[ 3189.779784][T12088]  ? netlink_rcv_skb+0x165/0x440
[ 3189.784738][T12088]  ? netlink_unicast+0x547/0x7f0
[ 3189.789700][T12088]  ? netlink_sendmsg+0x91b/0xe10
[ 3189.794656][T12088]  ? sock_sendmsg+0xd3/0x120
[ 3189.799260][T12088]  ? ____sys_sendmsg+0x712/0x8c0
[ 3189.804301][T12088]  ? ___sys_sendmsg+0x110/0x1b0
[ 3189.809176][T12088]  devinet_sysctl_register+0xb1/0x230
[ 3189.814570][T12088]  inetdev_init+0x286/0x580
[ 3189.819095][T12088]  inetdev_event+0xe20/0x16c0
[ 3189.823787][T12088]  ? del_default_gids+0xe0/0xe0
[ 3189.828669][T12088]  ? is_ndev_for_default_gid_filter.part.0+0x2e0/0x2e0
[ 3189.835535][T12088]  ? devinet_init_net+0x650/0x650
[ 3189.840576][T12088]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3189.846505][T12088]  notifier_call_chain+0xb5/0x200
[ 3189.851551][T12088]  call_netdevice_notifiers_info+0xb5/0x130
[ 3189.857462][T12088]  register_netdevice+0xfb4/0x1640
[ 3189.862594][T12088]  ? unregister_netdevice_queue+0x3c0/0x3c0
[ 3189.868511][T12088]  br_dev_newlink+0x27/0x110
[ 3189.873120][T12088]  ? br_changelink+0x1620/0x1620
[ 3189.878079][T12088]  __rtnl_newlink+0x10c2/0x1840
[ 3189.883051][T12088]  ? rtnl_link_unregister+0x250/0x250
[ 3189.888437][T12088]  ? __kmem_cache_alloc_node+0x48/0x430
[ 3189.894035][T12088]  rtnl_newlink+0x68/0xa0
[ 3189.898391][T12088]  ? __rtnl_newlink+0x1840/0x1840
[ 3189.903440][T12088]  rtnetlink_rcv_msg+0x43e/0xca0
[ 3189.908398][T12088]  ? rtnl_getlink+0xae0/0xae0
[ 3189.913086][T12088]  ? __dev_queue_xmit+0xb54/0x3ba0
[ 3189.918226][T12088]  netlink_rcv_skb+0x165/0x440
[ 3189.923010][T12088]  ? rtnl_getlink+0xae0/0xae0
[ 3189.927703][T12088]  ? netlink_ack+0x1370/0x1370
[ 3189.932505][T12088]  ? netlink_deliver_tap+0x1b1/0xc50
[ 3189.937816][T12088]  netlink_unicast+0x547/0x7f0
[ 3189.942606][T12088]  ? netlink_attachskb+0x890/0x890
[ 3189.947735][T12088]  ? __virt_addr_valid+0x61/0x2e0
[ 3189.952781][T12088]  ? __phys_addr_symbol+0x30/0x70
[ 3189.957822][T12088]  ? __check_object_size+0x2e2/0x5a0
[ 3189.963122][T12088]  netlink_sendmsg+0x91b/0xe10
[ 3189.967909][T12088]  ? netlink_unicast+0x7f0/0x7f0
[ 3189.972875][T12088]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3189.978177][T12088]  ? netlink_unicast+0x7f0/0x7f0
[ 3189.983134][T12088]  sock_sendmsg+0xd3/0x120
[ 3189.987567][T12088]  ____sys_sendmsg+0x712/0x8c0
[ 3189.992362][T12088]  ? copy_msghdr_from_user+0xfc/0x150
[ 3189.997757][T12088]  ? kernel_sendmsg+0x50/0x50
[ 3190.002452][T12088]  ? futex_unqueue+0xb7/0x120
[ 3190.007146][T12088]  ___sys_sendmsg+0x110/0x1b0
[ 3190.011844][T12088]  ? do_recvmmsg+0x6e0/0x6e0
[ 3190.016458][T12088]  ? __fget_files+0x248/0x440
[ 3190.021142][T12088]  ? lock_downgrade+0x6e0/0x6e0
[ 3190.026010][T12088]  ? __fget_files+0x26a/0x440
[ 3190.030700][T12088]  ? __fget_light+0xe5/0x270
[ 3190.035330][T12088]  __sys_sendmsg+0xf7/0x1c0
[ 3190.039852][T12088]  ? __sys_sendmsg_sock+0x40/0x40
[ 3190.044895][T12088]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3190.050834][T12088]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3190.056738][T12088]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3190.061948][T12088]  do_syscall_64+0x39/0xb0
[ 3190.066382][T12088]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3190.072294][T12088] RIP: 0033:0x7fde80a8c0c9
[ 3190.076733][T12088] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3190.096358][T12088] RSP: 002b:00007fde818ce168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3190.104795][T12088] RAX: ffffffffffffffda RBX: 00007fde80babf80 RCX: 00007fde80a8c0c9
[ 3190.112778][T12088] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[ 3190.120757][T12088] RBP: 00007fde80ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3190.128736][T12088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3190.136717][T12088] R13: 00007ffd6245db6f R14: 00007fde818ce300 R15: 0000000000022000
[ 3190.144717][T12088]  </TASK>
[ 3190.168476][T12088] memory: usage 307200kB, limit 307200kB, failcnt 35911
[ 3190.184418][T12088] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3190.202764][T12088] Memory cgroup stats for /syz2:
[ 3190.202946][T12088] anon 135168
[ 3190.202946][T12088] file 307200
[ 3190.202946][T12088] kernel 314097664
[ 3190.202946][T12088] kernel_stack 32768
[ 3190.202946][T12088] pagetables 86016
[ 3190.202946][T12088] sec_pagetables 0
[ 3190.202946][T12088] percpu 5433440
[ 3190.202946][T12088] sock 0
[ 3190.202946][T12088] vmalloc 16384
[ 3190.202946][T12088] shmem 307200
[ 3190.202946][T12088] zswap 0
[ 3190.202946][T12088] zswapped 0
[ 3190.202946][T12088] file_mapped 299008
[ 3190.202946][T12088] file_dirty 0
[ 3190.202946][T12088] file_writeback 0
[ 3190.202946][T12088] swapcached 0
[ 3190.202946][T12088] anon_thp 0
[ 3190.202946][T12088] file_thp 0
[ 3190.202946][T12088] shmem_thp 0
[ 3190.202946][T12088] inactive_anon 143360
[ 3190.202946][T12088] active_anon 299008
[ 3190.202946][T12088] inactive_file 0
[ 3190.202946][T12088] active_file 0
[ 3190.202946][T12088] unevictable 0
[ 3190.202946][T12088] slab_reclaimable 112984
[ 3190.202946][T12088] slab_unreclaimable 308388424
[ 3190.307663][T12088] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12082,uid=0
[ 3190.341362][T12088] Memory cgroup out of memory: Killed process 12088 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3190.361378][T12103] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3190.390750][T12103] CPU: 1 PID: 12103 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3190.399472][T12103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3190.409530][T12103] Call Trace:
[ 3190.412803][T12103]  <TASK>
[ 3190.415747][T12103]  dump_stack_lvl+0xd1/0x138
[ 3190.420365][T12103]  dump_header+0x10b/0x85f
[ 3190.424789][T12103]  oom_kill_process.cold+0x10/0x15
[ 3190.429908][T12103]  out_of_memory+0x35c/0x14a0
[ 3190.434608][T12103]  ? oom_killer_disable+0x280/0x280
[ 3190.439836][T12103]  ? find_held_lock+0x2d/0x110
[ 3190.444693][T12103]  mem_cgroup_out_of_memory+0x206/0x270
[ 3190.450246][T12103]  ? mem_cgroup_margin+0x130/0x130
[ 3190.455363][T12103]  ? lock_downgrade+0x6e0/0x6e0
[ 3190.460237][T12103]  try_charge_memcg+0xefb/0x12f0
[ 3190.465175][T12103]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3190.471184][T12103]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3190.476937][T12103]  ? lock_downgrade+0x6e0/0x6e0
[ 3190.481805][T12103]  ? lock_downgrade+0x6e0/0x6e0
[ 3190.486667][T12103]  obj_cgroup_charge+0x2af/0x5e0
[ 3190.491601][T12103]  kmem_cache_alloc_lru+0x145/0x760
[ 3190.496803][T12103]  ? sock_alloc_inode+0x27/0x1d0
[ 3190.501774][T12103]  sock_alloc_inode+0x27/0x1d0
[ 3190.506535][T12103]  ? sock_free_inode+0x30/0x30
[ 3190.511302][T12103]  alloc_inode+0x61/0x230
[ 3190.515676][T12103]  new_inode_pseudo+0x17/0x80
[ 3190.520399][T12103]  sock_alloc+0x40/0x260
[ 3190.524679][T12103]  __sock_create+0xbd/0x790
[ 3190.529234][T12103]  __sys_socket+0x133/0x250
[ 3190.533768][T12103]  ? __sys_socket_file+0x1f0/0x1f0
[ 3190.538907][T12103]  __x64_sys_socket+0x73/0xb0
[ 3190.543609][T12103]  do_syscall_64+0x39/0xb0
[ 3190.548029][T12103]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3190.553922][T12103] RIP: 0033:0x7fbb9f08c0c9
[ 3190.558343][T12103] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3190.577977][T12103] RSP: 002b:00007fbb9fe42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3190.586407][T12103] RAX: ffffffffffffffda RBX: 00007fbb9f1abf80 RCX: 00007fbb9f08c0c9
[ 3190.594384][T12103] RDX: 0000000000000073 RSI: 0000000000000002 RDI: 000000000000000a
[ 3190.602368][T12103] RBP: 00007fbb9f0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3190.610348][T12103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3190.618328][T12103] R13: 00007fff7101e80f R14: 00007fbb9fe42300 R15: 0000000000022000
[ 3190.626348][T12103]  </TASK>
[ 3190.644756][T12103] memory: usage 307184kB, limit 307200kB, failcnt 153486
[ 3190.652968][T12103] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3190.660378][T12103] Memory cgroup stats for /syz4:
[ 3190.660597][T12103] anon 98304
[ 3190.660597][T12103] file 438272
[ 3190.660597][T12103] kernel 314015744
[ 3190.660597][T12103] kernel_stack 65536
[ 3190.660597][T12103] pagetables 81920
[ 3190.660597][T12103] sec_pagetables 0
[ 3190.660597][T12103] percpu 5617024
[ 3190.660597][T12103] sock 4096
[ 3190.660597][T12103] vmalloc 0
[ 3190.660597][T12103] shmem 438272
[ 3190.660597][T12103] zswap 0
[ 3190.660597][T12103] zswapped 0
[ 3190.660597][T12103] file_mapped 393216
[ 3190.660597][T12103] file_dirty 0
[ 3190.660597][T12103] file_writeback 0
[ 3190.660597][T12103] swapcached 0
[ 3190.660597][T12103] anon_thp 0
[ 3190.660597][T12103] file_thp 0
[ 3190.660597][T12103] shmem_thp 0
[ 3190.660597][T12103] inactive_anon 106496
[ 3190.660597][T12103] active_anon 425984
[ 3190.660597][T12103] inactive_file 0
[ 3190.660597][T12103] active_file 0
[ 3190.660597][T12103] unevictable 0
[ 3190.660597][T12103] slab_reclaimable 21096
[ 3190.660597][T12103] slab_unreclaimable 308200832
[ 3190.757784][T12103] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12100,uid=0
[ 3190.773507][T12103] Memory cgroup out of memory: Killed process 12100 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3190.791742][T12090] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3190.814662][T12090] CPU: 1 PID: 12090 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3190.823385][T12090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3190.833460][T12090] Call Trace:
[ 3190.836757][T12090]  <TASK>
[ 3190.839711][T12090]  dump_stack_lvl+0xd1/0x138
[ 3190.844335][T12090]  dump_header+0x10b/0x85f
[ 3190.848878][T12090]  oom_kill_process.cold+0x10/0x15
[ 3190.854025][T12090]  out_of_memory+0x35c/0x14a0
[ 3190.858728][T12090]  ? oom_killer_disable+0x280/0x280
[ 3190.863954][T12090]  ? find_held_lock+0x2d/0x110
[ 3190.868724][T12090]  mem_cgroup_out_of_memory+0x206/0x270
[ 3190.874291][T12090]  ? mem_cgroup_margin+0x130/0x130
[ 3190.879426][T12090]  ? lock_downgrade+0x6e0/0x6e0
[ 3190.884312][T12090]  try_charge_memcg+0xefb/0x12f0
[ 3190.889273][T12090]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3190.895266][T12090]  ? lock_downgrade+0x6e0/0x6e0
[ 3190.900148][T12090]  charge_memcg+0x90/0x3b0
[ 3190.904572][T12090]  __mem_cgroup_charge+0x2b/0x90
[ 3190.909514][T12090]  ? copy_mc_to_kernel+0x3e/0x90
[ 3190.914474][T12090]  do_wp_page+0x7ec/0x3370
[ 3190.918906][T12090]  ? lock_release+0x810/0x810
[ 3190.923584][T12090]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3190.928979][T12090]  ? do_raw_spin_lock+0x124/0x2b0
[ 3190.934008][T12090]  ? rwlock_bug.part.0+0x90/0x90
[ 3190.938952][T12090]  ? lock_chain_count+0x20/0x20
[ 3190.943812][T12090]  __handle_mm_fault+0x1f58/0x3c90
[ 3190.949028][T12090]  ? vm_iomap_memory+0x190/0x190
[ 3190.953999][T12090]  handle_mm_fault+0x1b6/0x850
[ 3190.958783][T12090]  do_user_addr_fault+0x475/0x1210
[ 3190.963909][T12090]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3190.969476][T12090]  exc_page_fault+0x98/0x170
[ 3190.974071][T12090]  asm_exc_page_fault+0x26/0x30
[ 3190.978928][T12090] RIP: 0033:0x7f36ee036f3d
[ 3190.983446][T12090] Code: e0 04 8b 44 02 08 85 c0 0f 85 3e 0a 00 00 31 c0 b9 40 42 0f 00 ba 81 00 00 00 c7 06 01 00 00 00 bf ca 00 00 00 e8 73 51 05 00 <83> 05 44 6a 17 00 01 80 bc 24 d8 00 00 00 00 0f b6 05 57 e7 c9 00
[ 3191.003064][T12090] RSP: 002b:00007ffc6b5fd8b0 EFLAGS: 00010207
[ 3191.009137][T12090] RAX: 0000000000000001 RBX: 00007f36ee1abf8c RCX: 00007f36ee08c0c9
[ 3191.017114][T12090] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f36ee1abf88
[ 3191.025085][T12090] RBP: 00007f36ee1abf80 R08: 00007f36ecbfe700 R09: 0000000000000000
[ 3191.033060][T12090] R10: 00007f36ecbfe700 R11: 0000000000000246 R12: 00007f36ee1abf8c
[ 3191.041030][T12090] R13: 00007f36edc00060 R14: 00007f36ee1abf80 R15: 0000000000000000
[ 3191.049017][T12090]  </TASK>
[ 3191.057255][T12090] memory: usage 307200kB, limit 307200kB, failcnt 29493
[ 3191.064528][T12090] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3191.071397][T12090] Memory cgroup stats for /syz5:
[ 3191.071604][T12090] anon 90112
[ 3191.071604][T12090] file 425984
[ 3191.071604][T12090] kernel 314036224
[ 3191.071604][T12090] kernel_stack 65536
[ 3191.071604][T12090] pagetables 77824
[ 3191.071604][T12090] sec_pagetables 0
[ 3191.071604][T12090] percpu 5429888
[ 3191.071604][T12090] sock 0
[ 3191.071604][T12090] vmalloc 8192
[ 3191.071604][T12090] shmem 425984
[ 3191.071604][T12090] zswap 0
[ 3191.071604][T12090] zswapped 0
[ 3191.071604][T12090] file_mapped 393216
[ 3191.071604][T12090] file_dirty 0
[ 3191.071604][T12090] file_writeback 0
[ 3191.071604][T12090] swapcached 0
[ 3191.071604][T12090] anon_thp 0
[ 3191.071604][T12090] file_thp 0
[ 3191.071604][T12090] shmem_thp 0
[ 3191.071604][T12090] inactive_anon 217088
[ 3191.071604][T12090] active_anon 299008
[ 3191.071604][T12090] inactive_file 0
[ 3191.071604][T12090] active_file 0
[ 3191.071604][T12090] unevictable 0
[ 3191.071604][T12090] slab_reclaimable 218328
[ 3191.071604][T12090] slab_unreclaimable 308207040
[ 3191.168380][T12090] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12090,uid=0
10:32:32 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x9202)

10:32:32 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x9000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:32 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000001f00000000000500010006"], 0x1c}}, 0x0)

10:32:32 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xe43ffff}}], 0x2, 0x0)

10:32:32 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x8000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:32 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfe2c0400}, 0x0)

[ 3191.196199][T12090] Memory cgroup out of memory: Killed process 12090 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:32:32 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xa000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:32 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000006000000000000500010006"], 0x1c}}, 0x0)

10:32:32 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x10000000}}], 0x2, 0x0)

[ 3191.324963][T12109] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3191.362046][T12109] CPU: 1 PID: 12109 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
10:32:32 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x10000120}}], 0x2, 0x0)

[ 3191.370777][T12109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3191.380861][T12109] Call Trace:
[ 3191.384162][T12109]  <TASK>
[ 3191.387116][T12109]  dump_stack_lvl+0xd1/0x138
[ 3191.391750][T12109]  dump_header+0x10b/0x85f
[ 3191.396210][T12109]  oom_kill_process.cold+0x10/0x15
[ 3191.401364][T12109]  out_of_memory+0x35c/0x14a0
[ 3191.406096][T12109]  ? find_held_lock+0x2d/0x110
[ 3191.410897][T12109]  ? oom_killer_disable+0x280/0x280
[ 3191.416146][T12109]  ? find_held_lock+0x2d/0x110
[ 3191.420956][T12109]  mem_cgroup_out_of_memory+0x206/0x270
[ 3191.426529][T12109]  ? mem_cgroup_margin+0x130/0x130
[ 3191.431661][T12109]  ? lock_downgrade+0x6e0/0x6e0
[ 3191.436532][T12109]  try_charge_memcg+0xefb/0x12f0
[ 3191.441487][T12109]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3191.447472][T12109]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3191.453213][T12109]  ? lock_downgrade+0x6e0/0x6e0
[ 3191.458089][T12109]  obj_cgroup_charge+0x2af/0x5e0
[ 3191.463039][T12109]  ? __anon_vma_prepare+0x64/0x580
[ 3191.468167][T12109]  kmem_cache_alloc+0xb5/0x430
[ 3191.472941][T12109]  __anon_vma_prepare+0x64/0x580
[ 3191.477896][T12109]  ? __pmd_alloc+0x30c/0x5d0
[ 3191.482501][T12109]  __handle_mm_fault+0x392f/0x3c90
[ 3191.487639][T12109]  ? vm_iomap_memory+0x190/0x190
[ 3191.492613][T12109]  handle_mm_fault+0x1b6/0x850
[ 3191.497399][T12109]  do_user_addr_fault+0x475/0x1210
[ 3191.502524][T12109]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3191.508090][T12109]  exc_page_fault+0x98/0x170
[ 3191.512691][T12109]  asm_exc_page_fault+0x26/0x30
[ 3191.517550][T12109] RIP: 0033:0x7fde80a2bd49
[ 3191.521967][T12109] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3191.541578][T12109] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3191.547652][T12109] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3191.555630][T12109] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3191.563604][T12109] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
10:32:32 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xe000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:32 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000ffffff9e00000000000500010006"], 0x1c}}, 0x0)

[ 3191.571594][T12109] R10: 00007fde80600068 R11: 0000000000000246 R12: 000000000030b1d2
[ 3191.579583][T12109] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3191.587576][T12109]  </TASK>
[ 3191.667518][T12109] memory: usage 307192kB, limit 307200kB, failcnt 36013
[ 3191.680591][T12109] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3191.688197][T12109] Memory cgroup stats for /syz2:
[ 3191.688414][T12109] anon 131072
[ 3191.688414][T12109] file 307200
[ 3191.688414][T12109] kernel 314126336
[ 3191.688414][T12109] kernel_stack 65536
[ 3191.688414][T12109] pagetables 86016
[ 3191.688414][T12109] sec_pagetables 0
[ 3191.688414][T12109] percpu 5433504
[ 3191.688414][T12109] sock 0
[ 3191.688414][T12109] vmalloc 16384
[ 3191.688414][T12109] shmem 307200
[ 3191.688414][T12109] zswap 0
[ 3191.688414][T12109] zswapped 0
[ 3191.688414][T12109] file_mapped 299008
[ 3191.688414][T12109] file_dirty 0
[ 3191.688414][T12109] file_writeback 0
[ 3191.688414][T12109] swapcached 0
[ 3191.688414][T12109] anon_thp 0
[ 3191.688414][T12109] file_thp 0
[ 3191.688414][T12109] shmem_thp 0
[ 3191.688414][T12109] inactive_anon 139264
[ 3191.688414][T12109] active_anon 299008
[ 3191.688414][T12109] inactive_file 0
[ 3191.688414][T12109] active_file 0
[ 3191.688414][T12109] unevictable 0
[ 3191.688414][T12109] slab_reclaimable 112984
[ 3191.688414][T12109] slab_unreclaimable 308382120
[ 3191.794657][T12109] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12109,uid=0
[ 3191.813968][T12109] Memory cgroup out of memory: Killed process 12109 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3191.856829][T12128] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3191.868577][T12128] CPU: 0 PID: 12128 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3191.877289][T12128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3191.887370][T12128] Call Trace:
[ 3191.890669][T12128]  <TASK>
[ 3191.893616][T12128]  dump_stack_lvl+0xd1/0x138
[ 3191.898237][T12128]  dump_header+0x10b/0x85f
[ 3191.902658][T12128]  oom_kill_process.cold+0x10/0x15
[ 3191.907770][T12128]  out_of_memory+0x35c/0x14a0
[ 3191.912449][T12128]  ? find_held_lock+0x2d/0x110
[ 3191.917213][T12128]  ? oom_killer_disable+0x280/0x280
[ 3191.922411][T12128]  ? find_held_lock+0x2d/0x110
[ 3191.927194][T12128]  mem_cgroup_out_of_memory+0x206/0x270
[ 3191.932783][T12128]  ? mem_cgroup_margin+0x130/0x130
[ 3191.937931][T12128]  ? lock_downgrade+0x6e0/0x6e0
[ 3191.942848][T12128]  try_charge_memcg+0xefb/0x12f0
[ 3191.947810][T12128]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3191.953783][T12128]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3191.959501][T12128]  ? lock_downgrade+0x6e0/0x6e0
[ 3191.964344][T12128]  ? lock_downgrade+0x6e0/0x6e0
[ 3191.969244][T12128]  obj_cgroup_charge+0x2af/0x5e0
[ 3191.974176][T12128]  kmem_cache_alloc_lru+0x145/0x760
[ 3191.979382][T12128]  ? sock_alloc_inode+0x27/0x1d0
[ 3191.984370][T12128]  sock_alloc_inode+0x27/0x1d0
[ 3191.989176][T12128]  ? sock_free_inode+0x30/0x30
[ 3191.993970][T12128]  alloc_inode+0x61/0x230
[ 3191.998323][T12128]  new_inode_pseudo+0x17/0x80
[ 3192.003001][T12128]  sock_alloc+0x40/0x260
[ 3192.007242][T12128]  __sock_create+0xbd/0x790
[ 3192.011760][T12128]  __sys_socket+0x133/0x250
[ 3192.016277][T12128]  ? __sys_socket_file+0x1f0/0x1f0
[ 3192.021390][T12128]  __x64_sys_socket+0x73/0xb0
[ 3192.026086][T12128]  do_syscall_64+0x39/0xb0
[ 3192.030537][T12128]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3192.036461][T12128] RIP: 0033:0x7f36ee08c0c9
[ 3192.040894][T12128] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3192.060511][T12128] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3192.068918][T12128] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3192.076897][T12128] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3192.084894][T12128] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3192.092888][T12128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3192.100887][T12128] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3192.108870][T12128]  </TASK>
[ 3192.115742][T12128] memory: usage 307200kB, limit 307200kB, failcnt 29642
[ 3192.122721][T12128] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3192.129744][T12128] Memory cgroup stats for /syz5:
[ 3192.129940][T12128] anon 94208
[ 3192.129940][T12128] file 425984
[ 3192.129940][T12128] kernel 314052608
[ 3192.129940][T12128] kernel_stack 65536
[ 3192.129940][T12128] pagetables 77824
[ 3192.129940][T12128] sec_pagetables 0
[ 3192.129940][T12128] percpu 5429952
[ 3192.129940][T12128] sock 0
[ 3192.129940][T12128] vmalloc 8192
[ 3192.129940][T12128] shmem 425984
[ 3192.129940][T12128] zswap 0
[ 3192.129940][T12128] zswapped 0
[ 3192.129940][T12128] file_mapped 393216
[ 3192.129940][T12128] file_dirty 0
[ 3192.129940][T12128] file_writeback 0
[ 3192.129940][T12128] swapcached 0
[ 3192.129940][T12128] anon_thp 0
[ 3192.129940][T12128] file_thp 0
[ 3192.129940][T12128] shmem_thp 0
[ 3192.129940][T12128] inactive_anon 221184
[ 3192.129940][T12128] active_anon 299008
[ 3192.129940][T12128] inactive_file 0
[ 3192.129940][T12128] active_file 0
[ 3192.129940][T12128] unevictable 0
[ 3192.129940][T12128] slab_reclaimable 216400
[ 3192.129940][T12128] slab_unreclaimable 308217872
[ 3192.227043][T12128] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12117,uid=0
[ 3192.247513][T12128] Memory cgroup out of memory: Killed process 12117 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3192.277969][T12107] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3192.296624][T12107] CPU: 1 PID: 12107 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3192.305344][T12107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3192.315420][T12107] Call Trace:
[ 3192.318721][T12107]  <TASK>
[ 3192.321670][T12107]  dump_stack_lvl+0xd1/0x138
[ 3192.326298][T12107]  dump_header+0x10b/0x85f
[ 3192.330755][T12107]  oom_kill_process.cold+0x10/0x15
[ 3192.335912][T12107]  out_of_memory+0x35c/0x14a0
[ 3192.340648][T12107]  ? oom_killer_disable+0x280/0x280
[ 3192.345894][T12107]  ? find_held_lock+0x2d/0x110
[ 3192.350701][T12107]  mem_cgroup_out_of_memory+0x206/0x270
[ 3192.356290][T12107]  ? mem_cgroup_margin+0x130/0x130
[ 3192.361432][T12107]  ? lock_downgrade+0x6e0/0x6e0
[ 3192.366326][T12107]  try_charge_memcg+0xefb/0x12f0
[ 3192.371300][T12107]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3192.377317][T12107]  ? lock_downgrade+0x6e0/0x6e0
[ 3192.382216][T12107]  charge_memcg+0x90/0x3b0
[ 3192.386663][T12107]  __mem_cgroup_charge+0x2b/0x90
[ 3192.391632][T12107]  do_wp_page+0x7ec/0x3370
[ 3192.396085][T12107]  ? lock_release+0x810/0x810
[ 3192.400768][T12107]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3192.406181][T12107]  ? do_raw_spin_lock+0x124/0x2b0
[ 3192.411214][T12107]  ? rwlock_bug.part.0+0x90/0x90
[ 3192.416159][T12107]  ? lock_chain_count+0x20/0x20
[ 3192.421027][T12107]  __handle_mm_fault+0x1f58/0x3c90
[ 3192.426184][T12107]  ? vm_iomap_memory+0x190/0x190
[ 3192.431158][T12107]  handle_mm_fault+0x1b6/0x850
[ 3192.435961][T12107]  do_user_addr_fault+0x475/0x1210
[ 3192.441091][T12107]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3192.446660][T12107]  exc_page_fault+0x98/0x170
[ 3192.451259][T12107]  asm_exc_page_fault+0x26/0x30
[ 3192.456117][T12107] RIP: 0033:0x7fbb9f039570
[ 3192.460534][T12107] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3192.480144][T12107] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3192.486220][T12107] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3192.494284][T12107] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3192.502267][T12107] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3192.510240][T12107] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3192.518222][T12107] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
10:32:33 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xa402)

10:32:33 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x10270000}}], 0x2, 0x0)

10:32:33 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x10000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:33 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000000000ec000000000000500010006"], 0x1c}}, 0x0)

[ 3192.526194][T12107]  ? security_socket_create+0x3f/0xc0
[ 3192.531603][T12107]  </TASK>
[ 3192.538070][T12107] memory: usage 307200kB, limit 307200kB, failcnt 153604
[ 3192.545277][T12107] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3192.561808][T12107] Memory cgroup stats for /syz4:
[ 3192.562021][T12107] anon 118784
[ 3192.562021][T12107] file 438272
[ 3192.562021][T12107] kernel 314011648
[ 3192.562021][T12107] kernel_stack 65536
[ 3192.562021][T12107] pagetables 73728
[ 3192.562021][T12107] sec_pagetables 0
[ 3192.562021][T12107] percpu 5617024
[ 3192.562021][T12107] sock 4096
[ 3192.562021][T12107] vmalloc 0
[ 3192.562021][T12107] shmem 438272
[ 3192.562021][T12107] zswap 0
[ 3192.562021][T12107] zswapped 0
[ 3192.562021][T12107] file_mapped 393216
[ 3192.562021][T12107] file_dirty 0
[ 3192.562021][T12107] file_writeback 0
[ 3192.562021][T12107] swapcached 0
[ 3192.562021][T12107] anon_thp 0
[ 3192.562021][T12107] file_thp 0
[ 3192.562021][T12107] shmem_thp 0
[ 3192.562021][T12107] inactive_anon 131072
[ 3192.562021][T12107] active_anon 425984
[ 3192.562021][T12107] inactive_file 0
[ 3192.562021][T12107] active_file 0
[ 3192.562021][T12107] unevictable 0
[ 3192.562021][T12107] slab_reclaimable 23024
[ 3192.562021][T12107] slab_unreclaimable 308202832
[ 3192.676263][T12107] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12107,uid=0
[ 3192.713563][T12107] Memory cgroup out of memory: Killed process 12107 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3192.750131][T12135] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3192.763527][T12135] CPU: 1 PID: 12135 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3192.772239][T12135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3192.782312][T12135] Call Trace:
[ 3192.785608][T12135]  <TASK>
[ 3192.788559][T12135]  dump_stack_lvl+0xd1/0x138
[ 3192.793177][T12135]  dump_header+0x10b/0x85f
[ 3192.797623][T12135]  oom_kill_process.cold+0x10/0x15
[ 3192.802777][T12135]  out_of_memory+0x35c/0x14a0
[ 3192.807497][T12135]  ? find_held_lock+0x2d/0x110
[ 3192.812294][T12135]  ? oom_killer_disable+0x280/0x280
[ 3192.817536][T12135]  ? find_held_lock+0x2d/0x110
[ 3192.822325][T12135]  mem_cgroup_out_of_memory+0x206/0x270
[ 3192.827881][T12135]  ? mem_cgroup_margin+0x130/0x130
[ 3192.833028][T12135]  ? lock_downgrade+0x6e0/0x6e0
[ 3192.837927][T12135]  try_charge_memcg+0xefb/0x12f0
[ 3192.842881][T12135]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3192.848871][T12135]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3192.854631][T12135]  ? lock_downgrade+0x6e0/0x6e0
[ 3192.859504][T12135]  ? lock_downgrade+0x6e0/0x6e0
[ 3192.864393][T12135]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3192.869970][T12135]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3192.876155][T12135]  copy_process+0x4e3/0x7520
[ 3192.880775][T12135]  ? __lock_acquire+0xbc3/0x56d0
[ 3192.885748][T12135]  ? __cleanup_sighand+0xb0/0xb0
[ 3192.890709][T12135]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3192.896724][T12135]  ? psi_memstall_leave+0x174/0x250
[ 3192.901967][T12135]  kernel_clone+0xeb/0x990
[ 3192.906418][T12135]  ? create_io_thread+0xf0/0xf0
[ 3192.911295][T12135]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3192.917579][T12135]  ? lock_downgrade+0x6e0/0x6e0
[ 3192.922460][T12135]  __do_sys_clone+0xba/0x100
[ 3192.927060][T12135]  ? kernel_clone+0x990/0x990
[ 3192.931783][T12135]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3192.937710][T12135]  do_syscall_64+0x39/0xb0
[ 3192.942165][T12135]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3192.948090][T12135] RIP: 0033:0x7f36ee08d4f1
[ 3192.952525][T12135] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3192.972162][T12135] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
10:32:33 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x8000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:33 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfeff0000}, 0x0)

10:32:33 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000000003e800000000000500010006"], 0x1c}}, 0x0)

10:32:33 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x11000000}}], 0x2, 0x0)

10:32:33 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x11000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3192.980602][T12135] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3192.988592][T12135] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3192.996583][T12135] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3193.004579][T12135] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3193.012567][T12135] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3193.020580][T12135]  </TASK>
10:32:33 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000fffffff000000000000500010006"], 0x1c}}, 0x0)

10:32:33 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x114f140d}}], 0x2, 0x0)

[ 3193.064446][T12135] memory: usage 307200kB, limit 307200kB, failcnt 29764
[ 3193.077897][T12135] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3193.115020][T12135] Memory cgroup stats for /syz5:
[ 3193.115198][T12135] anon 86016
[ 3193.115198][T12135] file 425984
[ 3193.115198][T12135] kernel 314060800
[ 3193.115198][T12135] kernel_stack 32768
[ 3193.115198][T12135] pagetables 77824
[ 3193.115198][T12135] sec_pagetables 0
[ 3193.115198][T12135] percpu 5430016
[ 3193.115198][T12135] sock 0
[ 3193.115198][T12135] vmalloc 8192
[ 3193.115198][T12135] shmem 425984
[ 3193.115198][T12135] zswap 0
[ 3193.115198][T12135] zswapped 0
[ 3193.115198][T12135] file_mapped 393216
10:32:34 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x1f000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3193.115198][T12135] file_dirty 0
[ 3193.115198][T12135] file_writeback 0
[ 3193.115198][T12135] swapcached 0
[ 3193.115198][T12135] anon_thp 0
[ 3193.115198][T12135] file_thp 0
[ 3193.115198][T12135] shmem_thp 0
[ 3193.115198][T12135] inactive_anon 212992
[ 3193.115198][T12135] active_anon 299008
[ 3193.115198][T12135] inactive_file 0
[ 3193.115198][T12135] active_file 0
[ 3193.115198][T12135] unevictable 0
[ 3193.115198][T12135] slab_reclaimable 216400
[ 3193.115198][T12135] slab_unreclaimable 308229192
[ 3193.337054][T12135] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12135,uid=0
[ 3193.353425][T12135] Memory cgroup out of memory: Killed process 12135 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:32:34 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xa603)

10:32:34 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x15d8230d}}], 0x2, 0x0)

10:32:34 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfeffffff}, 0x0)

10:32:34 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x30000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3193.388063][T12146] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3193.398438][T12146] CPU: 1 PID: 12146 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3193.407139][T12146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3193.417221][T12146] Call Trace:
[ 3193.420516][T12146]  <TASK>
[ 3193.423464][T12146]  dump_stack_lvl+0xd1/0x138
[ 3193.428087][T12146]  dump_header+0x10b/0x85f
[ 3193.432548][T12146]  oom_kill_process.cold+0x10/0x15
[ 3193.437706][T12146]  out_of_memory+0x35c/0x14a0
[ 3193.442433][T12146]  ? find_held_lock+0x2d/0x110
[ 3193.447241][T12146]  ? oom_killer_disable+0x280/0x280
[ 3193.452491][T12146]  ? find_held_lock+0x2d/0x110
[ 3193.457303][T12146]  mem_cgroup_out_of_memory+0x206/0x270
[ 3193.462896][T12146]  ? mem_cgroup_margin+0x130/0x130
[ 3193.468051][T12146]  ? lock_downgrade+0x6e0/0x6e0
[ 3193.472944][T12146]  try_charge_memcg+0xefb/0x12f0
[ 3193.477913][T12146]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3193.483912][T12146]  ? lock_downgrade+0x6e0/0x6e0
[ 3193.488783][T12146]  charge_memcg+0x90/0x3b0
[ 3193.493219][T12146]  __mem_cgroup_charge+0x2b/0x90
[ 3193.498171][T12146]  do_wp_page+0x7ec/0x3370
[ 3193.502623][T12146]  ? lock_release+0x810/0x810
[ 3193.507308][T12146]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3193.512714][T12146]  ? do_raw_spin_lock+0x124/0x2b0
[ 3193.517754][T12146]  ? rwlock_bug.part.0+0x90/0x90
[ 3193.522701][T12146]  ? lock_chain_count+0x20/0x20
[ 3193.527566][T12146]  __handle_mm_fault+0x1f58/0x3c90
[ 3193.532696][T12146]  ? vm_iomap_memory+0x190/0x190
[ 3193.537671][T12146]  handle_mm_fault+0x1b6/0x850
[ 3193.542471][T12146]  do_user_addr_fault+0x475/0x1210
[ 3193.547599][T12146]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3193.553167][T12146]  exc_page_fault+0x98/0x170
[ 3193.557764][T12146]  asm_exc_page_fault+0x26/0x30
[ 3193.562620][T12146] RIP: 0033:0x7fbb9f039570
[ 3193.567051][T12146] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3193.586678][T12146] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3193.592763][T12146] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3193.600746][T12146] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3193.608726][T12146] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3193.616702][T12146] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3193.624679][T12146] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3193.632675][T12146]  ? security_socket_create+0x3f/0xc0
[ 3193.638085][T12146]  </TASK>
[ 3193.702551][T12146] memory: usage 307200kB, limit 307200kB, failcnt 153713
[ 3193.717738][T12146] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3193.730137][T12146] Memory cgroup stats for /syz4:
[ 3193.730356][T12146] anon 118784
[ 3193.730356][T12146] file 438272
[ 3193.730356][T12146] kernel 314011648
[ 3193.730356][T12146] kernel_stack 65536
[ 3193.730356][T12146] pagetables 73728
[ 3193.730356][T12146] sec_pagetables 0
[ 3193.730356][T12146] percpu 5617024
[ 3193.730356][T12146] sock 4096
[ 3193.730356][T12146] vmalloc 0
[ 3193.730356][T12146] shmem 438272
[ 3193.730356][T12146] zswap 0
[ 3193.730356][T12146] zswapped 0
[ 3193.730356][T12146] file_mapped 393216
[ 3193.730356][T12146] file_dirty 0
[ 3193.730356][T12146] file_writeback 0
[ 3193.730356][T12146] swapcached 0
[ 3193.730356][T12146] anon_thp 0
[ 3193.730356][T12146] file_thp 0
[ 3193.730356][T12146] shmem_thp 0
[ 3193.730356][T12146] inactive_anon 131072
[ 3193.730356][T12146] active_anon 425984
[ 3193.730356][T12146] inactive_file 0
[ 3193.730356][T12146] active_file 0
[ 3193.730356][T12146] unevictable 0
[ 3193.730356][T12146] slab_reclaimable 23024
[ 3193.730356][T12146] slab_unreclaimable 308202832
[ 3193.831124][T12146] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12146,uid=0
10:32:34 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x8000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:34 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000007fffffff00000000000500010006"], 0x1c}}, 0x0)

10:32:34 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x3f000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:34 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x16d7238d}}], 0x2, 0x0)

[ 3193.847361][T12146] Memory cgroup out of memory: Killed process 12146 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3193.887348][T12156] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
10:32:34 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300f0ffffffffffff00000000000500010006"], 0x1c}}, 0x0)

[ 3193.943962][T12156] CPU: 1 PID: 12156 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3193.952688][T12156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3193.962763][T12156] Call Trace:
[ 3193.966070][T12156]  <TASK>
[ 3193.969023][T12156]  dump_stack_lvl+0xd1/0x138
[ 3193.973653][T12156]  dump_header+0x10b/0x85f
[ 3193.978151][T12156]  oom_kill_process.cold+0x10/0x15
[ 3193.983310][T12156]  out_of_memory+0x35c/0x14a0
[ 3193.988028][T12156]  ? find_held_lock+0x2d/0x110
[ 3193.992829][T12156]  ? oom_killer_disable+0x280/0x280
[ 3193.998064][T12156]  ? find_held_lock+0x2d/0x110
[ 3194.002852][T12156]  mem_cgroup_out_of_memory+0x206/0x270
[ 3194.008416][T12156]  ? mem_cgroup_margin+0x130/0x130
[ 3194.013540][T12156]  ? lock_downgrade+0x6e0/0x6e0
[ 3194.018412][T12156]  try_charge_memcg+0xefb/0x12f0
[ 3194.023363][T12156]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3194.029350][T12156]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3194.035089][T12156]  ? lock_downgrade+0x6e0/0x6e0
[ 3194.039946][T12156]  ? lock_downgrade+0x6e0/0x6e0
[ 3194.044815][T12156]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3194.050372][T12156]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3194.056536][T12156]  copy_process+0x4e3/0x7520
[ 3194.061137][T12156]  ? __lock_acquire+0xbc3/0x56d0
[ 3194.066089][T12156]  ? __cleanup_sighand+0xb0/0xb0
[ 3194.071034][T12156]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3194.077024][T12156]  ? psi_memstall_leave+0x174/0x250
[ 3194.082240][T12156]  kernel_clone+0xeb/0x990
[ 3194.086669][T12156]  ? create_io_thread+0xf0/0xf0
[ 3194.091530][T12156]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3194.097791][T12156]  ? lock_downgrade+0x6e0/0x6e0
[ 3194.102656][T12156]  __do_sys_clone+0xba/0x100
[ 3194.107256][T12156]  ? kernel_clone+0x990/0x990
[ 3194.111972][T12156]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3194.117890][T12156]  do_syscall_64+0x39/0xb0
[ 3194.122328][T12156]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3194.128235][T12156] RIP: 0033:0x7f36ee08d4f1
[ 3194.132663][T12156] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3194.152283][T12156] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3194.160706][T12156] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3194.168682][T12156] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3194.176656][T12156] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3194.184627][T12156] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
10:32:35 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x40000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3194.192600][T12156] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3194.200591][T12156]  </TASK>
10:32:35 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x1a6e177a}}], 0x2, 0x0)

10:32:35 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000200000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3194.264520][T12156] memory: usage 307200kB, limit 307200kB, failcnt 29853
[ 3194.275704][T12156] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3194.294092][T12156] Memory cgroup stats for /syz5:
[ 3194.304530][T12156] anon 86016
[ 3194.304530][T12156] file 425984
[ 3194.304530][T12156] kernel 314060800
[ 3194.304530][T12156] kernel_stack 32768
[ 3194.304530][T12156] pagetables 77824
[ 3194.304530][T12156] sec_pagetables 0
[ 3194.304530][T12156] percpu 5430016
[ 3194.304530][T12156] sock 0
[ 3194.304530][T12156] vmalloc 8192
[ 3194.304530][T12156] shmem 425984
[ 3194.304530][T12156] zswap 0
[ 3194.304530][T12156] zswapped 0
[ 3194.304530][T12156] file_mapped 393216
[ 3194.304530][T12156] file_dirty 0
[ 3194.304530][T12156] file_writeback 0
[ 3194.304530][T12156] swapcached 0
[ 3194.304530][T12156] anon_thp 0
[ 3194.304530][T12156] file_thp 0
[ 3194.304530][T12156] shmem_thp 0
[ 3194.304530][T12156] inactive_anon 212992
[ 3194.304530][T12156] active_anon 299008
[ 3194.304530][T12156] inactive_file 0
[ 3194.304530][T12156] active_file 0
[ 3194.304530][T12156] unevictable 0
[ 3194.304530][T12156] slab_reclaimable 216400
[ 3194.304530][T12156] slab_unreclaimable 308229192
10:32:35 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xaa00)

10:32:35 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4055d9a4, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3194.411276][T12156] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12156,uid=0
[ 3194.430144][T12156] Memory cgroup out of memory: Killed process 12156 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3194.448762][T12161] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=2, oom_score_adj=1000
[ 3194.467839][T12161] CPU: 1 PID: 12161 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3194.476559][T12161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3194.486639][T12161] Call Trace:
[ 3194.489949][T12161]  <TASK>
[ 3194.492906][T12161]  dump_stack_lvl+0xd1/0x138
[ 3194.497540][T12161]  dump_header+0x10b/0x85f
[ 3194.502000][T12161]  oom_kill_process.cold+0x10/0x15
[ 3194.507155][T12161]  out_of_memory+0x35c/0x14a0
[ 3194.511891][T12161]  ? oom_killer_disable+0x280/0x280
[ 3194.517144][T12161]  ? find_held_lock+0x2d/0x110
[ 3194.521955][T12161]  mem_cgroup_out_of_memory+0x206/0x270
[ 3194.527547][T12161]  ? mem_cgroup_margin+0x130/0x130
[ 3194.532693][T12161]  ? lock_downgrade+0x6e0/0x6e0
[ 3194.537589][T12161]  try_charge_memcg+0xefb/0x12f0
[ 3194.542566][T12161]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3194.548579][T12161]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3194.554342][T12161]  ? lock_downgrade+0x6e0/0x6e0
[ 3194.559252][T12161]  obj_cgroup_charge+0x2af/0x5e0
[ 3194.564240][T12161]  __kmem_cache_alloc_node+0xb2/0x430
[ 3194.569643][T12161]  ? __devinet_sysctl_register+0x98/0x280
[ 3194.575410][T12161]  ? __devinet_sysctl_register+0x98/0x280
[ 3194.581166][T12161]  __kmalloc_node_track_caller+0x4b/0xc0
[ 3194.586849][T12161]  kmemdup+0x2c/0x60
[ 3194.590781][T12161]  __devinet_sysctl_register+0x98/0x280
[ 3194.596367][T12161]  ? inet_netconf_notify_devconf+0x260/0x260
[ 3194.602378][T12161]  ? br_set_state+0x587/0x610
[ 3194.607090][T12161]  ? __rtnl_newlink+0x10c2/0x1840
[ 3194.612150][T12161]  ? rtnl_newlink+0x68/0xa0
[ 3194.616694][T12161]  ? rtnetlink_rcv_msg+0x43e/0xca0
[ 3194.621839][T12161]  ? netlink_rcv_skb+0x165/0x440
[ 3194.626814][T12161]  ? netlink_unicast+0x547/0x7f0
[ 3194.631790][T12161]  ? netlink_sendmsg+0x91b/0xe10
[ 3194.636763][T12161]  ? sock_sendmsg+0xd3/0x120
[ 3194.641385][T12161]  ? ____sys_sendmsg+0x712/0x8c0
[ 3194.646355][T12161]  ? ___sys_sendmsg+0x110/0x1b0
[ 3194.651254][T12161]  devinet_sysctl_register+0x160/0x230
[ 3194.656756][T12161]  inetdev_init+0x286/0x580
[ 3194.661296][T12161]  inetdev_event+0xe20/0x16c0
[ 3194.666001][T12161]  ? del_default_gids+0xe0/0xe0
[ 3194.670888][T12161]  ? is_ndev_for_default_gid_filter.part.0+0x2e0/0x2e0
[ 3194.677782][T12161]  ? devinet_init_net+0x650/0x650
[ 3194.682839][T12161]  ? skb_dequeue+0x129/0x180
[ 3194.687470][T12161]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3194.693411][T12161]  notifier_call_chain+0xb5/0x200
[ 3194.698482][T12161]  call_netdevice_notifiers_info+0xb5/0x130
[ 3194.704421][T12161]  register_netdevice+0xfb4/0x1640
[ 3194.709578][T12161]  ? unregister_netdevice_queue+0x3c0/0x3c0
[ 3194.715528][T12161]  br_dev_newlink+0x27/0x110
[ 3194.720161][T12161]  ? br_changelink+0x1620/0x1620
[ 3194.725151][T12161]  __rtnl_newlink+0x10c2/0x1840
[ 3194.730067][T12161]  ? rtnl_link_unregister+0x250/0x250
[ 3194.735525][T12161]  rtnl_newlink+0x68/0xa0
[ 3194.739889][T12161]  ? __rtnl_newlink+0x1840/0x1840
[ 3194.744950][T12161]  rtnetlink_rcv_msg+0x43e/0xca0
[ 3194.749939][T12161]  ? rtnl_getlink+0xae0/0xae0
[ 3194.754648][T12161]  ? __dev_queue_xmit+0xb54/0x3ba0
[ 3194.759808][T12161]  ? exc_int3+0xf/0x80
[ 3194.763907][T12161]  netlink_rcv_skb+0x165/0x440
[ 3194.768686][T12161]  ? rtnl_getlink+0xae0/0xae0
[ 3194.773403][T12161]  ? netlink_ack+0x1370/0x1370
[ 3194.778237][T12161]  ? netlink_deliver_tap+0x1b1/0xc50
[ 3194.783589][T12161]  netlink_unicast+0x547/0x7f0
[ 3194.788402][T12161]  ? netlink_attachskb+0x890/0x890
[ 3194.793543][T12161]  ? __virt_addr_valid+0x61/0x2e0
[ 3194.798608][T12161]  ? __phys_addr_symbol+0x30/0x70
[ 3194.803676][T12161]  ? __check_object_size+0x2e2/0x5a0
[ 3194.809005][T12161]  netlink_sendmsg+0x91b/0xe10
[ 3194.813816][T12161]  ? netlink_unicast+0x7f0/0x7f0
[ 3194.818812][T12161]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3194.824142][T12161]  ? netlink_unicast+0x7f0/0x7f0
[ 3194.829103][T12161]  sock_sendmsg+0xd3/0x120
[ 3194.833567][T12161]  ____sys_sendmsg+0x712/0x8c0
[ 3194.838370][T12161]  ? copy_msghdr_from_user+0xfc/0x150
[ 3194.843782][T12161]  ? kernel_sendmsg+0x50/0x50
[ 3194.848506][T12161]  ? futex_unqueue+0xb7/0x120
[ 3194.853226][T12161]  ___sys_sendmsg+0x110/0x1b0
[ 3194.857946][T12161]  ? do_recvmmsg+0x6e0/0x6e0
[ 3194.862574][T12161]  ? __fget_files+0x248/0x440
[ 3194.867279][T12161]  ? lock_downgrade+0x6e0/0x6e0
[ 3194.872181][T12161]  ? __fget_files+0x26a/0x440
[ 3194.876896][T12161]  ? __fget_light+0xe5/0x270
[ 3194.881520][T12161]  __sys_sendmsg+0xf7/0x1c0
[ 3194.886063][T12161]  ? __sys_sendmsg_sock+0x40/0x40
[ 3194.891131][T12161]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3194.897090][T12161]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3194.903016][T12161]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3194.908247][T12161]  do_syscall_64+0x39/0xb0
[ 3194.912709][T12161]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3194.918640][T12161] RIP: 0033:0x7fde80a8c0c9
[ 3194.923088][T12161] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3194.942801][T12161] RSP: 002b:00007fde818ce168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3194.951237][T12161] RAX: ffffffffffffffda RBX: 00007fde80babf80 RCX: 00007fde80a8c0c9
[ 3194.959236][T12161] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[ 3194.967229][T12161] RBP: 00007fde80ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3194.975222][T12161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3194.983215][T12161] R13: 00007ffd6245db6f R14: 00007fde818ce300 R15: 0000000000022000
[ 3194.991236][T12161]  </TASK>
[ 3195.008589][T12161] memory: usage 307196kB, limit 307200kB, failcnt 36211
[ 3195.016049][T12161] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3195.023106][T12161] Memory cgroup stats for /syz2:
[ 3195.023333][T12161] anon 135168
[ 3195.023333][T12161] file 307200
[ 3195.023333][T12161] kernel 314093568
[ 3195.023333][T12161] kernel_stack 32768
[ 3195.023333][T12161] pagetables 86016
[ 3195.023333][T12161] sec_pagetables 0
[ 3195.023333][T12161] percpu 5433440
[ 3195.023333][T12161] sock 0
[ 3195.023333][T12161] vmalloc 24576
[ 3195.023333][T12161] shmem 307200
[ 3195.023333][T12161] zswap 0
[ 3195.023333][T12161] zswapped 0
[ 3195.023333][T12161] file_mapped 299008
[ 3195.023333][T12161] file_dirty 0
[ 3195.023333][T12161] file_writeback 0
[ 3195.023333][T12161] swapcached 0
[ 3195.023333][T12161] anon_thp 0
[ 3195.023333][T12161] file_thp 0
[ 3195.023333][T12161] shmem_thp 0
[ 3195.023333][T12161] inactive_anon 143360
[ 3195.023333][T12161] active_anon 299008
[ 3195.023333][T12161] inactive_file 0
[ 3195.023333][T12161] active_file 0
[ 3195.023333][T12161] unevictable 0
[ 3195.023333][T12161] slab_reclaimable 112984
[ 3195.023333][T12161] slab_unreclaimable 308378192
[ 3195.121140][T12161] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12157,uid=0
[ 3195.136836][T12161] Memory cgroup out of memory: Killed process 12161 (syz-executor.2) total-vm:54540kB, anon-rss:504kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3195.177559][T12182] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3195.204501][T12182] CPU: 0 PID: 12182 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3195.213229][T12182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3195.223291][T12182] Call Trace:
[ 3195.226570][T12182]  <TASK>
[ 3195.229494][T12182]  dump_stack_lvl+0xd1/0x138
[ 3195.234087][T12182]  dump_header+0x10b/0x85f
[ 3195.238516][T12182]  oom_kill_process.cold+0x10/0x15
[ 3195.243626][T12182]  out_of_memory+0x35c/0x14a0
[ 3195.248316][T12182]  ? find_held_lock+0x2d/0x110
[ 3195.253076][T12182]  ? oom_killer_disable+0x280/0x280
[ 3195.258315][T12182]  ? find_held_lock+0x2d/0x110
[ 3195.263131][T12182]  mem_cgroup_out_of_memory+0x206/0x270
[ 3195.268720][T12182]  ? mem_cgroup_margin+0x130/0x130
[ 3195.273833][T12182]  ? lock_downgrade+0x6e0/0x6e0
[ 3195.278693][T12182]  try_charge_memcg+0xefb/0x12f0
[ 3195.283633][T12182]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3195.289607][T12182]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3195.295325][T12182]  ? lock_downgrade+0x6e0/0x6e0
[ 3195.300176][T12182]  ? lock_downgrade+0x6e0/0x6e0
[ 3195.305057][T12182]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3195.310630][T12182]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3195.316814][T12182]  copy_process+0x4e3/0x7520
[ 3195.321429][T12182]  ? __lock_acquire+0xbc3/0x56d0
[ 3195.326399][T12182]  ? __cleanup_sighand+0xb0/0xb0
[ 3195.331362][T12182]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3195.337350][T12182]  ? psi_memstall_leave+0x174/0x250
[ 3195.342594][T12182]  kernel_clone+0xeb/0x990
[ 3195.347093][T12182]  ? create_io_thread+0xf0/0xf0
[ 3195.351967][T12182]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3195.358238][T12182]  ? lock_downgrade+0x6e0/0x6e0
[ 3195.363116][T12182]  __do_sys_clone+0xba/0x100
[ 3195.367729][T12182]  ? kernel_clone+0x990/0x990
[ 3195.372432][T12182]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3195.378342][T12182]  do_syscall_64+0x39/0xb0
[ 3195.382789][T12182]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3195.388693][T12182] RIP: 0033:0x7f36ee08d4f1
[ 3195.393137][T12182] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3195.412759][T12182] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3195.421211][T12182] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3195.429198][T12182] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3195.437180][T12182] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3195.445169][T12182] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3195.453146][T12182] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3195.461137][T12182]  </TASK>
[ 3195.471646][T12182] memory: usage 307200kB, limit 307200kB, failcnt 29958
[ 3195.478725][T12182] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3195.484689][T32549] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3195.497326][T12182] Memory cgroup stats for /syz5:
[ 3195.497541][T12182] anon 86016
[ 3195.497541][T12182] file 425984
[ 3195.497541][T12182] kernel 314044416
[ 3195.497541][T12182] kernel_stack 32768
[ 3195.497541][T12182] pagetables 77824
[ 3195.497541][T12182] sec_pagetables 0
[ 3195.497541][T12182] percpu 5429952
[ 3195.497541][T12182] sock 0
[ 3195.497541][T12182] vmalloc 8192
[ 3195.497541][T12182] shmem 425984
[ 3195.497541][T12182] zswap 0
[ 3195.497541][T12182] zswapped 0
[ 3195.497541][T12182] file_mapped 393216
[ 3195.497541][T12182] file_dirty 0
[ 3195.497541][T12182] file_writeback 0
[ 3195.497541][T12182] swapcached 0
[ 3195.497541][T12182] anon_thp 0
[ 3195.497541][T12182] file_thp 0
[ 3195.497541][T12182] shmem_thp 0
[ 3195.497541][T12182] inactive_anon 196608
[ 3195.497541][T12182] active_anon 299008
[ 3195.497541][T12182] inactive_file 0
[ 3195.497541][T12182] active_file 0
[ 3195.497541][T12182] unevictable 0
[ 3195.497541][T12182] slab_reclaimable 216400
[ 3195.497541][T12182] slab_unreclaimable 308219960
[ 3195.592763][T12182] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12182,uid=0
[ 3195.613566][T12182] Memory cgroup out of memory: Killed process 12182 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3195.631124][T12172] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3195.644206][T12172] CPU: 0 PID: 12172 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3195.652917][T12172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3195.663001][T12172] Call Trace:
[ 3195.666293][T12172]  <TASK>
[ 3195.669246][T12172]  dump_stack_lvl+0xd1/0x138
[ 3195.673884][T12172]  dump_header+0x10b/0x85f
[ 3195.678325][T12172]  oom_kill_process.cold+0x10/0x15
[ 3195.683436][T12172]  out_of_memory+0x35c/0x14a0
[ 3195.688121][T12172]  ? oom_killer_disable+0x280/0x280
[ 3195.693320][T12172]  ? find_held_lock+0x2d/0x110
[ 3195.698123][T12172]  mem_cgroup_out_of_memory+0x206/0x270
[ 3195.703688][T12172]  ? mem_cgroup_margin+0x130/0x130
[ 3195.708801][T12172]  ? lock_downgrade+0x6e0/0x6e0
[ 3195.713669][T12172]  try_charge_memcg+0xefb/0x12f0
[ 3195.718629][T12172]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3195.724612][T12172]  ? lock_downgrade+0x6e0/0x6e0
[ 3195.729465][T12172]  charge_memcg+0x90/0x3b0
[ 3195.733876][T12172]  __mem_cgroup_charge+0x2b/0x90
[ 3195.738817][T12172]  do_wp_page+0x7ec/0x3370
[ 3195.743252][T12172]  ? lock_release+0x810/0x810
[ 3195.747940][T12172]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3195.753375][T12172]  ? do_raw_spin_lock+0x124/0x2b0
[ 3195.758406][T12172]  ? rwlock_bug.part.0+0x90/0x90
[ 3195.763346][T12172]  ? lock_chain_count+0x20/0x20
[ 3195.768215][T12172]  __handle_mm_fault+0x1f58/0x3c90
[ 3195.773356][T12172]  ? vm_iomap_memory+0x190/0x190
[ 3195.778308][T12172]  handle_mm_fault+0x1b6/0x850
[ 3195.783074][T12172]  do_user_addr_fault+0x475/0x1210
[ 3195.788204][T12172]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3195.793759][T12172]  exc_page_fault+0x98/0x170
[ 3195.798345][T12172]  asm_exc_page_fault+0x26/0x30
[ 3195.803228][T12172] RIP: 0033:0x7fbb9f039570
[ 3195.807735][T12172] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3195.827352][T12172] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3195.833425][T12172] RAX: 000000009ca42836 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3195.841423][T12172] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc359
[ 3195.849392][T12172] RBP: 000000009ca42836 R08: 0000000000000836 R09: 000000009ca4283a
[ 3195.857373][T12172] R10: 00007fbb9ec001e8 R11: 0000000000000000 R12: 00007fbb9f1a0000
[ 3195.865339][T12172] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff87bf13fb
[ 3195.873310][T12172]  ? __sys_socket+0xcb/0x250
[ 3195.877911][T12172]  </TASK>
10:32:36 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xae01)

10:32:36 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x20010010}}], 0x2, 0x0)

[ 3195.894513][T12172] memory: usage 307200kB, limit 307200kB, failcnt 153847
[ 3195.915716][T12172] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3195.932375][T12172] Memory cgroup stats for /syz4:
[ 3195.932556][T12172] anon 110592
[ 3195.932556][T12172] file 438272
[ 3195.932556][T12172] kernel 314007552
[ 3195.932556][T12172] kernel_stack 65536
[ 3195.932556][T12172] pagetables 81920
[ 3195.932556][T12172] sec_pagetables 0
[ 3195.932556][T12172] percpu 5616960
[ 3195.932556][T12172] sock 4096
[ 3195.932556][T12172] vmalloc 0
[ 3195.932556][T12172] shmem 438272
[ 3195.932556][T12172] zswap 0
[ 3195.932556][T12172] zswapped 0
[ 3195.932556][T12172] file_mapped 393216
[ 3195.932556][T12172] file_dirty 0
[ 3195.932556][T12172] file_writeback 0
[ 3195.932556][T12172] swapcached 0
[ 3195.932556][T12172] anon_thp 0
[ 3195.932556][T12172] file_thp 0
[ 3195.932556][T12172] shmem_thp 0
[ 3195.932556][T12172] inactive_anon 122880
[ 3195.932556][T12172] active_anon 425984
[ 3195.932556][T12172] inactive_file 0
[ 3195.932556][T12172] active_file 0
[ 3195.932556][T12172] unevictable 0
[ 3195.932556][T12172] slab_reclaimable 23024
[ 3195.932556][T12172] slab_unreclaimable 308191752
[ 3196.070743][T12172] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12172,uid=0
[ 3196.088033][T12172] Memory cgroup out of memory: Killed process 12172 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3196.105671][T12186] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3196.116072][T12186] CPU: 1 PID: 12186 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3196.124774][T12186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3196.134842][T12186] Call Trace:
[ 3196.138123][T12186]  <TASK>
[ 3196.141059][T12186]  dump_stack_lvl+0xd1/0x138
[ 3196.145669][T12186]  dump_header+0x10b/0x85f
[ 3196.150109][T12186]  oom_kill_process.cold+0x10/0x15
[ 3196.155239][T12186]  out_of_memory+0x35c/0x14a0
[ 3196.159948][T12186]  ? oom_killer_disable+0x280/0x280
[ 3196.165171][T12186]  ? find_held_lock+0x2d/0x110
[ 3196.169961][T12186]  mem_cgroup_out_of_memory+0x206/0x270
[ 3196.175522][T12186]  ? mem_cgroup_margin+0x130/0x130
[ 3196.180649][T12186]  ? lock_downgrade+0x6e0/0x6e0
[ 3196.185519][T12186]  try_charge_memcg+0xefb/0x12f0
[ 3196.190476][T12186]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3196.196463][T12186]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3196.202200][T12186]  ? lock_downgrade+0x6e0/0x6e0
[ 3196.207061][T12186]  ? lock_downgrade+0x6e0/0x6e0
[ 3196.211933][T12186]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3196.217490][T12186]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3196.223658][T12186]  copy_process+0x4e3/0x7520
[ 3196.228261][T12186]  ? page_remove_rmap+0x435/0x1210
[ 3196.234252][T12186]  ? folio_flags.constprop.0+0x53/0x150
[ 3196.239819][T12186]  ? put_page+0xd9/0x280
[ 3196.244076][T12186]  ? do_wp_page+0x844/0x3370
[ 3196.248684][T12186]  ? __cleanup_sighand+0xb0/0xb0
[ 3196.253627][T12186]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3196.259014][T12186]  ? rwlock_bug.part.0+0x90/0x90
[ 3196.263964][T12186]  ? lock_chain_count+0x20/0x20
[ 3196.268832][T12186]  kernel_clone+0xeb/0x990
[ 3196.273271][T12186]  ? create_io_thread+0xf0/0xf0
[ 3196.278137][T12186]  ? find_held_lock+0x2d/0x110
[ 3196.282926][T12186]  __do_sys_clone+0xba/0x100
[ 3196.287542][T12186]  ? kernel_clone+0x990/0x990
[ 3196.292257][T12186]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3196.298180][T12186]  do_syscall_64+0x39/0xb0
[ 3196.302640][T12186]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3196.308542][T12186] RIP: 0033:0x7f36ee08d4f1
[ 3196.312983][T12186] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3196.332617][T12186] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3196.341048][T12186] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3196.349028][T12186] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3196.357003][T12186] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
10:32:37 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x114f140d}}], 0x2, 0x0)

10:32:37 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000300000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:37 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xff0f0000}, 0x0)

10:32:37 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x48000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:37 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x34000000}}], 0x2, 0x0)

[ 3196.364978][T12186] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3196.372953][T12186] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3196.380949][T12186]  </TASK>
[ 3196.389895][T12186] memory: usage 307200kB, limit 307200kB, failcnt 30050
[ 3196.397993][T12186] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3196.441426][T12186] Memory cgroup stats for /syz5:
[ 3196.441598][T12186] anon 86016
[ 3196.441598][T12186] file 425984
[ 3196.441598][T12186] kernel 314048512
[ 3196.441598][T12186] kernel_stack 32768
[ 3196.441598][T12186] pagetables 77824
[ 3196.441598][T12186] sec_pagetables 0
[ 3196.441598][T12186] percpu 5430016
[ 3196.441598][T12186] sock 0
[ 3196.441598][T12186] vmalloc 8192
[ 3196.441598][T12186] shmem 425984
[ 3196.441598][T12186] zswap 0
[ 3196.441598][T12186] zswapped 0
[ 3196.441598][T12186] file_mapped 393216
10:32:37 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x3f000000}}], 0x2, 0x0)

10:32:37 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4c000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:37 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000400000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3196.441598][T12186] file_dirty 0
[ 3196.441598][T12186] file_writeback 0
[ 3196.441598][T12186] swapcached 0
[ 3196.441598][T12186] anon_thp 0
[ 3196.441598][T12186] file_thp 0
[ 3196.441598][T12186] shmem_thp 0
[ 3196.441598][T12186] inactive_anon 212992
[ 3196.441598][T12186] active_anon 299008
[ 3196.441598][T12186] inactive_file 0
[ 3196.441598][T12186] active_file 0
[ 3196.441598][T12186] unevictable 0
[ 3196.441598][T12186] slab_reclaimable 216400
[ 3196.441598][T12186] slab_unreclaimable 308229192
10:32:37 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x40000000}}], 0x2, 0x0)

10:32:37 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000500000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3196.672660][T12186] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12186,uid=0
[ 3196.692068][T12186] Memory cgroup out of memory: Killed process 12186 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3196.720971][T12191] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3196.737365][T12191] CPU: 0 PID: 12191 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3196.746073][T12191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3196.756152][T12191] Call Trace:
[ 3196.759446][T12191]  <TASK>
[ 3196.762398][T12191]  dump_stack_lvl+0xd1/0x138
[ 3196.767028][T12191]  dump_header+0x10b/0x85f
[ 3196.771471][T12191]  oom_kill_process.cold+0x10/0x15
[ 3196.776611][T12191]  out_of_memory+0x35c/0x14a0
[ 3196.781327][T12191]  ? find_held_lock+0x2d/0x110
[ 3196.786116][T12191]  ? oom_killer_disable+0x280/0x280
[ 3196.791338][T12191]  ? find_held_lock+0x2d/0x110
[ 3196.796130][T12191]  mem_cgroup_out_of_memory+0x206/0x270
[ 3196.801712][T12191]  ? mem_cgroup_margin+0x130/0x130
[ 3196.806838][T12191]  ? lock_downgrade+0x6e0/0x6e0
[ 3196.811712][T12191]  try_charge_memcg+0xefb/0x12f0
[ 3196.816669][T12191]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3196.822666][T12191]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3196.828409][T12191]  ? lock_downgrade+0x6e0/0x6e0
[ 3196.833287][T12191]  obj_cgroup_charge+0x2af/0x5e0
[ 3196.838239][T12191]  ? __anon_vma_prepare+0x64/0x580
[ 3196.843371][T12191]  kmem_cache_alloc+0xb5/0x430
[ 3196.848148][T12191]  __anon_vma_prepare+0x64/0x580
[ 3196.853098][T12191]  ? __pmd_alloc+0x30c/0x5d0
[ 3196.857710][T12191]  __handle_mm_fault+0x392f/0x3c90
[ 3196.862841][T12191]  ? vm_iomap_memory+0x190/0x190
[ 3196.867813][T12191]  handle_mm_fault+0x1b6/0x850
[ 3196.872595][T12191]  do_user_addr_fault+0x475/0x1210
[ 3196.877723][T12191]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3196.883289][T12191]  exc_page_fault+0x98/0x170
[ 3196.887886][T12191]  asm_exc_page_fault+0x26/0x30
[ 3196.892745][T12191] RIP: 0033:0x7fde80a2bd49
[ 3196.897178][T12191] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3196.916790][T12191] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
10:32:37 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xb800)

10:32:37 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x5b000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3196.922863][T12191] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3196.930835][T12191] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3196.938805][T12191] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3196.946777][T12191] R10: 00007fde80600068 R11: 0000000000000246 R12: 000000000030c61b
[ 3196.954750][T12191] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3196.962739][T12191]  </TASK>
[ 3196.999517][T12191] memory: usage 307200kB, limit 307200kB, failcnt 36344
[ 3197.019667][T12191] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3197.041350][T12191] Memory cgroup stats for /syz2:
[ 3197.041522][T12191] anon 131072
[ 3197.041522][T12191] file 307200
[ 3197.041522][T12191] kernel 314126336
[ 3197.041522][T12191] kernel_stack 65536
[ 3197.041522][T12191] pagetables 86016
[ 3197.041522][T12191] sec_pagetables 0
[ 3197.041522][T12191] percpu 5433504
[ 3197.041522][T12191] sock 0
[ 3197.041522][T12191] vmalloc 16384
[ 3197.041522][T12191] shmem 307200
[ 3197.041522][T12191] zswap 0
[ 3197.041522][T12191] zswapped 0
[ 3197.041522][T12191] file_mapped 299008
[ 3197.041522][T12191] file_dirty 0
[ 3197.041522][T12191] file_writeback 0
[ 3197.041522][T12191] swapcached 0
[ 3197.041522][T12191] anon_thp 0
[ 3197.041522][T12191] file_thp 0
[ 3197.041522][T12191] shmem_thp 0
[ 3197.041522][T12191] inactive_anon 139264
[ 3197.041522][T12191] active_anon 299008
[ 3197.041522][T12191] inactive_file 0
[ 3197.041522][T12191] active_file 0
[ 3197.041522][T12191] unevictable 0
[ 3197.041522][T12191] slab_reclaimable 112984
[ 3197.041522][T12191] slab_unreclaimable 308382120
[ 3197.184032][T12191] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12191,uid=0
[ 3197.199861][T12191] Memory cgroup out of memory: Killed process 12191 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3197.219029][T12197] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3197.231514][T12197] CPU: 0 PID: 12197 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3197.240224][T12197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3197.250290][T12197] Call Trace:
[ 3197.253560][T12197]  <TASK>
[ 3197.256488][T12197]  dump_stack_lvl+0xd1/0x138
[ 3197.261076][T12197]  dump_header+0x10b/0x85f
[ 3197.265499][T12197]  oom_kill_process.cold+0x10/0x15
[ 3197.270611][T12197]  out_of_memory+0x35c/0x14a0
[ 3197.275291][T12197]  ? oom_killer_disable+0x280/0x280
[ 3197.280491][T12197]  ? find_held_lock+0x2d/0x110
[ 3197.285269][T12197]  mem_cgroup_out_of_memory+0x206/0x270
[ 3197.290853][T12197]  ? mem_cgroup_margin+0x130/0x130
[ 3197.295995][T12197]  ? lock_downgrade+0x6e0/0x6e0
[ 3197.300889][T12197]  try_charge_memcg+0xefb/0x12f0
[ 3197.305848][T12197]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3197.311838][T12197]  ? lock_downgrade+0x6e0/0x6e0
[ 3197.316695][T12197]  charge_memcg+0x90/0x3b0
[ 3197.321115][T12197]  __mem_cgroup_charge+0x2b/0x90
[ 3197.326057][T12197]  do_wp_page+0x7ec/0x3370
[ 3197.330500][T12197]  ? lock_release+0x810/0x810
[ 3197.335188][T12197]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3197.340594][T12197]  ? do_raw_spin_lock+0x124/0x2b0
[ 3197.345640][T12197]  ? rwlock_bug.part.0+0x90/0x90
[ 3197.350589][T12197]  ? lock_chain_count+0x20/0x20
[ 3197.355436][T12197]  __handle_mm_fault+0x1f58/0x3c90
[ 3197.360546][T12197]  ? vm_iomap_memory+0x190/0x190
[ 3197.365493][T12197]  handle_mm_fault+0x1b6/0x850
[ 3197.370341][T12197]  do_user_addr_fault+0x475/0x1210
[ 3197.375448][T12197]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3197.380993][T12197]  exc_page_fault+0x98/0x170
[ 3197.385588][T12197]  asm_exc_page_fault+0x26/0x30
[ 3197.390515][T12197] RIP: 0033:0x7fbb9f039570
[ 3197.394964][T12197] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3197.414594][T12197] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3197.420663][T12197] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3197.428625][T12197] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3197.436621][T12197] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3197.444616][T12197] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3197.452596][T12197] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3197.460559][T12197]  ? security_socket_create+0x3f/0xc0
[ 3197.465965][T12197]  </TASK>
[ 3197.479559][T12197] memory: usage 307200kB, limit 307200kB, failcnt 153934
[ 3197.486901][T12197] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3197.493848][T12197] Memory cgroup stats for /syz4:
[ 3197.494003][T12197] anon 118784
[ 3197.494003][T12197] file 438272
[ 3197.494003][T12197] kernel 314011648
[ 3197.494003][T12197] kernel_stack 65536
[ 3197.494003][T12197] pagetables 73728
[ 3197.494003][T12197] sec_pagetables 0
[ 3197.494003][T12197] percpu 5617024
[ 3197.494003][T12197] sock 4096
[ 3197.494003][T12197] vmalloc 0
[ 3197.494003][T12197] shmem 438272
[ 3197.494003][T12197] zswap 0
[ 3197.494003][T12197] zswapped 0
[ 3197.494003][T12197] file_mapped 393216
[ 3197.494003][T12197] file_dirty 0
[ 3197.494003][T12197] file_writeback 0
[ 3197.494003][T12197] swapcached 0
[ 3197.494003][T12197] anon_thp 0
[ 3197.494003][T12197] file_thp 0
[ 3197.494003][T12197] shmem_thp 0
[ 3197.494003][T12197] inactive_anon 131072
[ 3197.494003][T12197] active_anon 425984
[ 3197.494003][T12197] inactive_file 0
[ 3197.494003][T12197] active_file 0
[ 3197.494003][T12197] unevictable 0
[ 3197.494003][T12197] slab_reclaimable 23024
[ 3197.494003][T12197] slab_unreclaimable 308202640
[ 3197.589177][T12197] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12197,uid=0
[ 3197.606084][T12197] Memory cgroup out of memory: Killed process 12197 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3197.633315][T12210] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3197.643974][T12210] CPU: 0 PID: 12210 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3197.652688][T12210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3197.662753][T12210] Call Trace:
[ 3197.666024][T12210]  <TASK>
[ 3197.668943][T12210]  dump_stack_lvl+0xd1/0x138
[ 3197.673537][T12210]  dump_header+0x10b/0x85f
[ 3197.677957][T12210]  oom_kill_process.cold+0x10/0x15
[ 3197.683071][T12210]  out_of_memory+0x35c/0x14a0
[ 3197.687754][T12210]  ? find_held_lock+0x2d/0x110
[ 3197.692518][T12210]  ? oom_killer_disable+0x280/0x280
[ 3197.697717][T12210]  ? find_held_lock+0x2d/0x110
[ 3197.702478][T12210]  mem_cgroup_out_of_memory+0x206/0x270
[ 3197.708025][T12210]  ? mem_cgroup_margin+0x130/0x130
[ 3197.713142][T12210]  ? lock_downgrade+0x6e0/0x6e0
[ 3197.718014][T12210]  try_charge_memcg+0xefb/0x12f0
[ 3197.722952][T12210]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3197.728960][T12210]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3197.734695][T12210]  ? lock_downgrade+0x6e0/0x6e0
[ 3197.739564][T12210]  ? lock_downgrade+0x6e0/0x6e0
[ 3197.744433][T12210]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3197.749996][T12210]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3197.756161][T12210]  copy_process+0x4e3/0x7520
[ 3197.760762][T12210]  ? __lock_acquire+0xbc3/0x56d0
[ 3197.765716][T12210]  ? __cleanup_sighand+0xb0/0xb0
[ 3197.770662][T12210]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3197.776652][T12210]  ? psi_memstall_leave+0x174/0x250
[ 3197.781888][T12210]  kernel_clone+0xeb/0x990
[ 3197.786314][T12210]  ? create_io_thread+0xf0/0xf0
[ 3197.791179][T12210]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3197.797436][T12210]  ? lock_downgrade+0x6e0/0x6e0
[ 3197.802302][T12210]  __do_sys_clone+0xba/0x100
[ 3197.806899][T12210]  ? kernel_clone+0x990/0x990
[ 3197.811617][T12210]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3197.817526][T12210]  do_syscall_64+0x39/0xb0
[ 3197.821958][T12210]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3197.827862][T12210] RIP: 0033:0x7f36ee08d4f1
[ 3197.832278][T12210] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3197.851908][T12210] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3197.860327][T12210] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3197.868301][T12210] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3197.876274][T12210] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
10:32:38 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x114f140d}}], 0x2, 0x0)

10:32:38 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000600000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:38 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x43113660}}], 0x2, 0x0)

10:32:38 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x68000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:38 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xff2c0400}, 0x0)

[ 3197.884250][T12210] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3197.892226][T12210] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3197.900216][T12210]  </TASK>
10:32:38 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x6c000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:38 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x46832a88}}], 0x2, 0x0)

10:32:38 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000700000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3197.942079][T12210] memory: usage 307184kB, limit 307200kB, failcnt 30162
[ 3197.966798][T12210] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3197.999680][T12210] Memory cgroup stats for /syz5:
[ 3197.999864][T12210] anon 86016
[ 3197.999864][T12210] file 425984
[ 3197.999864][T12210] kernel 314044416
[ 3197.999864][T12210] kernel_stack 32768
[ 3197.999864][T12210] pagetables 77824
[ 3197.999864][T12210] sec_pagetables 0
[ 3197.999864][T12210] percpu 5429952
[ 3197.999864][T12210] sock 0
[ 3197.999864][T12210] vmalloc 8192
[ 3197.999864][T12210] shmem 425984
[ 3197.999864][T12210] zswap 0
[ 3197.999864][T12210] zswapped 0
[ 3197.999864][T12210] file_mapped 393216
10:32:38 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x74000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:38 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xff7f0000}, 0x0)

[ 3197.999864][T12210] file_dirty 0
[ 3197.999864][T12210] file_writeback 0
[ 3197.999864][T12210] swapcached 0
[ 3197.999864][T12210] anon_thp 0
[ 3197.999864][T12210] file_thp 0
[ 3197.999864][T12210] shmem_thp 0
[ 3197.999864][T12210] inactive_anon 212992
[ 3197.999864][T12210] active_anon 299008
[ 3197.999864][T12210] inactive_file 0
[ 3197.999864][T12210] active_file 0
[ 3197.999864][T12210] unevictable 0
[ 3197.999864][T12210] slab_reclaimable 216400
[ 3197.999864][T12210] slab_unreclaimable 308217408
10:32:39 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xba01)

10:32:39 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000900000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3198.210477][T12210] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12210,uid=0
[ 3198.228118][T12210] Memory cgroup out of memory: Killed process 12210 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3198.247849][T12219] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3198.271116][T12219] CPU: 0 PID: 12219 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3198.279840][T12219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3198.289929][T12219] Call Trace:
[ 3198.293227][T12219]  <TASK>
[ 3198.296177][T12219]  dump_stack_lvl+0xd1/0x138
[ 3198.300806][T12219]  dump_header+0x10b/0x85f
[ 3198.305272][T12219]  oom_kill_process.cold+0x10/0x15
[ 3198.310427][T12219]  out_of_memory+0x35c/0x14a0
[ 3198.315163][T12219]  ? oom_killer_disable+0x280/0x280
[ 3198.320411][T12219]  ? find_held_lock+0x2d/0x110
[ 3198.325223][T12219]  mem_cgroup_out_of_memory+0x206/0x270
[ 3198.330809][T12219]  ? mem_cgroup_margin+0x130/0x130
[ 3198.335965][T12219]  ? lock_downgrade+0x6e0/0x6e0
[ 3198.340864][T12219]  try_charge_memcg+0xefb/0x12f0
[ 3198.345841][T12219]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3198.351872][T12219]  ? lock_downgrade+0x6e0/0x6e0
[ 3198.356767][T12219]  charge_memcg+0x90/0x3b0
[ 3198.361217][T12219]  __mem_cgroup_charge+0x2b/0x90
[ 3198.366190][T12219]  do_wp_page+0x7ec/0x3370
[ 3198.370647][T12219]  ? lock_release+0x810/0x810
[ 3198.375343][T12219]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3198.380732][T12219]  ? do_raw_spin_lock+0x124/0x2b0
[ 3198.385779][T12219]  ? rwlock_bug.part.0+0x90/0x90
[ 3198.390744][T12219]  ? lock_chain_count+0x20/0x20
[ 3198.395623][T12219]  __handle_mm_fault+0x1f58/0x3c90
[ 3198.400762][T12219]  ? vm_iomap_memory+0x190/0x190
[ 3198.405747][T12219]  handle_mm_fault+0x1b6/0x850
[ 3198.410532][T12219]  do_user_addr_fault+0x475/0x1210
[ 3198.415660][T12219]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3198.421242][T12219]  exc_page_fault+0x98/0x170
[ 3198.425849][T12219]  asm_exc_page_fault+0x26/0x30
[ 3198.430712][T12219] RIP: 0033:0x7fbb9f039570
[ 3198.435137][T12219] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3198.454752][T12219] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3198.460830][T12219] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3198.468806][T12219] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3198.476781][T12219] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3198.484756][T12219] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3198.492731][T12219] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3198.500703][T12219]  ? security_socket_create+0x3f/0xc0
[ 3198.506112][T12219]  </TASK>
[ 3198.514375][T12219] memory: usage 307200kB, limit 307200kB, failcnt 154036
[ 3198.521571][T12219] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3198.529166][T12219] Memory cgroup stats for /syz4:
[ 3198.529397][T12219] anon 118784
[ 3198.529397][T12219] file 438272
[ 3198.529397][T12219] kernel 314011648
[ 3198.529397][T12219] kernel_stack 65536
[ 3198.529397][T12219] pagetables 73728
[ 3198.529397][T12219] sec_pagetables 0
[ 3198.529397][T12219] percpu 5617024
[ 3198.529397][T12219] sock 4096
[ 3198.529397][T12219] vmalloc 0
[ 3198.529397][T12219] shmem 438272
[ 3198.529397][T12219] zswap 0
[ 3198.529397][T12219] zswapped 0
[ 3198.529397][T12219] file_mapped 393216
[ 3198.529397][T12219] file_dirty 0
[ 3198.529397][T12219] file_writeback 0
[ 3198.529397][T12219] swapcached 0
[ 3198.529397][T12219] anon_thp 0
[ 3198.529397][T12219] file_thp 0
[ 3198.529397][T12219] shmem_thp 0
[ 3198.529397][T12219] inactive_anon 131072
[ 3198.529397][T12219] active_anon 425984
[ 3198.529397][T12219] inactive_file 0
[ 3198.529397][T12219] active_file 0
[ 3198.529397][T12219] unevictable 0
[ 3198.529397][T12219] slab_reclaimable 23024
[ 3198.529397][T12219] slab_unreclaimable 308202640
[ 3198.629683][T12219] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12219,uid=0
[ 3198.648555][T12219] Memory cgroup out of memory: Killed process 12219 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:39 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x114f140d}}], 0x2, 0x0)

10:32:39 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x48000000}}], 0x2, 0x0)

10:32:39 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x7a000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:39 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000e00000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:39 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xffff0300}, 0x0)

[ 3198.697902][T12234] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
10:32:39 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x7ffffff7, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3198.755239][T12234] CPU: 1 PID: 12234 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3198.763975][T12234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3198.774057][T12234] Call Trace:
[ 3198.777370][T12234]  <TASK>
[ 3198.780332][T12234]  dump_stack_lvl+0xd1/0x138
[ 3198.784960][T12234]  dump_header+0x10b/0x85f
[ 3198.789421][T12234]  oom_kill_process.cold+0x10/0x15
[ 3198.794582][T12234]  out_of_memory+0x35c/0x14a0
[ 3198.799312][T12234]  ? find_held_lock+0x2d/0x110
[ 3198.804120][T12234]  ? oom_killer_disable+0x280/0x280
[ 3198.809372][T12234]  ? find_held_lock+0x2d/0x110
[ 3198.814184][T12234]  mem_cgroup_out_of_memory+0x206/0x270
[ 3198.819794][T12234]  ? mem_cgroup_margin+0x130/0x130
[ 3198.824943][T12234]  ? lock_downgrade+0x6e0/0x6e0
[ 3198.829844][T12234]  try_charge_memcg+0xefb/0x12f0
[ 3198.834821][T12234]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3198.840833][T12234]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3198.846591][T12234]  ? lock_downgrade+0x6e0/0x6e0
10:32:39 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x8dffffff, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3198.851470][T12234]  ? lock_downgrade+0x6e0/0x6e0
[ 3198.856367][T12234]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3198.861950][T12234]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3198.868143][T12234]  copy_process+0x4e3/0x7520
[ 3198.872791][T12234]  ? __lock_acquire+0xbc3/0x56d0
[ 3198.877780][T12234]  ? __cleanup_sighand+0xb0/0xb0
[ 3198.882751][T12234]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3198.888777][T12234]  ? psi_memstall_leave+0x174/0x250
[ 3198.894025][T12234]  kernel_clone+0xeb/0x990
[ 3198.898479][T12234]  ? create_io_thread+0xf0/0xf0
10:32:39 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xa4d95540, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3198.903363][T12234]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3198.909646][T12234]  ? lock_downgrade+0x6e0/0x6e0
[ 3198.914533][T12234]  __do_sys_clone+0xba/0x100
[ 3198.919152][T12234]  ? kernel_clone+0x990/0x990
[ 3198.923876][T12234]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3198.929806][T12234]  do_syscall_64+0x39/0xb0
[ 3198.934256][T12234]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3198.940177][T12234] RIP: 0033:0x7f36ee08d4f1
10:32:39 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xaa050000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3198.944615][T12234] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3198.964248][T12234] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3198.972689][T12234] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3198.980700][T12234] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3198.988706][T12234] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3198.996705][T12234] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
10:32:39 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000f00000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3199.004703][T12234] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3199.012722][T12234]  </TASK>
[ 3199.036226][T12234] memory: usage 307176kB, limit 307200kB, failcnt 30267
[ 3199.052330][T12234] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3199.062751][T12234] Memory cgroup stats for /syz5:
[ 3199.062963][T12234] anon 86016
[ 3199.062963][T12234] file 425984
[ 3199.062963][T12234] kernel 314036224
[ 3199.062963][T12234] kernel_stack 32768
[ 3199.062963][T12234] pagetables 77824
[ 3199.062963][T12234] sec_pagetables 0
[ 3199.062963][T12234] percpu 5429952
[ 3199.062963][T12234] sock 0
[ 3199.062963][T12234] vmalloc 8192
[ 3199.062963][T12234] shmem 425984
[ 3199.062963][T12234] zswap 0
[ 3199.062963][T12234] zswapped 0
[ 3199.062963][T12234] file_mapped 393216
[ 3199.062963][T12234] file_dirty 0
[ 3199.062963][T12234] file_writeback 0
[ 3199.062963][T12234] swapcached 0
[ 3199.062963][T12234] anon_thp 0
[ 3199.062963][T12234] file_thp 0
[ 3199.062963][T12234] shmem_thp 0
[ 3199.062963][T12234] inactive_anon 212992
[ 3199.062963][T12234] active_anon 299008
[ 3199.062963][T12234] inactive_file 0
[ 3199.062963][T12234] active_file 0
[ 3199.062963][T12234] unevictable 0
[ 3199.062963][T12234] slab_reclaimable 216400
[ 3199.062963][T12234] slab_unreclaimable 308217408
[ 3199.158887][T12234] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12234,uid=0
[ 3199.178091][T12234] Memory cgroup out of memory: Killed process 12234 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:32:40 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xc402)

10:32:40 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xb80b0000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3199.205686][T12245] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3199.222711][T12245] CPU: 1 PID: 12245 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3199.231433][T12245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3199.241516][T12245] Call Trace:
[ 3199.244887][T12245]  <TASK>
[ 3199.247842][T12245]  dump_stack_lvl+0xd1/0x138
[ 3199.252476][T12245]  dump_header+0x10b/0x85f
[ 3199.256946][T12245]  oom_kill_process.cold+0x10/0x15
[ 3199.262102][T12245]  out_of_memory+0x35c/0x14a0
[ 3199.266819][T12245]  ? oom_killer_disable+0x280/0x280
[ 3199.272068][T12245]  ? find_held_lock+0x2d/0x110
[ 3199.277058][T12245]  mem_cgroup_out_of_memory+0x206/0x270
[ 3199.282647][T12245]  ? mem_cgroup_margin+0x130/0x130
[ 3199.287798][T12245]  ? lock_downgrade+0x6e0/0x6e0
[ 3199.292715][T12245]  try_charge_memcg+0xe89/0x12f0
[ 3199.297696][T12245]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3199.303709][T12245]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3199.309464][T12245]  ? lock_downgrade+0x6e0/0x6e0
[ 3199.314332][T12245]  ? lock_downgrade+0x6e0/0x6e0
[ 3199.319203][T12245]  obj_cgroup_charge+0x2af/0x5e0
[ 3199.324142][T12245]  kmem_cache_alloc_lru+0x145/0x760
[ 3199.329332][T12245]  ? sock_alloc_inode+0x27/0x1d0
[ 3199.334285][T12245]  sock_alloc_inode+0x27/0x1d0
[ 3199.339095][T12245]  ? sock_free_inode+0x30/0x30
[ 3199.343854][T12245]  alloc_inode+0x61/0x230
[ 3199.348186][T12245]  new_inode_pseudo+0x17/0x80
[ 3199.352867][T12245]  sock_alloc+0x40/0x260
[ 3199.357133][T12245]  __sock_create+0xbd/0x790
[ 3199.361640][T12245]  __sys_socket+0x133/0x250
[ 3199.366160][T12245]  ? __sys_socket_file+0x1f0/0x1f0
[ 3199.371288][T12245]  __x64_sys_socket+0x73/0xb0
[ 3199.375966][T12245]  do_syscall_64+0x39/0xb0
[ 3199.380381][T12245]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3199.386268][T12245] RIP: 0033:0x7fde80a8c0c9
[ 3199.390675][T12245] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3199.410278][T12245] RSP: 002b:00007fde818ce168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3199.418686][T12245] RAX: ffffffffffffffda RBX: 00007fde80babf80 RCX: 00007fde80a8c0c9
[ 3199.426651][T12245] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3199.434613][T12245] RBP: 00007fde80ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3199.442577][T12245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3199.450537][T12245] R13: 00007ffd6245db6f R14: 00007fde818ce300 R15: 0000000000022000
[ 3199.458514][T12245]  </TASK>
[ 3199.466737][T12245] memory: usage 307188kB, limit 307200kB, failcnt 36680
[ 3199.473812][T12245] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3199.480991][T12245] Memory cgroup stats for /syz2:
[ 3199.481210][T12245] anon 102400
[ 3199.481210][T12245] file 307200
[ 3199.481210][T12245] kernel 314146816
[ 3199.481210][T12245] kernel_stack 65536
[ 3199.481210][T12245] pagetables 86016
[ 3199.481210][T12245] sec_pagetables 0
[ 3199.481210][T12245] percpu 5433440
[ 3199.481210][T12245] sock 0
[ 3199.481210][T12245] vmalloc 16384
[ 3199.481210][T12245] shmem 307200
[ 3199.481210][T12245] zswap 0
[ 3199.481210][T12245] zswapped 0
[ 3199.481210][T12245] file_mapped 299008
[ 3199.481210][T12245] file_dirty 0
[ 3199.481210][T12245] file_writeback 0
[ 3199.481210][T12245] swapcached 0
[ 3199.481210][T12245] anon_thp 0
[ 3199.481210][T12245] file_thp 0
[ 3199.481210][T12245] shmem_thp 0
[ 3199.481210][T12245] inactive_anon 110592
[ 3199.481210][T12245] active_anon 299008
[ 3199.481210][T12245] inactive_file 0
[ 3199.481210][T12245] active_file 0
[ 3199.481210][T12245] unevictable 0
[ 3199.481210][T12245] slab_reclaimable 111056
[ 3199.481210][T12245] slab_unreclaimable 308381000
[ 3199.579239][T12245] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12241,uid=0
[ 3199.594972][T12245] Memory cgroup out of memory: Killed process 12241 (syz-executor.2) total-vm:54672kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3199.614686][T12243] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3199.633214][T12243] CPU: 0 PID: 12243 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3199.641926][T12243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3199.651997][T12243] Call Trace:
[ 3199.655301][T12243]  <TASK>
[ 3199.658251][T12243]  dump_stack_lvl+0xd1/0x138
[ 3199.662865][T12243]  dump_header+0x10b/0x85f
[ 3199.667291][T12243]  oom_kill_process.cold+0x10/0x15
[ 3199.672405][T12243]  out_of_memory+0x35c/0x14a0
[ 3199.677086][T12243]  ? oom_killer_disable+0x280/0x280
[ 3199.682372][T12243]  ? find_held_lock+0x2d/0x110
[ 3199.687157][T12243]  mem_cgroup_out_of_memory+0x206/0x270
[ 3199.692742][T12243]  ? mem_cgroup_margin+0x130/0x130
[ 3199.697883][T12243]  ? lock_downgrade+0x6e0/0x6e0
[ 3199.702774][T12243]  try_charge_memcg+0xefb/0x12f0
[ 3199.707736][T12243]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3199.713720][T12243]  ? lock_downgrade+0x6e0/0x6e0
[ 3199.718591][T12243]  charge_memcg+0x90/0x3b0
[ 3199.723037][T12243]  __mem_cgroup_charge+0x2b/0x90
[ 3199.727992][T12243]  do_wp_page+0x7ec/0x3370
[ 3199.732409][T12243]  ? lock_release+0x810/0x810
[ 3199.737084][T12243]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3199.742471][T12243]  ? do_raw_spin_lock+0x124/0x2b0
[ 3199.747505][T12243]  ? rwlock_bug.part.0+0x90/0x90
[ 3199.752448][T12243]  ? lock_chain_count+0x20/0x20
[ 3199.757307][T12243]  __handle_mm_fault+0x1f58/0x3c90
[ 3199.762442][T12243]  ? vm_iomap_memory+0x190/0x190
[ 3199.767417][T12243]  handle_mm_fault+0x1b6/0x850
[ 3199.772201][T12243]  do_user_addr_fault+0x475/0x1210
[ 3199.777324][T12243]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3199.782889][T12243]  exc_page_fault+0x98/0x170
[ 3199.787490][T12243]  asm_exc_page_fault+0x26/0x30
[ 3199.792344][T12243] RIP: 0033:0x7fbb9f039570
[ 3199.796761][T12243] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3199.816374][T12243] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3199.822450][T12243] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3199.830424][T12243] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3199.838397][T12243] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3199.846369][T12243] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3199.854343][T12243] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3199.862321][T12243]  ? __sys_socket+0x7c/0x250
[ 3199.866942][T12243]  </TASK>
[ 3199.874363][T12243] memory: usage 307200kB, limit 307200kB, failcnt 154156
[ 3199.881478][T12243] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3199.888497][T12243] Memory cgroup stats for /syz4:
[ 3199.888698][T12243] anon 102400
[ 3199.888698][T12243] file 438272
[ 3199.888698][T12243] kernel 314011648
[ 3199.888698][T12243] kernel_stack 65536
[ 3199.888698][T12243] pagetables 73728
[ 3199.888698][T12243] sec_pagetables 0
[ 3199.888698][T12243] percpu 5617024
[ 3199.888698][T12243] sock 4096
[ 3199.888698][T12243] vmalloc 0
[ 3199.888698][T12243] shmem 438272
[ 3199.888698][T12243] zswap 0
[ 3199.888698][T12243] zswapped 0
[ 3199.888698][T12243] file_mapped 393216
[ 3199.888698][T12243] file_dirty 0
[ 3199.888698][T12243] file_writeback 0
[ 3199.888698][T12243] swapcached 0
[ 3199.888698][T12243] anon_thp 0
[ 3199.888698][T12243] file_thp 0
[ 3199.888698][T12243] shmem_thp 0
[ 3199.888698][T12243] inactive_anon 114688
[ 3199.888698][T12243] active_anon 425984
[ 3199.888698][T12243] inactive_file 0
[ 3199.888698][T12243] active_file 0
[ 3199.888698][T12243] unevictable 0
[ 3199.888698][T12243] slab_reclaimable 23024
[ 3199.888698][T12243] slab_unreclaimable 308205192
[ 3199.989521][T12243] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12243,uid=0
10:32:40 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x34000000}}], 0x2, 0x0)

10:32:40 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x4c000000}}], 0x2, 0x0)

10:32:40 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603006000000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:40 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xe8030000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:40 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xffffa888}, 0x0)

[ 3200.005678][T12243] Memory cgroup out of memory: Killed process 12243 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:40 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xeffdffff, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:40 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300f000000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:40 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x50000000}}], 0x2, 0x0)

[ 3200.117816][T12259] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3200.146498][T12259] CPU: 0 PID: 12259 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3200.155230][T12259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3200.165309][T12259] Call Trace:
[ 3200.168613][T12259]  <TASK>
[ 3200.171569][T12259]  dump_stack_lvl+0xd1/0x138
[ 3200.176203][T12259]  dump_header+0x10b/0x85f
[ 3200.180668][T12259]  oom_kill_process.cold+0x10/0x15
[ 3200.185827][T12259]  out_of_memory+0x35c/0x14a0
[ 3200.190555][T12259]  ? find_held_lock+0x2d/0x110
[ 3200.195355][T12259]  ? oom_killer_disable+0x280/0x280
[ 3200.200599][T12259]  ? find_held_lock+0x2d/0x110
[ 3200.205412][T12259]  mem_cgroup_out_of_memory+0x206/0x270
[ 3200.211008][T12259]  ? mem_cgroup_margin+0x130/0x130
10:32:41 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfffff000}, 0x0)

10:32:41 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603008001000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3200.216160][T12259]  ? lock_downgrade+0x6e0/0x6e0
[ 3200.221058][T12259]  try_charge_memcg+0xefb/0x12f0
[ 3200.226033][T12259]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3200.232044][T12259]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3200.237803][T12259]  ? lock_downgrade+0x6e0/0x6e0
[ 3200.242687][T12259]  ? lock_downgrade+0x6e0/0x6e0
[ 3200.247581][T12259]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3200.253170][T12259]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3200.259364][T12259]  copy_process+0x4e3/0x7520
[ 3200.263991][T12259]  ? __lock_acquire+0xbc3/0x56d0
[ 3200.268971][T12259]  ? __cleanup_sighand+0xb0/0xb0
[ 3200.273942][T12259]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3200.279956][T12259]  ? psi_memstall_leave+0x174/0x250
[ 3200.285227][T12259]  kernel_clone+0xeb/0x990
[ 3200.289674][T12259]  ? create_io_thread+0xf0/0xf0
[ 3200.294562][T12259]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3200.300838][T12259]  ? lock_downgrade+0x6e0/0x6e0
[ 3200.305734][T12259]  __do_sys_clone+0xba/0x100
[ 3200.310357][T12259]  ? kernel_clone+0x990/0x990
[ 3200.315082][T12259]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3200.321011][T12259]  do_syscall_64+0x39/0xb0
[ 3200.325463][T12259]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3200.331390][T12259] RIP: 0033:0x7f36ee08d4f1
[ 3200.335826][T12259] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3200.355459][T12259] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3200.363902][T12259] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3200.371906][T12259] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3200.379903][T12259] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3200.387895][T12259] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3200.395886][T12259] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3200.403904][T12259]  </TASK>
[ 3200.419097][T12259] memory: usage 307180kB, limit 307200kB, failcnt 30389
[ 3200.434540][T12259] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3200.446283][T12259] Memory cgroup stats for /syz5:
[ 3200.446509][T12259] anon 86016
[ 3200.446509][T12259] file 425984
[ 3200.446509][T12259] kernel 314040320
[ 3200.446509][T12259] kernel_stack 32768
[ 3200.446509][T12259] pagetables 77824
[ 3200.446509][T12259] sec_pagetables 0
[ 3200.446509][T12259] percpu 5429952
[ 3200.446509][T12259] sock 0
[ 3200.446509][T12259] vmalloc 8192
[ 3200.446509][T12259] shmem 425984
[ 3200.446509][T12259] zswap 0
[ 3200.446509][T12259] zswapped 0
[ 3200.446509][T12259] file_mapped 393216
[ 3200.446509][T12259] file_dirty 0
[ 3200.446509][T12259] file_writeback 0
[ 3200.446509][T12259] swapcached 0
[ 3200.446509][T12259] anon_thp 0
[ 3200.446509][T12259] file_thp 0
[ 3200.446509][T12259] shmem_thp 0
[ 3200.446509][T12259] inactive_anon 212992
[ 3200.446509][T12259] active_anon 299008
[ 3200.446509][T12259] inactive_file 0
[ 3200.446509][T12259] active_file 0
[ 3200.446509][T12259] unevictable 0
[ 3200.446509][T12259] slab_reclaimable 216400
[ 3200.446509][T12259] slab_unreclaimable 308217408
[ 3200.547775][T12259] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12259,uid=0
10:32:41 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xcc03)

10:32:41 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000003000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3200.564222][T12259] Memory cgroup out of memory: Killed process 12259 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3200.650753][T12273] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3200.691542][T12273] CPU: 1 PID: 12273 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3200.700287][T12273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3200.710371][T12273] Call Trace:
[ 3200.713669][T12273]  <TASK>
[ 3200.716624][T12273]  dump_stack_lvl+0xd1/0x138
[ 3200.721247][T12273]  dump_header+0x10b/0x85f
[ 3200.725707][T12273]  oom_kill_process.cold+0x10/0x15
[ 3200.730861][T12273]  out_of_memory+0x35c/0x14a0
[ 3200.735587][T12273]  ? find_held_lock+0x2d/0x110
[ 3200.740393][T12273]  ? oom_killer_disable+0x280/0x280
[ 3200.745635][T12273]  ? find_held_lock+0x2d/0x110
[ 3200.750442][T12273]  mem_cgroup_out_of_memory+0x206/0x270
[ 3200.756028][T12273]  ? mem_cgroup_margin+0x130/0x130
[ 3200.761172][T12273]  ? lock_downgrade+0x6e0/0x6e0
[ 3200.766057][T12273]  try_charge_memcg+0xefb/0x12f0
[ 3200.771016][T12273]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3200.777028][T12273]  ? lock_downgrade+0x6e0/0x6e0
[ 3200.781906][T12273]  charge_memcg+0x90/0x3b0
[ 3200.786339][T12273]  __mem_cgroup_charge+0x2b/0x90
[ 3200.791293][T12273]  do_wp_page+0x7ec/0x3370
[ 3200.795735][T12273]  ? lock_release+0x810/0x810
[ 3200.800431][T12273]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3200.805822][T12273]  ? do_raw_spin_lock+0x124/0x2b0
[ 3200.810855][T12273]  ? rwlock_bug.part.0+0x90/0x90
[ 3200.815802][T12273]  ? lock_chain_count+0x20/0x20
[ 3200.820664][T12273]  __handle_mm_fault+0x1f58/0x3c90
[ 3200.825802][T12273]  ? vm_iomap_memory+0x190/0x190
[ 3200.830778][T12273]  handle_mm_fault+0x1b6/0x850
[ 3200.835564][T12273]  do_user_addr_fault+0x475/0x1210
[ 3200.840697][T12273]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3200.846275][T12273]  exc_page_fault+0x98/0x170
[ 3200.850875][T12273]  asm_exc_page_fault+0x26/0x30
[ 3200.855738][T12273] RIP: 0033:0x7fbb9f039570
[ 3200.860160][T12273] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3200.879773][T12273] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3200.885846][T12273] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3200.893825][T12273] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3200.901795][T12273] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3200.909769][T12273] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3200.917740][T12273] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3200.925711][T12273]  ? __sys_socket+0x7c/0x250
[ 3200.930505][T12273]  </TASK>
[ 3200.935432][  T558] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3200.958714][T12273] memory: usage 307184kB, limit 307200kB, failcnt 154268
[ 3200.966133][T12273] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3200.973143][T12273] Memory cgroup stats for /syz4:
[ 3200.973319][T12273] anon 102400
[ 3200.973319][T12273] file 438272
[ 3200.973319][T12273] kernel 314011648
[ 3200.973319][T12273] kernel_stack 65536
[ 3200.973319][T12273] pagetables 73728
[ 3200.973319][T12273] sec_pagetables 0
[ 3200.973319][T12273] percpu 5617024
[ 3200.973319][T12273] sock 4096
[ 3200.973319][T12273] vmalloc 0
[ 3200.973319][T12273] shmem 438272
[ 3200.973319][T12273] zswap 0
[ 3200.973319][T12273] zswapped 0
[ 3200.973319][T12273] file_mapped 393216
[ 3200.973319][T12273] file_dirty 0
[ 3200.973319][T12273] file_writeback 0
[ 3200.973319][T12273] swapcached 0
[ 3200.973319][T12273] anon_thp 0
[ 3200.973319][T12273] file_thp 0
[ 3200.973319][T12273] shmem_thp 0
[ 3200.973319][T12273] inactive_anon 114688
[ 3200.973319][T12273] active_anon 425984
[ 3200.973319][T12273] inactive_file 0
[ 3200.973319][T12273] active_file 0
[ 3200.973319][T12273] unevictable 0
[ 3200.973319][T12273] slab_reclaimable 23024
[ 3200.973319][T12273] slab_unreclaimable 308202944
[ 3201.071047][T12273] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12273,uid=0
10:32:41 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x34000000}}], 0x2, 0x0)

10:32:41 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xf4010000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:41 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x50254b0c}}], 0x2, 0x0)

10:32:41 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300e803000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:41 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xffffff7f}, 0x0)

[ 3201.086863][T12273] Memory cgroup out of memory: Killed process 12273 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:42 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x5c000000}}], 0x2, 0x0)

10:32:42 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xf5ffffff, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:42 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000005000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3201.152483][T12285] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3201.195874][T12285] CPU: 1 PID: 12285 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3201.204604][T12285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3201.214672][T12285] Call Trace:
[ 3201.217955][T12285]  <TASK>
[ 3201.220888][T12285]  dump_stack_lvl+0xd1/0x138
[ 3201.225507][T12285]  dump_header+0x10b/0x85f
[ 3201.229943][T12285]  oom_kill_process.cold+0x10/0x15
[ 3201.235088][T12285]  out_of_memory+0x35c/0x14a0
[ 3201.239803][T12285]  ? find_held_lock+0x2d/0x110
[ 3201.244583][T12285]  ? oom_killer_disable+0x280/0x280
[ 3201.249799][T12285]  ? find_held_lock+0x2d/0x110
[ 3201.254583][T12285]  mem_cgroup_out_of_memory+0x206/0x270
[ 3201.260145][T12285]  ? mem_cgroup_margin+0x130/0x130
[ 3201.265269][T12285]  ? lock_downgrade+0x6e0/0x6e0
[ 3201.270141][T12285]  try_charge_memcg+0xefb/0x12f0
[ 3201.275092][T12285]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3201.281104][T12285]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3201.286850][T12285]  ? lock_downgrade+0x6e0/0x6e0
[ 3201.291710][T12285]  ? lock_downgrade+0x6e0/0x6e0
[ 3201.296597][T12285]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3201.302160][T12285]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3201.308329][T12285]  copy_process+0x4e3/0x7520
[ 3201.312931][T12285]  ? __lock_acquire+0xbc3/0x56d0
[ 3201.317903][T12285]  ? __cleanup_sighand+0xb0/0xb0
[ 3201.322853][T12285]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3201.328860][T12285]  ? psi_memstall_leave+0x174/0x250
[ 3201.334092][T12285]  kernel_clone+0xeb/0x990
[ 3201.338523][T12285]  ? create_io_thread+0xf0/0xf0
[ 3201.343398][T12285]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3201.349676][T12285]  ? lock_downgrade+0x6e0/0x6e0
[ 3201.354544][T12285]  __do_sys_clone+0xba/0x100
[ 3201.359146][T12285]  ? kernel_clone+0x990/0x990
[ 3201.363845][T12285]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3201.369757][T12285]  do_syscall_64+0x39/0xb0
[ 3201.374190][T12285]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3201.380097][T12285] RIP: 0033:0x7f36ee08d4f1
[ 3201.384521][T12285] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3201.404140][T12285] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3201.412563][T12285] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3201.420538][T12285] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3201.428535][T12285] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3201.436509][T12285] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3201.444486][T12285] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3201.452563][T12285]  </TASK>
10:32:42 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000006000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:42 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xf7ffff7f, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3201.490348][T12285] memory: usage 307184kB, limit 307200kB, failcnt 30500
[ 3201.534097][T12285] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3201.558223][T12285] Memory cgroup stats for /syz5:
[ 3201.558390][T12285] anon 86016
[ 3201.558390][T12285] file 425984
[ 3201.558390][T12285] kernel 314044416
[ 3201.558390][T12285] kernel_stack 32768
[ 3201.558390][T12285] pagetables 77824
[ 3201.558390][T12285] sec_pagetables 0
[ 3201.558390][T12285] percpu 5429952
[ 3201.558390][T12285] sock 0
[ 3201.558390][T12285] vmalloc 8192
[ 3201.558390][T12285] shmem 425984
[ 3201.558390][T12285] zswap 0
[ 3201.558390][T12285] zswapped 0
[ 3201.558390][T12285] file_mapped 393216
[ 3201.558390][T12285] file_dirty 0
[ 3201.558390][T12285] file_writeback 0
[ 3201.558390][T12285] swapcached 0
[ 3201.558390][T12285] anon_thp 0
[ 3201.558390][T12285] file_thp 0
[ 3201.558390][T12285] shmem_thp 0
[ 3201.558390][T12285] inactive_anon 212992
[ 3201.558390][T12285] active_anon 299008
[ 3201.558390][T12285] inactive_file 0
[ 3201.558390][T12285] active_file 0
[ 3201.558390][T12285] unevictable 0
[ 3201.558390][T12285] slab_reclaimable 216400
[ 3201.558390][T12285] slab_unreclaimable 308217408
[ 3201.665516][T12285] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12285,uid=0
10:32:42 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xcc05)

10:32:42 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x60000000}}], 0x2, 0x0)

[ 3201.681372][T12285] Memory cgroup out of memory: Killed process 12285 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3201.738333][T12293] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3201.769384][T12293] CPU: 0 PID: 12293 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3201.778109][T12293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3201.788191][T12293] Call Trace:
[ 3201.791493][T12293]  <TASK>
[ 3201.794442][T12293]  dump_stack_lvl+0xd1/0x138
[ 3201.799075][T12293]  dump_header+0x10b/0x85f
[ 3201.803537][T12293]  oom_kill_process.cold+0x10/0x15
[ 3201.808700][T12293]  out_of_memory+0x35c/0x14a0
[ 3201.813444][T12293]  ? oom_killer_disable+0x280/0x280
[ 3201.818696][T12293]  ? find_held_lock+0x2d/0x110
[ 3201.823510][T12293]  mem_cgroup_out_of_memory+0x206/0x270
[ 3201.829092][T12293]  ? mem_cgroup_margin+0x130/0x130
[ 3201.834221][T12293]  ? lock_downgrade+0x6e0/0x6e0
[ 3201.839097][T12293]  try_charge_memcg+0xefb/0x12f0
[ 3201.844051][T12293]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3201.850048][T12293]  ? lock_downgrade+0x6e0/0x6e0
[ 3201.854918][T12293]  charge_memcg+0x90/0x3b0
[ 3201.859345][T12293]  __mem_cgroup_charge+0x2b/0x90
[ 3201.864297][T12293]  do_wp_page+0x7ec/0x3370
[ 3201.868736][T12293]  ? lock_release+0x810/0x810
[ 3201.873418][T12293]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3201.878811][T12293]  ? do_raw_spin_lock+0x124/0x2b0
[ 3201.883844][T12293]  ? rwlock_bug.part.0+0x90/0x90
[ 3201.888789][T12293]  ? lock_chain_count+0x20/0x20
[ 3201.893650][T12293]  __handle_mm_fault+0x1f58/0x3c90
[ 3201.898784][T12293]  ? vm_iomap_memory+0x190/0x190
[ 3201.903755][T12293]  handle_mm_fault+0x1b6/0x850
[ 3201.908552][T12293]  do_user_addr_fault+0x475/0x1210
[ 3201.913689][T12293]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3201.919267][T12293]  exc_page_fault+0x98/0x170
[ 3201.923871][T12293]  asm_exc_page_fault+0x26/0x30
[ 3201.928767][T12293] RIP: 0033:0x7fbb9f039570
[ 3201.933198][T12293] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3201.952818][T12293] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3201.958895][T12293] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3201.966868][T12293] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3201.974855][T12293] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3201.982827][T12293] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3201.990798][T12293] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3201.998772][T12293]  ? __sys_socket+0x7c/0x250
[ 3202.003410][T12293]  </TASK>
[ 3202.016847][T12293] memory: usage 307200kB, limit 307200kB, failcnt 154373
[ 3202.037884][T12293] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3202.059349][T12293] Memory cgroup stats for /syz4:
[ 3202.059535][T12293] anon 102400
[ 3202.059535][T12293] file 438272
[ 3202.059535][T12293] kernel 314028032
[ 3202.059535][T12293] kernel_stack 65536
[ 3202.059535][T12293] pagetables 73728
[ 3202.059535][T12293] sec_pagetables 0
[ 3202.059535][T12293] percpu 5617088
[ 3202.059535][T12293] sock 4096
[ 3202.059535][T12293] vmalloc 0
[ 3202.059535][T12293] shmem 438272
[ 3202.059535][T12293] zswap 0
[ 3202.059535][T12293] zswapped 0
[ 3202.059535][T12293] file_mapped 393216
[ 3202.059535][T12293] file_dirty 0
[ 3202.059535][T12293] file_writeback 0
[ 3202.059535][T12293] swapcached 0
[ 3202.059535][T12293] anon_thp 0
[ 3202.059535][T12293] file_thp 0
[ 3202.059535][T12293] shmem_thp 0
[ 3202.059535][T12293] inactive_anon 114688
[ 3202.059535][T12293] active_anon 425984
[ 3202.059535][T12293] inactive_file 0
[ 3202.059535][T12293] active_file 0
[ 3202.059535][T12293] unevictable 0
[ 3202.059535][T12293] slab_reclaimable 23024
[ 3202.059535][T12293] slab_unreclaimable 308214424
[ 3202.158522][T12293] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12293,uid=0
[ 3202.174320][T12293] Memory cgroup out of memory: Killed process 12293 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3202.199914][T12309] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3202.231327][T12309] CPU: 0 PID: 12309 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3202.240047][T12309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3202.250123][T12309] Call Trace:
[ 3202.253425][T12309]  <TASK>
[ 3202.256376][T12309]  dump_stack_lvl+0xd1/0x138
[ 3202.261005][T12309]  dump_header+0x10b/0x85f
[ 3202.265470][T12309]  oom_kill_process.cold+0x10/0x15
[ 3202.270634][T12309]  out_of_memory+0x35c/0x14a0
[ 3202.275357][T12309]  ? find_held_lock+0x2d/0x110
10:32:43 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x34000000}}], 0x2, 0x0)

10:32:43 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000007000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:43 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xfdffffff, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:43 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x60361143}}], 0x2, 0x0)

10:32:43 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xffffff9e}, 0x0)

[ 3202.280159][T12309]  ? oom_killer_disable+0x280/0x280
[ 3202.285401][T12309]  ? find_held_lock+0x2d/0x110
[ 3202.290207][T12309]  mem_cgroup_out_of_memory+0x206/0x270
[ 3202.295791][T12309]  ? mem_cgroup_margin+0x130/0x130
[ 3202.300935][T12309]  ? lock_downgrade+0x6e0/0x6e0
[ 3202.305826][T12309]  try_charge_memcg+0xefb/0x12f0
[ 3202.310800][T12309]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3202.316813][T12309]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3202.322574][T12309]  ? lock_downgrade+0x6e0/0x6e0
[ 3202.327461][T12309]  ? lock_downgrade+0x6e0/0x6e0
[ 3202.332356][T12309]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3202.337956][T12309]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3202.344146][T12309]  copy_process+0x4e3/0x7520
[ 3202.348768][T12309]  ? __lock_acquire+0xbc3/0x56d0
[ 3202.353743][T12309]  ? __cleanup_sighand+0xb0/0xb0
[ 3202.358709][T12309]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3202.364722][T12309]  ? psi_memstall_leave+0x174/0x250
[ 3202.369971][T12309]  kernel_clone+0xeb/0x990
[ 3202.374427][T12309]  ? create_io_thread+0xf0/0xf0
10:32:43 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xfe800000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3202.379312][T12309]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3202.385593][T12309]  ? lock_downgrade+0x6e0/0x6e0
[ 3202.390489][T12309]  __do_sys_clone+0xba/0x100
[ 3202.395109][T12309]  ? kernel_clone+0x990/0x990
[ 3202.399833][T12309]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3202.405772][T12309]  do_syscall_64+0x39/0xb0
[ 3202.410223][T12309]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3202.416141][T12309] RIP: 0033:0x7f36ee08d4f1
10:32:43 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xfeffffff, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3202.420586][T12309] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3202.440230][T12309] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3202.448676][T12309] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3202.456673][T12309] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3202.464675][T12309] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3202.472670][T12309] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3202.480664][T12309] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3202.488682][T12309]  </TASK>
[ 3202.520942][T12309] memory: usage 307200kB, limit 307200kB, failcnt 30631
10:32:43 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000009000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:43 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x60ea0000}}], 0x2, 0x0)

[ 3202.529384][T12309] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3202.536433][T12309] Memory cgroup stats for /syz5:
[ 3202.536631][T12309] anon 86016
[ 3202.536631][T12309] file 425984
[ 3202.536631][T12309] kernel 314060800
[ 3202.536631][T12309] kernel_stack 32768
[ 3202.536631][T12309] pagetables 77824
[ 3202.536631][T12309] sec_pagetables 0
[ 3202.536631][T12309] percpu 5430016
[ 3202.536631][T12309] sock 0
[ 3202.536631][T12309] vmalloc 8192
[ 3202.536631][T12309] shmem 425984
[ 3202.536631][T12309] zswap 0
[ 3202.536631][T12309] zswapped 0
[ 3202.536631][T12309] file_mapped 393216
[ 3202.536631][T12309] file_dirty 0
[ 3202.536631][T12309] file_writeback 0
[ 3202.536631][T12309] swapcached 0
[ 3202.536631][T12309] anon_thp 0
[ 3202.536631][T12309] file_thp 0
[ 3202.536631][T12309] shmem_thp 0
[ 3202.536631][T12309] inactive_anon 212992
[ 3202.536631][T12309] active_anon 299008
[ 3202.536631][T12309] inactive_file 0
[ 3202.536631][T12309] active_file 0
[ 3202.536631][T12309] unevictable 0
[ 3202.536631][T12309] slab_reclaimable 216400
[ 3202.536631][T12309] slab_unreclaimable 308229192
10:32:43 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x610ec408}}], 0x2, 0x0)

[ 3202.645952][T12309] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12309,uid=0
[ 3202.673127][T12309] Memory cgroup out of memory: Killed process 12309 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:32:43 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xcd05)

10:32:43 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xff000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3202.747944][T12312] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3202.795080][T12312] CPU: 1 PID: 12312 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3202.803811][T12312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3202.813893][T12312] Call Trace:
[ 3202.817193][T12312]  <TASK>
[ 3202.820145][T12312]  dump_stack_lvl+0xd1/0x138
[ 3202.824770][T12312]  dump_header+0x10b/0x85f
[ 3202.829226][T12312]  oom_kill_process.cold+0x10/0x15
[ 3202.834382][T12312]  out_of_memory+0x35c/0x14a0
[ 3202.839093][T12312]  ? find_held_lock+0x2d/0x110
[ 3202.843883][T12312]  ? oom_killer_disable+0x280/0x280
[ 3202.849124][T12312]  ? find_held_lock+0x2d/0x110
[ 3202.853930][T12312]  mem_cgroup_out_of_memory+0x206/0x270
[ 3202.859515][T12312]  ? mem_cgroup_margin+0x130/0x130
[ 3202.864664][T12312]  ? lock_downgrade+0x6e0/0x6e0
[ 3202.869554][T12312]  try_charge_memcg+0xefb/0x12f0
[ 3202.874526][T12312]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3202.880543][T12312]  ? lock_downgrade+0x6e0/0x6e0
[ 3202.885438][T12312]  charge_memcg+0x90/0x3b0
[ 3202.889892][T12312]  __mem_cgroup_charge+0x2b/0x90
[ 3202.894869][T12312]  do_wp_page+0x7ec/0x3370
[ 3202.899327][T12312]  ? lock_release+0x810/0x810
[ 3202.904035][T12312]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3202.909452][T12312]  ? do_raw_spin_lock+0x124/0x2b0
[ 3202.914507][T12312]  ? rwlock_bug.part.0+0x90/0x90
[ 3202.919469][T12312]  ? lock_chain_count+0x20/0x20
[ 3202.924348][T12312]  __handle_mm_fault+0x1f58/0x3c90
[ 3202.929502][T12312]  ? vm_iomap_memory+0x190/0x190
[ 3202.934503][T12312]  handle_mm_fault+0x1b6/0x850
[ 3202.939312][T12312]  do_user_addr_fault+0x475/0x1210
[ 3202.944468][T12312]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3202.950069][T12312]  exc_page_fault+0x98/0x170
[ 3202.954694][T12312]  asm_exc_page_fault+0x26/0x30
[ 3202.959572][T12312] RIP: 0033:0x7fde80a39570
[ 3202.964010][T12312] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3202.983652][T12312] RSP: 002b:00007ffd6245db10 EFLAGS: 00010246
[ 3202.989751][T12312] RAX: 0000000036641734 RBX: 00007fde80bac0e8 RCX: 0000001b32820000
[ 3202.997745][T12312] RDX: 0000000000000000 RSI: 0000001b32820018 RDI: 000000000c5bfa59
[ 3203.005737][T12312] RBP: 0000000036641734 R08: 0000000000001734 R09: 0000000036641738
[ 3203.013728][T12312] R10: 00007ffd6245dcd0 R11: 0000000000000246 R12: 00007fde80ba0000
[ 3203.021725][T12312] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff87bf7289
[ 3203.029723][T12312]  ? __sys_sendmsg+0x99/0x1c0
[ 3203.034465][T12312]  </TASK>
[ 3203.046293][T12312] memory: usage 307200kB, limit 307200kB, failcnt 37198
[ 3203.053264][T12312] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3203.060566][T12312] Memory cgroup stats for /syz2:
[ 3203.060783][T12312] anon 110592
[ 3203.060783][T12312] file 307200
[ 3203.060783][T12312] kernel 314155008
[ 3203.060783][T12312] kernel_stack 98304
[ 3203.060783][T12312] pagetables 86016
[ 3203.060783][T12312] sec_pagetables 0
[ 3203.060783][T12312] percpu 5433440
[ 3203.060783][T12312] sock 0
[ 3203.060783][T12312] vmalloc 16384
[ 3203.060783][T12312] shmem 307200
[ 3203.060783][T12312] zswap 0
[ 3203.060783][T12312] zswapped 0
[ 3203.060783][T12312] file_mapped 299008
[ 3203.060783][T12312] file_dirty 0
[ 3203.060783][T12312] file_writeback 0
[ 3203.060783][T12312] swapcached 0
[ 3203.060783][T12312] anon_thp 0
[ 3203.060783][T12312] file_thp 0
[ 3203.060783][T12312] shmem_thp 0
[ 3203.060783][T12312] inactive_anon 118784
[ 3203.060783][T12312] active_anon 299008
[ 3203.060783][T12312] inactive_file 0
[ 3203.060783][T12312] active_file 0
[ 3203.060783][T12312] unevictable 0
[ 3203.060783][T12312] slab_reclaimable 112984
[ 3203.060783][T12312] slab_unreclaimable 308379424
[ 3203.158659][T12312] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12312,uid=0
[ 3203.174400][T12312] Memory cgroup out of memory: Killed process 12312 (syz-executor.2) total-vm:54672kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3203.192473][T12313] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3203.209806][T12313] CPU: 0 PID: 12313 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3203.218531][T12313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3203.228613][T12313] Call Trace:
[ 3203.231902][T12313]  <TASK>
[ 3203.234825][T12313]  dump_stack_lvl+0xd1/0x138
[ 3203.239417][T12313]  dump_header+0x10b/0x85f
[ 3203.243877][T12313]  oom_kill_process.cold+0x10/0x15
[ 3203.248995][T12313]  out_of_memory+0x35c/0x14a0
[ 3203.253675][T12313]  ? oom_killer_disable+0x280/0x280
[ 3203.258892][T12313]  ? find_held_lock+0x2d/0x110
[ 3203.263707][T12313]  mem_cgroup_out_of_memory+0x206/0x270
[ 3203.269304][T12313]  ? mem_cgroup_margin+0x130/0x130
[ 3203.274448][T12313]  ? lock_downgrade+0x6e0/0x6e0
[ 3203.279303][T12313]  try_charge_memcg+0xefb/0x12f0
[ 3203.284242][T12313]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3203.290232][T12313]  ? lock_downgrade+0x6e0/0x6e0
[ 3203.295083][T12313]  charge_memcg+0x90/0x3b0
[ 3203.299497][T12313]  __mem_cgroup_charge+0x2b/0x90
[ 3203.304442][T12313]  do_wp_page+0x7ec/0x3370
[ 3203.308901][T12313]  ? lock_release+0x810/0x810
[ 3203.313599][T12313]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3203.318999][T12313]  ? do_raw_spin_lock+0x124/0x2b0
[ 3203.324065][T12313]  ? rwlock_bug.part.0+0x90/0x90
[ 3203.329019][T12313]  ? lock_chain_count+0x20/0x20
[ 3203.333885][T12313]  __handle_mm_fault+0x1f58/0x3c90
[ 3203.339027][T12313]  ? vm_iomap_memory+0x190/0x190
[ 3203.344003][T12313]  handle_mm_fault+0x1b6/0x850
[ 3203.348798][T12313]  do_user_addr_fault+0x475/0x1210
[ 3203.353935][T12313]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3203.359617][T12313]  exc_page_fault+0x98/0x170
[ 3203.364223][T12313]  asm_exc_page_fault+0x26/0x30
[ 3203.369082][T12313] RIP: 0033:0x7fbb9f039570
[ 3203.373503][T12313] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3203.393120][T12313] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3203.399218][T12313] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3203.407205][T12313] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3203.415185][T12313] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3203.423175][T12313] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3203.431162][T12313] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3203.439160][T12313]  ? __sys_socket+0x7c/0x250
[ 3203.443806][T12313]  </TASK>
[ 3203.450089][T12313] memory: usage 307200kB, limit 307200kB, failcnt 154493
[ 3203.457827][T12313] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3203.464835][T12313] Memory cgroup stats for /syz4:
[ 3203.465016][T12313] anon 102400
[ 3203.465016][T12313] file 438272
[ 3203.465016][T12313] kernel 314011648
[ 3203.465016][T12313] kernel_stack 65536
[ 3203.465016][T12313] pagetables 73728
[ 3203.465016][T12313] sec_pagetables 0
[ 3203.465016][T12313] percpu 5617024
[ 3203.465016][T12313] sock 4096
[ 3203.465016][T12313] vmalloc 0
[ 3203.465016][T12313] shmem 438272
[ 3203.465016][T12313] zswap 0
[ 3203.465016][T12313] zswapped 0
[ 3203.465016][T12313] file_mapped 393216
[ 3203.465016][T12313] file_dirty 0
[ 3203.465016][T12313] file_writeback 0
[ 3203.465016][T12313] swapcached 0
[ 3203.465016][T12313] anon_thp 0
[ 3203.465016][T12313] file_thp 0
[ 3203.465016][T12313] shmem_thp 0
[ 3203.465016][T12313] inactive_anon 114688
[ 3203.465016][T12313] active_anon 425984
[ 3203.465016][T12313] inactive_file 0
[ 3203.465016][T12313] active_file 0
[ 3203.465016][T12313] unevictable 0
10:32:44 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x610ec408}}], 0x2, 0x0)

10:32:44 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000e000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:44 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x63000000}}], 0x2, 0x0)

10:32:44 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xff020000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:44 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xffffffa1}, 0x0)

[ 3203.465016][T12313] slab_reclaimable 23024
[ 3203.465016][T12313] slab_unreclaimable 308202640
[ 3203.564035][T12313] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12313,uid=0
[ 3203.580861][T12313] Memory cgroup out of memory: Killed process 12313 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:44 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300c00e000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:44 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xfffffdef, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:44 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x64000000}}], 0x2, 0x0)

[ 3203.679399][T12335] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3203.704506][T12335] CPU: 1 PID: 12335 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3203.713239][T12335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3203.723325][T12335] Call Trace:
[ 3203.726627][T12335]  <TASK>
[ 3203.729583][T12335]  dump_stack_lvl+0xd1/0x138
[ 3203.734215][T12335]  dump_header+0x10b/0x85f
[ 3203.738679][T12335]  oom_kill_process.cold+0x10/0x15
[ 3203.743837][T12335]  out_of_memory+0x35c/0x14a0
[ 3203.748564][T12335]  ? find_held_lock+0x2d/0x110
[ 3203.753377][T12335]  ? oom_killer_disable+0x280/0x280
[ 3203.758623][T12335]  ? find_held_lock+0x2d/0x110
[ 3203.763432][T12335]  mem_cgroup_out_of_memory+0x206/0x270
[ 3203.769023][T12335]  ? mem_cgroup_margin+0x130/0x130
[ 3203.774173][T12335]  ? lock_downgrade+0x6e0/0x6e0
10:32:44 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xffffff7f, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:44 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x643a0000}}], 0x2, 0x0)

[ 3203.779072][T12335]  try_charge_memcg+0xefb/0x12f0
[ 3203.784046][T12335]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3203.790060][T12335]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3203.795822][T12335]  ? lock_downgrade+0x6e0/0x6e0
[ 3203.800704][T12335]  ? lock_downgrade+0x6e0/0x6e0
[ 3203.805596][T12335]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3203.811180][T12335]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3203.817374][T12335]  copy_process+0x4e3/0x7520
[ 3203.822003][T12335]  ? __lock_acquire+0xbc3/0x56d0
[ 3203.826997][T12335]  ? __cleanup_sighand+0xb0/0xb0
[ 3203.831973][T12335]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3203.837991][T12335]  ? psi_memstall_leave+0x174/0x250
[ 3203.843233][T12335]  kernel_clone+0xeb/0x990
[ 3203.847683][T12335]  ? create_io_thread+0xf0/0xf0
[ 3203.852570][T12335]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3203.858855][T12335]  ? lock_downgrade+0x6e0/0x6e0
[ 3203.863750][T12335]  __do_sys_clone+0xba/0x100
[ 3203.868380][T12335]  ? kernel_clone+0x990/0x990
[ 3203.873113][T12335]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3203.879046][T12335]  do_syscall_64+0x39/0xb0
[ 3203.883501][T12335]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3203.889429][T12335] RIP: 0033:0x7f36ee08d4f1
[ 3203.893867][T12335] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3203.913503][T12335] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3203.921948][T12335] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3203.929943][T12335] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3203.937946][T12335] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3203.945942][T12335] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3203.953932][T12335] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3203.961952][T12335]  </TASK>
[ 3203.978967][T12335] memory: usage 307184kB, limit 307200kB, failcnt 30737
[ 3203.986146][T12335] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3203.993343][T12335] Memory cgroup stats for /syz5:
[ 3203.993509][T12335] anon 86016
[ 3203.993509][T12335] file 425984
[ 3203.993509][T12335] kernel 314044416
[ 3203.993509][T12335] kernel_stack 32768
[ 3203.993509][T12335] pagetables 77824
[ 3203.993509][T12335] sec_pagetables 0
[ 3203.993509][T12335] percpu 5429952
[ 3203.993509][T12335] sock 0
[ 3203.993509][T12335] vmalloc 8192
[ 3203.993509][T12335] shmem 425984
[ 3203.993509][T12335] zswap 0
[ 3203.993509][T12335] zswapped 0
[ 3203.993509][T12335] file_mapped 393216
[ 3203.993509][T12335] file_dirty 0
[ 3203.993509][T12335] file_writeback 0
[ 3203.993509][T12335] swapcached 0
[ 3203.993509][T12335] anon_thp 0
[ 3203.993509][T12335] file_thp 0
[ 3203.993509][T12335] shmem_thp 0
[ 3203.993509][T12335] inactive_anon 212992
[ 3203.993509][T12335] active_anon 299008
[ 3203.993509][T12335] inactive_file 0
[ 3203.993509][T12335] active_file 0
[ 3203.993509][T12335] unevictable 0
10:32:44 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xd202)

10:32:44 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x653a0000}}], 0x2, 0x0)

[ 3203.993509][T12335] slab_reclaimable 216400
[ 3203.993509][T12335] slab_unreclaimable 308217712
[ 3204.088978][T12335] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12335,uid=0
[ 3204.109569][T12335] Memory cgroup out of memory: Killed process 12335 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3204.145083][T12346] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3204.162742][T12346] CPU: 1 PID: 12346 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3204.171460][T12346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3204.181545][T12346] Call Trace:
[ 3204.184843][T12346]  <TASK>
[ 3204.187791][T12346]  dump_stack_lvl+0xd1/0x138
[ 3204.192422][T12346]  dump_header+0x10b/0x85f
[ 3204.196886][T12346]  oom_kill_process.cold+0x10/0x15
[ 3204.202047][T12346]  out_of_memory+0x35c/0x14a0
[ 3204.206773][T12346]  ? find_held_lock+0x2d/0x110
[ 3204.211579][T12346]  ? oom_killer_disable+0x280/0x280
[ 3204.216824][T12346]  ? find_held_lock+0x2d/0x110
[ 3204.221627][T12346]  mem_cgroup_out_of_memory+0x206/0x270
[ 3204.227216][T12346]  ? mem_cgroup_margin+0x130/0x130
[ 3204.232362][T12346]  ? lock_downgrade+0x6e0/0x6e0
[ 3204.237262][T12346]  try_charge_memcg+0xefb/0x12f0
[ 3204.242239][T12346]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3204.248267][T12346]  ? lock_downgrade+0x6e0/0x6e0
[ 3204.253166][T12346]  charge_memcg+0x90/0x3b0
[ 3204.257613][T12346]  __mem_cgroup_charge+0x2b/0x90
[ 3204.262579][T12346]  do_wp_page+0x7ec/0x3370
[ 3204.267038][T12346]  ? lock_release+0x810/0x810
[ 3204.271747][T12346]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3204.277158][T12346]  ? do_raw_spin_lock+0x124/0x2b0
[ 3204.282211][T12346]  ? rwlock_bug.part.0+0x90/0x90
[ 3204.287183][T12346]  ? lock_chain_count+0x20/0x20
[ 3204.292071][T12346]  __handle_mm_fault+0x1f58/0x3c90
[ 3204.297232][T12346]  ? vm_iomap_memory+0x190/0x190
[ 3204.302235][T12346]  handle_mm_fault+0x1b6/0x850
[ 3204.307045][T12346]  do_user_addr_fault+0x475/0x1210
[ 3204.312215][T12346]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3204.317805][T12346]  exc_page_fault+0x98/0x170
[ 3204.322421][T12346]  asm_exc_page_fault+0x26/0x30
[ 3204.327297][T12346] RIP: 0033:0x7fbb9f039570
[ 3204.331733][T12346] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3204.351369][T12346] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3204.357461][T12346] RAX: 0000000047165cfb RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3204.365453][T12346] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 0000000000000022
[ 3204.373446][T12346] RBP: 0000000047165cfb R08: 0000000000001cfb R09: 0000000047165cff
[ 3204.381440][T12346] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3204.389434][T12346] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff87bf1591
[ 3204.397431][T12346]  ? __x64_sys_socket+0x11/0xb0
[ 3204.402343][T12346]  </TASK>
[ 3204.413906][T12346] memory: usage 307180kB, limit 307200kB, failcnt 154599
[ 3204.421029][T12346] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3204.428837][T12346] Memory cgroup stats for /syz4:
[ 3204.429043][T12346] anon 98304
[ 3204.429043][T12346] file 438272
[ 3204.429043][T12346] kernel 314011648
[ 3204.429043][T12346] kernel_stack 65536
[ 3204.429043][T12346] pagetables 73728
[ 3204.429043][T12346] sec_pagetables 0
[ 3204.429043][T12346] percpu 5617024
[ 3204.429043][T12346] sock 4096
[ 3204.429043][T12346] vmalloc 0
[ 3204.429043][T12346] shmem 438272
[ 3204.429043][T12346] zswap 0
[ 3204.429043][T12346] zswapped 0
[ 3204.429043][T12346] file_mapped 393216
[ 3204.429043][T12346] file_dirty 0
[ 3204.429043][T12346] file_writeback 0
[ 3204.429043][T12346] swapcached 0
[ 3204.429043][T12346] anon_thp 0
[ 3204.429043][T12346] file_thp 0
[ 3204.429043][T12346] shmem_thp 0
[ 3204.429043][T12346] inactive_anon 110592
[ 3204.429043][T12346] active_anon 425984
[ 3204.429043][T12346] inactive_file 0
[ 3204.429043][T12346] active_file 0
[ 3204.429043][T12346] unevictable 0
[ 3204.429043][T12346] slab_reclaimable 23024
[ 3204.429043][T12346] slab_unreclaimable 308202944
[ 3204.529350][T12346] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12346,uid=0
10:32:45 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x610ec408}}], 0x2, 0x0)

10:32:45 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xffffff8d, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:45 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xffffffc3}, 0x0)

10:32:45 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000f000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:45 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x68000000}}], 0x2, 0x0)

[ 3204.545328][T12346] Memory cgroup out of memory: Killed process 12346 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3204.608317][T12360] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3204.626349][ T1199] ieee802154 phy1 wpan1: encryption failed: -22
[ 3204.634706][T12360] CPU: 1 PID: 12360 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3204.643418][T12360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3204.653475][T12360] Call Trace:
[ 3204.656758][T12360]  <TASK>
[ 3204.659691][T12360]  dump_stack_lvl+0xd1/0x138
[ 3204.664305][T12360]  dump_header+0x10b/0x85f
[ 3204.668747][T12360]  oom_kill_process.cold+0x10/0x15
[ 3204.673875][T12360]  out_of_memory+0x35c/0x14a0
[ 3204.678576][T12360]  ? find_held_lock+0x2d/0x110
[ 3204.683370][T12360]  ? oom_killer_disable+0x280/0x280
[ 3204.688605][T12360]  ? find_held_lock+0x2d/0x110
[ 3204.693388][T12360]  mem_cgroup_out_of_memory+0x206/0x270
[ 3204.698955][T12360]  ? mem_cgroup_margin+0x130/0x130
[ 3204.704083][T12360]  ? lock_downgrade+0x6e0/0x6e0
[ 3204.708952][T12360]  try_charge_memcg+0xefb/0x12f0
[ 3204.713909][T12360]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3204.719895][T12360]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3204.725633][T12360]  ? lock_downgrade+0x6e0/0x6e0
[ 3204.730489][T12360]  ? lock_downgrade+0x6e0/0x6e0
[ 3204.735356][T12360]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3204.740912][T12360]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3204.747077][T12360]  copy_process+0x4e3/0x7520
[ 3204.751689][T12360]  ? __lock_acquire+0xbc3/0x56d0
[ 3204.756648][T12360]  ? __cleanup_sighand+0xb0/0xb0
[ 3204.761592][T12360]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3204.767578][T12360]  ? psi_memstall_leave+0x174/0x250
[ 3204.772794][T12360]  kernel_clone+0xeb/0x990
[ 3204.777223][T12360]  ? create_io_thread+0xf0/0xf0
[ 3204.782171][T12360]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3204.788427][T12360]  ? lock_downgrade+0x6e0/0x6e0
[ 3204.793304][T12360]  __do_sys_clone+0xba/0x100
[ 3204.797901][T12360]  ? kernel_clone+0x990/0x990
[ 3204.802598][T12360]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3204.808502][T12360]  do_syscall_64+0x39/0xb0
[ 3204.812932][T12360]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3204.818838][T12360] RIP: 0033:0x7f36ee08d4f1
[ 3204.823255][T12360] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3204.842865][T12360] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3204.851284][T12360] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
10:32:45 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603005114000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:45 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xfffffff5, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:45 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x6c000000}}], 0x2, 0x0)

[ 3204.859258][T12360] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3204.867233][T12360] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3204.875207][T12360] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3204.883292][T12360] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3204.891283][T12360]  </TASK>
10:32:45 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300001f000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:45 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xffffffe4}, 0x0)

[ 3205.065067][T12360] memory: usage 307184kB, limit 307200kB, failcnt 30835
[ 3205.072167][T12360] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3205.079636][T12360] Memory cgroup stats for /syz5:
[ 3205.079812][T12360] anon 86016
[ 3205.079812][T12360] file 425984
[ 3205.079812][T12360] kernel 314044416
[ 3205.079812][T12360] kernel_stack 32768
[ 3205.079812][T12360] pagetables 77824
[ 3205.079812][T12360] sec_pagetables 0
[ 3205.079812][T12360] percpu 5429952
[ 3205.079812][T12360] sock 0
[ 3205.079812][T12360] vmalloc 8192
[ 3205.079812][T12360] shmem 425984
[ 3205.079812][T12360] zswap 0
[ 3205.079812][T12360] zswapped 0
[ 3205.079812][T12360] file_mapped 393216
[ 3205.079812][T12360] file_dirty 0
[ 3205.079812][T12360] file_writeback 0
[ 3205.079812][T12360] swapcached 0
[ 3205.079812][T12360] anon_thp 0
[ 3205.079812][T12360] file_thp 0
[ 3205.079812][T12360] shmem_thp 0
[ 3205.079812][T12360] inactive_anon 212992
[ 3205.079812][T12360] active_anon 299008
[ 3205.079812][T12360] inactive_file 0
[ 3205.079812][T12360] active_file 0
[ 3205.079812][T12360] unevictable 0
[ 3205.079812][T12360] slab_reclaimable 216400
[ 3205.079812][T12360] slab_unreclaimable 308217408
10:32:46 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xd802)

10:32:46 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xfffffffd, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3205.245905][T12360] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12360,uid=0
[ 3205.263629][T12360] Memory cgroup out of memory: Killed process 12360 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3205.281584][T12369] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3205.315110][T12369] CPU: 0 PID: 12369 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3205.323848][T12369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3205.333931][T12369] Call Trace:
[ 3205.337230][T12369]  <TASK>
[ 3205.340177][T12369]  dump_stack_lvl+0xd1/0x138
[ 3205.344808][T12369]  dump_header+0x10b/0x85f
[ 3205.349267][T12369]  oom_kill_process.cold+0x10/0x15
[ 3205.354417][T12369]  out_of_memory+0x35c/0x14a0
[ 3205.359145][T12369]  ? oom_killer_disable+0x280/0x280
[ 3205.364379][T12369]  ? find_held_lock+0x2d/0x110
[ 3205.369149][T12369]  mem_cgroup_out_of_memory+0x206/0x270
[ 3205.374713][T12369]  ? mem_cgroup_margin+0x130/0x130
[ 3205.379896][T12369]  ? lock_downgrade+0x6e0/0x6e0
[ 3205.384792][T12369]  try_charge_memcg+0xefb/0x12f0
[ 3205.389762][T12369]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3205.395789][T12369]  ? lock_downgrade+0x6e0/0x6e0
[ 3205.400664][T12369]  charge_memcg+0x90/0x3b0
[ 3205.405079][T12369]  __mem_cgroup_charge+0x2b/0x90
[ 3205.410014][T12369]  do_wp_page+0x7ec/0x3370
[ 3205.414436][T12369]  ? lock_release+0x810/0x810
[ 3205.419104][T12369]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3205.424490][T12369]  ? do_raw_spin_lock+0x124/0x2b0
[ 3205.429536][T12369]  ? rwlock_bug.part.0+0x90/0x90
[ 3205.434488][T12369]  ? lock_chain_count+0x20/0x20
[ 3205.439367][T12369]  __handle_mm_fault+0x1f58/0x3c90
[ 3205.444508][T12369]  ? vm_iomap_memory+0x190/0x190
[ 3205.449484][T12369]  handle_mm_fault+0x1b6/0x850
[ 3205.454284][T12369]  do_user_addr_fault+0x475/0x1210
[ 3205.459426][T12369]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3205.465002][T12369]  exc_page_fault+0x98/0x170
[ 3205.469610][T12369]  asm_exc_page_fault+0x26/0x30
[ 3205.474482][T12369] RIP: 0033:0x7fbb9f039570
[ 3205.478915][T12369] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3205.498533][T12369] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3205.504609][T12369] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3205.512592][T12369] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3205.520571][T12369] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3205.528547][T12369] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3205.536524][T12369] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3205.544503][T12369]  ? __sys_socket+0x7c/0x250
[ 3205.549128][T12369]  </TASK>
[ 3205.557423][T12369] memory: usage 307200kB, limit 307200kB, failcnt 154695
[ 3205.571675][T12369] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3205.579476][T12369] Memory cgroup stats for /syz4:
[ 3205.579681][T12369] anon 102400
[ 3205.579681][T12369] file 438272
[ 3205.579681][T12369] kernel 314028032
[ 3205.579681][T12369] kernel_stack 65536
[ 3205.579681][T12369] pagetables 73728
[ 3205.579681][T12369] sec_pagetables 0
[ 3205.579681][T12369] percpu 5617088
[ 3205.579681][T12369] sock 4096
[ 3205.579681][T12369] vmalloc 0
[ 3205.579681][T12369] shmem 438272
[ 3205.579681][T12369] zswap 0
[ 3205.579681][T12369] zswapped 0
[ 3205.579681][T12369] file_mapped 393216
[ 3205.579681][T12369] file_dirty 0
[ 3205.579681][T12369] file_writeback 0
[ 3205.579681][T12369] swapcached 0
[ 3205.579681][T12369] anon_thp 0
[ 3205.579681][T12369] file_thp 0
[ 3205.579681][T12369] shmem_thp 0
[ 3205.579681][T12369] inactive_anon 114688
[ 3205.579681][T12369] active_anon 425984
[ 3205.579681][T12369] inactive_file 0
[ 3205.579681][T12369] active_file 0
[ 3205.579681][T12369] unevictable 0
[ 3205.579681][T12369] slab_reclaimable 23024
10:32:46 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x610ec408}}], 0x2, 0x0)

10:32:46 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x710b0000}}], 0x2, 0x0)

10:32:46 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603001451000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:46 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xfffffffe, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3205.579681][T12369] slab_unreclaimable 308214424
[ 3205.678797][T12369] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12369,uid=0
[ 3205.694657][T12369] Memory cgroup out of memory: Killed process 12369 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:46 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x71535fb9}}], 0x2, 0x0)

10:32:46 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x7ffffffff000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:46 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000060000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3205.767183][T12383] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3205.816134][T12383] CPU: 1 PID: 12383 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3205.824877][T12383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3205.834959][T12383] Call Trace:
[ 3205.838259][T12383]  <TASK>
[ 3205.841209][T12383]  dump_stack_lvl+0xd1/0x138
[ 3205.845841][T12383]  dump_header+0x10b/0x85f
[ 3205.850307][T12383]  oom_kill_process.cold+0x10/0x15
[ 3205.855470][T12383]  out_of_memory+0x35c/0x14a0
[ 3205.860199][T12383]  ? find_held_lock+0x2d/0x110
[ 3205.865003][T12383]  ? oom_killer_disable+0x280/0x280
[ 3205.870254][T12383]  ? find_held_lock+0x2d/0x110
[ 3205.875063][T12383]  mem_cgroup_out_of_memory+0x206/0x270
[ 3205.880650][T12383]  ? mem_cgroup_margin+0x130/0x130
[ 3205.885799][T12383]  ? lock_downgrade+0x6e0/0x6e0
[ 3205.890695][T12383]  try_charge_memcg+0xefb/0x12f0
[ 3205.895675][T12383]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3205.901688][T12383]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3205.907453][T12383]  ? lock_downgrade+0x6e0/0x6e0
10:32:46 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x10000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3205.912337][T12383]  ? lock_downgrade+0x6e0/0x6e0
[ 3205.917229][T12383]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3205.922811][T12383]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3205.929005][T12383]  copy_process+0x4e3/0x7520
[ 3205.933623][T12383]  ? page_remove_rmap+0x435/0x1210
[ 3205.938771][T12383]  ? folio_flags.constprop.0+0x53/0x150
[ 3205.944357][T12383]  ? put_page+0xd9/0x280
[ 3205.948631][T12383]  ? do_wp_page+0x844/0x3370
[ 3205.953270][T12383]  ? __cleanup_sighand+0xb0/0xb0
[ 3205.958239][T12383]  ? finish_mkwrite_fault+0x3d0/0x3d0
10:32:46 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x40030000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3205.963650][T12383]  ? rwlock_bug.part.0+0x90/0x90
[ 3205.968617][T12383]  ? lock_chain_count+0x20/0x20
[ 3205.973514][T12383]  kernel_clone+0xeb/0x990
[ 3205.977962][T12383]  ? create_io_thread+0xf0/0xf0
[ 3205.982851][T12383]  ? find_held_lock+0x2d/0x110
[ 3205.987664][T12383]  __do_sys_clone+0xba/0x100
[ 3205.992287][T12383]  ? kernel_clone+0x990/0x990
[ 3205.997013][T12383]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3206.002945][T12383]  do_syscall_64+0x39/0xb0
[ 3206.007395][T12383]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3206.013317][T12383] RIP: 0033:0x7f36ee08d4f1
[ 3206.017755][T12383] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3206.037385][T12383] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3206.045826][T12383] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3206.053823][T12383] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3206.061816][T12383] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3206.069807][T12383] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3206.077800][T12383] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3206.085812][T12383]  </TASK>
10:32:47 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfffffff0}, 0x0)

[ 3206.313794][T12383] memory: usage 307184kB, limit 307200kB, failcnt 30914
[ 3206.323723][T12383] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3206.333162][T12383] Memory cgroup stats for /syz5:
[ 3206.333374][T12383] anon 86016
[ 3206.333374][T12383] file 425984
[ 3206.333374][T12383] kernel 314044416
[ 3206.333374][T12383] kernel_stack 32768
[ 3206.333374][T12383] pagetables 77824
[ 3206.333374][T12383] sec_pagetables 0
[ 3206.333374][T12383] percpu 5429952
[ 3206.333374][T12383] sock 0
[ 3206.333374][T12383] vmalloc 8192
[ 3206.333374][T12383] shmem 425984
[ 3206.333374][T12383] zswap 0
[ 3206.333374][T12383] zswapped 0
[ 3206.333374][T12383] file_mapped 393216
[ 3206.333374][T12383] file_dirty 0
[ 3206.333374][T12383] file_writeback 0
[ 3206.333374][T12383] swapcached 0
[ 3206.333374][T12383] anon_thp 0
[ 3206.333374][T12383] file_thp 0
[ 3206.333374][T12383] shmem_thp 0
[ 3206.333374][T12383] inactive_anon 212992
[ 3206.333374][T12383] active_anon 299008
[ 3206.333374][T12383] inactive_file 0
10:32:47 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xd803)

10:32:47 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xf0ffffff7f0000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3206.333374][T12383] active_file 0
[ 3206.333374][T12383] unevictable 0
[ 3206.333374][T12383] slab_reclaimable 216400
[ 3206.333374][T12383] slab_unreclaimable 308217408
[ 3206.430281][T12383] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12383,uid=0
[ 3206.446167][T12383] Memory cgroup out of memory: Killed process 12383 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3206.497751][T12392] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3206.535295][T12392] CPU: 0 PID: 12392 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3206.544023][T12392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3206.554085][T12392] Call Trace:
[ 3206.557363][T12392]  <TASK>
[ 3206.560296][T12392]  dump_stack_lvl+0xd1/0x138
[ 3206.564903][T12392]  dump_header+0x10b/0x85f
[ 3206.569341][T12392]  oom_kill_process.cold+0x10/0x15
[ 3206.574485][T12392]  out_of_memory+0x35c/0x14a0
[ 3206.579182][T12392]  ? find_held_lock+0x2d/0x110
[ 3206.583959][T12392]  ? oom_killer_disable+0x280/0x280
[ 3206.589183][T12392]  ? find_held_lock+0x2d/0x110
[ 3206.593970][T12392]  mem_cgroup_out_of_memory+0x206/0x270
[ 3206.599534][T12392]  ? mem_cgroup_margin+0x130/0x130
[ 3206.604658][T12392]  ? lock_downgrade+0x6e0/0x6e0
[ 3206.609527][T12392]  try_charge_memcg+0xefb/0x12f0
[ 3206.614481][T12392]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3206.620489][T12392]  ? lock_downgrade+0x6e0/0x6e0
[ 3206.625361][T12392]  charge_memcg+0x90/0x3b0
[ 3206.629798][T12392]  __mem_cgroup_charge+0x2b/0x90
[ 3206.634759][T12392]  do_wp_page+0x7ec/0x3370
[ 3206.639194][T12392]  ? lock_release+0x810/0x810
[ 3206.643879][T12392]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3206.649283][T12392]  ? do_raw_spin_lock+0x124/0x2b0
[ 3206.654316][T12392]  ? rwlock_bug.part.0+0x90/0x90
[ 3206.659259][T12392]  ? lock_chain_count+0x20/0x20
[ 3206.664120][T12392]  __handle_mm_fault+0x1f58/0x3c90
[ 3206.669253][T12392]  ? vm_iomap_memory+0x190/0x190
[ 3206.674229][T12392]  handle_mm_fault+0x1b6/0x850
[ 3206.679015][T12392]  do_user_addr_fault+0x475/0x1210
[ 3206.684142][T12392]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3206.689716][T12392]  exc_page_fault+0x98/0x170
[ 3206.694317][T12392]  asm_exc_page_fault+0x26/0x30
[ 3206.699173][T12392] RIP: 0033:0x7fbb9f039570
[ 3206.703593][T12392] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3206.723207][T12392] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3206.729383][T12392] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3206.737355][T12392] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3206.745325][T12392] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3206.753295][T12392] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3206.761266][T12392] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3206.769239][T12392]  ? __sys_socket+0x7c/0x250
[ 3206.773865][T12392]  </TASK>
[ 3206.812127][T12392] memory: usage 307184kB, limit 307200kB, failcnt 154826
[ 3206.819565][T12392] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3206.828781][T12392] Memory cgroup stats for /syz4:
[ 3206.828992][T12392] anon 102400
[ 3206.828992][T12392] file 438272
[ 3206.828992][T12392] kernel 314011648
[ 3206.828992][T12392] kernel_stack 65536
[ 3206.828992][T12392] pagetables 73728
[ 3206.828992][T12392] sec_pagetables 0
[ 3206.828992][T12392] percpu 5617024
[ 3206.828992][T12392] sock 4096
[ 3206.828992][T12392] vmalloc 0
[ 3206.828992][T12392] shmem 438272
[ 3206.828992][T12392] zswap 0
[ 3206.828992][T12392] zswapped 0
[ 3206.828992][T12392] file_mapped 393216
[ 3206.828992][T12392] file_dirty 0
[ 3206.828992][T12392] file_writeback 0
[ 3206.828992][T12392] swapcached 0
[ 3206.828992][T12392] anon_thp 0
[ 3206.828992][T12392] file_thp 0
[ 3206.828992][T12392] shmem_thp 0
[ 3206.828992][T12392] inactive_anon 114688
[ 3206.828992][T12392] active_anon 425984
[ 3206.828992][T12392] inactive_file 0
[ 3206.828992][T12392] active_file 0
[ 3206.828992][T12392] unevictable 0
[ 3206.828992][T12392] slab_reclaimable 23024
[ 3206.828992][T12392] slab_unreclaimable 308202640
[ 3206.924888][T12392] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12392,uid=0
[ 3206.941676][T12392] Memory cgroup out of memory: Killed process 12392 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3206.959413][T12404] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000
[ 3206.973617][T12404] CPU: 0 PID: 12404 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3206.982345][T12404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3206.992445][T12404] Call Trace:
[ 3206.995752][T12404]  <TASK>
[ 3206.998716][T12404]  dump_stack_lvl+0xd1/0x138
[ 3207.003354][T12404]  dump_header+0x10b/0x85f
[ 3207.007820][T12404]  oom_kill_process.cold+0x10/0x15
10:32:47 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300001f000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:47 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x74000000}}], 0x2, 0x0)

10:32:47 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000ec0000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:47 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x100000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:47 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x78000000}}], 0x2, 0x0)

[ 3207.012989][T12404]  out_of_memory+0x35c/0x14a0
[ 3207.017730][T12404]  ? oom_killer_disable+0x280/0x280
[ 3207.022980][T12404]  ? find_held_lock+0x2d/0x110
[ 3207.027792][T12404]  mem_cgroup_out_of_memory+0x206/0x270
[ 3207.033376][T12404]  ? mem_cgroup_margin+0x130/0x130
[ 3207.038525][T12404]  ? lock_downgrade+0x6e0/0x6e0
[ 3207.043428][T12404]  try_charge_memcg+0xefb/0x12f0
[ 3207.048415][T12404]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3207.054431][T12404]  ? get_mem_cgroup_from_objcg+0xa1/0x260
10:32:47 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x7a000000}}], 0x2, 0x0)

[ 3207.060206][T12404]  ? lock_downgrade+0x6e0/0x6e0
[ 3207.065113][T12404]  obj_cgroup_charge+0x2af/0x5e0
[ 3207.070095][T12404]  __kmem_cache_alloc_node+0xb2/0x430
[ 3207.075501][T12404]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3207.080951][T12404]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3207.086355][T12404]  __kmalloc_node_track_caller+0x4b/0xc0
[ 3207.092048][T12404]  kmemdup+0x2c/0x60
[ 3207.095985][T12404]  neigh_sysctl_register+0x9e/0x5f0
[ 3207.101220][T12404]  ? neigh_stat_seq_show+0x420/0x420
[ 3207.106536][T12404]  ? inetdev_init+0x23d/0x580
[ 3207.111268][T12404]  ? inetdev_event+0xe20/0x16c0
[ 3207.116154][T12404]  ? notifier_call_chain+0xb5/0x200
[ 3207.121389][T12404]  ? call_netdevice_notifiers_info+0xb5/0x130
[ 3207.127509][T12404]  ? register_netdevice+0xfb4/0x1640
[ 3207.132834][T12404]  ? br_dev_newlink+0x27/0x110
[ 3207.137652][T12404]  ? __rtnl_newlink+0x10c2/0x1840
[ 3207.142717][T12404]  ? rtnl_newlink+0x68/0xa0
[ 3207.147258][T12404]  ? rtnetlink_rcv_msg+0x43e/0xca0
[ 3207.152405][T12404]  ? netlink_rcv_skb+0x165/0x440
[ 3207.157389][T12404]  ? netlink_unicast+0x547/0x7f0
10:32:48 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x7a176e1a}}], 0x2, 0x0)

10:32:48 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x200000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3207.162369][T12404]  ? netlink_sendmsg+0x91b/0xe10
[ 3207.167345][T12404]  ? sock_sendmsg+0xd3/0x120
[ 3207.171971][T12404]  ? ____sys_sendmsg+0x712/0x8c0
[ 3207.176949][T12404]  ? ___sys_sendmsg+0x110/0x1b0
[ 3207.181848][T12404]  devinet_sysctl_register+0xb1/0x230
[ 3207.187269][T12404]  inetdev_init+0x286/0x580
[ 3207.191809][T12404]  inetdev_event+0xe20/0x16c0
[ 3207.196515][T12404]  ? del_default_gids+0xe0/0xe0
[ 3207.201404][T12404]  ? is_ndev_for_default_gid_filter.part.0+0x2e0/0x2e0
[ 3207.208300][T12404]  ? devinet_init_net+0x650/0x650
10:32:48 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x7ffffffb}}], 0x2, 0x0)

[ 3207.213360][T12404]  ? skb_dequeue+0x129/0x180
[ 3207.217986][T12404]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3207.223938][T12404]  notifier_call_chain+0xb5/0x200
[ 3207.229007][T12404]  call_netdevice_notifiers_info+0xb5/0x130
[ 3207.234950][T12404]  register_netdevice+0xfb4/0x1640
[ 3207.240110][T12404]  ? unregister_netdevice_queue+0x3c0/0x3c0
[ 3207.246056][T12404]  br_dev_newlink+0x27/0x110
[ 3207.250692][T12404]  ? br_changelink+0x1620/0x1620
[ 3207.255674][T12404]  __rtnl_newlink+0x10c2/0x1840
[ 3207.260587][T12404]  ? rtnl_link_unregister+0x250/0x250
[ 3207.266045][T12404]  rtnl_newlink+0x68/0xa0
[ 3207.270416][T12404]  ? __rtnl_newlink+0x1840/0x1840
[ 3207.275475][T12404]  rtnetlink_rcv_msg+0x43e/0xca0
[ 3207.280457][T12404]  ? rtnl_getlink+0xae0/0xae0
[ 3207.285169][T12404]  ? __dev_queue_xmit+0xb54/0x3ba0
[ 3207.290339][T12404]  netlink_rcv_skb+0x165/0x440
[ 3207.295154][T12404]  ? rtnl_getlink+0xae0/0xae0
[ 3207.299870][T12404]  ? netlink_ack+0x1370/0x1370
[ 3207.304709][T12404]  ? netlink_deliver_tap+0x1b1/0xc50
[ 3207.310046][T12404]  netlink_unicast+0x547/0x7f0
[ 3207.314857][T12404]  ? netlink_attachskb+0x890/0x890
[ 3207.320013][T12404]  ? __virt_addr_valid+0x61/0x2e0
[ 3207.325080][T12404]  ? __phys_addr_symbol+0x30/0x70
[ 3207.330145][T12404]  ? __check_object_size+0x2e2/0x5a0
[ 3207.335471][T12404]  netlink_sendmsg+0x91b/0xe10
[ 3207.340291][T12404]  ? netlink_unicast+0x7f0/0x7f0
[ 3207.345276][T12404]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3207.350564][T12404]  ? netlink_unicast+0x7f0/0x7f0
[ 3207.355501][T12404]  sock_sendmsg+0xd3/0x120
[ 3207.359925][T12404]  ____sys_sendmsg+0x712/0x8c0
[ 3207.364698][T12404]  ? copy_msghdr_from_user+0xfc/0x150
[ 3207.370101][T12404]  ? kernel_sendmsg+0x50/0x50
[ 3207.374783][T12404]  ? futex_unqueue+0xb7/0x120
[ 3207.379461][T12404]  ___sys_sendmsg+0x110/0x1b0
[ 3207.384142][T12404]  ? do_recvmmsg+0x6e0/0x6e0
[ 3207.388743][T12404]  ? __fget_files+0x248/0x440
[ 3207.393439][T12404]  ? lock_downgrade+0x6e0/0x6e0
[ 3207.398296][T12404]  ? __fget_files+0x26a/0x440
[ 3207.402973][T12404]  ? __fget_light+0xe5/0x270
[ 3207.407559][T12404]  __sys_sendmsg+0xf7/0x1c0
[ 3207.412063][T12404]  ? __sys_sendmsg_sock+0x40/0x40
[ 3207.417090][T12404]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3207.422997][T12404]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3207.428886][T12404]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3207.434087][T12404]  do_syscall_64+0x39/0xb0
[ 3207.438505][T12404]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3207.444444][T12404] RIP: 0033:0x7fde80a8c0c9
[ 3207.448863][T12404] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3207.468474][T12404] RSP: 002b:00007fde818ce168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3207.476892][T12404] RAX: ffffffffffffffda RBX: 00007fde80babf80 RCX: 00007fde80a8c0c9
[ 3207.484874][T12404] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[ 3207.492835][T12404] RBP: 00007fde80ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3207.500799][T12404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3207.508849][T12404] R13: 00007ffd6245db6f R14: 00007fde818ce300 R15: 0000000000022000
[ 3207.516827][T12404]  </TASK>
[ 3207.547885][T12404] memory: usage 307164kB, limit 307200kB, failcnt 37650
[ 3207.555031][T12404] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3207.561989][T12404] Memory cgroup stats for /syz2:
[ 3207.562210][T12404] anon 135168
[ 3207.562210][T12404] file 307200
[ 3207.562210][T12404] kernel 314093568
[ 3207.562210][T12404] kernel_stack 32768
[ 3207.562210][T12404] pagetables 86016
[ 3207.562210][T12404] sec_pagetables 0
[ 3207.562210][T12404] percpu 5433440
[ 3207.562210][T12404] sock 0
[ 3207.562210][T12404] vmalloc 24576
[ 3207.562210][T12404] shmem 307200
[ 3207.562210][T12404] zswap 0
[ 3207.562210][T12404] zswapped 0
[ 3207.562210][T12404] file_mapped 299008
[ 3207.562210][T12404] file_dirty 0
[ 3207.562210][T12404] file_writeback 0
[ 3207.562210][T12404] swapcached 0
[ 3207.562210][T12404] anon_thp 0
[ 3207.562210][T12404] file_thp 0
[ 3207.562210][T12404] shmem_thp 0
[ 3207.562210][T12404] inactive_anon 143360
[ 3207.562210][T12404] active_anon 299008
[ 3207.562210][T12404] inactive_file 0
[ 3207.562210][T12404] active_file 0
[ 3207.562210][T12404] unevictable 0
[ 3207.562210][T12404] slab_reclaimable 112984
[ 3207.562210][T12404] slab_unreclaimable 308378192
[ 3207.657735][T12404] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12403,uid=0
[ 3207.675784][T12404] Memory cgroup out of memory: Killed process 12404 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3207.741870][T12408] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3207.770997][T12408] CPU: 1 PID: 12408 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3207.779712][T12408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3207.789774][T12408] Call Trace:
[ 3207.793054][T12408]  <TASK>
[ 3207.795988][T12408]  dump_stack_lvl+0xd1/0x138
[ 3207.800591][T12408]  dump_header+0x10b/0x85f
[ 3207.805020][T12408]  oom_kill_process.cold+0x10/0x15
[ 3207.810147][T12408]  out_of_memory+0x35c/0x14a0
[ 3207.814842][T12408]  ? find_held_lock+0x2d/0x110
[ 3207.819620][T12408]  ? oom_killer_disable+0x280/0x280
[ 3207.824830][T12408]  ? find_held_lock+0x2d/0x110
[ 3207.829611][T12408]  mem_cgroup_out_of_memory+0x206/0x270
[ 3207.835170][T12408]  ? mem_cgroup_margin+0x130/0x130
[ 3207.840290][T12408]  ? lock_downgrade+0x6e0/0x6e0
[ 3207.845160][T12408]  try_charge_memcg+0xefb/0x12f0
[ 3207.850108][T12408]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3207.856109][T12408]  ? lock_downgrade+0x6e0/0x6e0
[ 3207.860995][T12408]  charge_memcg+0x90/0x3b0
[ 3207.865422][T12408]  __mem_cgroup_charge+0x2b/0x90
[ 3207.870374][T12408]  ? copy_mc_to_kernel+0x3e/0x90
[ 3207.875316][T12408]  do_wp_page+0x7ec/0x3370
[ 3207.879746][T12408]  ? lock_release+0x810/0x810
[ 3207.884509][T12408]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3207.889893][T12408]  ? do_raw_spin_lock+0x124/0x2b0
[ 3207.894921][T12408]  ? rwlock_bug.part.0+0x90/0x90
[ 3207.899863][T12408]  ? lock_chain_count+0x20/0x20
[ 3207.904721][T12408]  __handle_mm_fault+0x1f58/0x3c90
[ 3207.909846][T12408]  ? vm_iomap_memory+0x190/0x190
[ 3207.914815][T12408]  handle_mm_fault+0x1b6/0x850
[ 3207.919594][T12408]  do_user_addr_fault+0x475/0x1210
[ 3207.924718][T12408]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3207.930280][T12408]  exc_page_fault+0x98/0x170
[ 3207.934887][T12408]  asm_exc_page_fault+0x26/0x30
[ 3207.939740][T12408] RIP: 0033:0x7f36ee036f3d
[ 3207.944152][T12408] Code: e0 04 8b 44 02 08 85 c0 0f 85 3e 0a 00 00 31 c0 b9 40 42 0f 00 ba 81 00 00 00 c7 06 01 00 00 00 bf ca 00 00 00 e8 73 51 05 00 <83> 05 44 6a 17 00 01 80 bc 24 d8 00 00 00 00 0f b6 05 57 e7 c9 00
[ 3207.963764][T12408] RSP: 002b:00007ffc6b5fd8b0 EFLAGS: 00010207
[ 3207.969867][T12408] RAX: 0000000000000001 RBX: 00007f36ee1abf8c RCX: 00007f36ee08c0c9
[ 3207.977858][T12408] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f36ee1abf88
[ 3207.985828][T12408] RBP: 00007f36ee1abf80 R08: 00007f36ecbfe700 R09: 0000000000000000
[ 3207.993799][T12408] R10: 00007f36ecbfe700 R11: 0000000000000246 R12: 00007f36ee1abf8c
[ 3208.001778][T12408] R13: 00007f36edc00060 R14: 00007f36ee1abf80 R15: 0000000000000000
[ 3208.009769][T12408]  </TASK>
[ 3208.016275][T12408] memory: usage 307200kB, limit 307200kB, failcnt 31008
[ 3208.023245][T12408] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3208.030181][T12408] Memory cgroup stats for /syz5:
[ 3208.030385][T12408] anon 90112
[ 3208.030385][T12408] file 425984
[ 3208.030385][T12408] kernel 314056704
[ 3208.030385][T12408] kernel_stack 65536
[ 3208.030385][T12408] pagetables 77824
[ 3208.030385][T12408] sec_pagetables 0
[ 3208.030385][T12408] percpu 5429952
[ 3208.030385][T12408] sock 0
[ 3208.030385][T12408] vmalloc 8192
[ 3208.030385][T12408] shmem 425984
[ 3208.030385][T12408] zswap 0
[ 3208.030385][T12408] zswapped 0
[ 3208.030385][T12408] file_mapped 393216
[ 3208.030385][T12408] file_dirty 0
[ 3208.030385][T12408] file_writeback 0
[ 3208.030385][T12408] swapcached 0
[ 3208.030385][T12408] anon_thp 0
[ 3208.030385][T12408] file_thp 0
[ 3208.030385][T12408] shmem_thp 0
[ 3208.030385][T12408] inactive_anon 212992
[ 3208.030385][T12408] active_anon 299008
[ 3208.030385][T12408] inactive_file 0
[ 3208.030385][T12408] active_file 0
[ 3208.030385][T12408] unevictable 0
[ 3208.030385][T12408] slab_reclaimable 218328
[ 3208.030385][T12408] slab_unreclaimable 308218520
[ 3208.131239][T12408] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12408,uid=0
[ 3208.146965][T12408] Memory cgroup out of memory: Killed process 12408 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3208.165399][T12415] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3208.181777][T12415] CPU: 0 PID: 12415 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3208.190503][T12415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3208.200588][T12415] Call Trace:
[ 3208.203893][T12415]  <TASK>
[ 3208.206845][T12415]  dump_stack_lvl+0xd1/0x138
[ 3208.211465][T12415]  dump_header+0x10b/0x85f
[ 3208.215887][T12415]  oom_kill_process.cold+0x10/0x15
[ 3208.221002][T12415]  out_of_memory+0x35c/0x14a0
[ 3208.225710][T12415]  ? oom_killer_disable+0x280/0x280
[ 3208.230954][T12415]  ? find_held_lock+0x2d/0x110
[ 3208.235765][T12415]  mem_cgroup_out_of_memory+0x206/0x270
[ 3208.241352][T12415]  ? mem_cgroup_margin+0x130/0x130
[ 3208.246489][T12415]  ? lock_downgrade+0x6e0/0x6e0
[ 3208.251366][T12415]  try_charge_memcg+0xefb/0x12f0
[ 3208.256319][T12415]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3208.262307][T12415]  ? lock_downgrade+0x6e0/0x6e0
[ 3208.267185][T12415]  charge_memcg+0x90/0x3b0
[ 3208.271597][T12415]  __mem_cgroup_charge+0x2b/0x90
[ 3208.276545][T12415]  do_wp_page+0x7ec/0x3370
[ 3208.281004][T12415]  ? lock_release+0x810/0x810
[ 3208.285709][T12415]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3208.291095][T12415]  ? do_raw_spin_lock+0x124/0x2b0
[ 3208.296125][T12415]  ? rwlock_bug.part.0+0x90/0x90
[ 3208.301069][T12415]  ? lock_chain_count+0x20/0x20
[ 3208.305930][T12415]  __handle_mm_fault+0x1f58/0x3c90
[ 3208.311060][T12415]  ? vm_iomap_memory+0x190/0x190
[ 3208.316051][T12415]  handle_mm_fault+0x1b6/0x850
[ 3208.320846][T12415]  do_user_addr_fault+0x475/0x1210
[ 3208.325985][T12415]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3208.331560][T12415]  exc_page_fault+0x98/0x170
[ 3208.336163][T12415]  asm_exc_page_fault+0x26/0x30
[ 3208.341023][T12415] RIP: 0033:0x7fbb9f039570
[ 3208.345442][T12415] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3208.365057][T12415] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3208.371140][T12415] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3208.379116][T12415] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
10:32:49 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfffffffc}, 0x0)

10:32:49 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x80040200}}], 0x2, 0x0)

10:32:49 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030003e8000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3208.387106][T12415] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3208.395080][T12415] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3208.403055][T12415] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3208.411029][T12415]  ? security_socket_create+0x3f/0xc0
[ 3208.416435][T12415]  </TASK>
[ 3208.427969][T12415] memory: usage 307200kB, limit 307200kB, failcnt 154957
[ 3208.452602][T12415] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3208.474419][T12415] Memory cgroup stats for /syz4:
[ 3208.474625][T12415] anon 118784
[ 3208.474625][T12415] file 438272
[ 3208.474625][T12415] kernel 314011648
[ 3208.474625][T12415] kernel_stack 65536
[ 3208.474625][T12415] pagetables 73728
[ 3208.474625][T12415] sec_pagetables 0
[ 3208.474625][T12415] percpu 5617024
[ 3208.474625][T12415] sock 4096
[ 3208.474625][T12415] vmalloc 0
[ 3208.474625][T12415] shmem 438272
[ 3208.474625][T12415] zswap 0
[ 3208.474625][T12415] zswapped 0
[ 3208.474625][T12415] file_mapped 393216
[ 3208.474625][T12415] file_dirty 0
[ 3208.474625][T12415] file_writeback 0
[ 3208.474625][T12415] swapcached 0
[ 3208.474625][T12415] anon_thp 0
[ 3208.474625][T12415] file_thp 0
[ 3208.474625][T12415] shmem_thp 0
[ 3208.474625][T12415] inactive_anon 131072
[ 3208.474625][T12415] active_anon 425984
[ 3208.474625][T12415] inactive_file 0
[ 3208.474625][T12415] active_file 0
[ 3208.474625][T12415] unevictable 0
[ 3208.474625][T12415] slab_reclaimable 23024
[ 3208.474625][T12415] slab_unreclaimable 308200776
[ 3208.574671][T12415] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12415,uid=0
10:32:49 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300001f000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:49 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x300000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:49 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xd805)

10:32:49 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x872b82c6}}], 0x2, 0x0)

10:32:49 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000f0000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3208.590839][T12415] Memory cgroup out of memory: Killed process 12415 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:49 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000040030000000000000000000500010006"], 0x1c}}, 0x0)

10:32:49 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x400000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:49 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x882a8346}}], 0x2, 0x0)

[ 3208.681880][T12433] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3208.718634][T12433] CPU: 0 PID: 12433 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
10:32:49 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000040000000000000000000500010006"], 0x1c}}, 0x0)

[ 3208.727366][T12433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3208.737453][T12433] Call Trace:
[ 3208.740753][T12433]  <TASK>
[ 3208.743702][T12433]  dump_stack_lvl+0xd1/0x138
[ 3208.748337][T12433]  dump_header+0x10b/0x85f
[ 3208.752819][T12433]  oom_kill_process.cold+0x10/0x15
[ 3208.758059][T12433]  out_of_memory+0x35c/0x14a0
[ 3208.762797][T12433]  ? find_held_lock+0x2d/0x110
[ 3208.767594][T12433]  ? oom_killer_disable+0x280/0x280
[ 3208.772821][T12433]  ? find_held_lock+0x2d/0x110
[ 3208.777630][T12433]  mem_cgroup_out_of_memory+0x206/0x270
[ 3208.783217][T12433]  ? mem_cgroup_margin+0x130/0x130
[ 3208.788368][T12433]  ? lock_downgrade+0x6e0/0x6e0
[ 3208.793265][T12433]  try_charge_memcg+0xefb/0x12f0
[ 3208.798237][T12433]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3208.804247][T12433]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3208.810005][T12433]  ? lock_downgrade+0x6e0/0x6e0
[ 3208.814913][T12433]  obj_cgroup_charge+0x2af/0x5e0
[ 3208.819913][T12433]  ? __anon_vma_prepare+0x64/0x580
[ 3208.825060][T12433]  kmem_cache_alloc+0xb5/0x430
[ 3208.829856][T12433]  __anon_vma_prepare+0x64/0x580
[ 3208.834812][T12433]  ? __pmd_alloc+0x30c/0x5d0
[ 3208.839417][T12433]  __handle_mm_fault+0x392f/0x3c90
[ 3208.844552][T12433]  ? vm_iomap_memory+0x190/0x190
[ 3208.849529][T12433]  handle_mm_fault+0x1b6/0x850
[ 3208.854317][T12433]  do_user_addr_fault+0x475/0x1210
[ 3208.859443][T12433]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3208.865008][T12433]  exc_page_fault+0x98/0x170
[ 3208.869607][T12433]  asm_exc_page_fault+0x26/0x30
[ 3208.874477][T12433] RIP: 0033:0x7fde80a2bd49
[ 3208.878907][T12433] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3208.898516][T12433] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3208.904585][T12433] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3208.912561][T12433] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3208.920532][T12433] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3208.928505][T12433] R10: 00007fde80600068 R11: 0000000000000246 R12: 000000000030f524
[ 3208.936478][T12433] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3208.944468][T12433]  </TASK>
[ 3208.979480][T12433] memory: usage 307200kB, limit 307200kB, failcnt 37822
[ 3209.005531][T12433] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3209.012518][T12433] Memory cgroup stats for /syz2:
[ 3209.012703][T12433] anon 131072
[ 3209.012703][T12433] file 307200
[ 3209.012703][T12433] kernel 314134528
[ 3209.012703][T12433] kernel_stack 65536
[ 3209.012703][T12433] pagetables 86016
[ 3209.012703][T12433] sec_pagetables 0
[ 3209.012703][T12433] percpu 5433504
[ 3209.012703][T12433] sock 0
[ 3209.012703][T12433] vmalloc 16384
[ 3209.012703][T12433] shmem 307200
[ 3209.012703][T12433] zswap 0
[ 3209.012703][T12433] zswapped 0
[ 3209.012703][T12433] file_mapped 299008
[ 3209.012703][T12433] file_dirty 0
[ 3209.012703][T12433] file_writeback 0
[ 3209.012703][T12433] swapcached 0
[ 3209.012703][T12433] anon_thp 0
[ 3209.012703][T12433] file_thp 0
[ 3209.012703][T12433] shmem_thp 0
[ 3209.012703][T12433] inactive_anon 139264
[ 3209.012703][T12433] active_anon 299008
[ 3209.012703][T12433] inactive_file 0
[ 3209.012703][T12433] active_file 0
[ 3209.012703][T12433] unevictable 0
[ 3209.012703][T12433] slab_reclaimable 112984
[ 3209.012703][T12433] slab_unreclaimable 308390336
[ 3209.109102][T12433] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12433,uid=0
[ 3209.127277][T12433] Memory cgroup out of memory: Killed process 12433 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3209.145089][T12435] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3209.161317][T12435] CPU: 0 PID: 12435 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3209.170036][T12435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3209.180214][T12435] Call Trace:
[ 3209.183495][T12435]  <TASK>
[ 3209.186424][T12435]  dump_stack_lvl+0xd1/0x138
[ 3209.191014][T12435]  dump_header+0x10b/0x85f
[ 3209.195463][T12435]  oom_kill_process.cold+0x10/0x15
[ 3209.200582][T12435]  out_of_memory+0x35c/0x14a0
[ 3209.205272][T12435]  ? oom_killer_disable+0x280/0x280
[ 3209.210474][T12435]  ? find_held_lock+0x2d/0x110
[ 3209.215256][T12435]  mem_cgroup_out_of_memory+0x206/0x270
[ 3209.220843][T12435]  ? mem_cgroup_margin+0x130/0x130
[ 3209.225997][T12435]  ? lock_downgrade+0x6e0/0x6e0
[ 3209.230903][T12435]  try_charge_memcg+0xefb/0x12f0
[ 3209.235889][T12435]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3209.241897][T12435]  ? lock_downgrade+0x6e0/0x6e0
[ 3209.246766][T12435]  charge_memcg+0x90/0x3b0
[ 3209.251180][T12435]  __mem_cgroup_charge+0x2b/0x90
[ 3209.256113][T12435]  ? copy_mc_to_kernel+0x3e/0x90
[ 3209.261048][T12435]  do_wp_page+0x7ec/0x3370
[ 3209.265483][T12435]  ? lock_release+0x810/0x810
[ 3209.270169][T12435]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3209.275573][T12435]  ? do_raw_spin_lock+0x124/0x2b0
[ 3209.280614][T12435]  ? rwlock_bug.part.0+0x90/0x90
[ 3209.285563][T12435]  ? lock_chain_count+0x20/0x20
[ 3209.290427][T12435]  __handle_mm_fault+0x1f58/0x3c90
[ 3209.295573][T12435]  ? vm_iomap_memory+0x190/0x190
[ 3209.300555][T12435]  handle_mm_fault+0x1b6/0x850
[ 3209.305344][T12435]  do_user_addr_fault+0x475/0x1210
[ 3209.310474][T12435]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3209.316041][T12435]  exc_page_fault+0x98/0x170
[ 3209.320641][T12435]  asm_exc_page_fault+0x26/0x30
[ 3209.325504][T12435] RIP: 0033:0x7f36ee036645
[ 3209.329922][T12435] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
[ 3209.349548][T12435] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
[ 3209.355624][T12435] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3209.363613][T12435] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3209.371596][T12435] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
10:32:50 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfffffffe}, 0x0)

10:32:50 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000003400000000000000000000500010006"], 0x1c}}, 0x0)

10:32:50 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x500000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3209.379586][T12435] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 000000000030f6e7
[ 3209.387572][T12435] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3209.395571][T12435]  </TASK>
[ 3209.402768][T12435] memory: usage 307200kB, limit 307200kB, failcnt 31113
[ 3209.420380][T12435] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3209.435353][T12435] Memory cgroup stats for /syz5:
[ 3209.435836][T12435] anon 94208
[ 3209.435836][T12435] file 425984
[ 3209.435836][T12435] kernel 314052608
[ 3209.435836][T12435] kernel_stack 65536
[ 3209.435836][T12435] pagetables 77824
[ 3209.435836][T12435] sec_pagetables 0
[ 3209.435836][T12435] percpu 5429952
[ 3209.435836][T12435] sock 0
[ 3209.435836][T12435] vmalloc 8192
[ 3209.435836][T12435] shmem 425984
[ 3209.435836][T12435] zswap 0
[ 3209.435836][T12435] zswapped 0
[ 3209.435836][T12435] file_mapped 393216
[ 3209.435836][T12435] file_dirty 0
[ 3209.435836][T12435] file_writeback 0
[ 3209.435836][T12435] swapcached 0
[ 3209.435836][T12435] anon_thp 0
[ 3209.435836][T12435] file_thp 0
[ 3209.435836][T12435] shmem_thp 0
[ 3209.435836][T12435] inactive_anon 221184
[ 3209.435836][T12435] active_anon 299008
[ 3209.435836][T12435] inactive_file 0
[ 3209.435836][T12435] active_file 0
[ 3209.435836][T12435] unevictable 0
[ 3209.435836][T12435] slab_reclaimable 218328
[ 3209.435836][T12435] slab_unreclaimable 308218520
[ 3209.544534][T12435] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12435,uid=0
[ 3209.561878][T12435] Memory cgroup out of memory: Killed process 12435 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3209.608939][T12457] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3209.629625][T12457] CPU: 0 PID: 12457 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3209.638350][T12457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3209.648414][T12457] Call Trace:
[ 3209.651685][T12457]  <TASK>
[ 3209.654609][T12457]  dump_stack_lvl+0xd1/0x138
[ 3209.659197][T12457]  dump_header+0x10b/0x85f
[ 3209.663616][T12457]  oom_kill_process.cold+0x10/0x15
[ 3209.668725][T12457]  out_of_memory+0x35c/0x14a0
[ 3209.673402][T12457]  ? find_held_lock+0x2d/0x110
[ 3209.678160][T12457]  ? oom_killer_disable+0x280/0x280
[ 3209.683359][T12457]  ? find_held_lock+0x2d/0x110
[ 3209.688141][T12457]  mem_cgroup_out_of_memory+0x206/0x270
[ 3209.693730][T12457]  ? mem_cgroup_margin+0x130/0x130
[ 3209.698892][T12457]  ? lock_downgrade+0x6e0/0x6e0
[ 3209.703786][T12457]  try_charge_memcg+0xefb/0x12f0
[ 3209.708743][T12457]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3209.714721][T12457]  ? lock_downgrade+0x6e0/0x6e0
[ 3209.719580][T12457]  charge_memcg+0x90/0x3b0
[ 3209.723993][T12457]  __mem_cgroup_charge+0x2b/0x90
[ 3209.728951][T12457]  do_wp_page+0x7ec/0x3370
[ 3209.733370][T12457]  ? lock_release+0x810/0x810
[ 3209.738054][T12457]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3209.743465][T12457]  ? do_raw_spin_lock+0x124/0x2b0
[ 3209.748518][T12457]  ? rwlock_bug.part.0+0x90/0x90
[ 3209.753584][T12457]  ? lock_chain_count+0x20/0x20
[ 3209.756052][  T541] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3209.758469][T12457]  __handle_mm_fault+0x1f58/0x3c90
[ 3209.773824][T12457]  ? vm_iomap_memory+0x190/0x190
[ 3209.778832][T12457]  handle_mm_fault+0x1b6/0x850
[ 3209.783632][T12457]  do_user_addr_fault+0x475/0x1210
[ 3209.788781][T12457]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3209.794366][T12457]  exc_page_fault+0x98/0x170
[ 3209.798981][T12457]  asm_exc_page_fault+0x26/0x30
[ 3209.803860][T12457] RIP: 0033:0x7fde80a39570
[ 3209.808291][T12457] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3209.827923][T12457] RSP: 002b:00007ffd6245db10 EFLAGS: 00010246
[ 3209.834014][T12457] RAX: 000000005b2f10f2 RBX: 00007fde80bac018 RCX: 0000001b32820000
[ 3209.842013][T12457] RDX: 0000000000000000 RSI: 0000001b32820018 RDI: 000000000a252404
[ 3209.850009][T12457] RBP: 000000005b2f10f2 R08: 00000000000010f2 R09: 000000005b2f10f6
[ 3209.858001][T12457] R10: 00007ffd6245dcd0 R11: 0000000000000246 R12: 00007fde80ba0000
[ 3209.865983][T12457] R13: 0000000000000001 R14: 000000000000000b R15: ffffffff83d0c452
[ 3209.873963][T12457]  ? apparmor_socket_create+0xb2/0x660
[ 3209.879462][T12457]  </TASK>
[ 3209.904448][T12457] memory: usage 307184kB, limit 307200kB, failcnt 37941
[ 3209.913135][T12457] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3209.921103][T12457] Memory cgroup stats for /syz2:
[ 3209.921310][T12457] anon 122880
[ 3209.921310][T12457] file 307200
[ 3209.921310][T12457] kernel 314126336
[ 3209.921310][T12457] kernel_stack 65536
[ 3209.921310][T12457] pagetables 77824
[ 3209.921310][T12457] sec_pagetables 0
[ 3209.921310][T12457] percpu 5433504
[ 3209.921310][T12457] sock 0
[ 3209.921310][T12457] vmalloc 16384
[ 3209.921310][T12457] shmem 307200
[ 3209.921310][T12457] zswap 0
[ 3209.921310][T12457] zswapped 0
[ 3209.921310][T12457] file_mapped 299008
[ 3209.921310][T12457] file_dirty 0
[ 3209.921310][T12457] file_writeback 0
[ 3209.921310][T12457] swapcached 0
[ 3209.921310][T12457] anon_thp 0
[ 3209.921310][T12457] file_thp 0
[ 3209.921310][T12457] shmem_thp 0
[ 3209.921310][T12457] inactive_anon 106496
[ 3209.921310][T12457] active_anon 299008
[ 3209.921310][T12457] inactive_file 0
[ 3209.921310][T12457] active_file 0
[ 3209.921310][T12457] unevictable 0
[ 3209.921310][T12457] slab_reclaimable 112984
[ 3209.921310][T12457] slab_unreclaimable 308390640
[ 3210.021248][T12457] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12457,uid=0
[ 3210.037268][T12457] Memory cgroup out of memory: Killed process 12457 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 3210.055386][T12451] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3210.072398][T12451] CPU: 0 PID: 12451 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3210.081113][T12451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3210.091194][T12451] Call Trace:
[ 3210.094499][T12451]  <TASK>
[ 3210.097450][T12451]  dump_stack_lvl+0xd1/0x138
[ 3210.102078][T12451]  dump_header+0x10b/0x85f
[ 3210.106539][T12451]  oom_kill_process.cold+0x10/0x15
[ 3210.111713][T12451]  out_of_memory+0x35c/0x14a0
[ 3210.116447][T12451]  ? oom_killer_disable+0x280/0x280
[ 3210.121691][T12451]  ? find_held_lock+0x2d/0x110
[ 3210.126507][T12451]  mem_cgroup_out_of_memory+0x206/0x270
[ 3210.132101][T12451]  ? mem_cgroup_margin+0x130/0x130
[ 3210.137251][T12451]  ? lock_downgrade+0x6e0/0x6e0
[ 3210.142146][T12451]  try_charge_memcg+0xefb/0x12f0
[ 3210.147122][T12451]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3210.153141][T12451]  ? lock_downgrade+0x6e0/0x6e0
[ 3210.158038][T12451]  charge_memcg+0x90/0x3b0
[ 3210.162487][T12451]  __mem_cgroup_charge+0x2b/0x90
[ 3210.167454][T12451]  do_wp_page+0x7ec/0x3370
[ 3210.171918][T12451]  ? lock_release+0x810/0x810
[ 3210.176633][T12451]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3210.182030][T12451]  ? do_raw_spin_lock+0x124/0x2b0
[ 3210.187071][T12451]  ? rwlock_bug.part.0+0x90/0x90
[ 3210.192046][T12451]  ? lock_chain_count+0x20/0x20
[ 3210.196913][T12451]  __handle_mm_fault+0x1f58/0x3c90
[ 3210.202051][T12451]  ? vm_iomap_memory+0x190/0x190
[ 3210.207039][T12451]  handle_mm_fault+0x1b6/0x850
[ 3210.211823][T12451]  do_user_addr_fault+0x475/0x1210
[ 3210.216948][T12451]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3210.222527][T12451]  exc_page_fault+0x98/0x170
[ 3210.227129][T12451]  asm_exc_page_fault+0x26/0x30
[ 3210.232004][T12451] RIP: 0033:0x7fbb9f039570
[ 3210.236435][T12451] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3210.256151][T12451] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3210.262226][T12451] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3210.270198][T12451] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3210.278173][T12451] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3210.286146][T12451] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3210.294127][T12451] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3210.302115][T12451]  ? security_socket_create+0x3f/0xc0
[ 3210.307527][T12451]  </TASK>
[ 3210.319486][T12451] memory: usage 307200kB, limit 307200kB, failcnt 155098
[ 3210.327485][T12451] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3210.335848][T12451] Memory cgroup stats for /syz4:
[ 3210.336058][T12451] anon 118784
[ 3210.336058][T12451] file 438272
[ 3210.336058][T12451] kernel 314011648
[ 3210.336058][T12451] kernel_stack 65536
[ 3210.336058][T12451] pagetables 73728
[ 3210.336058][T12451] sec_pagetables 0
[ 3210.336058][T12451] percpu 5617024
[ 3210.336058][T12451] sock 4096
[ 3210.336058][T12451] vmalloc 0
[ 3210.336058][T12451] shmem 438272
[ 3210.336058][T12451] zswap 0
[ 3210.336058][T12451] zswapped 0
[ 3210.336058][T12451] file_mapped 393216
[ 3210.336058][T12451] file_dirty 0
[ 3210.336058][T12451] file_writeback 0
[ 3210.336058][T12451] swapcached 0
[ 3210.336058][T12451] anon_thp 0
[ 3210.336058][T12451] file_thp 0
[ 3210.336058][T12451] shmem_thp 0
[ 3210.336058][T12451] inactive_anon 131072
[ 3210.336058][T12451] active_anon 425984
[ 3210.336058][T12451] inactive_file 0
[ 3210.336058][T12451] active_file 0
[ 3210.336058][T12451] unevictable 0
[ 3210.336058][T12451] slab_reclaimable 23024
[ 3210.336058][T12451] slab_unreclaimable 308200776
[ 3210.484530][T12451] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12451,uid=0
10:32:51 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300001f000000000000000000000500010006"], 0x1c}}, 0x0)

10:32:51 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x8d23d716}}], 0x2, 0x0)

10:32:51 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x600000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:51 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300fffff00000000000000000000500010006"], 0x1c}}, 0x0)

10:32:51 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xe003)

10:32:51 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xffffffff}, 0x0)

[ 3210.524591][T12451] Memory cgroup out of memory: Killed process 12451 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:51 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x700000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:51 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000100000000000000000500010006"], 0x1c}}, 0x0)

10:32:51 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x8dffffff}}], 0x2, 0x0)

[ 3210.672209][T12463] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
10:32:51 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x800000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3210.722556][T12463] CPU: 0 PID: 12463 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3210.731336][T12463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3210.741418][T12463] Call Trace:
[ 3210.744717][T12463]  <TASK>
[ 3210.747669][T12463]  dump_stack_lvl+0xd1/0x138
[ 3210.752296][T12463]  dump_header+0x10b/0x85f
[ 3210.756761][T12463]  oom_kill_process.cold+0x10/0x15
[ 3210.761917][T12463]  out_of_memory+0x35c/0x14a0
[ 3210.766646][T12463]  ? find_held_lock+0x2d/0x110
[ 3210.771456][T12463]  ? oom_killer_disable+0x280/0x280
[ 3210.776720][T12463]  ? find_held_lock+0x2d/0x110
[ 3210.781518][T12463]  mem_cgroup_out_of_memory+0x206/0x270
[ 3210.787126][T12463]  ? mem_cgroup_margin+0x130/0x130
[ 3210.792265][T12463]  ? lock_downgrade+0x6e0/0x6e0
[ 3210.797162][T12463]  try_charge_memcg+0xefb/0x12f0
[ 3210.802156][T12463]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3210.808165][T12463]  ? lock_downgrade+0x6e0/0x6e0
[ 3210.813042][T12463]  charge_memcg+0x90/0x3b0
[ 3210.817475][T12463]  __mem_cgroup_charge+0x2b/0x90
[ 3210.822436][T12463]  do_wp_page+0x7ec/0x3370
[ 3210.826883][T12463]  ? lock_release+0x810/0x810
[ 3210.831578][T12463]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3210.836972][T12463]  ? do_raw_spin_lock+0x124/0x2b0
[ 3210.842010][T12463]  ? rwlock_bug.part.0+0x90/0x90
[ 3210.846965][T12463]  ? lock_chain_count+0x20/0x20
[ 3210.851828][T12463]  __handle_mm_fault+0x1f58/0x3c90
[ 3210.856963][T12463]  ? vm_iomap_memory+0x190/0x190
[ 3210.861941][T12463]  handle_mm_fault+0x1b6/0x850
[ 3210.866727][T12463]  do_user_addr_fault+0x475/0x1210
[ 3210.871853][T12463]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3210.877419][T12463]  exc_page_fault+0x98/0x170
[ 3210.882020][T12463]  asm_exc_page_fault+0x26/0x30
[ 3210.886875][T12463] RIP: 0033:0x7fde80a39570
[ 3210.891292][T12463] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3210.910906][T12463] RSP: 002b:00007ffd6245db10 EFLAGS: 00010246
10:32:51 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000200000000000000000500010006"], 0x1c}}, 0x0)

[ 3210.916981][T12463] RAX: 000000005b2f10f2 RBX: 00007fde80bac018 RCX: 0000001b32820000
[ 3210.924960][T12463] RDX: 0000000000000000 RSI: 0000001b32820018 RDI: 000000000a252404
[ 3210.932948][T12463] RBP: 000000005b2f10f2 R08: 00000000000010f2 R09: 000000005b2f10f6
[ 3210.940920][T12463] R10: 00007ffd6245dcd0 R11: 0000000000000246 R12: 00007fde80ba0000
[ 3210.948896][T12463] R13: 0000000000000001 R14: 000000000000000b R15: ffffffff83d0c452
[ 3210.956886][T12463]  ? apparmor_socket_create+0xb2/0x660
[ 3210.962367][T12463]  </TASK>
[ 3211.035959][T12463] memory: usage 307200kB, limit 307200kB, failcnt 38008
[ 3211.043474][T12463] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3211.052039][T12463] Memory cgroup stats for /syz2:
[ 3211.052257][T12463] anon 122880
[ 3211.052257][T12463] file 307200
[ 3211.052257][T12463] kernel 314142720
[ 3211.052257][T12463] kernel_stack 65536
[ 3211.052257][T12463] pagetables 77824
[ 3211.052257][T12463] sec_pagetables 0
[ 3211.052257][T12463] percpu 5433568
[ 3211.052257][T12463] sock 0
10:32:51 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xb95f5371}}], 0x2, 0x0)

[ 3211.052257][T12463] vmalloc 16384
[ 3211.052257][T12463] shmem 307200
[ 3211.052257][T12463] zswap 0
[ 3211.052257][T12463] zswapped 0
[ 3211.052257][T12463] file_mapped 299008
[ 3211.052257][T12463] file_dirty 0
[ 3211.052257][T12463] file_writeback 0
[ 3211.052257][T12463] swapcached 0
[ 3211.052257][T12463] anon_thp 0
[ 3211.052257][T12463] file_thp 0
[ 3211.052257][T12463] shmem_thp 0
[ 3211.052257][T12463] inactive_anon 131072
[ 3211.052257][T12463] active_anon 299008
[ 3211.052257][T12463] inactive_file 0
[ 3211.052257][T12463] active_file 0
[ 3211.052257][T12463] unevictable 0
[ 3211.052257][T12463] slab_reclaimable 112984
[ 3211.052257][T12463] slab_unreclaimable 308402120
[ 3211.170637][T12463] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12463,uid=0
[ 3211.186781][T12463] Memory cgroup out of memory: Killed process 12463 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 3211.206428][T12468] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3211.223886][T12468] CPU: 0 PID: 12468 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3211.232604][T12468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3211.242683][T12468] Call Trace:
[ 3211.245982][T12468]  <TASK>
[ 3211.248934][T12468]  dump_stack_lvl+0xd1/0x138
[ 3211.253572][T12468]  dump_header+0x10b/0x85f
[ 3211.258039][T12468]  oom_kill_process.cold+0x10/0x15
[ 3211.263197][T12468]  out_of_memory+0x35c/0x14a0
[ 3211.267886][T12468]  ? oom_killer_disable+0x280/0x280
[ 3211.273104][T12468]  ? find_held_lock+0x2d/0x110
[ 3211.277886][T12468]  mem_cgroup_out_of_memory+0x206/0x270
[ 3211.283470][T12468]  ? mem_cgroup_margin+0x130/0x130
[ 3211.288608][T12468]  ? lock_downgrade+0x6e0/0x6e0
[ 3211.293479][T12468]  try_charge_memcg+0xefb/0x12f0
[ 3211.298440][T12468]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3211.304451][T12468]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3211.310209][T12468]  ? lock_downgrade+0x6e0/0x6e0
[ 3211.315080][T12468]  ? lock_downgrade+0x6e0/0x6e0
[ 3211.319949][T12468]  obj_cgroup_charge+0x2af/0x5e0
[ 3211.324910][T12468]  kmem_cache_alloc_lru+0x145/0x760
[ 3211.330120][T12468]  ? sock_alloc_inode+0x27/0x1d0
[ 3211.335085][T12468]  sock_alloc_inode+0x27/0x1d0
[ 3211.339865][T12468]  ? sock_free_inode+0x30/0x30
[ 3211.344640][T12468]  alloc_inode+0x61/0x230
[ 3211.349094][T12468]  new_inode_pseudo+0x17/0x80
[ 3211.353795][T12468]  sock_alloc+0x40/0x260
[ 3211.358056][T12468]  __sock_create+0xbd/0x790
[ 3211.362589][T12468]  __sys_socket+0x133/0x250
[ 3211.367119][T12468]  ? __sys_socket_file+0x1f0/0x1f0
[ 3211.372262][T12468]  __x64_sys_socket+0x73/0xb0
[ 3211.376961][T12468]  do_syscall_64+0x39/0xb0
[ 3211.381402][T12468]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3211.387307][T12468] RIP: 0033:0x7f36ee08c0c9
[ 3211.391725][T12468] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3211.411356][T12468] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3211.419779][T12468] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3211.427753][T12468] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3211.435728][T12468] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3211.443702][T12468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3211.451675][T12468] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3211.459667][T12468]  </TASK>
[ 3211.466261][T12468] memory: usage 307200kB, limit 307200kB, failcnt 31221
[ 3211.473239][T12468] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3211.486474][T12468] Memory cgroup stats for /syz5:
[ 3211.486707][T12468] anon 94208
[ 3211.486707][T12468] file 425984
[ 3211.486707][T12468] kernel 314052608
[ 3211.486707][T12468] kernel_stack 65536
[ 3211.486707][T12468] pagetables 77824
[ 3211.486707][T12468] sec_pagetables 0
[ 3211.486707][T12468] percpu 5429952
[ 3211.486707][T12468] sock 0
[ 3211.486707][T12468] vmalloc 8192
[ 3211.486707][T12468] shmem 425984
[ 3211.486707][T12468] zswap 0
[ 3211.486707][T12468] zswapped 0
[ 3211.486707][T12468] file_mapped 393216
[ 3211.486707][T12468] file_dirty 0
[ 3211.486707][T12468] file_writeback 0
[ 3211.486707][T12468] swapcached 0
[ 3211.486707][T12468] anon_thp 0
[ 3211.486707][T12468] file_thp 0
[ 3211.486707][T12468] shmem_thp 0
[ 3211.486707][T12468] inactive_anon 221184
[ 3211.486707][T12468] active_anon 299008
[ 3211.486707][T12468] inactive_file 0
[ 3211.486707][T12468] active_file 0
[ 3211.486707][T12468] unevictable 0
[ 3211.486707][T12468] slab_reclaimable 216400
[ 3211.486707][T12468] slab_unreclaimable 308217872
[ 3211.587822][T12468] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12465,uid=0
[ 3211.603832][T12468] Memory cgroup out of memory: Killed process 12465 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3211.621570][T12469] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3211.631397][T12468] socket: no more sockets
[ 3211.636379][T12469] CPU: 1 PID: 12469 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3211.645082][T12469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3211.655159][T12469] Call Trace:
[ 3211.658452][T12469]  <TASK>
[ 3211.661400][T12469]  dump_stack_lvl+0xd1/0x138
[ 3211.666026][T12469]  dump_header+0x10b/0x85f
[ 3211.670488][T12469]  oom_kill_process.cold+0x10/0x15
[ 3211.675654][T12469]  out_of_memory+0x35c/0x14a0
[ 3211.680387][T12469]  ? oom_killer_disable+0x280/0x280
[ 3211.685635][T12469]  ? find_held_lock+0x2d/0x110
[ 3211.690441][T12469]  mem_cgroup_out_of_memory+0x206/0x270
[ 3211.696021][T12469]  ? mem_cgroup_margin+0x130/0x130
[ 3211.701148][T12469]  ? lock_downgrade+0x6e0/0x6e0
[ 3211.706022][T12469]  try_charge_memcg+0xefb/0x12f0
[ 3211.710972][T12469]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3211.716965][T12469]  ? lock_downgrade+0x6e0/0x6e0
[ 3211.721843][T12469]  charge_memcg+0x90/0x3b0
[ 3211.726299][T12469]  __mem_cgroup_charge+0x2b/0x90
[ 3211.731255][T12469]  do_wp_page+0x7ec/0x3370
[ 3211.735693][T12469]  ? lock_release+0x810/0x810
[ 3211.740375][T12469]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3211.745762][T12469]  ? do_raw_spin_lock+0x124/0x2b0
[ 3211.750798][T12469]  ? rwlock_bug.part.0+0x90/0x90
[ 3211.755744][T12469]  ? lock_chain_count+0x20/0x20
[ 3211.760609][T12469]  __handle_mm_fault+0x1f58/0x3c90
[ 3211.765742][T12469]  ? vm_iomap_memory+0x190/0x190
[ 3211.770740][T12469]  handle_mm_fault+0x1b6/0x850
[ 3211.775526][T12469]  do_user_addr_fault+0x475/0x1210
[ 3211.780651][T12469]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3211.786231][T12469]  exc_page_fault+0x98/0x170
[ 3211.790831][T12469]  asm_exc_page_fault+0x26/0x30
[ 3211.795689][T12469] RIP: 0033:0x7fbb9f039570
[ 3211.800118][T12469] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3211.819729][T12469] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3211.825817][T12469] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3211.833794][T12469] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3211.841765][T12469] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3211.849736][T12469] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3211.857709][T12469] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3211.865683][T12469]  ? security_socket_create+0x3f/0xc0
[ 3211.871093][T12469]  </TASK>
[ 3211.880441][T12469] memory: usage 307200kB, limit 307200kB, failcnt 155219
[ 3211.887576][T12469] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3211.895331][T12469] Memory cgroup stats for /syz4:
[ 3211.895547][T12469] anon 118784
[ 3211.895547][T12469] file 438272
[ 3211.895547][T12469] kernel 314011648
[ 3211.895547][T12469] kernel_stack 65536
[ 3211.895547][T12469] pagetables 73728
[ 3211.895547][T12469] sec_pagetables 0
[ 3211.895547][T12469] percpu 5617024
[ 3211.895547][T12469] sock 4096
[ 3211.895547][T12469] vmalloc 0
[ 3211.895547][T12469] shmem 438272
[ 3211.895547][T12469] zswap 0
[ 3211.895547][T12469] zswapped 0
[ 3211.895547][T12469] file_mapped 393216
[ 3211.895547][T12469] file_dirty 0
[ 3211.895547][T12469] file_writeback 0
[ 3211.895547][T12469] swapcached 0
[ 3211.895547][T12469] anon_thp 0
[ 3211.895547][T12469] file_thp 0
[ 3211.895547][T12469] shmem_thp 0
[ 3211.895547][T12469] inactive_anon 131072
[ 3211.895547][T12469] active_anon 425984
[ 3211.895547][T12469] inactive_file 0
[ 3211.895547][T12469] active_file 0
[ 3211.895547][T12469] unevictable 0
[ 3211.895547][T12469] slab_reclaimable 23024
[ 3211.895547][T12469] slab_unreclaimable 308200776
10:32:52 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x643a0000}}], 0x2, 0x0)

10:32:52 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x900000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:52 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000300000000000000000500010006"], 0x1c}}, 0x0)

10:32:52 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xbb57130d}}], 0x2, 0x0)

10:32:52 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x2)

10:32:52 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xe403)

[ 3211.992394][T12469] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12469,uid=0
[ 3212.008247][T12469] Memory cgroup out of memory: Killed process 12469 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:52 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xa00000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:52 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xc6822b87}}], 0x2, 0x0)

10:32:52 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000400000000000000000500010006"], 0x1c}}, 0x0)

10:32:53 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xe00000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:53 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xe8030000}}], 0x2, 0x0)

[ 3212.188174][T12484] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3212.217243][T12484] CPU: 1 PID: 12484 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3212.225973][T12484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
10:32:53 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000500000000000000000500010006"], 0x1c}}, 0x0)

[ 3212.236051][T12484] Call Trace:
[ 3212.239348][T12484]  <TASK>
[ 3212.242306][T12484]  dump_stack_lvl+0xd1/0x138
[ 3212.246935][T12484]  dump_header+0x10b/0x85f
[ 3212.251414][T12484]  oom_kill_process.cold+0x10/0x15
[ 3212.256571][T12484]  out_of_memory+0x35c/0x14a0
[ 3212.261289][T12484]  ? find_held_lock+0x2d/0x110
[ 3212.266096][T12484]  ? oom_killer_disable+0x280/0x280
[ 3212.271346][T12484]  ? find_held_lock+0x2d/0x110
[ 3212.276175][T12484]  mem_cgroup_out_of_memory+0x206/0x270
[ 3212.281763][T12484]  ? mem_cgroup_margin+0x130/0x130
[ 3212.286915][T12484]  ? lock_downgrade+0x6e0/0x6e0
[ 3212.291813][T12484]  try_charge_memcg+0xefb/0x12f0
[ 3212.296796][T12484]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3212.302809][T12484]  ? lock_downgrade+0x6e0/0x6e0
[ 3212.307713][T12484]  charge_memcg+0x90/0x3b0
[ 3212.312164][T12484]  __mem_cgroup_charge+0x2b/0x90
[ 3212.317135][T12484]  ? copy_mc_to_kernel+0x3e/0x90
[ 3212.322108][T12484]  do_wp_page+0x7ec/0x3370
[ 3212.326577][T12484]  ? lock_release+0x810/0x810
[ 3212.331284][T12484]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3212.336695][T12484]  ? do_raw_spin_lock+0x124/0x2b0
[ 3212.341753][T12484]  ? rwlock_bug.part.0+0x90/0x90
[ 3212.346721][T12484]  ? lock_chain_count+0x20/0x20
[ 3212.351609][T12484]  __handle_mm_fault+0x1f58/0x3c90
[ 3212.356769][T12484]  ? vm_iomap_memory+0x190/0x190
[ 3212.361772][T12484]  handle_mm_fault+0x1b6/0x850
[ 3212.366584][T12484]  do_user_addr_fault+0x475/0x1210
[ 3212.371736][T12484]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3212.377327][T12484]  exc_page_fault+0x98/0x170
[ 3212.381942][T12484]  asm_exc_page_fault+0x26/0x30
[ 3212.386806][T12484] RIP: 0033:0x7f36ee036645
[ 3212.391243][T12484] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
[ 3212.410965][T12484] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
[ 3212.417060][T12484] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3212.425042][T12484] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3212.433032][T12484] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
[ 3212.441024][T12484] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 000000000031034e
[ 3212.449020][T12484] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3212.457039][T12484]  </TASK>
[ 3212.476371][T12484] memory: usage 307200kB, limit 307200kB, failcnt 31342
[ 3212.483348][T12484] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3212.490697][T12484] Memory cgroup stats for /syz5:
[ 3212.490915][T12484] anon 94208
[ 3212.490915][T12484] file 425984
[ 3212.490915][T12484] kernel 314052608
[ 3212.490915][T12484] kernel_stack 65536
[ 3212.490915][T12484] pagetables 77824
[ 3212.490915][T12484] sec_pagetables 0
[ 3212.490915][T12484] percpu 5429952
[ 3212.490915][T12484] sock 0
[ 3212.490915][T12484] vmalloc 8192
[ 3212.490915][T12484] shmem 425984
[ 3212.490915][T12484] zswap 0
[ 3212.490915][T12484] zswapped 0
[ 3212.490915][T12484] file_mapped 393216
[ 3212.490915][T12484] file_dirty 0
[ 3212.490915][T12484] file_writeback 0
[ 3212.490915][T12484] swapcached 0
[ 3212.490915][T12484] anon_thp 0
[ 3212.490915][T12484] file_thp 0
[ 3212.490915][T12484] shmem_thp 0
[ 3212.490915][T12484] inactive_anon 221184
[ 3212.490915][T12484] active_anon 299008
[ 3212.490915][T12484] inactive_file 0
[ 3212.490915][T12484] active_file 0
[ 3212.490915][T12484] unevictable 0
[ 3212.490915][T12484] slab_reclaimable 218328
[ 3212.490915][T12484] slab_unreclaimable 308218520
[ 3212.590029][T12484] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12484,uid=0
[ 3212.605809][T12484] Memory cgroup out of memory: Killed process 12484 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3212.623608][T12486] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3212.640802][T12486] CPU: 1 PID: 12486 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3212.649516][T12486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3212.659594][T12486] Call Trace:
[ 3212.662925][T12486]  <TASK>
[ 3212.665901][T12486]  dump_stack_lvl+0xd1/0x138
[ 3212.670534][T12486]  dump_header+0x10b/0x85f
[ 3212.674997][T12486]  oom_kill_process.cold+0x10/0x15
[ 3212.680157][T12486]  out_of_memory+0x35c/0x14a0
[ 3212.684894][T12486]  ? oom_killer_disable+0x280/0x280
[ 3212.690135][T12486]  ? find_held_lock+0x2d/0x110
[ 3212.694943][T12486]  mem_cgroup_out_of_memory+0x206/0x270
[ 3212.700532][T12486]  ? mem_cgroup_margin+0x130/0x130
[ 3212.705680][T12486]  ? lock_downgrade+0x6e0/0x6e0
[ 3212.710575][T12486]  try_charge_memcg+0xefb/0x12f0
[ 3212.715550][T12486]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3212.721554][T12486]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3212.727315][T12486]  ? lock_downgrade+0x6e0/0x6e0
[ 3212.732216][T12486]  obj_cgroup_charge+0x2af/0x5e0
[ 3212.737186][T12486]  ? __anon_vma_prepare+0x64/0x580
[ 3212.742332][T12486]  kmem_cache_alloc+0xb5/0x430
[ 3212.747121][T12486]  __anon_vma_prepare+0x64/0x580
[ 3212.752076][T12486]  ? __pmd_alloc+0x30c/0x5d0
[ 3212.756683][T12486]  __handle_mm_fault+0x392f/0x3c90
[ 3212.761816][T12486]  ? vm_iomap_memory+0x190/0x190
[ 3212.766793][T12486]  handle_mm_fault+0x1b6/0x850
[ 3212.771576][T12486]  do_user_addr_fault+0x475/0x1210
[ 3212.776702][T12486]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3212.782272][T12486]  exc_page_fault+0x98/0x170
[ 3212.786874][T12486]  asm_exc_page_fault+0x26/0x30
[ 3212.791730][T12486] RIP: 0033:0x7fde80a2bd49
[ 3212.796150][T12486] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3212.815764][T12486] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3212.821840][T12486] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3212.829817][T12486] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3212.837789][T12486] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3212.845764][T12486] R10: 00007fde80600068 R11: 0000000000000246 R12: 0000000000310337
[ 3212.853739][T12486] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3212.861727][T12486]  </TASK>
[ 3212.871217][T12486] memory: usage 307200kB, limit 307200kB, failcnt 38090
[ 3212.884224][T12486] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3212.891550][T12486] Memory cgroup stats for /syz2:
[ 3212.891751][T12486] anon 131072
[ 3212.891751][T12486] file 307200
[ 3212.891751][T12486] kernel 314126336
[ 3212.891751][T12486] kernel_stack 65536
[ 3212.891751][T12486] pagetables 86016
[ 3212.891751][T12486] sec_pagetables 0
[ 3212.891751][T12486] percpu 5433504
[ 3212.891751][T12486] sock 0
[ 3212.891751][T12486] vmalloc 16384
[ 3212.891751][T12486] shmem 307200
[ 3212.891751][T12486] zswap 0
[ 3212.891751][T12486] zswapped 0
[ 3212.891751][T12486] file_mapped 299008
[ 3212.891751][T12486] file_dirty 0
[ 3212.891751][T12486] file_writeback 0
[ 3212.891751][T12486] swapcached 0
[ 3212.891751][T12486] anon_thp 0
[ 3212.891751][T12486] file_thp 0
[ 3212.891751][T12486] shmem_thp 0
[ 3212.891751][T12486] inactive_anon 139264
[ 3212.891751][T12486] active_anon 299008
[ 3212.891751][T12486] inactive_file 0
[ 3212.891751][T12486] active_file 0
[ 3212.891751][T12486] unevictable 0
[ 3212.891751][T12486] slab_reclaimable 112984
[ 3212.891751][T12486] slab_unreclaimable 308384176
[ 3212.996946][T12486] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12486,uid=0
[ 3213.012716][T12486] Memory cgroup out of memory: Killed process 12486 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3213.058309][T12494] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3213.069017][T12494] CPU: 1 PID: 12494 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3213.077725][T12494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3213.087804][T12494] Call Trace:
[ 3213.091099][T12494]  <TASK>
[ 3213.094037][T12494]  dump_stack_lvl+0xd1/0x138
[ 3213.098645][T12494]  dump_header+0x10b/0x85f
[ 3213.103102][T12494]  oom_kill_process.cold+0x10/0x15
[ 3213.108257][T12494]  out_of_memory+0x35c/0x14a0
[ 3213.112981][T12494]  ? find_held_lock+0x2d/0x110
[ 3213.117784][T12494]  ? oom_killer_disable+0x280/0x280
[ 3213.123036][T12494]  ? find_held_lock+0x2d/0x110
[ 3213.127842][T12494]  mem_cgroup_out_of_memory+0x206/0x270
[ 3213.133417][T12494]  ? mem_cgroup_margin+0x130/0x130
[ 3213.138533][T12494]  ? lock_downgrade+0x6e0/0x6e0
[ 3213.143426][T12494]  try_charge_memcg+0xefb/0x12f0
[ 3213.148399][T12494]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3213.154421][T12494]  ? lock_downgrade+0x6e0/0x6e0
[ 3213.159312][T12494]  charge_memcg+0x90/0x3b0
[ 3213.163745][T12494]  __mem_cgroup_charge+0x2b/0x90
[ 3213.168689][T12494]  do_wp_page+0x7ec/0x3370
[ 3213.173134][T12494]  ? lock_release+0x810/0x810
[ 3213.177820][T12494]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3213.183233][T12494]  ? do_raw_spin_lock+0x124/0x2b0
[ 3213.188281][T12494]  ? rwlock_bug.part.0+0x90/0x90
[ 3213.193234][T12494]  ? lock_chain_count+0x20/0x20
[ 3213.198096][T12494]  __handle_mm_fault+0x1f58/0x3c90
[ 3213.203232][T12494]  ? vm_iomap_memory+0x190/0x190
[ 3213.208214][T12494]  handle_mm_fault+0x1b6/0x850
[ 3213.213020][T12494]  do_user_addr_fault+0x475/0x1210
[ 3213.218167][T12494]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3213.223753][T12494]  exc_page_fault+0x98/0x170
[ 3213.228380][T12494]  asm_exc_page_fault+0x26/0x30
[ 3213.233240][T12494] RIP: 0033:0x7fbb9f039570
[ 3213.237654][T12494] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3213.257288][T12494] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3213.263388][T12494] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3213.271390][T12494] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3213.279392][T12494] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3213.287385][T12494] R10: 00007fbb9ec00588 R11: 0000000000000000 R12: 00007fbb9f1a0000
[ 3213.295375][T12494] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3213.303381][T12494]  ? __sys_socket+0x7c/0x250
[ 3213.308012][T12494]  </TASK>
[ 3213.315026][T12494] memory: usage 307200kB, limit 307200kB, failcnt 155364
[ 3213.322180][T12494] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3213.329261][T12494] Memory cgroup stats for /syz4:
[ 3213.329453][T12494] anon 110592
[ 3213.329453][T12494] file 438272
[ 3213.329453][T12494] kernel 314019840
[ 3213.329453][T12494] kernel_stack 65536
[ 3213.329453][T12494] pagetables 81920
[ 3213.329453][T12494] sec_pagetables 0
[ 3213.329453][T12494] percpu 5617024
[ 3213.329453][T12494] sock 4096
[ 3213.329453][T12494] vmalloc 0
[ 3213.329453][T12494] shmem 438272
[ 3213.329453][T12494] zswap 0
[ 3213.329453][T12494] zswapped 0
[ 3213.329453][T12494] file_mapped 393216
[ 3213.329453][T12494] file_dirty 0
[ 3213.329453][T12494] file_writeback 0
[ 3213.329453][T12494] swapcached 0
[ 3213.329453][T12494] anon_thp 0
[ 3213.329453][T12494] file_thp 0
[ 3213.329453][T12494] shmem_thp 0
[ 3213.329453][T12494] inactive_anon 106496
[ 3213.329453][T12494] active_anon 425984
[ 3213.329453][T12494] inactive_file 0
10:32:54 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x643a0000}}], 0x2, 0x0)

10:32:54 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x1000000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:54 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xeffdffff}}], 0x2, 0x0)

10:32:54 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000600000000000000000500010006"], 0x1c}}, 0x0)

10:32:54 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xea02)

10:32:54 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x3)

[ 3213.329453][T12494] active_file 0
[ 3213.329453][T12494] unevictable 0
[ 3213.329453][T12494] slab_reclaimable 23024
[ 3213.329453][T12494] slab_unreclaimable 308203040
[ 3213.426727][T12494] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12494,uid=0
[ 3213.442459][T12494] Memory cgroup out of memory: Killed process 12494 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:32:54 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x1100000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:54 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000700000000000000000500010006"], 0x1c}}, 0x0)

10:32:54 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xf1bc0000}}], 0x2, 0x0)

10:32:54 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4)

[ 3213.615325][T12512] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3213.641558][T12512] CPU: 1 PID: 12512 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3213.650279][T12512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3213.660357][T12512] Call Trace:
10:32:54 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000900000000000000000500010006"], 0x1c}}, 0x0)

10:32:54 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x1f00000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3213.663656][T12512]  <TASK>
[ 3213.666605][T12512]  dump_stack_lvl+0xd1/0x138
[ 3213.671251][T12512]  dump_header+0x10b/0x85f
[ 3213.675713][T12512]  oom_kill_process.cold+0x10/0x15
[ 3213.680872][T12512]  out_of_memory+0x35c/0x14a0
[ 3213.685595][T12512]  ? find_held_lock+0x2d/0x110
[ 3213.690401][T12512]  ? oom_killer_disable+0x280/0x280
[ 3213.695646][T12512]  ? find_held_lock+0x2d/0x110
[ 3213.700457][T12512]  mem_cgroup_out_of_memory+0x206/0x270
[ 3213.706046][T12512]  ? mem_cgroup_margin+0x130/0x130
[ 3213.711202][T12512]  ? lock_downgrade+0x6e0/0x6e0
[ 3213.716123][T12512]  try_charge_memcg+0xefb/0x12f0
[ 3213.721100][T12512]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3213.727107][T12512]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3213.732874][T12512]  ? lock_downgrade+0x6e0/0x6e0
[ 3213.737755][T12512]  ? lock_downgrade+0x6e0/0x6e0
[ 3213.742650][T12512]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3213.748226][T12512]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3213.754422][T12512]  copy_process+0x4e3/0x7520
[ 3213.759047][T12512]  ? __lock_acquire+0xbc3/0x56d0
[ 3213.764029][T12512]  ? __cleanup_sighand+0xb0/0xb0
[ 3213.768990][T12512]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3213.774993][T12512]  ? psi_memstall_leave+0x174/0x250
[ 3213.780237][T12512]  kernel_clone+0xeb/0x990
[ 3213.784776][T12512]  ? create_io_thread+0xf0/0xf0
[ 3213.789660][T12512]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3213.795941][T12512]  ? lock_downgrade+0x6e0/0x6e0
[ 3213.800834][T12512]  __do_sys_clone+0xba/0x100
[ 3213.805450][T12512]  ? kernel_clone+0x990/0x990
[ 3213.810173][T12512]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3213.816105][T12512]  do_syscall_64+0x39/0xb0
[ 3213.820563][T12512]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3213.826483][T12512] RIP: 0033:0x7f36ee08d4f1
[ 3213.830920][T12512] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3213.850548][T12512] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3213.858985][T12512] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3213.866980][T12512] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3213.874969][T12512] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3213.882959][T12512] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3213.890947][T12512] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3213.898961][T12512]  </TASK>
[ 3213.929567][T12512] memory: usage 307184kB, limit 307200kB, failcnt 31441
[ 3213.936982][T12512] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3213.943857][T12512] Memory cgroup stats for /syz5:
[ 3213.944033][T12512] anon 86016
[ 3213.944033][T12512] file 425984
[ 3213.944033][T12512] kernel 314044416
[ 3213.944033][T12512] kernel_stack 32768
[ 3213.944033][T12512] pagetables 77824
[ 3213.944033][T12512] sec_pagetables 0
[ 3213.944033][T12512] percpu 5429952
[ 3213.944033][T12512] sock 0
[ 3213.944033][T12512] vmalloc 8192
[ 3213.944033][T12512] shmem 425984
[ 3213.944033][T12512] zswap 0
[ 3213.944033][T12512] zswapped 0
[ 3213.944033][T12512] file_mapped 393216
[ 3213.944033][T12512] file_dirty 0
[ 3213.944033][T12512] file_writeback 0
[ 3213.944033][T12512] swapcached 0
[ 3213.944033][T12512] anon_thp 0
[ 3213.944033][T12512] file_thp 0
[ 3213.944033][T12512] shmem_thp 0
[ 3213.944033][T12512] inactive_anon 212992
[ 3213.944033][T12512] active_anon 299008
[ 3213.944033][T12512] inactive_file 0
[ 3213.944033][T12512] active_file 0
[ 3213.944033][T12512] unevictable 0
[ 3213.944033][T12512] slab_reclaimable 216400
[ 3213.944033][T12512] slab_unreclaimable 308217712
[ 3214.045664][T12512] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12512,uid=0
[ 3214.063100][T12512] Memory cgroup out of memory: Killed process 12512 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3214.081966][T12529] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3214.103644][T12529] CPU: 1 PID: 12529 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3214.112367][T12529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3214.122448][T12529] Call Trace:
[ 3214.125744][T12529]  <TASK>
[ 3214.128707][T12529]  dump_stack_lvl+0xd1/0x138
[ 3214.133340][T12529]  dump_header+0x10b/0x85f
[ 3214.137809][T12529]  oom_kill_process.cold+0x10/0x15
[ 3214.143065][T12529]  out_of_memory+0x35c/0x14a0
[ 3214.147804][T12529]  ? oom_killer_disable+0x280/0x280
[ 3214.153052][T12529]  ? find_held_lock+0x2d/0x110
[ 3214.157862][T12529]  mem_cgroup_out_of_memory+0x206/0x270
[ 3214.163451][T12529]  ? mem_cgroup_margin+0x130/0x130
[ 3214.168596][T12529]  ? lock_downgrade+0x6e0/0x6e0
[ 3214.173479][T12529]  try_charge_memcg+0xefb/0x12f0
[ 3214.178433][T12529]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3214.184443][T12529]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3214.190203][T12529]  ? lock_downgrade+0x6e0/0x6e0
[ 3214.195084][T12529]  ? lock_downgrade+0x6e0/0x6e0
[ 3214.199975][T12529]  obj_cgroup_charge+0x2af/0x5e0
[ 3214.204956][T12529]  kmem_cache_alloc_lru+0x145/0x760
[ 3214.210180][T12529]  ? sock_alloc_inode+0x27/0x1d0
[ 3214.215156][T12529]  sock_alloc_inode+0x27/0x1d0
[ 3214.219955][T12529]  ? sock_free_inode+0x30/0x30
[ 3214.224755][T12529]  alloc_inode+0x61/0x230
[ 3214.229124][T12529]  new_inode_pseudo+0x17/0x80
[ 3214.233849][T12529]  sock_alloc+0x40/0x260
[ 3214.238131][T12529]  __sock_create+0xbd/0x790
[ 3214.242680][T12529]  __sys_socket+0x133/0x250
[ 3214.247223][T12529]  ? __sys_socket_file+0x1f0/0x1f0
[ 3214.252382][T12529]  __x64_sys_socket+0x73/0xb0
[ 3214.257094][T12529]  do_syscall_64+0x39/0xb0
[ 3214.261546][T12529]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3214.267480][T12529] RIP: 0033:0x7fde80a8c0c9
[ 3214.271922][T12529] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3214.291642][T12529] RSP: 002b:00007fde818ce168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3214.300093][T12529] RAX: ffffffffffffffda RBX: 00007fde80babf80 RCX: 00007fde80a8c0c9
[ 3214.308093][T12529] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3214.316090][T12529] RBP: 00007fde80ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3214.324078][T12529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3214.332071][T12529] R13: 00007ffd6245db6f R14: 00007fde818ce300 R15: 0000000000022000
[ 3214.340091][T12529]  </TASK>
[ 3214.352414][T12529] memory: usage 307200kB, limit 307200kB, failcnt 38229
[ 3214.359832][T12529] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3214.367203][T12529] Memory cgroup stats for /syz2:
[ 3214.367419][T12529] anon 102400
[ 3214.367419][T12529] file 307200
[ 3214.367419][T12529] kernel 314163200
[ 3214.367419][T12529] kernel_stack 65536
[ 3214.367419][T12529] pagetables 86016
[ 3214.367419][T12529] sec_pagetables 0
[ 3214.367419][T12529] percpu 5433504
[ 3214.367419][T12529] sock 0
[ 3214.367419][T12529] vmalloc 16384
[ 3214.367419][T12529] shmem 307200
[ 3214.367419][T12529] zswap 0
[ 3214.367419][T12529] zswapped 0
[ 3214.367419][T12529] file_mapped 299008
[ 3214.367419][T12529] file_dirty 0
[ 3214.367419][T12529] file_writeback 0
[ 3214.367419][T12529] swapcached 0
[ 3214.367419][T12529] anon_thp 0
[ 3214.367419][T12529] file_thp 0
[ 3214.367419][T12529] shmem_thp 0
[ 3214.367419][T12529] inactive_anon 81920
[ 3214.367419][T12529] active_anon 299008
[ 3214.367419][T12529] inactive_file 0
[ 3214.367419][T12529] active_file 0
[ 3214.367419][T12529] unevictable 0
[ 3214.367419][T12529] slab_reclaimable 111056
[ 3214.367419][T12529] slab_unreclaimable 308390232
[ 3214.468286][T12529] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12523,uid=0
[ 3214.484525][T12529] Memory cgroup out of memory: Killed process 12523 (syz-executor.2) total-vm:54672kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3214.511647][T12529] socket: no more sockets
[ 3214.526316][T12518] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3214.544926][T12518] CPU: 1 PID: 12518 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3214.553635][T12518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3214.563683][T12518] Call Trace:
[ 3214.566966][T12518]  <TASK>
[ 3214.569913][T12518]  dump_stack_lvl+0xd1/0x138
[ 3214.574539][T12518]  dump_header+0x10b/0x85f
[ 3214.578997][T12518]  oom_kill_process.cold+0x10/0x15
[ 3214.584133][T12518]  out_of_memory+0x35c/0x14a0
[ 3214.588829][T12518]  ? find_held_lock+0x2d/0x110
[ 3214.593631][T12518]  ? oom_killer_disable+0x280/0x280
[ 3214.598873][T12518]  ? find_held_lock+0x2d/0x110
[ 3214.603663][T12518]  mem_cgroup_out_of_memory+0x206/0x270
[ 3214.609221][T12518]  ? mem_cgroup_margin+0x130/0x130
[ 3214.614370][T12518]  ? lock_downgrade+0x6e0/0x6e0
[ 3214.619268][T12518]  try_charge_memcg+0xefb/0x12f0
[ 3214.624240][T12518]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3214.630255][T12518]  ? lock_downgrade+0x6e0/0x6e0
[ 3214.635146][T12518]  charge_memcg+0x90/0x3b0
[ 3214.639597][T12518]  __mem_cgroup_charge+0x2b/0x90
[ 3214.644565][T12518]  do_wp_page+0x7ec/0x3370
[ 3214.649021][T12518]  ? lock_release+0x810/0x810
[ 3214.653724][T12518]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3214.659132][T12518]  ? do_raw_spin_lock+0x124/0x2b0
[ 3214.664169][T12518]  ? rwlock_bug.part.0+0x90/0x90
[ 3214.669111][T12518]  ? lock_chain_count+0x20/0x20
[ 3214.673995][T12518]  __handle_mm_fault+0x1f58/0x3c90
[ 3214.679148][T12518]  ? vm_iomap_memory+0x190/0x190
[ 3214.684125][T12518]  handle_mm_fault+0x1b6/0x850
[ 3214.688908][T12518]  do_user_addr_fault+0x475/0x1210
[ 3214.694051][T12518]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3214.699643][T12518]  exc_page_fault+0x98/0x170
[ 3214.704253][T12518]  asm_exc_page_fault+0x26/0x30
[ 3214.709124][T12518] RIP: 0033:0x7fbb9f039570
[ 3214.713561][T12518] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3214.733191][T12518] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3214.739267][T12518] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3214.747261][T12518] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3214.755254][T12518] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3214.763241][T12518] R10: 00007fbb9ec00588 R11: 0000000000000000 R12: 00007fbb9f1a0000
[ 3214.771231][T12518] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3214.779225][T12518]  ? __sys_socket+0x7c/0x250
[ 3214.783875][T12518]  </TASK>
[ 3214.798092][T12518] memory: usage 307200kB, limit 307200kB, failcnt 155527
[ 3214.805234][T12518] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3214.812090][T12518] Memory cgroup stats for /syz4:
[ 3214.812294][T12518] anon 110592
[ 3214.812294][T12518] file 438272
[ 3214.812294][T12518] kernel 314019840
[ 3214.812294][T12518] kernel_stack 65536
[ 3214.812294][T12518] pagetables 81920
[ 3214.812294][T12518] sec_pagetables 0
[ 3214.812294][T12518] percpu 5617024
[ 3214.812294][T12518] sock 4096
[ 3214.812294][T12518] vmalloc 0
[ 3214.812294][T12518] shmem 438272
[ 3214.812294][T12518] zswap 0
[ 3214.812294][T12518] zswapped 0
[ 3214.812294][T12518] file_mapped 393216
[ 3214.812294][T12518] file_dirty 0
[ 3214.812294][T12518] file_writeback 0
[ 3214.812294][T12518] swapcached 0
[ 3214.812294][T12518] anon_thp 0
[ 3214.812294][T12518] file_thp 0
[ 3214.812294][T12518] shmem_thp 0
[ 3214.812294][T12518] inactive_anon 106496
[ 3214.812294][T12518] active_anon 425984
[ 3214.812294][T12518] inactive_file 0
[ 3214.812294][T12518] active_file 0
[ 3214.812294][T12518] unevictable 0
[ 3214.812294][T12518] slab_reclaimable 23024
[ 3214.812294][T12518] slab_unreclaimable 308203040
[ 3214.909674][T12518] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12518,uid=0
10:32:55 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000e00000000000000000500010006"], 0x1c}}, 0x0)

10:32:55 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x5)

10:32:55 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xf4010000}}], 0x2, 0x0)

10:32:55 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x3000000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:55 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x643a0000}}], 0x2, 0x0)

10:32:55 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xea03)

[ 3214.926597][T12518] Memory cgroup out of memory: Killed process 12518 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:32:55 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000f00000000000000000500010006"], 0x1c}}, 0x0)

10:32:55 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xf5ffffff}}], 0x2, 0x0)

10:32:55 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x3f00000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3215.054795][T12532] syz-executor.2 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3215.074501][T12532] CPU: 1 PID: 12532 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3215.083230][T12532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3215.093309][T12532] Call Trace:
[ 3215.096607][T12532]  <TASK>
[ 3215.099560][T12532]  dump_stack_lvl+0xd1/0x138
10:32:55 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000511400000000000000000500010006"], 0x1c}}, 0x0)

[ 3215.104210][T12532]  dump_header+0x10b/0x85f
[ 3215.108676][T12532]  oom_kill_process.cold+0x10/0x15
[ 3215.113834][T12532]  out_of_memory+0x35c/0x14a0
[ 3215.118587][T12532]  ? find_held_lock+0x2d/0x110
[ 3215.123396][T12532]  ? oom_killer_disable+0x280/0x280
[ 3215.128642][T12532]  ? find_held_lock+0x2d/0x110
[ 3215.133451][T12532]  mem_cgroup_out_of_memory+0x206/0x270
[ 3215.139042][T12532]  ? mem_cgroup_margin+0x130/0x130
[ 3215.144210][T12532]  ? lock_downgrade+0x6e0/0x6e0
[ 3215.149110][T12532]  try_charge_memcg+0xefb/0x12f0
10:32:56 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfbffff7f}}], 0x2, 0x0)

[ 3215.154099][T12532]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3215.160114][T12532]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3215.165876][T12532]  ? lock_downgrade+0x6e0/0x6e0
[ 3215.170758][T12532]  ? lock_downgrade+0x6e0/0x6e0
[ 3215.175653][T12532]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3215.181217][T12532]  __alloc_pages+0x1f3/0x5b0
[ 3215.185819][T12532]  ? __alloc_pages_slowpath.constprop.0+0x23d0/0x23d0
[ 3215.192619][T12532]  alloc_pages+0x1aa/0x270
[ 3215.197047][T12532]  __pmd_alloc+0x3f/0x5d0
[ 3215.201394][T12532]  __handle_mm_fault+0x932/0x3c90
[ 3215.206444][T12532]  ? vm_iomap_memory+0x190/0x190
[ 3215.211426][T12532]  handle_mm_fault+0x1b6/0x850
[ 3215.216212][T12532]  do_user_addr_fault+0x475/0x1210
[ 3215.221337][T12532]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3215.226906][T12532]  exc_page_fault+0x98/0x170
[ 3215.231508][T12532]  asm_exc_page_fault+0x26/0x30
[ 3215.236367][T12532] RIP: 0033:0x7fde80a2bd49
[ 3215.240788][T12532] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3215.260397][T12532] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3215.266467][T12532] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3215.274440][T12532] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3215.282410][T12532] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3215.290384][T12532] R10: 00007fde80600068 R11: 0000000000000246 R12: 0000000000310e7b
[ 3215.298369][T12532] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3215.306365][T12532]  </TASK>
10:32:56 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4000000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3215.403793][T12532] memory: usage 307184kB, limit 307200kB, failcnt 38351
[ 3215.411202][T12532] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3215.434537][T12532] Memory cgroup stats for /syz2:
[ 3215.434745][T12532] anon 131072
[ 3215.434745][T12532] file 307200
[ 3215.434745][T12532] kernel 314118144
[ 3215.434745][T12532] kernel_stack 65536
[ 3215.434745][T12532] pagetables 77824
[ 3215.434745][T12532] sec_pagetables 0
[ 3215.434745][T12532] percpu 5433504
[ 3215.434745][T12532] sock 0
[ 3215.434745][T12532] vmalloc 16384
[ 3215.434745][T12532] shmem 307200
[ 3215.434745][T12532] zswap 0
[ 3215.434745][T12532] zswapped 0
[ 3215.434745][T12532] file_mapped 299008
[ 3215.434745][T12532] file_dirty 0
[ 3215.434745][T12532] file_writeback 0
[ 3215.434745][T12532] swapcached 0
[ 3215.434745][T12532] anon_thp 0
[ 3215.434745][T12532] file_thp 0
[ 3215.434745][T12532] shmem_thp 0
[ 3215.434745][T12532] inactive_anon 139264
[ 3215.434745][T12532] active_anon 299008
[ 3215.434745][T12532] inactive_file 0
[ 3215.434745][T12532] active_file 0
[ 3215.434745][T12532] unevictable 0
[ 3215.434745][T12532] slab_reclaimable 112984
[ 3215.434745][T12532] slab_unreclaimable 308382120
[ 3215.535466][T12532] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12532,uid=0
[ 3215.551527][T12532] Memory cgroup out of memory: Killed process 12532 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 3215.570269][T12542] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3215.585910][T12542] CPU: 1 PID: 12542 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3215.594632][T12542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3215.604710][T12542] Call Trace:
[ 3215.608002][T12542]  <TASK>
[ 3215.610950][T12542]  dump_stack_lvl+0xd1/0x138
[ 3215.615585][T12542]  dump_header+0x10b/0x85f
[ 3215.620099][T12542]  oom_kill_process.cold+0x10/0x15
[ 3215.625262][T12542]  out_of_memory+0x35c/0x14a0
[ 3215.629992][T12542]  ? oom_killer_disable+0x280/0x280
[ 3215.635236][T12542]  ? find_held_lock+0x2d/0x110
[ 3215.640046][T12542]  mem_cgroup_out_of_memory+0x206/0x270
[ 3215.645640][T12542]  ? mem_cgroup_margin+0x130/0x130
[ 3215.650787][T12542]  ? lock_downgrade+0x6e0/0x6e0
[ 3215.655687][T12542]  try_charge_memcg+0xefb/0x12f0
[ 3215.660660][T12542]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3215.666670][T12542]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3215.672434][T12542]  ? lock_downgrade+0x6e0/0x6e0
[ 3215.677311][T12542]  ? lock_downgrade+0x6e0/0x6e0
[ 3215.682202][T12542]  obj_cgroup_charge+0x2af/0x5e0
[ 3215.687167][T12542]  kmem_cache_alloc_lru+0x145/0x760
[ 3215.692387][T12542]  ? sock_alloc_inode+0x27/0x1d0
[ 3215.697367][T12542]  sock_alloc_inode+0x27/0x1d0
[ 3215.702167][T12542]  ? sock_free_inode+0x30/0x30
[ 3215.706962][T12542]  alloc_inode+0x61/0x230
[ 3215.711328][T12542]  new_inode_pseudo+0x17/0x80
[ 3215.716044][T12542]  sock_alloc+0x40/0x260
[ 3215.720318][T12542]  __sock_create+0xbd/0x790
[ 3215.724868][T12542]  __sys_socket+0x133/0x250
[ 3215.729407][T12542]  ? __sys_socket_file+0x1f0/0x1f0
[ 3215.734572][T12542]  __x64_sys_socket+0x73/0xb0
[ 3215.739290][T12542]  do_syscall_64+0x39/0xb0
[ 3215.743744][T12542]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3215.749666][T12542] RIP: 0033:0x7f36ee08c0c9
[ 3215.754101][T12542] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3215.773812][T12542] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3215.782233][T12542] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3215.790226][T12542] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3215.798216][T12542] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3215.806207][T12542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3215.814187][T12542] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3215.822172][T12542]  </TASK>
[ 3215.830044][T12542] memory: usage 307200kB, limit 307200kB, failcnt 31549
[ 3215.839272][T12542] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3215.846403][T12542] Memory cgroup stats for /syz5:
[ 3215.846631][T12542] anon 94208
[ 3215.846631][T12542] file 425984
[ 3215.846631][T12542] kernel 314052608
[ 3215.846631][T12542] kernel_stack 65536
[ 3215.846631][T12542] pagetables 77824
[ 3215.846631][T12542] sec_pagetables 0
[ 3215.846631][T12542] percpu 5429952
[ 3215.846631][T12542] sock 0
[ 3215.846631][T12542] vmalloc 8192
[ 3215.846631][T12542] shmem 425984
[ 3215.846631][T12542] zswap 0
[ 3215.846631][T12542] zswapped 0
[ 3215.846631][T12542] file_mapped 393216
[ 3215.846631][T12542] file_dirty 0
[ 3215.846631][T12542] file_writeback 0
[ 3215.846631][T12542] swapcached 0
[ 3215.846631][T12542] anon_thp 0
[ 3215.846631][T12542] file_thp 0
[ 3215.846631][T12542] shmem_thp 0
[ 3215.846631][T12542] inactive_anon 221184
[ 3215.846631][T12542] active_anon 299008
[ 3215.846631][T12542] inactive_file 0
[ 3215.846631][T12542] active_file 0
[ 3215.846631][T12542] unevictable 0
[ 3215.846631][T12542] slab_reclaimable 216400
[ 3215.846631][T12542] slab_unreclaimable 308217872
[ 3215.945127][T12542] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12535,uid=0
[ 3215.961090][T12542] Memory cgroup out of memory: Killed process 12535 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3216.006661][T12541] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3216.017205][T12541] CPU: 1 PID: 12541 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3216.025908][T12541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3216.035981][T12541] Call Trace:
[ 3216.039279][T12541]  <TASK>
[ 3216.042221][T12541]  dump_stack_lvl+0xd1/0x138
[ 3216.046842][T12541]  dump_header+0x10b/0x85f
[ 3216.051282][T12541]  oom_kill_process.cold+0x10/0x15
[ 3216.056423][T12541]  out_of_memory+0x35c/0x14a0
[ 3216.061124][T12541]  ? find_held_lock+0x2d/0x110
[ 3216.065904][T12541]  ? oom_killer_disable+0x280/0x280
[ 3216.071122][T12541]  ? find_held_lock+0x2d/0x110
[ 3216.075907][T12541]  mem_cgroup_out_of_memory+0x206/0x270
[ 3216.081470][T12541]  ? mem_cgroup_margin+0x130/0x130
[ 3216.086596][T12541]  ? lock_downgrade+0x6e0/0x6e0
[ 3216.091465][T12541]  try_charge_memcg+0xefb/0x12f0
[ 3216.096446][T12541]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3216.102442][T12541]  ? lock_downgrade+0x6e0/0x6e0
[ 3216.107314][T12541]  charge_memcg+0x90/0x3b0
[ 3216.111745][T12541]  __mem_cgroup_charge+0x2b/0x90
[ 3216.116698][T12541]  do_wp_page+0x7ec/0x3370
[ 3216.121134][T12541]  ? lock_release+0x810/0x810
[ 3216.125825][T12541]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3216.131217][T12541]  ? do_raw_spin_lock+0x124/0x2b0
[ 3216.136248][T12541]  ? rwlock_bug.part.0+0x90/0x90
[ 3216.141192][T12541]  ? lock_chain_count+0x20/0x20
[ 3216.146056][T12541]  __handle_mm_fault+0x1f58/0x3c90
[ 3216.151186][T12541]  ? vm_iomap_memory+0x190/0x190
[ 3216.156159][T12541]  handle_mm_fault+0x1b6/0x850
[ 3216.160943][T12541]  do_user_addr_fault+0x475/0x1210
[ 3216.166071][T12541]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3216.171637][T12541]  exc_page_fault+0x98/0x170
[ 3216.176235][T12541]  asm_exc_page_fault+0x26/0x30
[ 3216.181090][T12541] RIP: 0033:0x7fbb9f039570
[ 3216.185508][T12541] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3216.205117][T12541] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3216.211190][T12541] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3216.219162][T12541] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3216.227134][T12541] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3216.235107][T12541] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3216.243099][T12541] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3216.251085][T12541]  ? security_socket_create+0x3f/0xc0
[ 3216.256495][T12541]  </TASK>
[ 3216.264452][T12541] memory: usage 307200kB, limit 307200kB, failcnt 155631
[ 3216.284839][T12541] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3216.291739][T12541] Memory cgroup stats for /syz4:
[ 3216.291949][T12541] anon 118784
[ 3216.291949][T12541] file 438272
[ 3216.291949][T12541] kernel 314011648
[ 3216.291949][T12541] kernel_stack 65536
[ 3216.291949][T12541] pagetables 73728
[ 3216.291949][T12541] sec_pagetables 0
[ 3216.291949][T12541] percpu 5617024
[ 3216.291949][T12541] sock 4096
[ 3216.291949][T12541] vmalloc 0
[ 3216.291949][T12541] shmem 438272
[ 3216.291949][T12541] zswap 0
[ 3216.291949][T12541] zswapped 0
[ 3216.291949][T12541] file_mapped 393216
[ 3216.291949][T12541] file_dirty 0
[ 3216.291949][T12541] file_writeback 0
[ 3216.291949][T12541] swapcached 0
[ 3216.291949][T12541] anon_thp 0
[ 3216.291949][T12541] file_thp 0
[ 3216.291949][T12541] shmem_thp 0
[ 3216.291949][T12541] inactive_anon 114688
[ 3216.291949][T12541] active_anon 425984
[ 3216.291949][T12541] inactive_file 0
[ 3216.291949][T12541] active_file 0
[ 3216.291949][T12541] unevictable 0
[ 3216.291949][T12541] slab_reclaimable 23024
[ 3216.291949][T12541] slab_unreclaimable 308202640
[ 3216.387065][T12541] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12541,uid=0
10:32:57 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xffffff7f}, 0x0)

10:32:57 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000001f00000000000000000500010006"], 0x1c}}, 0x0)

10:32:57 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfc000000}}], 0x2, 0x0)

10:32:57 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4800000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:57 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x6)

10:32:57 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xec01)

[ 3216.407017][T12541] Memory cgroup out of memory: Killed process 12541 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:57 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4c00000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:57 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000006000000000000000000500010006"], 0x1c}}, 0x0)

10:32:57 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfe800000}}], 0x2, 0x0)

10:32:57 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000018000000000000000000500010006"], 0x1c}}, 0x0)

10:32:57 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x5b00000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:57 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfec00000}}], 0x2, 0x0)

[ 3216.609254][T12564] Memory cgroup out of memory: Killed process 12564 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3216.661850][T12559] oom_kill_process: 1 callbacks suppressed
[ 3216.661869][T12559] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3216.684686][T12559] CPU: 0 PID: 12559 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3216.693406][T12559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3216.703484][T12559] Call Trace:
[ 3216.706782][T12559]  <TASK>
[ 3216.709734][T12559]  dump_stack_lvl+0xd1/0x138
[ 3216.714360][T12559]  dump_header+0x10b/0x85f
[ 3216.718823][T12559]  oom_kill_process.cold+0x10/0x15
[ 3216.723984][T12559]  out_of_memory+0x35c/0x14a0
[ 3216.728714][T12559]  ? oom_killer_disable+0x280/0x280
[ 3216.733963][T12559]  ? find_held_lock+0x2d/0x110
[ 3216.738767][T12559]  mem_cgroup_out_of_memory+0x206/0x270
[ 3216.744352][T12559]  ? mem_cgroup_margin+0x130/0x130
[ 3216.749489][T12559]  ? lock_downgrade+0x6e0/0x6e0
[ 3216.754361][T12559]  try_charge_memcg+0xefb/0x12f0
[ 3216.759318][T12559]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3216.765321][T12559]  ? lock_downgrade+0x6e0/0x6e0
[ 3216.770196][T12559]  charge_memcg+0x90/0x3b0
[ 3216.774621][T12559]  __mem_cgroup_charge+0x2b/0x90
[ 3216.779668][T12559]  ? copy_mc_to_kernel+0x3e/0x90
[ 3216.784612][T12559]  do_wp_page+0x7ec/0x3370
[ 3216.789048][T12559]  ? lock_release+0x810/0x810
[ 3216.793741][T12559]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3216.799125][T12559]  ? do_raw_spin_lock+0x124/0x2b0
[ 3216.804157][T12559]  ? rwlock_bug.part.0+0x90/0x90
[ 3216.809105][T12559]  ? lock_chain_count+0x20/0x20
[ 3216.813965][T12559]  __handle_mm_fault+0x1f58/0x3c90
[ 3216.819100][T12559]  ? vm_iomap_memory+0x190/0x190
[ 3216.824072][T12559]  handle_mm_fault+0x1b6/0x850
[ 3216.828855][T12559]  do_user_addr_fault+0x475/0x1210
[ 3216.833979][T12559]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3216.839565][T12559]  exc_page_fault+0x98/0x170
[ 3216.844164][T12559]  asm_exc_page_fault+0x26/0x30
[ 3216.849019][T12559] RIP: 0033:0x7f36ee036645
[ 3216.853449][T12559] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
[ 3216.873072][T12559] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
[ 3216.879158][T12559] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3216.887136][T12559] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3216.895110][T12559] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
[ 3216.903101][T12559] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 00000000003114a8
10:32:57 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xffffff7f}, 0x0)

10:32:57 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x7)

10:32:57 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300ffffff9e00000000000000000500010006"], 0x1c}}, 0x0)

10:32:57 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfeffffff}}], 0x2, 0x0)

[ 3216.911091][T12559] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3216.919092][T12559]  </TASK>
10:32:57 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000ec000000000000000000500010006"], 0x1c}}, 0x0)

[ 3216.979104][T12559] memory: usage 307200kB, limit 307200kB, failcnt 31671
[ 3217.008863][T12559] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3217.036654][T12559] Memory cgroup stats for /syz5:
[ 3217.036857][T12559] anon 94208
[ 3217.036857][T12559] file 425984
[ 3217.036857][T12559] kernel 314052608
[ 3217.036857][T12559] kernel_stack 65536
[ 3217.036857][T12559] pagetables 77824
[ 3217.036857][T12559] sec_pagetables 0
[ 3217.036857][T12559] percpu 5429952
[ 3217.036857][T12559] sock 0
[ 3217.036857][T12559] vmalloc 8192
[ 3217.036857][T12559] shmem 425984
[ 3217.036857][T12559] zswap 0
[ 3217.036857][T12559] zswapped 0
[ 3217.036857][T12559] file_mapped 393216
[ 3217.036857][T12559] file_dirty 0
[ 3217.036857][T12559] file_writeback 0
[ 3217.036857][T12559] swapcached 0
[ 3217.036857][T12559] anon_thp 0
[ 3217.036857][T12559] file_thp 0
[ 3217.036857][T12559] shmem_thp 0
[ 3217.036857][T12559] inactive_anon 221184
[ 3217.036857][T12559] active_anon 299008
[ 3217.036857][T12559] inactive_file 0
[ 3217.036857][T12559] active_file 0
[ 3217.036857][T12559] unevictable 0
[ 3217.036857][T12559] slab_reclaimable 218328
[ 3217.036857][T12559] slab_unreclaimable 308218520
10:32:58 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xee03)

10:32:58 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x6800000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:58 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000003e800000000000000000500010006"], 0x1c}}, 0x0)

10:32:58 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xff000000}}], 0x2, 0x0)

10:32:58 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x8)

[ 3217.159365][T12559] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12559,uid=0
[ 3217.176961][T12559] Memory cgroup out of memory: Killed process 12559 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:32:58 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x6c00000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:58 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xffff430e}}], 0x2, 0x0)

[ 3217.268141][T12583] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3217.314414][T12583] CPU: 0 PID: 12583 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3217.323149][T12583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3217.333230][T12583] Call Trace:
[ 3217.336528][T12583]  <TASK>
[ 3217.339494][T12583]  dump_stack_lvl+0xd1/0x138
[ 3217.344127][T12583]  dump_header+0x10b/0x85f
[ 3217.348589][T12583]  oom_kill_process.cold+0x10/0x15
[ 3217.353751][T12583]  out_of_memory+0x35c/0x14a0
[ 3217.358478][T12583]  ? find_held_lock+0x2d/0x110
[ 3217.363288][T12583]  ? oom_killer_disable+0x280/0x280
[ 3217.368533][T12583]  ? find_held_lock+0x2d/0x110
[ 3217.373339][T12583]  mem_cgroup_out_of_memory+0x206/0x270
[ 3217.378920][T12583]  ? mem_cgroup_margin+0x130/0x130
[ 3217.384048][T12583]  ? lock_downgrade+0x6e0/0x6e0
[ 3217.388923][T12583]  try_charge_memcg+0xefb/0x12f0
[ 3217.393874][T12583]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3217.399872][T12583]  ? lock_downgrade+0x6e0/0x6e0
[ 3217.404748][T12583]  charge_memcg+0x90/0x3b0
[ 3217.409178][T12583]  __mem_cgroup_charge+0x2b/0x90
[ 3217.414132][T12583]  do_wp_page+0x7ec/0x3370
[ 3217.418572][T12583]  ? lock_release+0x810/0x810
[ 3217.423256][T12583]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3217.428645][T12583]  ? do_raw_spin_lock+0x124/0x2b0
[ 3217.433677][T12583]  ? rwlock_bug.part.0+0x90/0x90
[ 3217.438619][T12583]  ? lock_chain_count+0x20/0x20
[ 3217.443480][T12583]  __handle_mm_fault+0x1f58/0x3c90
[ 3217.448612][T12583]  ? vm_iomap_memory+0x190/0x190
[ 3217.453585][T12583]  handle_mm_fault+0x1b6/0x850
[ 3217.458369][T12583]  do_user_addr_fault+0x475/0x1210
[ 3217.463492][T12583]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3217.469058][T12583]  exc_page_fault+0x98/0x170
[ 3217.473656][T12583]  asm_exc_page_fault+0x26/0x30
[ 3217.478523][T12583] RIP: 0033:0x7fbb9f039570
[ 3217.482938][T12583] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3217.502552][T12583] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3217.508624][T12583] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3217.516596][T12583] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3217.524568][T12583] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3217.532560][T12583] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3217.540532][T12583] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3217.548503][T12583]  ? __sys_socket+0x7c/0x250
[ 3217.553125][T12583]  </TASK>
[ 3217.603246][T12583] memory: usage 307200kB, limit 307200kB, failcnt 155842
[ 3217.621367][T12583] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3217.629056][T12583] Memory cgroup stats for /syz4:
[ 3217.629257][T12583] anon 102400
[ 3217.629257][T12583] file 438272
[ 3217.629257][T12583] kernel 314028032
[ 3217.629257][T12583] kernel_stack 65536
[ 3217.629257][T12583] pagetables 73728
[ 3217.629257][T12583] sec_pagetables 0
[ 3217.629257][T12583] percpu 5617088
[ 3217.629257][T12583] sock 4096
[ 3217.629257][T12583] vmalloc 0
[ 3217.629257][T12583] shmem 438272
[ 3217.629257][T12583] zswap 0
[ 3217.629257][T12583] zswapped 0
[ 3217.629257][T12583] file_mapped 393216
[ 3217.629257][T12583] file_dirty 0
[ 3217.629257][T12583] file_writeback 0
[ 3217.629257][T12583] swapcached 0
[ 3217.629257][T12583] anon_thp 0
[ 3217.629257][T12583] file_thp 0
[ 3217.629257][T12583] shmem_thp 0
[ 3217.629257][T12583] inactive_anon 114688
[ 3217.629257][T12583] active_anon 425984
[ 3217.629257][T12583] inactive_file 0
[ 3217.629257][T12583] active_file 0
[ 3217.629257][T12583] unevictable 0
[ 3217.629257][T12583] slab_reclaimable 23024
[ 3217.629257][T12583] slab_unreclaimable 308212560
[ 3217.727399][T12583] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12583,uid=0
10:32:58 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xffffff7f}, 0x0)

10:32:58 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300fffffff000000000000000000500010006"], 0x1c}}, 0x0)

10:32:58 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x7400000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:58 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x9)

10:32:58 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfffffdef}}], 0x2, 0x0)

[ 3217.743156][T12583] Memory cgroup out of memory: Killed process 12583 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3217.761072][T12600] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3217.804971][T12600] CPU: 0 PID: 12600 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3217.813704][T12600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3217.823783][T12600] Call Trace:
[ 3217.827081][T12600]  <TASK>
[ 3217.830034][T12600]  dump_stack_lvl+0xd1/0x138
[ 3217.834664][T12600]  dump_header+0x10b/0x85f
[ 3217.839123][T12600]  oom_kill_process.cold+0x10/0x15
[ 3217.844279][T12600]  out_of_memory+0x35c/0x14a0
[ 3217.849008][T12600]  ? oom_killer_disable+0x280/0x280
[ 3217.854253][T12600]  ? find_held_lock+0x2d/0x110
[ 3217.859061][T12600]  mem_cgroup_out_of_memory+0x206/0x270
[ 3217.864648][T12600]  ? mem_cgroup_margin+0x130/0x130
[ 3217.869791][T12600]  ? lock_downgrade+0x6e0/0x6e0
[ 3217.874692][T12600]  try_charge_memcg+0xefb/0x12f0
[ 3217.879670][T12600]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3217.885678][T12600]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3217.891439][T12600]  ? lock_downgrade+0x6e0/0x6e0
[ 3217.896319][T12600]  ? lock_downgrade+0x6e0/0x6e0
[ 3217.901210][T12600]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3217.906787][T12600]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3217.912978][T12600]  copy_process+0x4e3/0x7520
[ 3217.917603][T12600]  ? __lock_acquire+0xbc3/0x56d0
[ 3217.922579][T12600]  ? __cleanup_sighand+0xb0/0xb0
[ 3217.927543][T12600]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3217.933553][T12600]  ? psi_memstall_leave+0x174/0x250
[ 3217.938797][T12600]  kernel_clone+0xeb/0x990
[ 3217.943248][T12600]  ? create_io_thread+0xf0/0xf0
[ 3217.948124][T12600]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3217.954406][T12600]  ? lock_downgrade+0x6e0/0x6e0
[ 3217.959298][T12600]  __do_sys_clone+0xba/0x100
[ 3217.963934][T12600]  ? kernel_clone+0x990/0x990
[ 3217.968638][T12600]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3217.974564][T12600]  do_syscall_64+0x39/0xb0
[ 3217.979011][T12600]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3217.984918][T12600] RIP: 0033:0x7f36ee08d4f1
[ 3217.989332][T12600] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3218.008935][T12600] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3218.017353][T12600] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3218.025349][T12600] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3218.033336][T12600] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3218.041314][T12600] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3218.049275][T12600] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3218.057268][T12600]  </TASK>
[ 3218.082782][T12600] memory: usage 307184kB, limit 307200kB, failcnt 31795
[ 3218.094172][T12600] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3218.101546][T12600] Memory cgroup stats for /syz5:
[ 3218.101760][T12600] anon 86016
[ 3218.101760][T12600] file 425984
[ 3218.101760][T12600] kernel 314044416
[ 3218.101760][T12600] kernel_stack 32768
[ 3218.101760][T12600] pagetables 77824
[ 3218.101760][T12600] sec_pagetables 0
[ 3218.101760][T12600] percpu 5429952
[ 3218.101760][T12600] sock 0
[ 3218.101760][T12600] vmalloc 8192
[ 3218.101760][T12600] shmem 425984
[ 3218.101760][T12600] zswap 0
[ 3218.101760][T12600] zswapped 0
[ 3218.101760][T12600] file_mapped 393216
[ 3218.101760][T12600] file_dirty 0
[ 3218.101760][T12600] file_writeback 0
[ 3218.101760][T12600] swapcached 0
[ 3218.101760][T12600] anon_thp 0
[ 3218.101760][T12600] file_thp 0
[ 3218.101760][T12600] shmem_thp 0
[ 3218.101760][T12600] inactive_anon 212992
[ 3218.101760][T12600] active_anon 299008
[ 3218.101760][T12600] inactive_file 0
[ 3218.101760][T12600] active_file 0
[ 3218.101760][T12600] unevictable 0
[ 3218.101760][T12600] slab_reclaimable 216400
[ 3218.101760][T12600] slab_unreclaimable 308217712
[ 3218.195826][T12600] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12600,uid=0
[ 3218.212976][T12600] Memory cgroup out of memory: Killed process 12600 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:32:59 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xf000)

10:32:59 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xffffff7f}}], 0x2, 0x0)

10:32:59 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x7a00000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:59 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xa)

10:32:59 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000f0ffff00000000000000000500010006"], 0x1c}}, 0x0)

[ 3218.243844][T12612] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
10:32:59 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603007fffffff00000000000000000500010006"], 0x1c}}, 0x0)

10:32:59 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x8dffffff00000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3218.324485][T12612] CPU: 0 PID: 12612 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3218.333220][T12612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3218.343296][T12612] Call Trace:
[ 3218.346595][T12612]  <TASK>
[ 3218.349551][T12612]  dump_stack_lvl+0xd1/0x138
[ 3218.354190][T12612]  dump_header+0x10b/0x85f
[ 3218.358661][T12612]  oom_kill_process.cold+0x10/0x15
[ 3218.363823][T12612]  out_of_memory+0x35c/0x14a0
[ 3218.368552][T12612]  ? find_held_lock+0x2d/0x110
[ 3218.373361][T12612]  ? oom_killer_disable+0x280/0x280
[ 3218.378608][T12612]  ? find_held_lock+0x2d/0x110
[ 3218.383417][T12612]  mem_cgroup_out_of_memory+0x206/0x270
[ 3218.389009][T12612]  ? mem_cgroup_margin+0x130/0x130
[ 3218.394168][T12612]  ? lock_downgrade+0x6e0/0x6e0
[ 3218.399070][T12612]  try_charge_memcg+0xefb/0x12f0
[ 3218.404051][T12612]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3218.410067][T12612]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3218.415831][T12612]  ? lock_downgrade+0x6e0/0x6e0
[ 3218.420711][T12612]  ? lock_downgrade+0x6e0/0x6e0
[ 3218.425607][T12612]  obj_cgroup_charge+0x2af/0x5e0
[ 3218.430588][T12612]  kmem_cache_alloc_lru+0x145/0x760
[ 3218.435818][T12612]  ? sock_alloc_inode+0x27/0x1d0
[ 3218.440801][T12612]  sock_alloc_inode+0x27/0x1d0
[ 3218.445600][T12612]  ? sock_free_inode+0x30/0x30
[ 3218.450394][T12612]  alloc_inode+0x61/0x230
[ 3218.454760][T12612]  new_inode_pseudo+0x17/0x80
[ 3218.459480][T12612]  sock_alloc+0x40/0x260
[ 3218.463754][T12612]  __sock_create+0xbd/0x790
[ 3218.468305][T12612]  __sys_socket+0x133/0x250
[ 3218.472852][T12612]  ? __sys_socket_file+0x1f0/0x1f0
[ 3218.478014][T12612]  __x64_sys_socket+0x73/0xb0
[ 3218.482726][T12612]  do_syscall_64+0x39/0xb0
[ 3218.487184][T12612]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3218.493109][T12612] RIP: 0033:0x7fbb9f08c0c9
[ 3218.497552][T12612] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3218.517185][T12612] RSP: 002b:00007fbb9fe42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3218.525631][T12612] RAX: ffffffffffffffda RBX: 00007fbb9f1abf80 RCX: 00007fbb9f08c0c9
[ 3218.533625][T12612] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3218.541619][T12612] RBP: 00007fbb9f0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3218.549703][T12612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3218.557689][T12612] R13: 00007fff7101e80f R14: 00007fbb9fe42300 R15: 0000000000022000
[ 3218.565695][T12612]  </TASK>
[ 3218.574085][T12612] memory: usage 307184kB, limit 307200kB, failcnt 155979
[ 3218.584697][T12612] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3218.591574][T12612] Memory cgroup stats for /syz4:
[ 3218.591810][T12612] anon 90112
[ 3218.591810][T12612] file 438272
[ 3218.591810][T12612] kernel 314023936
[ 3218.591810][T12612] kernel_stack 65536
[ 3218.591810][T12612] pagetables 73728
[ 3218.591810][T12612] sec_pagetables 0
[ 3218.591810][T12612] percpu 5617088
[ 3218.591810][T12612] sock 4096
[ 3218.591810][T12612] vmalloc 0
[ 3218.591810][T12612] shmem 438272
[ 3218.591810][T12612] zswap 0
[ 3218.591810][T12612] zswapped 0
[ 3218.591810][T12612] file_mapped 393216
[ 3218.591810][T12612] file_dirty 0
[ 3218.591810][T12612] file_writeback 0
[ 3218.591810][T12612] swapcached 0
[ 3218.591810][T12612] anon_thp 0
[ 3218.591810][T12612] file_thp 0
[ 3218.591810][T12612] shmem_thp 0
[ 3218.591810][T12612] inactive_anon 102400
[ 3218.591810][T12612] active_anon 425984
[ 3218.591810][T12612] inactive_file 0
[ 3218.591810][T12612] active_file 0
[ 3218.591810][T12612] unevictable 0
[ 3218.591810][T12612] slab_reclaimable 21096
[ 3218.591810][T12612] slab_unreclaimable 308212216
[ 3218.689916][T12612] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12610,uid=0
[ 3218.707965][T12612] Memory cgroup out of memory: Killed process 12610 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:32:59 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfffff000}, 0x0)

10:32:59 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xffffff8d}}], 0x2, 0x0)

10:32:59 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xa4d9554000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:32:59 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603009effffff00000000000000000500010006"], 0x1c}}, 0x0)

[ 3218.734424][T12621] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000
[ 3218.775884][T12621] CPU: 1 PID: 12621 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3218.784610][T12621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3218.794689][T12621] Call Trace:
[ 3218.797980][T12621]  <TASK>
[ 3218.800918][T12621]  dump_stack_lvl+0xd1/0x138
[ 3218.805527][T12621]  dump_header+0x10b/0x85f
[ 3218.809973][T12621]  oom_kill_process.cold+0x10/0x15
[ 3218.815116][T12621]  out_of_memory+0x35c/0x14a0
[ 3218.819825][T12621]  ? oom_killer_disable+0x280/0x280
[ 3218.825046][T12621]  ? find_held_lock+0x2d/0x110
[ 3218.829834][T12621]  mem_cgroup_out_of_memory+0x206/0x270
[ 3218.835398][T12621]  ? mem_cgroup_margin+0x130/0x130
[ 3218.840523][T12621]  ? lock_downgrade+0x6e0/0x6e0
[ 3218.845397][T12621]  try_charge_memcg+0xefb/0x12f0
[ 3218.850347][T12621]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3218.856335][T12621]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3218.862091][T12621]  ? lock_downgrade+0x6e0/0x6e0
[ 3218.866966][T12621]  obj_cgroup_charge+0x2af/0x5e0
[ 3218.871918][T12621]  __kmem_cache_alloc_node+0xb2/0x430
[ 3218.877295][T12621]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3218.882676][T12621]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3218.888053][T12621]  __kmalloc_node_track_caller+0x4b/0xc0
[ 3218.893795][T12621]  kmemdup+0x2c/0x60
[ 3218.897702][T12621]  neigh_sysctl_register+0x9e/0x5f0
[ 3218.902911][T12621]  ? neigh_stat_seq_show+0x420/0x420
[ 3218.908200][T12621]  ? inetdev_init+0x23d/0x580
[ 3218.912899][T12621]  ? inetdev_event+0xe20/0x16c0
[ 3218.917755][T12621]  ? notifier_call_chain+0xb5/0x200
[ 3218.922967][T12621]  ? call_netdevice_notifiers_info+0xb5/0x130
[ 3218.929052][T12621]  ? register_netdevice+0xfb4/0x1640
[ 3218.934352][T12621]  ? br_dev_newlink+0x27/0x110
[ 3218.939132][T12621]  ? __rtnl_newlink+0x10c2/0x1840
[ 3218.944168][T12621]  ? rtnl_newlink+0x68/0xa0
[ 3218.948682][T12621]  ? rtnetlink_rcv_msg+0x43e/0xca0
[ 3218.953805][T12621]  ? netlink_rcv_skb+0x165/0x440
[ 3218.958766][T12621]  ? netlink_unicast+0x547/0x7f0
[ 3218.963719][T12621]  ? netlink_sendmsg+0x91b/0xe10
[ 3218.968690][T12621]  ? sock_sendmsg+0xd3/0x120
[ 3218.973292][T12621]  ? ____sys_sendmsg+0x712/0x8c0
[ 3218.978244][T12621]  ? ___sys_sendmsg+0x110/0x1b0
[ 3218.983123][T12621]  devinet_sysctl_register+0xb1/0x230
[ 3218.988518][T12621]  inetdev_init+0x286/0x580
[ 3218.993043][T12621]  inetdev_event+0xe20/0x16c0
[ 3218.997737][T12621]  ? del_default_gids+0xe0/0xe0
[ 3219.002632][T12621]  ? is_ndev_for_default_gid_filter.part.0+0x2e0/0x2e0
[ 3219.009512][T12621]  ? devinet_init_net+0x650/0x650
[ 3219.014552][T12621]  ? skb_dequeue+0x129/0x180
[ 3219.019164][T12621]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3219.025094][T12621]  notifier_call_chain+0xb5/0x200
[ 3219.030149][T12621]  call_netdevice_notifiers_info+0xb5/0x130
[ 3219.036074][T12621]  register_netdevice+0xfb4/0x1640
[ 3219.041214][T12621]  ? unregister_netdevice_queue+0x3c0/0x3c0
[ 3219.047136][T12621]  br_dev_newlink+0x27/0x110
[ 3219.051757][T12621]  ? br_changelink+0x1620/0x1620
[ 3219.056715][T12621]  __rtnl_newlink+0x10c2/0x1840
[ 3219.061592][T12621]  ? find_held_lock+0x2d/0x110
[ 3219.066375][T12621]  ? rtnl_link_unregister+0x250/0x250
[ 3219.071763][T12621]  ? __kmem_cache_alloc_node+0x48/0x430
[ 3219.077348][T12621]  rtnl_newlink+0x68/0xa0
[ 3219.081692][T12621]  ? __rtnl_newlink+0x1840/0x1840
[ 3219.086730][T12621]  rtnetlink_rcv_msg+0x43e/0xca0
[ 3219.091706][T12621]  ? rtnl_getlink+0xae0/0xae0
[ 3219.096407][T12621]  ? __dev_queue_xmit+0xb54/0x3ba0
[ 3219.101568][T12621]  netlink_rcv_skb+0x165/0x440
[ 3219.106360][T12621]  ? rtnl_getlink+0xae0/0xae0
[ 3219.111056][T12621]  ? netlink_ack+0x1370/0x1370
[ 3219.115948][T12621]  ? netlink_deliver_tap+0x1b1/0xc50
[ 3219.121271][T12621]  netlink_unicast+0x547/0x7f0
[ 3219.126066][T12621]  ? netlink_attachskb+0x890/0x890
[ 3219.131233][T12621]  ? __virt_addr_valid+0x61/0x2e0
[ 3219.136344][T12621]  ? __phys_addr_symbol+0x30/0x70
[ 3219.141392][T12621]  ? __check_object_size+0x2e2/0x5a0
[ 3219.146704][T12621]  netlink_sendmsg+0x91b/0xe10
[ 3219.151496][T12621]  ? netlink_unicast+0x7f0/0x7f0
[ 3219.156461][T12621]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3219.161770][T12621]  ? netlink_unicast+0x7f0/0x7f0
[ 3219.166730][T12621]  sock_sendmsg+0xd3/0x120
[ 3219.171166][T12621]  ____sys_sendmsg+0x712/0x8c0
[ 3219.175951][T12621]  ? copy_msghdr_from_user+0xfc/0x150
[ 3219.181343][T12621]  ? kernel_sendmsg+0x50/0x50
[ 3219.186044][T12621]  ? futex_unqueue+0xb7/0x120
[ 3219.190760][T12621]  ___sys_sendmsg+0x110/0x1b0
[ 3219.195459][T12621]  ? do_recvmmsg+0x6e0/0x6e0
[ 3219.200073][T12621]  ? __fget_files+0x248/0x440
[ 3219.204762][T12621]  ? lock_downgrade+0x6e0/0x6e0
[ 3219.209636][T12621]  ? __fget_files+0x26a/0x440
[ 3219.214327][T12621]  ? __fget_light+0xe5/0x270
[ 3219.218930][T12621]  __sys_sendmsg+0xf7/0x1c0
[ 3219.223455][T12621]  ? __sys_sendmsg_sock+0x40/0x40
[ 3219.228504][T12621]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3219.234429][T12621]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3219.240331][T12621]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3219.245538][T12621]  do_syscall_64+0x39/0xb0
[ 3219.249971][T12621]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3219.255875][T12621] RIP: 0033:0x7fde80a8c0c9
[ 3219.260296][T12621] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3219.279906][T12621] RSP: 002b:00007fde818ce168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3219.288325][T12621] RAX: ffffffffffffffda RBX: 00007fde80babf80 RCX: 00007fde80a8c0c9
[ 3219.296299][T12621] RDX: 000000000000000a RSI: 00000000200000c0 RDI: 0000000000000003
[ 3219.304273][T12621] RBP: 00007fde80ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3219.312253][T12621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3219.320228][T12621] R13: 00007ffd6245db6f R14: 00007fde818ce300 R15: 0000000000022000
10:33:00 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfffffff5}}], 0x2, 0x0)

[ 3219.328235][T12621]  </TASK>
[ 3219.356996][T12621] memory: usage 307200kB, limit 307200kB, failcnt 38666
[ 3219.363980][T12621] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3219.396008][T12621] Memory cgroup stats for /syz2:
[ 3219.396280][T12621] anon 135168
[ 3219.396280][T12621] file 307200
[ 3219.396280][T12621] kernel 314097664
[ 3219.396280][T12621] kernel_stack 32768
[ 3219.396280][T12621] pagetables 86016
[ 3219.396280][T12621] sec_pagetables 0
[ 3219.396280][T12621] percpu 5433440
[ 3219.396280][T12621] sock 0
[ 3219.396280][T12621] vmalloc 16384
[ 3219.396280][T12621] shmem 307200
[ 3219.396280][T12621] zswap 0
[ 3219.396280][T12621] zswapped 0
[ 3219.396280][T12621] file_mapped 299008
[ 3219.396280][T12621] file_dirty 0
[ 3219.396280][T12621] file_writeback 0
[ 3219.396280][T12621] swapcached 0
[ 3219.396280][T12621] anon_thp 0
[ 3219.396280][T12621] file_thp 0
[ 3219.396280][T12621] shmem_thp 0
[ 3219.396280][T12621] inactive_anon 143360
[ 3219.396280][T12621] active_anon 299008
[ 3219.396280][T12621] inactive_file 0
[ 3219.396280][T12621] active_file 0
[ 3219.396280][T12621] unevictable 0
[ 3219.396280][T12621] slab_reclaimable 112984
[ 3219.396280][T12621] slab_unreclaimable 308388424
[ 3219.497948][T12621] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12616,uid=0
[ 3219.514183][T12621] Memory cgroup out of memory: Killed process 12621 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3219.543090][T12636] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3219.553571][T12636] CPU: 1 PID: 12636 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3219.562282][T12636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3219.572357][T12636] Call Trace:
[ 3219.575653][T12636]  <TASK>
[ 3219.578689][T12636]  dump_stack_lvl+0xd1/0x138
[ 3219.583314][T12636]  dump_header+0x10b/0x85f
[ 3219.587780][T12636]  oom_kill_process.cold+0x10/0x15
[ 3219.592941][T12636]  out_of_memory+0x35c/0x14a0
[ 3219.597672][T12636]  ? oom_killer_disable+0x280/0x280
[ 3219.602910][T12636]  ? find_held_lock+0x2d/0x110
[ 3219.607724][T12636]  mem_cgroup_out_of_memory+0x206/0x270
[ 3219.613311][T12636]  ? mem_cgroup_margin+0x130/0x130
[ 3219.618460][T12636]  ? lock_downgrade+0x6e0/0x6e0
[ 3219.623363][T12636]  try_charge_memcg+0xefb/0x12f0
[ 3219.628344][T12636]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3219.634356][T12636]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3219.640116][T12636]  ? lock_downgrade+0x6e0/0x6e0
[ 3219.645004][T12636]  ? lock_downgrade+0x6e0/0x6e0
[ 3219.649896][T12636]  obj_cgroup_charge+0x2af/0x5e0
[ 3219.654874][T12636]  kmem_cache_alloc_lru+0x145/0x760
[ 3219.660093][T12636]  ? sock_alloc_inode+0x27/0x1d0
[ 3219.665077][T12636]  sock_alloc_inode+0x27/0x1d0
[ 3219.669873][T12636]  ? sock_free_inode+0x30/0x30
[ 3219.674664][T12636]  alloc_inode+0x61/0x230
[ 3219.679029][T12636]  new_inode_pseudo+0x17/0x80
[ 3219.683736][T12636]  sock_alloc+0x40/0x260
[ 3219.687994][T12636]  __sock_create+0xbd/0x790
[ 3219.692542][T12636]  __sys_socket+0x133/0x250
[ 3219.697085][T12636]  ? __sys_socket_file+0x1f0/0x1f0
[ 3219.702248][T12636]  __x64_sys_socket+0x73/0xb0
[ 3219.706964][T12636]  do_syscall_64+0x39/0xb0
[ 3219.711417][T12636]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3219.717338][T12636] RIP: 0033:0x7fbb9f08c0c9
[ 3219.721773][T12636] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3219.741405][T12636] RSP: 002b:00007fbb9fe42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3219.749847][T12636] RAX: ffffffffffffffda RBX: 00007fbb9f1abf80 RCX: 00007fbb9f08c0c9
[ 3219.757837][T12636] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3219.765833][T12636] RBP: 00007fbb9f0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3219.773815][T12636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3219.781794][T12636] R13: 00007fff7101e80f R14: 00007fbb9fe42300 R15: 0000000000022000
[ 3219.789808][T12636]  </TASK>
[ 3219.807785][T12636] memory: usage 307200kB, limit 307200kB, failcnt 156099
[ 3219.817338][T12636] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3219.825551][T12636] Memory cgroup stats for /syz4:
[ 3219.825804][T12636] anon 98304
[ 3219.825804][T12636] file 438272
[ 3219.825804][T12636] kernel 314019840
[ 3219.825804][T12636] kernel_stack 65536
[ 3219.825804][T12636] pagetables 81920
[ 3219.825804][T12636] sec_pagetables 0
[ 3219.825804][T12636] percpu 5617024
[ 3219.825804][T12636] sock 4096
[ 3219.825804][T12636] vmalloc 0
[ 3219.825804][T12636] shmem 438272
[ 3219.825804][T12636] zswap 0
[ 3219.825804][T12636] zswapped 0
[ 3219.825804][T12636] file_mapped 393216
[ 3219.825804][T12636] file_dirty 0
[ 3219.825804][T12636] file_writeback 0
[ 3219.825804][T12636] swapcached 0
[ 3219.825804][T12636] anon_thp 0
[ 3219.825804][T12636] file_thp 0
[ 3219.825804][T12636] shmem_thp 0
[ 3219.825804][T12636] inactive_anon 98304
[ 3219.825804][T12636] active_anon 425984
[ 3219.825804][T12636] inactive_file 0
[ 3219.825804][T12636] active_file 0
[ 3219.825804][T12636] unevictable 0
[ 3219.825804][T12636] slab_reclaimable 21096
[ 3219.825804][T12636] slab_unreclaimable 308203944
[ 3219.925349][T12636] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12634,uid=0
[ 3219.942685][T12636] Memory cgroup out of memory: Killed process 12634 (syz-executor.4) total-vm:56720kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3219.960825][T12637] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3219.990665][T12637] CPU: 0 PID: 12637 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3219.999394][T12637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3220.009468][T12637] Call Trace:
[ 3220.012740][T12637]  <TASK>
[ 3220.015671][T12637]  dump_stack_lvl+0xd1/0x138
[ 3220.020258][T12637]  dump_header+0x10b/0x85f
[ 3220.024675][T12637]  oom_kill_process.cold+0x10/0x15
[ 3220.029787][T12637]  out_of_memory+0x35c/0x14a0
[ 3220.034468][T12637]  ? oom_killer_disable+0x280/0x280
[ 3220.039677][T12637]  ? find_held_lock+0x2d/0x110
[ 3220.044459][T12637]  mem_cgroup_out_of_memory+0x206/0x270
[ 3220.050043][T12637]  ? mem_cgroup_margin+0x130/0x130
[ 3220.055180][T12637]  ? lock_downgrade+0x6e0/0x6e0
[ 3220.060053][T12637]  try_charge_memcg+0xefb/0x12f0
[ 3220.065018][T12637]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3220.071007][T12637]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3220.076748][T12637]  ? lock_downgrade+0x6e0/0x6e0
[ 3220.081634][T12637]  ? lock_downgrade+0x6e0/0x6e0
[ 3220.086511][T12637]  obj_cgroup_charge+0x2af/0x5e0
[ 3220.091482][T12637]  kmem_cache_alloc_lru+0x145/0x760
[ 3220.096716][T12637]  ? sock_alloc_inode+0x27/0x1d0
[ 3220.101687][T12637]  sock_alloc_inode+0x27/0x1d0
[ 3220.106476][T12637]  ? sock_free_inode+0x30/0x30
[ 3220.111256][T12637]  alloc_inode+0x61/0x230
[ 3220.115638][T12637]  new_inode_pseudo+0x17/0x80
[ 3220.120335][T12637]  sock_alloc+0x40/0x260
[ 3220.124604][T12637]  __sock_create+0xbd/0x790
[ 3220.129144][T12637]  __sys_socket+0x133/0x250
[ 3220.133668][T12637]  ? __sys_socket_file+0x1f0/0x1f0
[ 3220.138807][T12637]  __x64_sys_socket+0x73/0xb0
[ 3220.143508][T12637]  do_syscall_64+0x39/0xb0
[ 3220.147948][T12637]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3220.153852][T12637] RIP: 0033:0x7f36ee08c0c9
[ 3220.158273][T12637] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3220.177897][T12637] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3220.186328][T12637] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3220.194316][T12637] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3220.202290][T12637] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3220.210261][T12637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3220.218239][T12637] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3220.226233][T12637]  </TASK>
[ 3220.232938][T12637] memory: usage 307200kB, limit 307200kB, failcnt 31948
[ 3220.240432][T12637] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3220.249511][T12637] Memory cgroup stats for /syz5:
[ 3220.249761][T12637] anon 94208
[ 3220.249761][T12637] file 425984
[ 3220.249761][T12637] kernel 314052608
[ 3220.249761][T12637] kernel_stack 65536
[ 3220.249761][T12637] pagetables 77824
[ 3220.249761][T12637] sec_pagetables 0
[ 3220.249761][T12637] percpu 5429952
[ 3220.249761][T12637] sock 0
[ 3220.249761][T12637] vmalloc 8192
[ 3220.249761][T12637] shmem 425984
[ 3220.249761][T12637] zswap 0
[ 3220.249761][T12637] zswapped 0
[ 3220.249761][T12637] file_mapped 393216
[ 3220.249761][T12637] file_dirty 0
[ 3220.249761][T12637] file_writeback 0
[ 3220.249761][T12637] swapcached 0
[ 3220.249761][T12637] anon_thp 0
[ 3220.249761][T12637] file_thp 0
[ 3220.249761][T12637] shmem_thp 0
[ 3220.249761][T12637] inactive_anon 221184
[ 3220.249761][T12637] active_anon 299008
[ 3220.249761][T12637] inactive_file 0
[ 3220.249761][T12637] active_file 0
[ 3220.249761][T12637] unevictable 0
[ 3220.249761][T12637] slab_reclaimable 216400
[ 3220.249761][T12637] slab_unreclaimable 308217872
[ 3220.346425][T12637] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12622,uid=0
10:33:01 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xf403)

10:33:01 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xaa05000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:01 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300f0ffffff00000000000000000500010006"], 0x1c}}, 0x0)

10:33:01 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfffffffe}}], 0x2, 0x0)

10:33:01 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfffff000}, 0x0)

10:33:01 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xc)

[ 3220.362189][T12637] Memory cgroup out of memory: Killed process 12622 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:01 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000080010000000000000500010006"], 0x1c}}, 0x0)

10:33:01 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xb80b000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:01 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x4000000000000}}], 0x2, 0x0)

10:33:01 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000100000000000500010006"], 0x1c}}, 0x0)

[ 3220.515964][T12642] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
10:33:01 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xe803000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3220.576789][T12642] CPU: 0 PID: 12642 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3220.585520][T12642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3220.595624][T12642] Call Trace:
[ 3220.598924][T12642]  <TASK>
[ 3220.601882][T12642]  dump_stack_lvl+0xd1/0x138
[ 3220.606515][T12642]  dump_header+0x10b/0x85f
[ 3220.610978][T12642]  oom_kill_process.cold+0x10/0x15
[ 3220.616145][T12642]  out_of_memory+0x35c/0x14a0
[ 3220.620873][T12642]  ? find_held_lock+0x2d/0x110
10:33:01 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x10000000000000}}], 0x2, 0x0)

[ 3220.625677][T12642]  ? oom_killer_disable+0x280/0x280
[ 3220.630924][T12642]  ? find_held_lock+0x2d/0x110
[ 3220.635825][T12642]  mem_cgroup_out_of_memory+0x206/0x270
[ 3220.641409][T12642]  ? mem_cgroup_margin+0x130/0x130
[ 3220.646543][T12642]  ? lock_downgrade+0x6e0/0x6e0
[ 3220.651452][T12642]  try_charge_memcg+0xefb/0x12f0
[ 3220.656432][T12642]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3220.662453][T12642]  ? lock_downgrade+0x6e0/0x6e0
[ 3220.667352][T12642]  charge_memcg+0x90/0x3b0
[ 3220.671804][T12642]  __mem_cgroup_charge+0x2b/0x90
[ 3220.676771][T12642]  ? _compound_head+0x5d/0x150
[ 3220.681571][T12642]  __handle_mm_fault+0x187d/0x3c90
[ 3220.686729][T12642]  ? vm_iomap_memory+0x190/0x190
[ 3220.691739][T12642]  handle_mm_fault+0x1b6/0x850
[ 3220.696555][T12642]  do_user_addr_fault+0x475/0x1210
[ 3220.701703][T12642]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3220.707290][T12642]  exc_page_fault+0x98/0x170
[ 3220.711914][T12642]  asm_exc_page_fault+0x26/0x30
[ 3220.716788][T12642] RIP: 0033:0x7fde80a2bd49
[ 3220.721224][T12642] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3220.740857][T12642] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3220.746951][T12642] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3220.754948][T12642] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3220.762946][T12642] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3220.770941][T12642] R10: 00007fde80600068 R11: 0000000000000246 R12: 00000000003123cd
[ 3220.778931][T12642] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3220.787045][T12642]  </TASK>
[ 3220.808316][T12642] memory: usage 307200kB, limit 307200kB, failcnt 38774
[ 3220.815582][T12642] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3220.822454][T12642] Memory cgroup stats for /syz2:
[ 3220.822679][T12642] anon 131072
[ 3220.822679][T12642] file 307200
[ 3220.822679][T12642] kernel 314134528
[ 3220.822679][T12642] kernel_stack 65536
[ 3220.822679][T12642] pagetables 86016
[ 3220.822679][T12642] sec_pagetables 0
[ 3220.822679][T12642] percpu 5433504
[ 3220.822679][T12642] sock 0
[ 3220.822679][T12642] vmalloc 16384
[ 3220.822679][T12642] shmem 307200
[ 3220.822679][T12642] zswap 0
[ 3220.822679][T12642] zswapped 0
[ 3220.822679][T12642] file_mapped 299008
[ 3220.822679][T12642] file_dirty 0
[ 3220.822679][T12642] file_writeback 0
[ 3220.822679][T12642] swapcached 0
[ 3220.822679][T12642] anon_thp 0
[ 3220.822679][T12642] file_thp 0
[ 3220.822679][T12642] shmem_thp 0
[ 3220.822679][T12642] inactive_anon 139264
[ 3220.822679][T12642] active_anon 299008
[ 3220.822679][T12642] inactive_file 0
[ 3220.822679][T12642] active_file 0
[ 3220.822679][T12642] unevictable 0
[ 3220.822679][T12642] slab_reclaimable 112984
[ 3220.822679][T12642] slab_unreclaimable 308388680
[ 3220.918895][T12642] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12642,uid=0
[ 3220.937174][T12642] Memory cgroup out of memory: Killed process 12642 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3220.979669][T12661] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3220.999377][T12661] CPU: 0 PID: 12661 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3221.008108][T12661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3221.018198][T12661] Call Trace:
[ 3221.021486][T12661]  <TASK>
[ 3221.024411][T12661]  dump_stack_lvl+0xd1/0x138
[ 3221.029004][T12661]  dump_header+0x10b/0x85f
[ 3221.033425][T12661]  oom_kill_process.cold+0x10/0x15
[ 3221.038565][T12661]  out_of_memory+0x35c/0x14a0
[ 3221.043253][T12661]  ? find_held_lock+0x2d/0x110
[ 3221.048036][T12661]  ? oom_killer_disable+0x280/0x280
[ 3221.053254][T12661]  ? find_held_lock+0x2d/0x110
[ 3221.058037][T12661]  mem_cgroup_out_of_memory+0x206/0x270
[ 3221.063614][T12661]  ? mem_cgroup_margin+0x130/0x130
[ 3221.068757][T12661]  ? lock_downgrade+0x6e0/0x6e0
[ 3221.073635][T12661]  try_charge_memcg+0xefb/0x12f0
[ 3221.078600][T12661]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3221.084595][T12661]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3221.090341][T12661]  ? lock_downgrade+0x6e0/0x6e0
[ 3221.095210][T12661]  ? lock_downgrade+0x6e0/0x6e0
[ 3221.100082][T12661]  obj_cgroup_charge+0x2af/0x5e0
[ 3221.105044][T12661]  kmem_cache_alloc_lru+0x145/0x760
[ 3221.110248][T12661]  ? sock_alloc_inode+0x27/0x1d0
[ 3221.115208][T12661]  sock_alloc_inode+0x27/0x1d0
[ 3221.119985][T12661]  ? sock_free_inode+0x30/0x30
[ 3221.124766][T12661]  alloc_inode+0x61/0x230
[ 3221.129117][T12661]  new_inode_pseudo+0x17/0x80
[ 3221.133835][T12661]  sock_alloc+0x40/0x260
[ 3221.138096][T12661]  __sock_create+0xbd/0x790
[ 3221.142625][T12661]  __sys_socket+0x133/0x250
[ 3221.147147][T12661]  ? __sys_socket_file+0x1f0/0x1f0
[ 3221.152285][T12661]  __x64_sys_socket+0x73/0xb0
[ 3221.156985][T12661]  do_syscall_64+0x39/0xb0
[ 3221.161452][T12661]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3221.167391][T12661] RIP: 0033:0x7f36ee08c0c9
[ 3221.171817][T12661] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3221.191433][T12661] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3221.199867][T12661] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3221.207846][T12661] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3221.215823][T12661] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3221.223801][T12661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3221.231780][T12661] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3221.239775][T12661]  </TASK>
[ 3221.250464][T12661] memory: usage 307200kB, limit 307200kB, failcnt 32086
[ 3221.260779][T12661] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3221.269400][T12661] Memory cgroup stats for /syz5:
[ 3221.269616][T12661] anon 94208
[ 3221.269616][T12661] file 425984
[ 3221.269616][T12661] kernel 314052608
[ 3221.269616][T12661] kernel_stack 65536
[ 3221.269616][T12661] pagetables 77824
[ 3221.269616][T12661] sec_pagetables 0
[ 3221.269616][T12661] percpu 5429952
[ 3221.269616][T12661] sock 0
[ 3221.269616][T12661] vmalloc 8192
[ 3221.269616][T12661] shmem 425984
[ 3221.269616][T12661] zswap 0
[ 3221.269616][T12661] zswapped 0
[ 3221.269616][T12661] file_mapped 393216
[ 3221.269616][T12661] file_dirty 0
[ 3221.269616][T12661] file_writeback 0
[ 3221.269616][T12661] swapcached 0
[ 3221.269616][T12661] anon_thp 0
[ 3221.269616][T12661] file_thp 0
[ 3221.269616][T12661] shmem_thp 0
[ 3221.269616][T12661] inactive_anon 221184
[ 3221.269616][T12661] active_anon 299008
[ 3221.269616][T12661] inactive_file 0
[ 3221.269616][T12661] active_file 0
[ 3221.269616][T12661] unevictable 0
[ 3221.269616][T12661] slab_reclaimable 216400
[ 3221.269616][T12661] slab_unreclaimable 308217872
[ 3221.369487][T12661] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12653,uid=0
[ 3221.385822][T12661] Memory cgroup out of memory: Killed process 12653 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3221.417234][T12641] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3221.427708][T12641] CPU: 1 PID: 12641 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3221.436415][T12641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3221.438815][T12661] socket: no more sockets
[ 3221.446469][T12641] Call Trace:
[ 3221.446479][T12641]  <TASK>
[ 3221.446489][T12641]  dump_stack_lvl+0xd1/0x138
[ 3221.446525][T12641]  dump_header+0x10b/0x85f
[ 3221.446566][T12641]  oom_kill_process.cold+0x10/0x15
[ 3221.446607][T12641]  out_of_memory+0x35c/0x14a0
[ 3221.446651][T12641]  ? oom_killer_disable+0x280/0x280
[ 3221.481173][T12641]  ? find_held_lock+0x2d/0x110
[ 3221.485988][T12641]  mem_cgroup_out_of_memory+0x206/0x270
[ 3221.491580][T12641]  ? mem_cgroup_margin+0x130/0x130
[ 3221.496729][T12641]  ? lock_downgrade+0x6e0/0x6e0
[ 3221.501627][T12641]  try_charge_memcg+0xefb/0x12f0
[ 3221.506604][T12641]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3221.512623][T12641]  ? lock_downgrade+0x6e0/0x6e0
[ 3221.517512][T12641]  charge_memcg+0x90/0x3b0
[ 3221.521951][T12641]  __mem_cgroup_charge+0x2b/0x90
[ 3221.526903][T12641]  do_wp_page+0x7ec/0x3370
[ 3221.531349][T12641]  ? lock_release+0x810/0x810
[ 3221.536040][T12641]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3221.541430][T12641]  ? do_raw_spin_lock+0x124/0x2b0
[ 3221.546464][T12641]  ? rwlock_bug.part.0+0x90/0x90
[ 3221.551413][T12641]  ? lock_chain_count+0x20/0x20
[ 3221.556278][T12641]  __handle_mm_fault+0x1f58/0x3c90
[ 3221.561416][T12641]  ? vm_iomap_memory+0x190/0x190
[ 3221.566425][T12641]  handle_mm_fault+0x1b6/0x850
[ 3221.571227][T12641]  do_user_addr_fault+0x475/0x1210
[ 3221.576364][T12641]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3221.581947][T12641]  exc_page_fault+0x98/0x170
[ 3221.586642][T12641]  asm_exc_page_fault+0x26/0x30
[ 3221.591534][T12641] RIP: 0033:0x7fbb9f039570
[ 3221.595965][T12641] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3221.615596][T12641] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3221.621673][T12641] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
10:33:02 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xf802)

10:33:02 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xeffdffff00000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:02 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x40030000000000}}], 0x2, 0x0)

10:33:02 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000400000000000500010006"], 0x1c}}, 0x0)

[ 3221.629650][T12641] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3221.637629][T12641] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3221.645604][T12641] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3221.653581][T12641] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3221.661556][T12641]  ? security_socket_create+0x3f/0xc0
[ 3221.666967][T12641]  </TASK>
[ 3221.675493][T12641] memory: usage 307200kB, limit 307200kB, failcnt 156209
[ 3221.682569][T12641] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3221.690168][T12641] Memory cgroup stats for /syz4:
[ 3221.690336][T12641] anon 118784
[ 3221.690336][T12641] file 438272
[ 3221.690336][T12641] kernel 314011648
[ 3221.690336][T12641] kernel_stack 65536
[ 3221.690336][T12641] pagetables 73728
[ 3221.690336][T12641] sec_pagetables 0
[ 3221.690336][T12641] percpu 5617024
[ 3221.690336][T12641] sock 4096
[ 3221.690336][T12641] vmalloc 0
[ 3221.690336][T12641] shmem 438272
[ 3221.690336][T12641] zswap 0
[ 3221.690336][T12641] zswapped 0
[ 3221.690336][T12641] file_mapped 393216
[ 3221.690336][T12641] file_dirty 0
[ 3221.690336][T12641] file_writeback 0
[ 3221.690336][T12641] swapcached 0
[ 3221.690336][T12641] anon_thp 0
[ 3221.690336][T12641] file_thp 0
[ 3221.690336][T12641] shmem_thp 0
[ 3221.690336][T12641] inactive_anon 131072
[ 3221.690336][T12641] active_anon 425984
[ 3221.690336][T12641] inactive_file 0
[ 3221.690336][T12641] active_file 0
[ 3221.690336][T12641] unevictable 0
[ 3221.690336][T12641] slab_reclaimable 23024
10:33:02 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xf401000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:02 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x100000000000000}}], 0x2, 0x0)

10:33:02 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xe)

10:33:02 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000034000000000000500010006"], 0x1c}}, 0x0)

10:33:02 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}, 0x1, 0x0, 0x0, 0xfffff000}, 0x0)

[ 3221.690336][T12641] slab_unreclaimable 308200776
[ 3221.791930][T12641] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12641,uid=0
[ 3221.809873][T12641] Memory cgroup out of memory: Killed process 12641 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:02 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300fffffffffffff000000000000500010006"], 0x1c}}, 0x0)

10:33:02 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xf5ffffff00000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3221.905187][T12667] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3221.927119][T12667] CPU: 0 PID: 12667 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3221.935853][T12667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3221.945918][T12667] Call Trace:
[ 3221.949199][T12667]  <TASK>
[ 3221.952138][T12667]  dump_stack_lvl+0xd1/0x138
[ 3221.956928][T12667]  dump_header+0x10b/0x85f
[ 3221.961371][T12667]  oom_kill_process.cold+0x10/0x15
[ 3221.966516][T12667]  out_of_memory+0x35c/0x14a0
[ 3221.971218][T12667]  ? find_held_lock+0x2d/0x110
[ 3221.975999][T12667]  ? oom_killer_disable+0x280/0x280
[ 3221.981223][T12667]  ? find_held_lock+0x2d/0x110
[ 3221.986014][T12667]  mem_cgroup_out_of_memory+0x206/0x270
[ 3221.991582][T12667]  ? mem_cgroup_margin+0x130/0x130
[ 3221.996708][T12667]  ? lock_downgrade+0x6e0/0x6e0
[ 3222.001584][T12667]  try_charge_memcg+0xefb/0x12f0
[ 3222.006536][T12667]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3222.012525][T12667]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3222.018264][T12667]  ? lock_downgrade+0x6e0/0x6e0
[ 3222.023127][T12667]  ? lock_downgrade+0x6e0/0x6e0
[ 3222.028000][T12667]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3222.033565][T12667]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3222.039733][T12667]  copy_process+0x4e3/0x7520
[ 3222.044336][T12667]  ? __lock_acquire+0xbc3/0x56d0
[ 3222.049293][T12667]  ? __cleanup_sighand+0xb0/0xb0
[ 3222.054242][T12667]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3222.060241][T12667]  ? psi_memstall_leave+0x174/0x250
[ 3222.065461][T12667]  kernel_clone+0xeb/0x990
[ 3222.069893][T12667]  ? create_io_thread+0xf0/0xf0
[ 3222.074759][T12667]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3222.081021][T12667]  ? lock_downgrade+0x6e0/0x6e0
[ 3222.085890][T12667]  __do_sys_clone+0xba/0x100
[ 3222.090491][T12667]  ? kernel_clone+0x990/0x990
[ 3222.095191][T12667]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3222.101101][T12667]  do_syscall_64+0x39/0xb0
[ 3222.105538][T12667]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3222.111439][T12667] RIP: 0033:0x7f36ee08d4f1
[ 3222.115858][T12667] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3222.135473][T12667] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3222.143949][T12667] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
10:33:03 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x200000000000000}}], 0x2, 0x0)

[ 3222.151940][T12667] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3222.159945][T12667] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3222.167922][T12667] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3222.175906][T12667] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3222.183989][T12667]  </TASK>
[ 3222.293654][T12667] memory: usage 307200kB, limit 307200kB, failcnt 32219
[ 3222.313053][T12667] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3222.340187][T12667] Memory cgroup stats for /syz5:
[ 3222.340369][T12667] anon 86016
[ 3222.340369][T12667] file 425984
[ 3222.340369][T12667] kernel 314060800
[ 3222.340369][T12667] kernel_stack 32768
[ 3222.340369][T12667] pagetables 77824
[ 3222.340369][T12667] sec_pagetables 0
[ 3222.340369][T12667] percpu 5430016
[ 3222.340369][T12667] sock 0
[ 3222.340369][T12667] vmalloc 8192
[ 3222.340369][T12667] shmem 425984
[ 3222.340369][T12667] zswap 0
[ 3222.340369][T12667] zswapped 0
[ 3222.340369][T12667] file_mapped 393216
[ 3222.340369][T12667] file_dirty 0
[ 3222.340369][T12667] file_writeback 0
[ 3222.340369][T12667] swapcached 0
[ 3222.340369][T12667] anon_thp 0
[ 3222.340369][T12667] file_thp 0
[ 3222.340369][T12667] shmem_thp 0
[ 3222.340369][T12667] inactive_anon 212992
[ 3222.340369][T12667] active_anon 299008
[ 3222.340369][T12667] inactive_file 0
[ 3222.340369][T12667] active_file 0
[ 3222.340369][T12667] unevictable 0
[ 3222.340369][T12667] slab_reclaimable 216400
[ 3222.340369][T12667] slab_unreclaimable 308229192
[ 3222.462978][T12667] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12667,uid=0
[ 3222.478782][T12667] Memory cgroup out of memory: Killed process 12667 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:03 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xfb00)

10:33:03 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xf7ffff7f00000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:03 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000001000000000500010006"], 0x1c}}, 0x0)

10:33:03 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x300000000000000}}], 0x2, 0x0)

[ 3222.507823][T12683] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3222.551476][T12683] CPU: 0 PID: 12683 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3222.560217][T12683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3222.570306][T12683] Call Trace:
[ 3222.573626][T12683]  <TASK>
[ 3222.576578][T12683]  dump_stack_lvl+0xd1/0x138
[ 3222.581219][T12683]  dump_header+0x10b/0x85f
[ 3222.585693][T12683]  oom_kill_process.cold+0x10/0x15
[ 3222.590952][T12683]  out_of_memory+0x35c/0x14a0
[ 3222.595683][T12683]  ? oom_killer_disable+0x280/0x280
[ 3222.600932][T12683]  ? find_held_lock+0x2d/0x110
[ 3222.605746][T12683]  mem_cgroup_out_of_memory+0x206/0x270
[ 3222.611333][T12683]  ? mem_cgroup_margin+0x130/0x130
[ 3222.616486][T12683]  ? lock_downgrade+0x6e0/0x6e0
[ 3222.621386][T12683]  try_charge_memcg+0xefb/0x12f0
[ 3222.626369][T12683]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3222.632394][T12683]  ? lock_downgrade+0x6e0/0x6e0
[ 3222.637293][T12683]  charge_memcg+0x90/0x3b0
[ 3222.641765][T12683]  __mem_cgroup_charge+0x2b/0x90
[ 3222.646741][T12683]  do_wp_page+0x7ec/0x3370
[ 3222.651215][T12683]  ? lock_release+0x810/0x810
[ 3222.655934][T12683]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3222.661340][T12683]  ? do_raw_spin_lock+0x124/0x2b0
[ 3222.666381][T12683]  ? rwlock_bug.part.0+0x90/0x90
[ 3222.671328][T12683]  ? lock_chain_count+0x20/0x20
[ 3222.676192][T12683]  __handle_mm_fault+0x1f58/0x3c90
[ 3222.681327][T12683]  ? vm_iomap_memory+0x190/0x190
[ 3222.686306][T12683]  handle_mm_fault+0x1b6/0x850
[ 3222.691095][T12683]  do_user_addr_fault+0x475/0x1210
[ 3222.696225][T12683]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3222.701801][T12683]  exc_page_fault+0x98/0x170
[ 3222.706580][T12683]  asm_exc_page_fault+0x26/0x30
[ 3222.711443][T12683] RIP: 0033:0x7fbb9f039570
[ 3222.715867][T12683] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3222.735483][T12683] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3222.741561][T12683] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
10:33:03 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000002000000000500010006"], 0x1c}}, 0x0)

[ 3222.749538][T12683] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3222.757515][T12683] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3222.765491][T12683] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3222.773554][T12683] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3222.781532][T12683]  ? security_socket_create+0x3f/0xc0
[ 3222.786949][T12683]  </TASK>
[ 3222.797510][T12683] memory: usage 307200kB, limit 307200kB, failcnt 156298
[ 3222.806361][T12683] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3222.813447][T12683] Memory cgroup stats for /syz4:
[ 3222.813661][T12683] anon 118784
[ 3222.813661][T12683] file 438272
[ 3222.813661][T12683] kernel 314011648
[ 3222.813661][T12683] kernel_stack 65536
[ 3222.813661][T12683] pagetables 73728
[ 3222.813661][T12683] sec_pagetables 0
[ 3222.813661][T12683] percpu 5617024
[ 3222.813661][T12683] sock 4096
[ 3222.813661][T12683] vmalloc 0
[ 3222.813661][T12683] shmem 438272
[ 3222.813661][T12683] zswap 0
[ 3222.813661][T12683] zswapped 0
[ 3222.813661][T12683] file_mapped 393216
[ 3222.813661][T12683] file_dirty 0
[ 3222.813661][T12683] file_writeback 0
[ 3222.813661][T12683] swapcached 0
[ 3222.813661][T12683] anon_thp 0
[ 3222.813661][T12683] file_thp 0
[ 3222.813661][T12683] shmem_thp 0
[ 3222.813661][T12683] inactive_anon 131072
[ 3222.813661][T12683] active_anon 425984
[ 3222.813661][T12683] inactive_file 0
[ 3222.813661][T12683] active_file 0
[ 3222.813661][T12683] unevictable 0
[ 3222.813661][T12683] slab_reclaimable 23024
[ 3222.813661][T12683] slab_unreclaimable 308200776
[ 3222.909903][T12683] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12683,uid=0
[ 3222.929641][T12683] Memory cgroup out of memory: Killed process 12683 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3222.947760][T12672] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3222.958523][T12672] CPU: 0 PID: 12672 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3222.967239][T12672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3222.977312][T12672] Call Trace:
[ 3222.980586][T12672]  <TASK>
[ 3222.983510][T12672]  dump_stack_lvl+0xd1/0x138
[ 3222.988127][T12672]  dump_header+0x10b/0x85f
[ 3222.992572][T12672]  oom_kill_process.cold+0x10/0x15
[ 3222.997713][T12672]  out_of_memory+0x35c/0x14a0
[ 3223.002403][T12672]  ? oom_killer_disable+0x280/0x280
[ 3223.007700][T12672]  ? find_held_lock+0x2d/0x110
[ 3223.012477][T12672]  mem_cgroup_out_of_memory+0x206/0x270
[ 3223.018051][T12672]  ? mem_cgroup_margin+0x130/0x130
[ 3223.023202][T12672]  ? lock_downgrade+0x6e0/0x6e0
[ 3223.028106][T12672]  try_charge_memcg+0xefb/0x12f0
[ 3223.033088][T12672]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3223.039095][T12672]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3223.044833][T12672]  ? lock_downgrade+0x6e0/0x6e0
[ 3223.049718][T12672]  obj_cgroup_charge+0x2af/0x5e0
[ 3223.054660][T12672]  ? __anon_vma_prepare+0x64/0x580
[ 3223.059777][T12672]  kmem_cache_alloc+0xb5/0x430
[ 3223.064558][T12672]  __anon_vma_prepare+0x64/0x580
[ 3223.069559][T12672]  ? __pmd_alloc+0x30c/0x5d0
[ 3223.074173][T12672]  __handle_mm_fault+0x392f/0x3c90
[ 3223.079403][T12672]  ? vm_iomap_memory+0x190/0x190
[ 3223.084382][T12672]  handle_mm_fault+0x1b6/0x850
[ 3223.089171][T12672]  do_user_addr_fault+0x475/0x1210
[ 3223.094387][T12672]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3223.099959][T12672]  exc_page_fault+0x98/0x170
[ 3223.104561][T12672]  asm_exc_page_fault+0x26/0x30
[ 3223.109427][T12672] RIP: 0033:0x7fde80a2bd49
[ 3223.113855][T12672] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3223.133500][T12672] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3223.139598][T12672] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
10:33:04 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xf7ffff7f00000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:04 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x400000000000000}}], 0x2, 0x0)

[ 3223.147577][T12672] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3223.155552][T12672] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3223.163529][T12672] R10: 00007fde80600068 R11: 0000000000000246 R12: 0000000000312a95
[ 3223.171508][T12672] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3223.180196][T12672]  </TASK>
[ 3223.187056][T12672] memory: usage 307200kB, limit 307200kB, failcnt 38872
[ 3223.194042][T12672] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3223.204552][T12672] Memory cgroup stats for /syz2:
[ 3223.204752][T12672] anon 131072
[ 3223.204752][T12672] file 307200
[ 3223.204752][T12672] kernel 314118144
[ 3223.204752][T12672] kernel_stack 65536
[ 3223.204752][T12672] pagetables 86016
[ 3223.204752][T12672] sec_pagetables 0
[ 3223.204752][T12672] percpu 5433440
[ 3223.204752][T12672] sock 0
[ 3223.204752][T12672] vmalloc 16384
[ 3223.204752][T12672] shmem 307200
[ 3223.204752][T12672] zswap 0
[ 3223.204752][T12672] zswapped 0
[ 3223.204752][T12672] file_mapped 299008
[ 3223.204752][T12672] file_dirty 0
[ 3223.204752][T12672] file_writeback 0
[ 3223.204752][T12672] swapcached 0
[ 3223.204752][T12672] anon_thp 0
[ 3223.204752][T12672] file_thp 0
[ 3223.204752][T12672] shmem_thp 0
[ 3223.204752][T12672] inactive_anon 139264
[ 3223.204752][T12672] active_anon 299008
[ 3223.204752][T12672] inactive_file 0
[ 3223.204752][T12672] active_file 0
[ 3223.204752][T12672] unevictable 0
[ 3223.204752][T12672] slab_reclaimable 112984
[ 3223.204752][T12672] slab_unreclaimable 308376800
10:33:04 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xf)

10:33:04 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000003000000000500010006"], 0x1c}}, 0x0)

10:33:04 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xfdffffff00000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:04 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x400ad0000000000}}], 0x2, 0x0)

10:33:04 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000004000000000500010006"], 0x1c}}, 0x0)

[ 3223.303321][T12672] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12672,uid=0
[ 3223.324219][T12672] Memory cgroup out of memory: Killed process 12672 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3223.417391][T12692] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3223.467247][T12692] CPU: 1 PID: 12692 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3223.475975][T12692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3223.486041][T12692] Call Trace:
[ 3223.489336][T12692]  <TASK>
[ 3223.492272][T12692]  dump_stack_lvl+0xd1/0x138
[ 3223.496881][T12692]  dump_header+0x10b/0x85f
[ 3223.501321][T12692]  oom_kill_process.cold+0x10/0x15
[ 3223.506454][T12692]  out_of_memory+0x35c/0x14a0
[ 3223.511159][T12692]  ? find_held_lock+0x2d/0x110
[ 3223.515943][T12692]  ? oom_killer_disable+0x280/0x280
[ 3223.521162][T12692]  ? find_held_lock+0x2d/0x110
[ 3223.525949][T12692]  mem_cgroup_out_of_memory+0x206/0x270
[ 3223.531534][T12692]  ? mem_cgroup_margin+0x130/0x130
[ 3223.536661][T12692]  ? lock_downgrade+0x6e0/0x6e0
[ 3223.541533][T12692]  try_charge_memcg+0xefb/0x12f0
[ 3223.546487][T12692]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3223.552482][T12692]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3223.558220][T12692]  ? lock_downgrade+0x6e0/0x6e0
[ 3223.563078][T12692]  ? lock_downgrade+0x6e0/0x6e0
[ 3223.567954][T12692]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3223.573520][T12692]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3223.579689][T12692]  copy_process+0x4e3/0x7520
[ 3223.584306][T12692]  ? __lock_acquire+0xbc3/0x56d0
[ 3223.589290][T12692]  ? __cleanup_sighand+0xb0/0xb0
[ 3223.594245][T12692]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3223.600278][T12692]  ? psi_memstall_leave+0x174/0x250
[ 3223.605506][T12692]  kernel_clone+0xeb/0x990
[ 3223.609950][T12692]  ? create_io_thread+0xf0/0xf0
[ 3223.614818][T12692]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3223.621086][T12692]  ? lock_downgrade+0x6e0/0x6e0
[ 3223.625962][T12692]  __do_sys_clone+0xba/0x100
[ 3223.630569][T12692]  ? kernel_clone+0x990/0x990
[ 3223.635273][T12692]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3223.641207][T12692]  do_syscall_64+0x39/0xb0
[ 3223.645647][T12692]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3223.651549][T12692] RIP: 0033:0x7f36ee08d4f1
[ 3223.655990][T12692] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3223.675703][T12692] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3223.684156][T12692] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3223.692138][T12692] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3223.700122][T12692] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3223.708104][T12692] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3223.716101][T12692] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3223.724096][T12692]  </TASK>
[ 3223.743112][T12692] memory: usage 307184kB, limit 307200kB, failcnt 32318
[ 3223.750328][T12692] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3223.758150][T12692] Memory cgroup stats for /syz5:
[ 3223.758332][T12692] anon 86016
[ 3223.758332][T12692] file 425984
[ 3223.758332][T12692] kernel 314044416
[ 3223.758332][T12692] kernel_stack 32768
[ 3223.758332][T12692] pagetables 77824
[ 3223.758332][T12692] sec_pagetables 0
[ 3223.758332][T12692] percpu 5429952
[ 3223.758332][T12692] sock 0
[ 3223.758332][T12692] vmalloc 8192
[ 3223.758332][T12692] shmem 425984
[ 3223.758332][T12692] zswap 0
[ 3223.758332][T12692] zswapped 0
[ 3223.758332][T12692] file_mapped 393216
[ 3223.758332][T12692] file_dirty 0
[ 3223.758332][T12692] file_writeback 0
[ 3223.758332][T12692] swapcached 0
[ 3223.758332][T12692] anon_thp 0
[ 3223.758332][T12692] file_thp 0
[ 3223.758332][T12692] shmem_thp 0
[ 3223.758332][T12692] inactive_anon 212992
[ 3223.758332][T12692] active_anon 299008
[ 3223.758332][T12692] inactive_file 0
[ 3223.758332][T12692] active_file 0
[ 3223.758332][T12692] unevictable 0
[ 3223.758332][T12692] slab_reclaimable 216400
[ 3223.758332][T12692] slab_unreclaimable 308217408
10:33:04 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xfc00)

10:33:04 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xfe80000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:04 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x500000000000000}}], 0x2, 0x0)

10:33:04 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000005000000000500010006"], 0x1c}}, 0x0)

[ 3223.857365][T12692] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12692,uid=0
[ 3223.874513][T12692] Memory cgroup out of memory: Killed process 12692 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3223.892215][T12697] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3223.906761][T12697] CPU: 0 PID: 12697 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3223.915482][T12697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3223.925560][T12697] Call Trace:
[ 3223.928857][T12697]  <TASK>
[ 3223.931810][T12697]  dump_stack_lvl+0xd1/0x138
[ 3223.936446][T12697]  dump_header+0x10b/0x85f
[ 3223.940911][T12697]  oom_kill_process.cold+0x10/0x15
[ 3223.946071][T12697]  out_of_memory+0x35c/0x14a0
[ 3223.950803][T12697]  ? oom_killer_disable+0x280/0x280
[ 3223.956046][T12697]  ? find_held_lock+0x2d/0x110
[ 3223.960861][T12697]  mem_cgroup_out_of_memory+0x206/0x270
10:33:04 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x600000000000000}}], 0x2, 0x0)

[ 3223.966453][T12697]  ? mem_cgroup_margin+0x130/0x130
[ 3223.971599][T12697]  ? lock_downgrade+0x6e0/0x6e0
[ 3223.976505][T12697]  try_charge_memcg+0xefb/0x12f0
[ 3223.981484][T12697]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3223.987511][T12697]  ? lock_downgrade+0x6e0/0x6e0
[ 3223.992412][T12697]  charge_memcg+0x90/0x3b0
[ 3223.996860][T12697]  __mem_cgroup_charge+0x2b/0x90
[ 3224.001835][T12697]  do_wp_page+0x7ec/0x3370
[ 3224.006297][T12697]  ? lock_release+0x810/0x810
[ 3224.011011][T12697]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3224.016424][T12697]  ? do_raw_spin_lock+0x124/0x2b0
[ 3224.021480][T12697]  ? rwlock_bug.part.0+0x90/0x90
[ 3224.026452][T12697]  ? lock_chain_count+0x20/0x20
[ 3224.031344][T12697]  __handle_mm_fault+0x1f58/0x3c90
[ 3224.036502][T12697]  ? vm_iomap_memory+0x190/0x190
[ 3224.041513][T12697]  handle_mm_fault+0x1b6/0x850
[ 3224.046330][T12697]  do_user_addr_fault+0x475/0x1210
[ 3224.051484][T12697]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3224.057085][T12697]  exc_page_fault+0x98/0x170
[ 3224.061715][T12697]  asm_exc_page_fault+0x26/0x30
[ 3224.066598][T12697] RIP: 0033:0x7fbb9f039570
[ 3224.071037][T12697] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3224.090673][T12697] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3224.096781][T12697] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3224.104790][T12697] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3224.112887][T12697] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3224.120884][T12697] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3224.128883][T12697] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3224.136886][T12697]  ? __sys_socket+0x7c/0x250
[ 3224.141534][T12697]  </TASK>
[ 3224.161127][T12697] memory: usage 307184kB, limit 307200kB, failcnt 156410
[ 3224.168306][T12697] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3224.179987][T12697] Memory cgroup stats for /syz4:
[ 3224.180218][T12697] anon 102400
[ 3224.180218][T12697] file 438272
[ 3224.180218][T12697] kernel 314011648
[ 3224.180218][T12697] kernel_stack 65536
[ 3224.180218][T12697] pagetables 73728
[ 3224.180218][T12697] sec_pagetables 0
[ 3224.180218][T12697] percpu 5617024
[ 3224.180218][T12697] sock 4096
[ 3224.180218][T12697] vmalloc 0
[ 3224.180218][T12697] shmem 438272
[ 3224.180218][T12697] zswap 0
[ 3224.180218][T12697] zswapped 0
[ 3224.180218][T12697] file_mapped 393216
[ 3224.180218][T12697] file_dirty 0
[ 3224.180218][T12697] file_writeback 0
[ 3224.180218][T12697] swapcached 0
[ 3224.180218][T12697] anon_thp 0
[ 3224.180218][T12697] file_thp 0
[ 3224.180218][T12697] shmem_thp 0
[ 3224.180218][T12697] inactive_anon 114688
[ 3224.180218][T12697] active_anon 425984
[ 3224.180218][T12697] inactive_file 0
[ 3224.180218][T12697] active_file 0
[ 3224.180218][T12697] unevictable 0
[ 3224.180218][T12697] slab_reclaimable 23024
[ 3224.180218][T12697] slab_unreclaimable 308202832
[ 3224.277677][T12697] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12697,uid=0
[ 3224.293601][T12697] Memory cgroup out of memory: Killed process 12697 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:05 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xf7ffff7f00000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:05 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xfeffffff00000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:05 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000006000000000500010006"], 0x1c}}, 0x0)

10:33:05 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x700000000000000}}], 0x2, 0x0)

10:33:05 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x10)

10:33:05 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xff00000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:05 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000007000000000500010006"], 0x1c}}, 0x0)

[ 3224.431055][T12718] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3224.468026][T12718] CPU: 0 PID: 12718 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3224.476768][T12718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3224.486852][T12718] Call Trace:
[ 3224.490181][T12718]  <TASK>
[ 3224.493136][T12718]  dump_stack_lvl+0xd1/0x138
[ 3224.497773][T12718]  dump_header+0x10b/0x85f
[ 3224.502237][T12718]  oom_kill_process.cold+0x10/0x15
[ 3224.507403][T12718]  out_of_memory+0x35c/0x14a0
[ 3224.512184][T12718]  ? find_held_lock+0x2d/0x110
[ 3224.516992][T12718]  ? oom_killer_disable+0x280/0x280
[ 3224.522247][T12718]  ? find_held_lock+0x2d/0x110
[ 3224.527056][T12718]  mem_cgroup_out_of_memory+0x206/0x270
[ 3224.532644][T12718]  ? mem_cgroup_margin+0x130/0x130
[ 3224.537799][T12718]  ? lock_downgrade+0x6e0/0x6e0
[ 3224.542711][T12718]  try_charge_memcg+0xefb/0x12f0
[ 3224.547688][T12718]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3224.553709][T12718]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3224.559521][T12718]  ? lock_downgrade+0x6e0/0x6e0
[ 3224.564401][T12718]  ? lock_downgrade+0x6e0/0x6e0
[ 3224.569297][T12718]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3224.574879][T12718]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3224.581067][T12718]  copy_process+0x4e3/0x7520
[ 3224.585676][T12718]  ? __lock_acquire+0xbc3/0x56d0
[ 3224.590641][T12718]  ? __cleanup_sighand+0xb0/0xb0
[ 3224.595592][T12718]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3224.601587][T12718]  ? psi_memstall_leave+0x174/0x250
[ 3224.606806][T12718]  kernel_clone+0xeb/0x990
[ 3224.611234][T12718]  ? create_io_thread+0xf0/0xf0
[ 3224.616096][T12718]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3224.622361][T12718]  ? lock_downgrade+0x6e0/0x6e0
[ 3224.627228][T12718]  __do_sys_clone+0xba/0x100
[ 3224.631916][T12718]  ? kernel_clone+0x990/0x990
[ 3224.636618][T12718]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3224.642527][T12718]  do_syscall_64+0x39/0xb0
[ 3224.646957][T12718]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3224.652862][T12718] RIP: 0033:0x7f36ee08d4f1
[ 3224.657293][T12718] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3224.676911][T12718] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3224.685336][T12718] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3224.693317][T12718] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3224.701309][T12718] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3224.709286][T12718] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3224.717265][T12718] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3224.725264][T12718]  </TASK>
[ 3224.785426][T12718] memory: usage 307184kB, limit 307200kB, failcnt 32445
[ 3224.792939][T12718] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3224.803723][T12718] Memory cgroup stats for /syz5:
[ 3224.803927][T12718] anon 86016
[ 3224.803927][T12718] file 425984
[ 3224.803927][T12718] kernel 314044416
[ 3224.803927][T12718] kernel_stack 32768
[ 3224.803927][T12718] pagetables 77824
[ 3224.803927][T12718] sec_pagetables 0
[ 3224.803927][T12718] percpu 5429952
[ 3224.803927][T12718] sock 0
[ 3224.803927][T12718] vmalloc 8192
[ 3224.803927][T12718] shmem 425984
[ 3224.803927][T12718] zswap 0
[ 3224.803927][T12718] zswapped 0
[ 3224.803927][T12718] file_mapped 393216
[ 3224.803927][T12718] file_dirty 0
[ 3224.803927][T12718] file_writeback 0
[ 3224.803927][T12718] swapcached 0
[ 3224.803927][T12718] anon_thp 0
[ 3224.803927][T12718] file_thp 0
[ 3224.803927][T12718] shmem_thp 0
[ 3224.803927][T12718] inactive_anon 212992
[ 3224.803927][T12718] active_anon 299008
[ 3224.803927][T12718] inactive_file 0
[ 3224.803927][T12718] active_file 0
10:33:05 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xfeff)

10:33:05 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x800000000000000}}], 0x2, 0x0)

10:33:05 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xff02000000000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:05 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000009000000000500010006"], 0x1c}}, 0x0)

10:33:05 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x12)

[ 3224.803927][T12718] unevictable 0
[ 3224.803927][T12718] slab_reclaimable 216400
[ 3224.803927][T12718] slab_unreclaimable 308217408
[ 3224.901917][T12718] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12718,uid=0
[ 3224.918064][T12718] Memory cgroup out of memory: Killed process 12718 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3224.980182][T12726] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3225.023713][T12726] CPU: 1 PID: 12726 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3225.032455][T12726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3225.042539][T12726] Call Trace:
[ 3225.045841][T12726]  <TASK>
[ 3225.048810][T12726]  dump_stack_lvl+0xd1/0x138
[ 3225.053449][T12726]  dump_header+0x10b/0x85f
[ 3225.057935][T12726]  oom_kill_process.cold+0x10/0x15
[ 3225.063103][T12726]  out_of_memory+0x35c/0x14a0
[ 3225.067832][T12726]  ? find_held_lock+0x2d/0x110
[ 3225.072638][T12726]  ? oom_killer_disable+0x280/0x280
[ 3225.077888][T12726]  ? find_held_lock+0x2d/0x110
[ 3225.082704][T12726]  mem_cgroup_out_of_memory+0x206/0x270
[ 3225.088294][T12726]  ? mem_cgroup_margin+0x130/0x130
[ 3225.093442][T12726]  ? lock_downgrade+0x6e0/0x6e0
[ 3225.098346][T12726]  try_charge_memcg+0xefb/0x12f0
[ 3225.103324][T12726]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3225.109350][T12726]  ? lock_downgrade+0x6e0/0x6e0
[ 3225.114253][T12726]  charge_memcg+0x90/0x3b0
[ 3225.118707][T12726]  __mem_cgroup_charge+0x2b/0x90
[ 3225.123659][T12726]  ? _compound_head+0x5d/0x150
[ 3225.128442][T12726]  __handle_mm_fault+0x187d/0x3c90
[ 3225.133581][T12726]  ? vm_iomap_memory+0x190/0x190
[ 3225.138560][T12726]  handle_mm_fault+0x1b6/0x850
[ 3225.143348][T12726]  do_user_addr_fault+0x475/0x1210
[ 3225.148487][T12726]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3225.154064][T12726]  exc_page_fault+0x98/0x170
[ 3225.158676][T12726]  asm_exc_page_fault+0x26/0x30
[ 3225.163535][T12726] RIP: 0033:0x7fbb9f02bc9b
[ 3225.167968][T12726] Code: 48 85 c0 74 1b 48 83 f8 01 0f 85 5a 03 00 00 0f b7 44 24 18 66 c1 c0 08 0f b7 c0 48 89 44 24 18 48 8b 44 24 10 0f b7 54 24 18 <66> 89 10 e9 70 fe ff ff 48 83 7c 24 08 08 0f 85 09 03 00 00 48 8b
[ 3225.187586][T12726] RSP: 002b:00007fff7101e850 EFLAGS: 00010246
[ 3225.193667][T12726] RAX: 0000000020001800 RBX: 0000000000000000 RCX: 0000000000000000
[ 3225.201644][T12726] RDX: 000000000000000a RSI: 0000000000000000 RDI: 000055555689e2e8
[ 3225.209620][T12726] RBP: 00007fff7101e948 R08: 0000000000000000 R09: 0000000000000000
[ 3225.217599][T12726] R10: 00007fbb9ec00068 R11: 000000000008c752 R12: 0000000000313396
[ 3225.225575][T12726] R13: 00007fff7101e970 R14: 00007fff7101e990 R15: 0000000000000032
[ 3225.233573][T12726]  </TASK>
[ 3225.270497][T12726] memory: usage 307184kB, limit 307200kB, failcnt 156534
[ 3225.278216][T12726] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3225.288875][T12726] Memory cgroup stats for /syz4:
[ 3225.289068][T12726] anon 94208
[ 3225.289068][T12726] file 438272
[ 3225.289068][T12726] kernel 314019840
[ 3225.289068][T12726] kernel_stack 65536
[ 3225.289068][T12726] pagetables 81920
[ 3225.289068][T12726] sec_pagetables 0
[ 3225.289068][T12726] percpu 5617024
[ 3225.289068][T12726] sock 4096
[ 3225.289068][T12726] vmalloc 0
[ 3225.289068][T12726] shmem 438272
[ 3225.289068][T12726] zswap 0
[ 3225.289068][T12726] zswapped 0
[ 3225.289068][T12726] file_mapped 393216
[ 3225.289068][T12726] file_dirty 0
[ 3225.289068][T12726] file_writeback 0
[ 3225.289068][T12726] swapcached 0
[ 3225.289068][T12726] anon_thp 0
[ 3225.289068][T12726] file_thp 0
[ 3225.289068][T12726] shmem_thp 0
[ 3225.289068][T12726] inactive_anon 106496
[ 3225.289068][T12726] active_anon 425984
[ 3225.289068][T12726] inactive_file 0
[ 3225.289068][T12726] active_file 0
[ 3225.289068][T12726] unevictable 0
[ 3225.289068][T12726] slab_reclaimable 23024
[ 3225.289068][T12726] slab_unreclaimable 308203232
[ 3225.387459][T12726] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12726,uid=0
[ 3225.403174][T12726] Memory cgroup out of memory: Killed process 12726 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:06 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xf7ffff7f00000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:06 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000000000000e000000000500010006"], 0x1c}}, 0x0)

10:33:06 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x14)

10:33:06 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xffffff7f00000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:06 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x900000000000000}}], 0x2, 0x0)

[ 3225.421761][T12743] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3225.464988][T12743] CPU: 1 PID: 12743 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3225.473721][T12743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3225.483801][T12743] Call Trace:
[ 3225.487099][T12743]  <TASK>
[ 3225.490065][T12743]  dump_stack_lvl+0xd1/0x138
[ 3225.494694][T12743]  dump_header+0x10b/0x85f
[ 3225.499163][T12743]  oom_kill_process.cold+0x10/0x15
[ 3225.504317][T12743]  out_of_memory+0x35c/0x14a0
[ 3225.509047][T12743]  ? oom_killer_disable+0x280/0x280
10:33:06 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xa00000000000000}}], 0x2, 0x0)

[ 3225.514295][T12743]  ? find_held_lock+0x2d/0x110
[ 3225.519105][T12743]  mem_cgroup_out_of_memory+0x206/0x270
[ 3225.524700][T12743]  ? mem_cgroup_margin+0x130/0x130
[ 3225.529848][T12743]  ? lock_downgrade+0x6e0/0x6e0
[ 3225.534749][T12743]  try_charge_memcg+0xefb/0x12f0
[ 3225.539728][T12743]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3225.545743][T12743]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3225.551506][T12743]  ? lock_downgrade+0x6e0/0x6e0
[ 3225.556398][T12743]  ? lock_downgrade+0x6e0/0x6e0
[ 3225.561294][T12743]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3225.566877][T12743]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3225.573071][T12743]  copy_process+0x4e3/0x7520
[ 3225.577699][T12743]  ? __lock_acquire+0xbc3/0x56d0
[ 3225.582677][T12743]  ? __cleanup_sighand+0xb0/0xb0
[ 3225.587648][T12743]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3225.593663][T12743]  ? psi_memstall_leave+0x174/0x250
[ 3225.598911][T12743]  kernel_clone+0xeb/0x990
[ 3225.603364][T12743]  ? create_io_thread+0xf0/0xf0
[ 3225.608255][T12743]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
10:33:06 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x24)

[ 3225.614547][T12743]  ? lock_downgrade+0x6e0/0x6e0
[ 3225.619447][T12743]  __do_sys_clone+0xba/0x100
[ 3225.624073][T12743]  ? kernel_clone+0x990/0x990
[ 3225.628798][T12743]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3225.634728][T12743]  do_syscall_64+0x39/0xb0
[ 3225.639189][T12743]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3225.645121][T12743] RIP: 0033:0x7f36ee08d4f1
[ 3225.649563][T12743] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3225.669197][T12743] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3225.677700][T12743] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3225.685698][T12743] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3225.693699][T12743] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3225.701707][T12743] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3225.709699][T12743] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3225.717724][T12743]  </TASK>
[ 3225.747853][T12743] memory: usage 307200kB, limit 307200kB, failcnt 32539
[ 3225.755794][T12743] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3225.763597][T12743] Memory cgroup stats for /syz5:
[ 3225.763774][T12743] anon 86016
[ 3225.763774][T12743] file 425984
[ 3225.763774][T12743] kernel 314060800
[ 3225.763774][T12743] kernel_stack 32768
[ 3225.763774][T12743] pagetables 77824
[ 3225.763774][T12743] sec_pagetables 0
[ 3225.763774][T12743] percpu 5430016
[ 3225.763774][T12743] sock 0
[ 3225.763774][T12743] vmalloc 8192
[ 3225.763774][T12743] shmem 425984
[ 3225.763774][T12743] zswap 0
[ 3225.763774][T12743] zswapped 0
[ 3225.763774][T12743] file_mapped 393216
[ 3225.763774][T12743] file_dirty 0
[ 3225.763774][T12743] file_writeback 0
[ 3225.763774][T12743] swapcached 0
[ 3225.763774][T12743] anon_thp 0
[ 3225.763774][T12743] file_thp 0
[ 3225.763774][T12743] shmem_thp 0
[ 3225.763774][T12743] inactive_anon 212992
[ 3225.763774][T12743] active_anon 299008
[ 3225.763774][T12743] inactive_file 0
[ 3225.763774][T12743] active_file 0
[ 3225.763774][T12743] unevictable 0
[ 3225.763774][T12743] slab_reclaimable 216400
[ 3225.763774][T12743] slab_unreclaimable 308229192
[ 3225.861750][T12743] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12743,uid=0
[ 3225.878837][T12743] Memory cgroup out of memory: Killed process 12743 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3225.896658][T12753] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3225.921126][T12753] CPU: 1 PID: 12753 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3225.929851][T12753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3225.939930][T12753] Call Trace:
[ 3225.943226][T12753]  <TASK>
[ 3225.946177][T12753]  dump_stack_lvl+0xd1/0x138
[ 3225.950803][T12753]  dump_header+0x10b/0x85f
[ 3225.955270][T12753]  oom_kill_process.cold+0x10/0x15
[ 3225.960426][T12753]  out_of_memory+0x35c/0x14a0
[ 3225.965158][T12753]  ? oom_killer_disable+0x280/0x280
[ 3225.970416][T12753]  ? find_held_lock+0x2d/0x110
[ 3225.975232][T12753]  mem_cgroup_out_of_memory+0x206/0x270
[ 3225.980828][T12753]  ? mem_cgroup_margin+0x130/0x130
[ 3225.985981][T12753]  ? lock_downgrade+0x6e0/0x6e0
[ 3225.990895][T12753]  try_charge_memcg+0xefb/0x12f0
10:33:06 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xff0f)

10:33:06 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xc4b255000000000}}], 0x2, 0x0)

10:33:06 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0xffffffff00000000, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:06 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000000000000f000000000500010006"], 0x1c}}, 0x0)

[ 3225.995874][T12753]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3226.001904][T12753]  ? lock_downgrade+0x6e0/0x6e0
[ 3226.006802][T12753]  charge_memcg+0x90/0x3b0
[ 3226.011253][T12753]  __mem_cgroup_charge+0x2b/0x90
[ 3226.016224][T12753]  do_wp_page+0x7ec/0x3370
[ 3226.020682][T12753]  ? lock_release+0x810/0x810
[ 3226.025393][T12753]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3226.030808][T12753]  ? do_raw_spin_lock+0x124/0x2b0
[ 3226.035869][T12753]  ? rwlock_bug.part.0+0x90/0x90
[ 3226.040837][T12753]  ? lock_chain_count+0x20/0x20
[ 3226.045726][T12753]  __handle_mm_fault+0x1f58/0x3c90
[ 3226.050889][T12753]  ? vm_iomap_memory+0x190/0x190
[ 3226.055897][T12753]  handle_mm_fault+0x1b6/0x850
[ 3226.060710][T12753]  do_user_addr_fault+0x475/0x1210
[ 3226.065861][T12753]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3226.071453][T12753]  exc_page_fault+0x98/0x170
[ 3226.076083][T12753]  asm_exc_page_fault+0x26/0x30
[ 3226.080976][T12753] RIP: 0033:0x7fbb9f039570
[ 3226.085444][T12753] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3226.105086][T12753] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3226.111192][T12753] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3226.119190][T12753] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3226.127189][T12753] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3226.135188][T12753] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
10:33:06 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xd23d81500000000}}], 0x2, 0x0)

[ 3226.143197][T12753] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3226.151196][T12753]  ? __sys_socket+0x7c/0x250
[ 3226.155849][T12753]  </TASK>
[ 3226.173522][T12753] memory: usage 307200kB, limit 307200kB, failcnt 156642
[ 3226.183158][T12753] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3226.190832][T12753] Memory cgroup stats for /syz4:
[ 3226.191053][T12753] anon 102400
[ 3226.191053][T12753] file 438272
[ 3226.191053][T12753] kernel 314028032
[ 3226.191053][T12753] kernel_stack 65536
[ 3226.191053][T12753] pagetables 73728
[ 3226.191053][T12753] sec_pagetables 0
[ 3226.191053][T12753] percpu 5617088
[ 3226.191053][T12753] sock 4096
[ 3226.191053][T12753] vmalloc 0
[ 3226.191053][T12753] shmem 438272
[ 3226.191053][T12753] zswap 0
[ 3226.191053][T12753] zswapped 0
[ 3226.191053][T12753] file_mapped 393216
[ 3226.191053][T12753] file_dirty 0
[ 3226.191053][T12753] file_writeback 0
[ 3226.191053][T12753] swapcached 0
[ 3226.191053][T12753] anon_thp 0
[ 3226.191053][T12753] file_thp 0
[ 3226.191053][T12753] shmem_thp 0
[ 3226.191053][T12753] inactive_anon 114688
[ 3226.191053][T12753] active_anon 425984
[ 3226.191053][T12753] inactive_file 0
[ 3226.191053][T12753] active_file 0
[ 3226.191053][T12753] unevictable 0
[ 3226.191053][T12753] slab_reclaimable 23024
[ 3226.191053][T12753] slab_unreclaimable 308214616
[ 3226.293923][T12753] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12753,uid=0
[ 3226.328599][T12753] Memory cgroup out of memory: Killed process 12753 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3226.346495][T12757] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=2, oom_score_adj=1000
[ 3226.366243][T12757] CPU: 1 PID: 12757 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3226.374973][T12757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3226.385056][T12757] Call Trace:
[ 3226.388355][T12757]  <TASK>
[ 3226.391313][T12757]  dump_stack_lvl+0xd1/0x138
[ 3226.395950][T12757]  dump_header+0x10b/0x85f
[ 3226.400420][T12757]  oom_kill_process.cold+0x10/0x15
[ 3226.405579][T12757]  out_of_memory+0x35c/0x14a0
[ 3226.410326][T12757]  ? oom_killer_disable+0x280/0x280
[ 3226.415581][T12757]  ? find_held_lock+0x2d/0x110
[ 3226.420397][T12757]  mem_cgroup_out_of_memory+0x206/0x270
[ 3226.425993][T12757]  ? mem_cgroup_margin+0x130/0x130
[ 3226.431150][T12757]  ? lock_downgrade+0x6e0/0x6e0
[ 3226.436050][T12757]  try_charge_memcg+0xefb/0x12f0
[ 3226.441029][T12757]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3226.447054][T12757]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3226.452820][T12757]  ? lock_downgrade+0x6e0/0x6e0
[ 3226.457725][T12757]  obj_cgroup_charge+0x2af/0x5e0
[ 3226.462699][T12757]  __kmem_cache_alloc_node+0xb2/0x430
[ 3226.468113][T12757]  ? __devinet_sysctl_register+0x98/0x280
[ 3226.473860][T12757]  ? __devinet_sysctl_register+0x98/0x280
[ 3226.479588][T12757]  __kmalloc_node_track_caller+0x4b/0xc0
[ 3226.485280][T12757]  kmemdup+0x2c/0x60
[ 3226.489219][T12757]  __devinet_sysctl_register+0x98/0x280
[ 3226.494806][T12757]  ? inet_netconf_notify_devconf+0x260/0x260
[ 3226.500817][T12757]  ? br_set_state+0x587/0x610
[ 3226.505531][T12757]  ? __rtnl_newlink+0x10c2/0x1840
[ 3226.510598][T12757]  ? rtnl_newlink+0x68/0xa0
[ 3226.515145][T12757]  ? rtnetlink_rcv_msg+0x43e/0xca0
[ 3226.520294][T12757]  ? netlink_rcv_skb+0x165/0x440
[ 3226.525271][T12757]  ? netlink_unicast+0x547/0x7f0
[ 3226.530266][T12757]  ? netlink_sendmsg+0x91b/0xe10
[ 3226.535239][T12757]  ? sock_sendmsg+0xd3/0x120
[ 3226.539863][T12757]  ? ____sys_sendmsg+0x712/0x8c0
[ 3226.544850][T12757]  ? ___sys_sendmsg+0x110/0x1b0
[ 3226.549746][T12757]  devinet_sysctl_register+0x160/0x230
[ 3226.555245][T12757]  inetdev_init+0x286/0x580
[ 3226.559783][T12757]  inetdev_event+0xe20/0x16c0
[ 3226.564495][T12757]  ? del_default_gids+0xe0/0xe0
[ 3226.569385][T12757]  ? is_ndev_for_default_gid_filter.part.0+0x2e0/0x2e0
[ 3226.576282][T12757]  ? devinet_init_net+0x650/0x650
[ 3226.581339][T12757]  ? skb_dequeue+0x129/0x180
[ 3226.585966][T12757]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3226.591912][T12757]  notifier_call_chain+0xb5/0x200
[ 3226.596988][T12757]  call_netdevice_notifiers_info+0xb5/0x130
[ 3226.602930][T12757]  register_netdevice+0xfb4/0x1640
[ 3226.608091][T12757]  ? unregister_netdevice_queue+0x3c0/0x3c0
[ 3226.614022][T12757]  br_dev_newlink+0x27/0x110
[ 3226.618635][T12757]  ? br_changelink+0x1620/0x1620
[ 3226.623608][T12757]  __rtnl_newlink+0x10c2/0x1840
[ 3226.628494][T12757]  ? rtnl_link_unregister+0x250/0x250
[ 3226.633952][T12757]  rtnl_newlink+0x68/0xa0
[ 3226.638319][T12757]  ? __rtnl_newlink+0x1840/0x1840
[ 3226.643381][T12757]  rtnetlink_rcv_msg+0x43e/0xca0
[ 3226.648360][T12757]  ? rtnl_getlink+0xae0/0xae0
[ 3226.653062][T12757]  ? __dev_queue_xmit+0xb54/0x3ba0
[ 3226.658208][T12757]  netlink_rcv_skb+0x165/0x440
[ 3226.663015][T12757]  ? rtnl_getlink+0xae0/0xae0
[ 3226.667819][T12757]  ? netlink_ack+0x1370/0x1370
[ 3226.672654][T12757]  ? netlink_deliver_tap+0x1b1/0xc50
[ 3226.677997][T12757]  netlink_unicast+0x547/0x7f0
[ 3226.682812][T12757]  ? netlink_attachskb+0x890/0x890
[ 3226.687965][T12757]  ? __virt_addr_valid+0x61/0x2e0
[ 3226.693036][T12757]  ? __phys_addr_symbol+0x30/0x70
[ 3226.698101][T12757]  ? __check_object_size+0x2e2/0x5a0
[ 3226.703431][T12757]  netlink_sendmsg+0x91b/0xe10
[ 3226.708248][T12757]  ? netlink_unicast+0x7f0/0x7f0
[ 3226.713259][T12757]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3226.718567][T12757]  ? netlink_unicast+0x7f0/0x7f0
[ 3226.723542][T12757]  sock_sendmsg+0xd3/0x120
[ 3226.727982][T12757]  ____sys_sendmsg+0x712/0x8c0
[ 3226.732788][T12757]  ? copy_msghdr_from_user+0xfc/0x150
[ 3226.738207][T12757]  ? kernel_sendmsg+0x50/0x50
[ 3226.742931][T12757]  ? futex_unqueue+0xb7/0x120
[ 3226.747657][T12757]  ___sys_sendmsg+0x110/0x1b0
[ 3226.752383][T12757]  ? do_recvmmsg+0x6e0/0x6e0
[ 3226.757021][T12757]  ? __fget_files+0x248/0x440
[ 3226.761734][T12757]  ? lock_downgrade+0x6e0/0x6e0
[ 3226.766639][T12757]  ? __fget_files+0x26a/0x440
[ 3226.771358][T12757]  ? __fget_light+0xe5/0x270
[ 3226.776078][T12757]  __sys_sendmsg+0xf7/0x1c0
[ 3226.780628][T12757]  ? __sys_sendmsg_sock+0x40/0x40
[ 3226.785696][T12757]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3226.791651][T12757]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3226.797589][T12757]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3226.802823][T12757]  do_syscall_64+0x39/0xb0
[ 3226.807283][T12757]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3226.813208][T12757] RIP: 0033:0x7fde80a8c0c9
[ 3226.817655][T12757] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3226.837297][T12757] RSP: 002b:00007fde818ce168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
10:33:07 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x14)

10:33:07 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0x2, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:07 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000005114000000000500010006"], 0x1c}}, 0x0)

10:33:07 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xe00000000000000}}], 0x2, 0x0)

[ 3226.845745][T12757] RAX: ffffffffffffffda RBX: 00007fde80babf80 RCX: 00007fde80a8c0c9
[ 3226.853744][T12757] RDX: 0000000000000024 RSI: 00000000200000c0 RDI: 0000000000000003
[ 3226.861736][T12757] RBP: 00007fde80ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3226.869723][T12757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3226.877716][T12757] R13: 00007ffd6245db6f R14: 00007fde818ce300 R15: 0000000000022000
[ 3226.885738][T12757]  </TASK>
10:33:07 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0x3, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:07 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000000000001f000000000500010006"], 0x1c}}, 0x0)

[ 3226.927782][T12757] memory: usage 307164kB, limit 307200kB, failcnt 39375
[ 3226.952472][T12757] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3226.979314][T12757] Memory cgroup stats for /syz2:
[ 3226.979505][T12757] anon 135168
[ 3226.979505][T12757] file 307200
[ 3226.979505][T12757] kernel 314093568
[ 3226.979505][T12757] kernel_stack 32768
[ 3226.979505][T12757] pagetables 86016
[ 3226.979505][T12757] sec_pagetables 0
[ 3226.979505][T12757] percpu 5433440
[ 3226.979505][T12757] sock 0
[ 3226.979505][T12757] vmalloc 24576
[ 3226.979505][T12757] shmem 307200
[ 3226.979505][T12757] zswap 0
[ 3226.979505][T12757] zswapped 0
[ 3226.979505][T12757] file_mapped 299008
[ 3226.979505][T12757] file_dirty 0
[ 3226.979505][T12757] file_writeback 0
[ 3226.979505][T12757] swapcached 0
[ 3226.979505][T12757] anon_thp 0
[ 3226.979505][T12757] file_thp 0
[ 3226.979505][T12757] shmem_thp 0
[ 3226.979505][T12757] inactive_anon 143360
[ 3226.979505][T12757] active_anon 299008
[ 3226.979505][T12757] inactive_file 0
[ 3226.979505][T12757] active_file 0
[ 3226.979505][T12757] unevictable 0
[ 3226.979505][T12757] slab_reclaimable 112984
[ 3226.979505][T12757] slab_unreclaimable 308378192
[ 3227.087889][T12757] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12755,uid=0
[ 3227.104847][T12757] Memory cgroup out of memory: Killed process 12757 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3227.160969][T12773] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3227.185924][T12773] CPU: 1 PID: 12773 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3227.194655][T12773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3227.204725][T12773] Call Trace:
[ 3227.208016][T12773]  <TASK>
[ 3227.210954][T12773]  dump_stack_lvl+0xd1/0x138
[ 3227.215572][T12773]  dump_header+0x10b/0x85f
[ 3227.220018][T12773]  oom_kill_process.cold+0x10/0x15
[ 3227.225154][T12773]  out_of_memory+0x35c/0x14a0
[ 3227.229863][T12773]  ? find_held_lock+0x2d/0x110
[ 3227.234646][T12773]  ? oom_killer_disable+0x280/0x280
[ 3227.239866][T12773]  ? find_held_lock+0x2d/0x110
[ 3227.244650][T12773]  mem_cgroup_out_of_memory+0x206/0x270
[ 3227.250217][T12773]  ? mem_cgroup_margin+0x130/0x130
[ 3227.255347][T12773]  ? lock_downgrade+0x6e0/0x6e0
[ 3227.260222][T12773]  try_charge_memcg+0xefb/0x12f0
[ 3227.265177][T12773]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3227.271175][T12773]  ? lock_downgrade+0x6e0/0x6e0
[ 3227.276111][T12773]  charge_memcg+0x90/0x3b0
[ 3227.280543][T12773]  __mem_cgroup_charge+0x2b/0x90
[ 3227.285510][T12773]  do_wp_page+0x7ec/0x3370
[ 3227.289953][T12773]  ? lock_release+0x810/0x810
[ 3227.294636][T12773]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3227.300042][T12773]  ? do_raw_spin_lock+0x124/0x2b0
[ 3227.305084][T12773]  ? rwlock_bug.part.0+0x90/0x90
[ 3227.310033][T12773]  ? lock_chain_count+0x20/0x20
[ 3227.314900][T12773]  __handle_mm_fault+0x1f58/0x3c90
[ 3227.320047][T12773]  ? vm_iomap_memory+0x190/0x190
[ 3227.325209][T12773]  handle_mm_fault+0x1b6/0x850
[ 3227.330014][T12773]  do_user_addr_fault+0x475/0x1210
[ 3227.335152][T12773]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3227.340737][T12773]  exc_page_fault+0x98/0x170
[ 3227.345343][T12773]  asm_exc_page_fault+0x26/0x30
[ 3227.350213][T12773] RIP: 0033:0x7fbb9f039570
[ 3227.354638][T12773] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3227.374258][T12773] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3227.380689][T12773] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3227.388664][T12773] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3227.396638][T12773] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3227.404699][T12773] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3227.412678][T12773] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3227.420655][T12773]  ? __sys_socket+0x7c/0x250
[ 3227.425303][T12773]  </TASK>
[ 3227.432325][  T541] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3227.442681][T12773] memory: usage 307200kB, limit 307200kB, failcnt 156761
[ 3227.450612][T12773] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3227.459143][T12773] Memory cgroup stats for /syz4:
[ 3227.459322][T12773] anon 102400
[ 3227.459322][T12773] file 438272
[ 3227.459322][T12773] kernel 314028032
[ 3227.459322][T12773] kernel_stack 65536
[ 3227.459322][T12773] pagetables 73728
[ 3227.459322][T12773] sec_pagetables 0
[ 3227.459322][T12773] percpu 5617088
[ 3227.459322][T12773] sock 4096
[ 3227.459322][T12773] vmalloc 0
[ 3227.459322][T12773] shmem 438272
[ 3227.459322][T12773] zswap 0
[ 3227.459322][T12773] zswapped 0
[ 3227.459322][T12773] file_mapped 393216
[ 3227.459322][T12773] file_dirty 0
[ 3227.459322][T12773] file_writeback 0
[ 3227.459322][T12773] swapcached 0
[ 3227.459322][T12773] anon_thp 0
[ 3227.459322][T12773] file_thp 0
[ 3227.459322][T12773] shmem_thp 0
[ 3227.459322][T12773] inactive_anon 98304
[ 3227.459322][T12773] active_anon 425984
[ 3227.459322][T12773] inactive_file 0
[ 3227.459322][T12773] active_file 0
[ 3227.459322][T12773] unevictable 0
[ 3227.459322][T12773] slab_reclaimable 23024
[ 3227.459322][T12773] slab_unreclaimable 308212560
10:33:08 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x3c)

[ 3227.557276][T12773] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12773,uid=0
[ 3227.573222][T12773] Memory cgroup out of memory: Killed process 12773 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3227.590943][T12780] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3227.614431][T12780] CPU: 0 PID: 12780 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3227.623162][T12780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3227.633251][T12780] Call Trace:
[ 3227.636561][T12780]  <TASK>
[ 3227.639522][T12780]  dump_stack_lvl+0xd1/0x138
[ 3227.644161][T12780]  dump_header+0x10b/0x85f
[ 3227.648631][T12780]  oom_kill_process.cold+0x10/0x15
[ 3227.653799][T12780]  out_of_memory+0x35c/0x14a0
[ 3227.658535][T12780]  ? oom_killer_disable+0x280/0x280
[ 3227.663789][T12780]  ? find_held_lock+0x2d/0x110
[ 3227.668605][T12780]  mem_cgroup_out_of_memory+0x206/0x270
[ 3227.674198][T12780]  ? mem_cgroup_margin+0x130/0x130
[ 3227.679420][T12780]  ? lock_downgrade+0x6e0/0x6e0
[ 3227.684318][T12780]  try_charge_memcg+0xefb/0x12f0
[ 3227.689305][T12780]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3227.695327][T12780]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3227.701085][T12780]  ? lock_downgrade+0x6e0/0x6e0
[ 3227.705938][T12780]  ? lock_downgrade+0x6e0/0x6e0
[ 3227.710793][T12780]  obj_cgroup_charge+0x2af/0x5e0
[ 3227.715750][T12780]  kmem_cache_alloc_lru+0x145/0x760
[ 3227.720951][T12780]  ? sock_alloc_inode+0x27/0x1d0
[ 3227.725922][T12780]  sock_alloc_inode+0x27/0x1d0
[ 3227.730723][T12780]  ? sock_free_inode+0x30/0x30
[ 3227.735520][T12780]  alloc_inode+0x61/0x230
[ 3227.739895][T12780]  new_inode_pseudo+0x17/0x80
[ 3227.744606][T12780]  sock_alloc+0x40/0x260
[ 3227.748851][T12780]  __sock_create+0xbd/0x790
[ 3227.753361][T12780]  __sys_socket+0x133/0x250
[ 3227.757868][T12780]  ? __sys_socket_file+0x1f0/0x1f0
[ 3227.762996][T12780]  __x64_sys_socket+0x73/0xb0
[ 3227.767682][T12780]  do_syscall_64+0x39/0xb0
[ 3227.772372][T12780]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3227.778279][T12780] RIP: 0033:0x7f36ee08c0c9
[ 3227.782724][T12780] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3227.802358][T12780] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3227.810769][T12780] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3227.818752][T12780] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3227.826751][T12780] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3227.834750][T12780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3227.842744][T12780] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3227.850766][T12780]  </TASK>
[ 3227.857774][T12780] memory: usage 307200kB, limit 307200kB, failcnt 32699
[ 3227.866343][T12780] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3227.873297][T12780] Memory cgroup stats for /syz5:
[ 3227.873511][T12780] anon 94208
[ 3227.873511][T12780] file 425984
[ 3227.873511][T12780] kernel 314052608
[ 3227.873511][T12780] kernel_stack 65536
[ 3227.873511][T12780] pagetables 77824
[ 3227.873511][T12780] sec_pagetables 0
[ 3227.873511][T12780] percpu 5429952
[ 3227.873511][T12780] sock 0
[ 3227.873511][T12780] vmalloc 8192
[ 3227.873511][T12780] shmem 425984
[ 3227.873511][T12780] zswap 0
[ 3227.873511][T12780] zswapped 0
[ 3227.873511][T12780] file_mapped 393216
[ 3227.873511][T12780] file_dirty 0
[ 3227.873511][T12780] file_writeback 0
[ 3227.873511][T12780] swapcached 0
[ 3227.873511][T12780] anon_thp 0
[ 3227.873511][T12780] file_thp 0
[ 3227.873511][T12780] shmem_thp 0
[ 3227.873511][T12780] inactive_anon 221184
[ 3227.873511][T12780] active_anon 299008
[ 3227.873511][T12780] inactive_file 0
[ 3227.873511][T12780] active_file 0
[ 3227.873511][T12780] unevictable 0
[ 3227.873511][T12780] slab_reclaimable 216400
[ 3227.873511][T12780] slab_unreclaimable 308217872
10:33:08 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xff7f)

10:33:08 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xe43ffff00000000}}], 0x2, 0x0)

10:33:08 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0x4, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:08 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000060000000000500010006"], 0x1c}}, 0x0)

10:33:08 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x14)

[ 3227.971440][T12780] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12779,uid=0
[ 3227.987181][T12780] Memory cgroup out of memory: Killed process 12779 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:08 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0x5, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:08 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000000ffffff9e000000000500010006"], 0x1c}}, 0x0)

[ 3228.038105][T12781] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3228.073480][T12781] CPU: 1 PID: 12781 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3228.082215][T12781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3228.092303][T12781] Call Trace:
[ 3228.095610][T12781]  <TASK>
[ 3228.098568][T12781]  dump_stack_lvl+0xd1/0x138
[ 3228.103200][T12781]  dump_header+0x10b/0x85f
[ 3228.107667][T12781]  oom_kill_process.cold+0x10/0x15
[ 3228.112835][T12781]  out_of_memory+0x35c/0x14a0
[ 3228.117556][T12781]  ? find_held_lock+0x2d/0x110
[ 3228.122342][T12781]  ? oom_killer_disable+0x280/0x280
[ 3228.127570][T12781]  ? find_held_lock+0x2d/0x110
[ 3228.132359][T12781]  mem_cgroup_out_of_memory+0x206/0x270
[ 3228.137931][T12781]  ? mem_cgroup_margin+0x130/0x130
[ 3228.143061][T12781]  ? lock_downgrade+0x6e0/0x6e0
[ 3228.147936][T12781]  try_charge_memcg+0xefb/0x12f0
[ 3228.152893][T12781]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3228.158904][T12781]  ? lock_downgrade+0x6e0/0x6e0
[ 3228.163785][T12781]  charge_memcg+0x90/0x3b0
[ 3228.168251][T12781]  __mem_cgroup_charge+0x2b/0x90
[ 3228.173201][T12781]  ? _compound_head+0x5d/0x150
[ 3228.177986][T12781]  __handle_mm_fault+0x187d/0x3c90
[ 3228.183124][T12781]  ? vm_iomap_memory+0x190/0x190
[ 3228.188111][T12781]  handle_mm_fault+0x1b6/0x850
[ 3228.192909][T12781]  do_user_addr_fault+0x475/0x1210
[ 3228.198044][T12781]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3228.203631][T12781]  exc_page_fault+0x98/0x170
[ 3228.208242][T12781]  asm_exc_page_fault+0x26/0x30
[ 3228.213111][T12781] RIP: 0033:0x7fde80a2bd49
[ 3228.217538][T12781] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
10:33:09 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x1000000000000000}}], 0x2, 0x0)

[ 3228.237251][T12781] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3228.243330][T12781] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3228.251309][T12781] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3228.259283][T12781] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3228.267262][T12781] R10: 00007fde80600068 R11: 0000000000000246 R12: 0000000000314149
[ 3228.275327][T12781] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3228.283338][T12781]  </TASK>
10:33:09 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0x6, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:09 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000ec0000000000500010006"], 0x1c}}, 0x0)

10:33:09 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x1027000000000000}}], 0x2, 0x0)

[ 3228.462547][T12781] memory: usage 307192kB, limit 307200kB, failcnt 39539
[ 3228.483380][T12781] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3228.499627][T12781] Memory cgroup stats for /syz2:
[ 3228.499851][T12781] anon 131072
[ 3228.499851][T12781] file 307200
[ 3228.499851][T12781] kernel 314126336
[ 3228.499851][T12781] kernel_stack 65536
[ 3228.499851][T12781] pagetables 86016
[ 3228.499851][T12781] sec_pagetables 0
[ 3228.499851][T12781] percpu 5433504
[ 3228.499851][T12781] sock 0
[ 3228.499851][T12781] vmalloc 16384
[ 3228.499851][T12781] shmem 307200
[ 3228.499851][T12781] zswap 0
[ 3228.499851][T12781] zswapped 0
[ 3228.499851][T12781] file_mapped 299008
[ 3228.499851][T12781] file_dirty 0
[ 3228.499851][T12781] file_writeback 0
[ 3228.499851][T12781] swapcached 0
[ 3228.499851][T12781] anon_thp 0
[ 3228.499851][T12781] file_thp 0
[ 3228.499851][T12781] shmem_thp 0
[ 3228.499851][T12781] inactive_anon 139264
[ 3228.499851][T12781] active_anon 299008
[ 3228.499851][T12781] inactive_file 0
[ 3228.499851][T12781] active_file 0
[ 3228.499851][T12781] unevictable 0
[ 3228.499851][T12781] slab_reclaimable 112984
[ 3228.499851][T12781] slab_unreclaimable 308382520
10:33:09 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x48)

[ 3228.598250][T12781] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12781,uid=0
[ 3228.615550][T12781] Memory cgroup out of memory: Killed process 12781 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3228.634395][T12798] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3228.654559][T12798] CPU: 1 PID: 12798 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3228.663289][T12798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3228.673374][T12798] Call Trace:
[ 3228.676679][T12798]  <TASK>
[ 3228.679631][T12798]  dump_stack_lvl+0xd1/0x138
[ 3228.684261][T12798]  dump_header+0x10b/0x85f
[ 3228.688721][T12798]  oom_kill_process.cold+0x10/0x15
[ 3228.693886][T12798]  out_of_memory+0x35c/0x14a0
[ 3228.698621][T12798]  ? oom_killer_disable+0x280/0x280
[ 3228.703870][T12798]  ? find_held_lock+0x2d/0x110
[ 3228.708692][T12798]  mem_cgroup_out_of_memory+0x206/0x270
[ 3228.714286][T12798]  ? mem_cgroup_margin+0x130/0x130
[ 3228.719432][T12798]  ? lock_downgrade+0x6e0/0x6e0
[ 3228.724317][T12798]  try_charge_memcg+0xefb/0x12f0
[ 3228.729285][T12798]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3228.735289][T12798]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3228.741036][T12798]  ? lock_downgrade+0x6e0/0x6e0
[ 3228.745905][T12798]  ? lock_downgrade+0x6e0/0x6e0
[ 3228.750784][T12798]  obj_cgroup_charge+0x2af/0x5e0
[ 3228.755758][T12798]  kmem_cache_alloc_lru+0x145/0x760
[ 3228.760965][T12798]  ? sock_alloc_inode+0x27/0x1d0
[ 3228.765924][T12798]  sock_alloc_inode+0x27/0x1d0
[ 3228.770962][T12798]  ? sock_free_inode+0x30/0x30
[ 3228.775740][T12798]  alloc_inode+0x61/0x230
[ 3228.780176][T12798]  new_inode_pseudo+0x17/0x80
[ 3228.784876][T12798]  sock_alloc+0x40/0x260
[ 3228.789138][T12798]  __sock_create+0xbd/0x790
[ 3228.793665][T12798]  __sys_socket+0x133/0x250
[ 3228.798182][T12798]  ? __sys_socket_file+0x1f0/0x1f0
[ 3228.803340][T12798]  __x64_sys_socket+0x73/0xb0
[ 3228.808036][T12798]  do_syscall_64+0x39/0xb0
[ 3228.812471][T12798]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3228.818384][T12798] RIP: 0033:0x7f36ee08c0c9
[ 3228.822814][T12798] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3228.842432][T12798] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3228.850856][T12798] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3228.858838][T12798] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3228.866819][T12798] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3228.874793][T12798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3228.882765][T12798] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3228.890759][T12798]  </TASK>
[ 3228.897184][T12798] memory: usage 307200kB, limit 307200kB, failcnt 32839
[ 3228.904205][T12798] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3228.911762][T12798] Memory cgroup stats for /syz5:
[ 3228.911978][T12798] anon 94208
[ 3228.911978][T12798] file 425984
[ 3228.911978][T12798] kernel 314052608
[ 3228.911978][T12798] kernel_stack 65536
[ 3228.911978][T12798] pagetables 77824
[ 3228.911978][T12798] sec_pagetables 0
[ 3228.911978][T12798] percpu 5429952
[ 3228.911978][T12798] sock 0
[ 3228.911978][T12798] vmalloc 8192
[ 3228.911978][T12798] shmem 425984
[ 3228.911978][T12798] zswap 0
[ 3228.911978][T12798] zswapped 0
[ 3228.911978][T12798] file_mapped 393216
[ 3228.911978][T12798] file_dirty 0
[ 3228.911978][T12798] file_writeback 0
[ 3228.911978][T12798] swapcached 0
[ 3228.911978][T12798] anon_thp 0
[ 3228.911978][T12798] file_thp 0
[ 3228.911978][T12798] shmem_thp 0
[ 3228.911978][T12798] inactive_anon 221184
[ 3228.911978][T12798] active_anon 299008
[ 3228.911978][T12798] inactive_file 0
[ 3228.911978][T12798] active_file 0
[ 3228.911978][T12798] unevictable 0
[ 3228.911978][T12798] slab_reclaimable 216400
[ 3228.911978][T12798] slab_unreclaimable 308217872
[ 3229.011801][T12798] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12793,uid=0
[ 3229.031534][T12798] Memory cgroup out of memory: Killed process 12793 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3229.052857][T12783] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3229.063434][T12798] socket: no more sockets
[ 3229.074577][T12783] CPU: 1 PID: 12783 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3229.083308][T12783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3229.093393][T12783] Call Trace:
[ 3229.096702][T12783]  <TASK>
[ 3229.099652][T12783]  dump_stack_lvl+0xd1/0x138
[ 3229.104283][T12783]  dump_header+0x10b/0x85f
[ 3229.108742][T12783]  oom_kill_process.cold+0x10/0x15
[ 3229.113911][T12783]  out_of_memory+0x35c/0x14a0
[ 3229.118649][T12783]  ? oom_killer_disable+0x280/0x280
[ 3229.123898][T12783]  ? find_held_lock+0x2d/0x110
[ 3229.128717][T12783]  mem_cgroup_out_of_memory+0x206/0x270
[ 3229.134309][T12783]  ? mem_cgroup_margin+0x130/0x130
[ 3229.139458][T12783]  ? lock_downgrade+0x6e0/0x6e0
[ 3229.144354][T12783]  try_charge_memcg+0xefb/0x12f0
[ 3229.149330][T12783]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3229.155356][T12783]  ? lock_downgrade+0x6e0/0x6e0
[ 3229.160254][T12783]  charge_memcg+0x90/0x3b0
10:33:10 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xfffe)

10:33:10 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0x7, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:10 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x1100000000000000}}], 0x2, 0x0)

10:33:10 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000000000003e8000000000500010006"], 0x1c}}, 0x0)

[ 3229.164708][T12783]  __mem_cgroup_charge+0x2b/0x90
[ 3229.169694][T12783]  do_wp_page+0x7ec/0x3370
[ 3229.174167][T12783]  ? lock_release+0x810/0x810
[ 3229.178888][T12783]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3229.184300][T12783]  ? do_raw_spin_lock+0x124/0x2b0
[ 3229.189351][T12783]  ? rwlock_bug.part.0+0x90/0x90
[ 3229.194316][T12783]  ? lock_chain_count+0x20/0x20
[ 3229.199204][T12783]  __handle_mm_fault+0x1f58/0x3c90
[ 3229.204365][T12783]  ? vm_iomap_memory+0x190/0x190
[ 3229.209371][T12783]  handle_mm_fault+0x1b6/0x850
[ 3229.214187][T12783]  do_user_addr_fault+0x475/0x1210
[ 3229.219338][T12783]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3229.224930][T12783]  exc_page_fault+0x98/0x170
[ 3229.229556][T12783]  asm_exc_page_fault+0x26/0x30
[ 3229.234438][T12783] RIP: 0033:0x7fbb9f039570
[ 3229.238883][T12783] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3229.258522][T12783] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3229.264625][T12783] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3229.272626][T12783] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3229.280623][T12783] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3229.288620][T12783] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3229.296613][T12783] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3229.304606][T12783]  ? security_socket_create+0x3f/0xc0
[ 3229.310055][T12783]  </TASK>
[ 3229.353910][T12783] memory: usage 307200kB, limit 307200kB, failcnt 156877
[ 3229.362370][T12783] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3229.374695][T12783] Memory cgroup stats for /syz4:
[ 3229.374913][T12783] anon 118784
[ 3229.374913][T12783] file 438272
[ 3229.374913][T12783] kernel 314011648
[ 3229.374913][T12783] kernel_stack 65536
[ 3229.374913][T12783] pagetables 73728
[ 3229.374913][T12783] sec_pagetables 0
[ 3229.374913][T12783] percpu 5617024
[ 3229.374913][T12783] sock 4096
[ 3229.374913][T12783] vmalloc 0
[ 3229.374913][T12783] shmem 438272
[ 3229.374913][T12783] zswap 0
[ 3229.374913][T12783] zswapped 0
[ 3229.374913][T12783] file_mapped 393216
[ 3229.374913][T12783] file_dirty 0
[ 3229.374913][T12783] file_writeback 0
[ 3229.374913][T12783] swapcached 0
[ 3229.374913][T12783] anon_thp 0
[ 3229.374913][T12783] file_thp 0
[ 3229.374913][T12783] shmem_thp 0
[ 3229.374913][T12783] inactive_anon 131072
[ 3229.374913][T12783] active_anon 425984
[ 3229.374913][T12783] inactive_file 0
[ 3229.374913][T12783] active_file 0
[ 3229.374913][T12783] unevictable 0
[ 3229.374913][T12783] slab_reclaimable 23024
[ 3229.374913][T12783] slab_unreclaimable 308200776
[ 3229.472293][T12783] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12783,uid=0
[ 3229.488933][T12783] Memory cgroup out of memory: Killed process 12783 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3229.538230][T12807] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3229.551509][T12807] CPU: 0 PID: 12807 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3229.560229][T12807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3229.570301][T12807] Call Trace:
[ 3229.573575][T12807]  <TASK>
[ 3229.576499][T12807]  dump_stack_lvl+0xd1/0x138
[ 3229.581089][T12807]  dump_header+0x10b/0x85f
[ 3229.585509][T12807]  oom_kill_process.cold+0x10/0x15
[ 3229.590622][T12807]  out_of_memory+0x35c/0x14a0
[ 3229.595304][T12807]  ? find_held_lock+0x2d/0x110
[ 3229.600068][T12807]  ? oom_killer_disable+0x280/0x280
[ 3229.605285][T12807]  ? find_held_lock+0x2d/0x110
[ 3229.610094][T12807]  mem_cgroup_out_of_memory+0x206/0x270
[ 3229.615682][T12807]  ? mem_cgroup_margin+0x130/0x130
[ 3229.620828][T12807]  ? lock_downgrade+0x6e0/0x6e0
[ 3229.625700][T12807]  try_charge_memcg+0xefb/0x12f0
[ 3229.630640][T12807]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3229.636613][T12807]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3229.642330][T12807]  ? lock_downgrade+0x6e0/0x6e0
[ 3229.647174][T12807]  ? lock_downgrade+0x6e0/0x6e0
[ 3229.652027][T12807]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3229.657585][T12807]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3229.663780][T12807]  copy_process+0x4e3/0x7520
[ 3229.668403][T12807]  ? __lock_acquire+0xbc3/0x56d0
[ 3229.673380][T12807]  ? __cleanup_sighand+0xb0/0xb0
[ 3229.678332][T12807]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3229.684318][T12807]  ? psi_memstall_leave+0x174/0x250
[ 3229.689522][T12807]  kernel_clone+0xeb/0x990
[ 3229.693934][T12807]  ? create_io_thread+0xf0/0xf0
[ 3229.698782][T12807]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3229.705035][T12807]  ? lock_downgrade+0x6e0/0x6e0
[ 3229.709923][T12807]  __do_sys_clone+0xba/0x100
[ 3229.714538][T12807]  ? kernel_clone+0x990/0x990
[ 3229.719261][T12807]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3229.725195][T12807]  do_syscall_64+0x39/0xb0
[ 3229.729631][T12807]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3229.735518][T12807] RIP: 0033:0x7f36ee08d4f1
[ 3229.739927][T12807] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3229.759540][T12807] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3229.767982][T12807] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3229.775966][T12807] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
10:33:10 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x14)

10:33:10 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4a)

10:33:10 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000000fffffff0000000000500010006"], 0x1c}}, 0x0)

10:33:10 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x114f140d00000000}}], 0x2, 0x0)

10:33:10 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0x8, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3229.783927][T12807] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3229.791889][T12807] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3229.799849][T12807] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3229.807847][T12807]  </TASK>
[ 3229.848997][T12807] memory: usage 307200kB, limit 307200kB, failcnt 32949
[ 3229.866099][T12807] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3229.873862][T12807] Memory cgroup stats for /syz5:
[ 3229.874028][T12807] anon 86016
[ 3229.874028][T12807] file 425984
[ 3229.874028][T12807] kernel 314060800
[ 3229.874028][T12807] kernel_stack 32768
[ 3229.874028][T12807] pagetables 77824
[ 3229.874028][T12807] sec_pagetables 0
[ 3229.874028][T12807] percpu 5430016
[ 3229.874028][T12807] sock 0
[ 3229.874028][T12807] vmalloc 8192
[ 3229.874028][T12807] shmem 425984
[ 3229.874028][T12807] zswap 0
[ 3229.874028][T12807] zswapped 0
[ 3229.874028][T12807] file_mapped 393216
[ 3229.874028][T12807] file_dirty 0
[ 3229.874028][T12807] file_writeback 0
[ 3229.874028][T12807] swapcached 0
[ 3229.874028][T12807] anon_thp 0
[ 3229.874028][T12807] file_thp 0
[ 3229.874028][T12807] shmem_thp 0
[ 3229.874028][T12807] inactive_anon 212992
[ 3229.874028][T12807] active_anon 299008
10:33:10 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000007fffffff000000000500010006"], 0x1c}}, 0x0)

[ 3229.874028][T12807] inactive_file 0
[ 3229.874028][T12807] active_file 0
[ 3229.874028][T12807] unevictable 0
[ 3229.874028][T12807] slab_reclaimable 216400
[ 3229.874028][T12807] slab_unreclaimable 308229192
10:33:10 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0x9, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:10 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x1a6e177a00000000}}], 0x2, 0x0)

[ 3229.993893][T12807] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12807,uid=0
[ 3230.010191][T12807] Memory cgroup out of memory: Killed process 12807 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3230.043769][T12821] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3230.090692][T12821] CPU: 1 PID: 12821 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3230.099432][T12821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3230.109515][T12821] Call Trace:
[ 3230.112834][T12821]  <TASK>
[ 3230.115788][T12821]  dump_stack_lvl+0xd1/0x138
[ 3230.120421][T12821]  dump_header+0x10b/0x85f
[ 3230.124883][T12821]  oom_kill_process.cold+0x10/0x15
[ 3230.130045][T12821]  out_of_memory+0x35c/0x14a0
[ 3230.134777][T12821]  ? oom_killer_disable+0x280/0x280
10:33:10 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x3ffff)

10:33:10 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xb, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3230.140026][T12821]  ? find_held_lock+0x2d/0x110
[ 3230.144859][T12821]  mem_cgroup_out_of_memory+0x206/0x270
[ 3230.150441][T12821]  ? mem_cgroup_margin+0x130/0x130
[ 3230.155590][T12821]  ? lock_downgrade+0x6e0/0x6e0
[ 3230.160497][T12821]  try_charge_memcg+0xefb/0x12f0
[ 3230.165479][T12821]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3230.171504][T12821]  ? lock_downgrade+0x6e0/0x6e0
[ 3230.176410][T12821]  charge_memcg+0x90/0x3b0
[ 3230.180865][T12821]  __mem_cgroup_charge+0x2b/0x90
[ 3230.185836][T12821]  do_wp_page+0x7ec/0x3370
[ 3230.190290][T12821]  ? lock_release+0x810/0x810
[ 3230.194979][T12821]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3230.200369][T12821]  ? do_raw_spin_lock+0x124/0x2b0
[ 3230.205402][T12821]  ? rwlock_bug.part.0+0x90/0x90
[ 3230.210360][T12821]  ? lock_chain_count+0x20/0x20
[ 3230.215224][T12821]  __handle_mm_fault+0x1f58/0x3c90
[ 3230.220365][T12821]  ? vm_iomap_memory+0x190/0x190
[ 3230.225344][T12821]  handle_mm_fault+0x1b6/0x850
[ 3230.230133][T12821]  do_user_addr_fault+0x475/0x1210
[ 3230.235263][T12821]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3230.240843][T12821]  exc_page_fault+0x98/0x170
[ 3230.245450][T12821]  asm_exc_page_fault+0x26/0x30
[ 3230.250311][T12821] RIP: 0033:0x7fbb9f039570
[ 3230.254731][T12821] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3230.274359][T12821] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3230.280448][T12821] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
10:33:11 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x2001001000000000}}], 0x2, 0x0)

[ 3230.288429][T12821] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3230.296407][T12821] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3230.304479][T12821] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3230.312575][T12821] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3230.320554][T12821]  ? security_socket_create+0x3f/0xc0
[ 3230.325966][T12821]  </TASK>
10:33:11 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000f0ffffffffffff000000000500010006"], 0x1c}}, 0x0)

[ 3230.472301][T12821] memory: usage 307200kB, limit 307200kB, failcnt 156997
[ 3230.487697][T12821] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3230.495927][T12821] Memory cgroup stats for /syz4:
[ 3230.496225][T12821] anon 118784
[ 3230.496225][T12821] file 438272
[ 3230.496225][T12821] kernel 314011648
[ 3230.496225][T12821] kernel_stack 65536
[ 3230.496225][T12821] pagetables 73728
[ 3230.496225][T12821] sec_pagetables 0
[ 3230.496225][T12821] percpu 5617024
[ 3230.496225][T12821] sock 4096
[ 3230.496225][T12821] vmalloc 0
[ 3230.496225][T12821] shmem 438272
[ 3230.496225][T12821] zswap 0
[ 3230.496225][T12821] zswapped 0
[ 3230.496225][T12821] file_mapped 393216
[ 3230.496225][T12821] file_dirty 0
[ 3230.496225][T12821] file_writeback 0
[ 3230.496225][T12821] swapcached 0
[ 3230.496225][T12821] anon_thp 0
[ 3230.496225][T12821] file_thp 0
[ 3230.496225][T12821] shmem_thp 0
[ 3230.496225][T12821] inactive_anon 131072
[ 3230.496225][T12821] active_anon 425984
[ 3230.496225][T12821] inactive_file 0
[ 3230.496225][T12821] active_file 0
[ 3230.496225][T12821] unevictable 0
[ 3230.496225][T12821] slab_reclaimable 23024
[ 3230.496225][T12821] slab_unreclaimable 308200776
[ 3230.597803][T12821] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12821,uid=0
10:33:11 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xe43ffff00000000}}], 0x2, 0x0)

10:33:11 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0x25, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:11 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x3400000000000000}}], 0x2, 0x0)

10:33:11 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4c)

10:33:11 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000002000000000000000000000500010006"], 0x1c}}, 0x0)

10:33:11 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000003000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3230.613847][T12821] Memory cgroup out of memory: Killed process 12821 (syz-executor.4) total-vm:56588kB, anon-rss:428kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3230.647364][T12836] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
10:33:11 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0x4e22, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3230.730399][T12836] CPU: 0 PID: 12836 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3230.739134][T12836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3230.749215][T12836] Call Trace:
[ 3230.752520][T12836]  <TASK>
[ 3230.755480][T12836]  dump_stack_lvl+0xd1/0x138
[ 3230.760113][T12836]  dump_header+0x10b/0x85f
[ 3230.764582][T12836]  oom_kill_process.cold+0x10/0x15
[ 3230.769741][T12836]  out_of_memory+0x35c/0x14a0
[ 3230.774467][T12836]  ? find_held_lock+0x2d/0x110
10:33:11 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x3f00000000000000}}], 0x2, 0x0)

[ 3230.779270][T12836]  ? oom_killer_disable+0x280/0x280
[ 3230.784514][T12836]  ? find_held_lock+0x2d/0x110
[ 3230.789324][T12836]  mem_cgroup_out_of_memory+0x206/0x270
[ 3230.794918][T12836]  ? mem_cgroup_margin+0x130/0x130
[ 3230.800077][T12836]  ? lock_downgrade+0x6e0/0x6e0
[ 3230.804987][T12836]  try_charge_memcg+0xefb/0x12f0
[ 3230.809977][T12836]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3230.816046][T12836]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3230.821830][T12836]  ? lock_downgrade+0x6e0/0x6e0
[ 3230.826719][T12836]  ? lock_downgrade+0x6e0/0x6e0
[ 3230.831619][T12836]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3230.837198][T12836]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3230.843381][T12836]  copy_process+0x1359/0x7520
[ 3230.848079][T12836]  ? __lock_acquire+0xbc3/0x56d0
[ 3230.853053][T12836]  ? __cleanup_sighand+0xb0/0xb0
[ 3230.858010][T12836]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3230.864037][T12836]  ? psi_memstall_leave+0x174/0x250
[ 3230.869279][T12836]  kernel_clone+0xeb/0x990
[ 3230.873731][T12836]  ? create_io_thread+0xf0/0xf0
[ 3230.878639][T12836]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3230.884908][T12836]  ? lock_downgrade+0x6e0/0x6e0
[ 3230.889790][T12836]  __do_sys_clone+0xba/0x100
[ 3230.894395][T12836]  ? kernel_clone+0x990/0x990
[ 3230.899124][T12836]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3230.905043][T12836]  do_syscall_64+0x39/0xb0
[ 3230.909489][T12836]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3230.915406][T12836] RIP: 0033:0x7f36ee08d4f1
[ 3230.919842][T12836] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3230.939481][T12836] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3230.948089][T12836] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3230.956077][T12836] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3230.964055][T12836] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3230.972045][T12836] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3230.980032][T12836] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3230.988038][T12836]  </TASK>
[ 3231.068724][T12836] memory: usage 307200kB, limit 307200kB, failcnt 33080
[ 3231.076155][T12836] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3231.083208][T12836] Memory cgroup stats for /syz5:
[ 3231.083418][T12836] anon 86016
[ 3231.083418][T12836] file 425984
[ 3231.083418][T12836] kernel 314060800
[ 3231.083418][T12836] kernel_stack 32768
[ 3231.083418][T12836] pagetables 77824
[ 3231.083418][T12836] sec_pagetables 0
[ 3231.083418][T12836] percpu 5430016
[ 3231.083418][T12836] sock 0
[ 3231.083418][T12836] vmalloc 8192
[ 3231.083418][T12836] shmem 425984
[ 3231.083418][T12836] zswap 0
[ 3231.083418][T12836] zswapped 0
[ 3231.083418][T12836] file_mapped 393216
[ 3231.083418][T12836] file_dirty 0
[ 3231.083418][T12836] file_writeback 0
[ 3231.083418][T12836] swapcached 0
[ 3231.083418][T12836] anon_thp 0
[ 3231.083418][T12836] file_thp 0
[ 3231.083418][T12836] shmem_thp 0
[ 3231.083418][T12836] inactive_anon 212992
[ 3231.083418][T12836] active_anon 299008
[ 3231.083418][T12836] inactive_file 0
[ 3231.083418][T12836] active_file 0
[ 3231.083418][T12836] unevictable 0
[ 3231.083418][T12836] slab_reclaimable 216400
[ 3231.083418][T12836] slab_unreclaimable 308229192
[ 3231.179415][T12836] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12836,uid=0
[ 3231.196565][T12836] Memory cgroup out of memory: Killed process 12836 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:12 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40000)

10:33:12 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000004000000000000000000000500010006"], 0x1c}}, 0x0)

10:33:12 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x4000000000000000}}], 0x2, 0x0)

10:33:12 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0xa, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3231.224493][T12847] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000
[ 3231.270116][T12847] CPU: 0 PID: 12847 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3231.278855][T12847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3231.288948][T12847] Call Trace:
[ 3231.292355][T12847]  <TASK>
[ 3231.295313][T12847]  dump_stack_lvl+0xd1/0x138
[ 3231.299945][T12847]  dump_header+0x10b/0x85f
[ 3231.304421][T12847]  oom_kill_process.cold+0x10/0x15
[ 3231.309594][T12847]  out_of_memory+0x35c/0x14a0
[ 3231.314341][T12847]  ? oom_killer_disable+0x280/0x280
[ 3231.319594][T12847]  ? find_held_lock+0x2d/0x110
[ 3231.324408][T12847]  mem_cgroup_out_of_memory+0x206/0x270
[ 3231.330007][T12847]  ? mem_cgroup_margin+0x130/0x130
[ 3231.335167][T12847]  ? lock_downgrade+0x6e0/0x6e0
[ 3231.340075][T12847]  try_charge_memcg+0xefb/0x12f0
[ 3231.345072][T12847]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3231.351089][T12847]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3231.356851][T12847]  ? lock_downgrade+0x6e0/0x6e0
[ 3231.361733][T12847]  obj_cgroup_charge+0x2af/0x5e0
[ 3231.366691][T12847]  __kmem_cache_alloc_node+0xb2/0x430
[ 3231.372077][T12847]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3231.377474][T12847]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3231.382861][T12847]  __kmalloc_node_track_caller+0x4b/0xc0
[ 3231.388523][T12847]  kmemdup+0x2c/0x60
[ 3231.392442][T12847]  neigh_sysctl_register+0x9e/0x5f0
[ 3231.397672][T12847]  ? neigh_stat_seq_show+0x420/0x420
[ 3231.402969][T12847]  ? inetdev_init+0x23d/0x580
[ 3231.407662][T12847]  ? inetdev_event+0xe20/0x16c0
[ 3231.412523][T12847]  ? notifier_call_chain+0xb5/0x200
[ 3231.417737][T12847]  ? call_netdevice_notifiers_info+0xb5/0x130
[ 3231.423825][T12847]  ? register_netdevice+0xfb4/0x1640
[ 3231.429128][T12847]  ? br_dev_newlink+0x27/0x110
[ 3231.433911][T12847]  ? __rtnl_newlink+0x10c2/0x1840
[ 3231.438950][T12847]  ? rtnl_newlink+0x68/0xa0
[ 3231.443469][T12847]  ? rtnetlink_rcv_msg+0x43e/0xca0
[ 3231.448595][T12847]  ? netlink_rcv_skb+0x165/0x440
[ 3231.453640][T12847]  ? netlink_unicast+0x547/0x7f0
[ 3231.458597][T12847]  ? netlink_sendmsg+0x91b/0xe10
[ 3231.463554][T12847]  ? sock_sendmsg+0xd3/0x120
[ 3231.468165][T12847]  ? ____sys_sendmsg+0x712/0x8c0
[ 3231.473117][T12847]  ? ___sys_sendmsg+0x110/0x1b0
[ 3231.477992][T12847]  devinet_sysctl_register+0xb1/0x230
[ 3231.483384][T12847]  inetdev_init+0x286/0x580
[ 3231.487906][T12847]  inetdev_event+0xe20/0x16c0
[ 3231.492595][T12847]  ? del_default_gids+0xe0/0xe0
[ 3231.497463][T12847]  ? is_ndev_for_default_gid_filter.part.0+0x2e0/0x2e0
[ 3231.504332][T12847]  ? devinet_init_net+0x650/0x650
[ 3231.509631][T12847]  ? skb_dequeue+0x129/0x180
[ 3231.514236][T12847]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3231.520160][T12847]  notifier_call_chain+0xb5/0x200
[ 3231.525296][T12847]  call_netdevice_notifiers_info+0xb5/0x130
[ 3231.531214][T12847]  register_netdevice+0xfb4/0x1640
[ 3231.536350][T12847]  ? unregister_netdevice_queue+0x3c0/0x3c0
[ 3231.542291][T12847]  br_dev_newlink+0x27/0x110
[ 3231.546916][T12847]  ? br_changelink+0x1620/0x1620
[ 3231.551896][T12847]  __rtnl_newlink+0x10c2/0x1840
[ 3231.556798][T12847]  ? rtnl_link_unregister+0x250/0x250
[ 3231.562226][T12847]  rtnl_newlink+0x68/0xa0
[ 3231.566577][T12847]  ? __rtnl_newlink+0x1840/0x1840
[ 3231.571622][T12847]  rtnetlink_rcv_msg+0x43e/0xca0
[ 3231.576587][T12847]  ? rtnl_getlink+0xae0/0xae0
[ 3231.581279][T12847]  ? __dev_queue_xmit+0xb54/0x3ba0
[ 3231.586412][T12847]  ? exc_int3+0xf/0x80
[ 3231.590512][T12847]  netlink_rcv_skb+0x165/0x440
[ 3231.595298][T12847]  ? rtnl_getlink+0xae0/0xae0
[ 3231.599992][T12847]  ? netlink_ack+0x1370/0x1370
[ 3231.604794][T12847]  ? netlink_deliver_tap+0x1b1/0xc50
[ 3231.610130][T12847]  netlink_unicast+0x547/0x7f0
[ 3231.614921][T12847]  ? netlink_attachskb+0x890/0x890
[ 3231.620060][T12847]  ? __virt_addr_valid+0x61/0x2e0
[ 3231.625101][T12847]  ? __phys_addr_symbol+0x30/0x70
[ 3231.630163][T12847]  ? __check_object_size+0x2e2/0x5a0
[ 3231.635486][T12847]  netlink_sendmsg+0x91b/0xe10
[ 3231.640299][T12847]  ? netlink_unicast+0x7f0/0x7f0
[ 3231.645274][T12847]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3231.650589][T12847]  ? netlink_unicast+0x7f0/0x7f0
[ 3231.655552][T12847]  sock_sendmsg+0xd3/0x120
[ 3231.659991][T12847]  ____sys_sendmsg+0x712/0x8c0
[ 3231.664773][T12847]  ? copy_msghdr_from_user+0xfc/0x150
[ 3231.670170][T12847]  ? kernel_sendmsg+0x50/0x50
[ 3231.674874][T12847]  ? futex_unqueue+0xb7/0x120
[ 3231.679579][T12847]  ___sys_sendmsg+0x110/0x1b0
[ 3231.684282][T12847]  ? do_recvmmsg+0x6e0/0x6e0
[ 3231.688907][T12847]  ? __fget_files+0x248/0x440
[ 3231.693594][T12847]  ? lock_downgrade+0x6e0/0x6e0
[ 3231.698476][T12847]  ? __fget_files+0x26a/0x440
[ 3231.703186][T12847]  ? __fget_light+0xe5/0x270
[ 3231.707803][T12847]  __sys_sendmsg+0xf7/0x1c0
[ 3231.712329][T12847]  ? __sys_sendmsg_sock+0x40/0x40
[ 3231.717384][T12847]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3231.723314][T12847]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3231.729223][T12847]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3231.734436][T12847]  do_syscall_64+0x39/0xb0
[ 3231.738879][T12847]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3231.744787][T12847] RIP: 0033:0x7fde80a8c0c9
[ 3231.749212][T12847] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3231.768845][T12847] RSP: 002b:00007fde818ce168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3231.777287][T12847] RAX: ffffffffffffffda RBX: 00007fde80babf80 RCX: 00007fde80a8c0c9
[ 3231.785276][T12847] RDX: 000000000000004c RSI: 00000000200000c0 RDI: 0000000000000003
[ 3231.793256][T12847] RBP: 00007fde80ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3231.801243][T12847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3231.809235][T12847] R13: 00007ffd6245db6f R14: 00007fde818ce300 R15: 0000000000022000
[ 3231.817243][T12847]  </TASK>
[ 3231.853042][T12847] memory: usage 307168kB, limit 307200kB, failcnt 39870
[ 3231.860817][T12847] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3231.870511][T12847] Memory cgroup stats for /syz2:
[ 3231.870684][T12847] anon 135168
[ 3231.870684][T12847] file 307200
[ 3231.870684][T12847] kernel 314097664
[ 3231.870684][T12847] kernel_stack 32768
[ 3231.870684][T12847] pagetables 86016
[ 3231.870684][T12847] sec_pagetables 0
[ 3231.870684][T12847] percpu 5433440
[ 3231.870684][T12847] sock 0
[ 3231.870684][T12847] vmalloc 16384
[ 3231.870684][T12847] shmem 307200
[ 3231.870684][T12847] zswap 0
[ 3231.870684][T12847] zswapped 0
[ 3231.870684][T12847] file_mapped 299008
[ 3231.870684][T12847] file_dirty 0
[ 3231.870684][T12847] file_writeback 0
[ 3231.870684][T12847] swapcached 0
[ 3231.870684][T12847] anon_thp 0
[ 3231.870684][T12847] file_thp 0
[ 3231.870684][T12847] shmem_thp 0
[ 3231.870684][T12847] inactive_anon 143360
[ 3231.870684][T12847] active_anon 299008
[ 3231.870684][T12847] inactive_file 0
[ 3231.870684][T12847] active_file 0
[ 3231.870684][T12847] unevictable 0
[ 3231.870684][T12847] slab_reclaimable 112984
[ 3231.870684][T12847] slab_unreclaimable 308388424
[ 3231.970763][T12847] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12844,uid=0
[ 3231.988598][T12847] Memory cgroup out of memory: Killed process 12847 (syz-executor.2) total-vm:54540kB, anon-rss:504kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3232.039301][T12846] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3232.062685][T12846] CPU: 1 PID: 12846 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3232.071455][T12846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3232.081537][T12846] Call Trace:
[ 3232.084835][T12846]  <TASK>
[ 3232.087795][T12846]  dump_stack_lvl+0xd1/0x138
[ 3232.092422][T12846]  dump_header+0x10b/0x85f
[ 3232.096888][T12846]  oom_kill_process.cold+0x10/0x15
[ 3232.102054][T12846]  out_of_memory+0x35c/0x14a0
[ 3232.106786][T12846]  ? find_held_lock+0x2d/0x110
[ 3232.111589][T12846]  ? oom_killer_disable+0x280/0x280
[ 3232.116835][T12846]  ? find_held_lock+0x2d/0x110
[ 3232.121651][T12846]  mem_cgroup_out_of_memory+0x206/0x270
[ 3232.127245][T12846]  ? mem_cgroup_margin+0x130/0x130
[ 3232.132385][T12846]  ? lock_downgrade+0x6e0/0x6e0
[ 3232.137300][T12846]  try_charge_memcg+0xefb/0x12f0
[ 3232.142268][T12846]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3232.148292][T12846]  ? lock_downgrade+0x6e0/0x6e0
[ 3232.153173][T12846]  charge_memcg+0x90/0x3b0
[ 3232.157605][T12846]  __mem_cgroup_charge+0x2b/0x90
[ 3232.162563][T12846]  do_wp_page+0x7ec/0x3370
[ 3232.167007][T12846]  ? lock_release+0x810/0x810
[ 3232.171696][T12846]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3232.177090][T12846]  ? do_raw_spin_lock+0x124/0x2b0
[ 3232.182126][T12846]  ? rwlock_bug.part.0+0x90/0x90
[ 3232.187074][T12846]  ? lock_chain_count+0x20/0x20
[ 3232.191943][T12846]  __handle_mm_fault+0x1f58/0x3c90
[ 3232.197112][T12846]  ? vm_iomap_memory+0x190/0x190
[ 3232.202089][T12846]  handle_mm_fault+0x1b6/0x850
[ 3232.206876][T12846]  do_user_addr_fault+0x475/0x1210
[ 3232.212004][T12846]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3232.217577][T12846]  exc_page_fault+0x98/0x170
[ 3232.222185][T12846]  asm_exc_page_fault+0x26/0x30
[ 3232.227049][T12846] RIP: 0033:0x7fbb9f039570
[ 3232.231471][T12846] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3232.251091][T12846] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3232.257167][T12846] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3232.265150][T12846] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3232.273152][T12846] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3232.281141][T12846] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3232.289129][T12846] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3232.297115][T12846]  ? security_socket_create+0x3f/0xc0
[ 3232.302538][T12846]  </TASK>
[ 3232.318751][T12846] memory: usage 307200kB, limit 307200kB, failcnt 157128
[ 3232.327001][T12846] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3232.333979][T12846] Memory cgroup stats for /syz4:
[ 3232.334188][T12846] anon 118784
[ 3232.334188][T12846] file 438272
[ 3232.334188][T12846] kernel 314011648
[ 3232.334188][T12846] kernel_stack 65536
[ 3232.334188][T12846] pagetables 73728
[ 3232.334188][T12846] sec_pagetables 0
[ 3232.334188][T12846] percpu 5617024
[ 3232.334188][T12846] sock 4096
[ 3232.334188][T12846] vmalloc 0
[ 3232.334188][T12846] shmem 438272
[ 3232.334188][T12846] zswap 0
[ 3232.334188][T12846] zswapped 0
[ 3232.334188][T12846] file_mapped 393216
[ 3232.334188][T12846] file_dirty 0
[ 3232.334188][T12846] file_writeback 0
[ 3232.334188][T12846] swapcached 0
[ 3232.334188][T12846] anon_thp 0
[ 3232.334188][T12846] file_thp 0
[ 3232.334188][T12846] shmem_thp 0
[ 3232.334188][T12846] inactive_anon 114688
[ 3232.334188][T12846] active_anon 425984
[ 3232.334188][T12846] inactive_file 0
[ 3232.334188][T12846] active_file 0
[ 3232.334188][T12846] unevictable 0
[ 3232.334188][T12846] slab_reclaimable 23024
[ 3232.334188][T12846] slab_unreclaimable 308202640
10:33:13 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xe43ffff00000000}}], 0x2, 0x0)

10:33:13 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x63, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:13 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000005000000000000000000000500010006"], 0x1c}}, 0x0)

10:33:13 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x60)

10:33:13 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x46832a8800000000}}], 0x2, 0x0)

10:33:13 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e41, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3232.431802][T12846] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12846,uid=0
[ 3232.447585][T12846] Memory cgroup out of memory: Killed process 12846 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3232.475581][T12863] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3232.520674][T12863] CPU: 0 PID: 12863 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3232.529411][T12863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3232.539498][T12863] Call Trace:
[ 3232.542806][T12863]  <TASK>
[ 3232.545762][T12863]  dump_stack_lvl+0xd1/0x138
[ 3232.550396][T12863]  dump_header+0x10b/0x85f
[ 3232.554864][T12863]  oom_kill_process.cold+0x10/0x15
[ 3232.560029][T12863]  out_of_memory+0x35c/0x14a0
[ 3232.564768][T12863]  ? find_held_lock+0x2d/0x110
[ 3232.569580][T12863]  ? oom_killer_disable+0x280/0x280
[ 3232.574828][T12863]  ? find_held_lock+0x2d/0x110
[ 3232.579634][T12863]  mem_cgroup_out_of_memory+0x206/0x270
[ 3232.585209][T12863]  ? mem_cgroup_margin+0x130/0x130
[ 3232.590338][T12863]  ? lock_downgrade+0x6e0/0x6e0
[ 3232.595228][T12863]  try_charge_memcg+0xefb/0x12f0
[ 3232.600193][T12863]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3232.606185][T12863]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3232.611932][T12863]  ? lock_downgrade+0x6e0/0x6e0
[ 3232.616800][T12863]  ? lock_downgrade+0x6e0/0x6e0
[ 3232.621692][T12863]  obj_cgroup_charge+0x2af/0x5e0
[ 3232.626658][T12863]  kmem_cache_alloc_lru+0x145/0x760
[ 3232.631871][T12863]  ? sock_alloc_inode+0x27/0x1d0
[ 3232.636843][T12863]  sock_alloc_inode+0x27/0x1d0
[ 3232.641626][T12863]  ? sock_free_inode+0x30/0x30
[ 3232.646409][T12863]  alloc_inode+0x61/0x230
[ 3232.650762][T12863]  new_inode_pseudo+0x17/0x80
[ 3232.655467][T12863]  sock_alloc+0x40/0x260
[ 3232.659728][T12863]  __sock_create+0xbd/0x790
[ 3232.664259][T12863]  __sys_socket+0x133/0x250
[ 3232.668801][T12863]  ? __sys_socket_file+0x1f0/0x1f0
[ 3232.673951][T12863]  __x64_sys_socket+0x73/0xb0
[ 3232.678660][T12863]  do_syscall_64+0x39/0xb0
[ 3232.683114][T12863]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3232.689028][T12863] RIP: 0033:0x7f36ee08c0c9
[ 3232.693460][T12863] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3232.713086][T12863] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3232.721513][T12863] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3232.729493][T12863] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3232.737486][T12863] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3232.745470][T12863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3232.753450][T12863] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3232.761488][T12863]  </TASK>
10:33:13 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x4800000000000000}}], 0x2, 0x0)

10:33:13 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000006000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3232.784650][  T541] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3232.898841][T12863] memory: usage 307200kB, limit 307200kB, failcnt 33228
[ 3232.906137][T12863] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3232.913109][T12863] Memory cgroup stats for /syz5:
[ 3232.913323][T12863] anon 94208
[ 3232.913323][T12863] file 425984
[ 3232.913323][T12863] kernel 314052608
[ 3232.913323][T12863] kernel_stack 65536
[ 3232.913323][T12863] pagetables 77824
[ 3232.913323][T12863] sec_pagetables 0
[ 3232.913323][T12863] percpu 5429952
[ 3232.913323][T12863] sock 0
[ 3232.913323][T12863] vmalloc 8192
[ 3232.913323][T12863] shmem 425984
[ 3232.913323][T12863] zswap 0
[ 3232.913323][T12863] zswapped 0
[ 3232.913323][T12863] file_mapped 393216
[ 3232.913323][T12863] file_dirty 0
[ 3232.913323][T12863] file_writeback 0
[ 3232.913323][T12863] swapcached 0
[ 3232.913323][T12863] anon_thp 0
[ 3232.913323][T12863] file_thp 0
[ 3232.913323][T12863] shmem_thp 0
[ 3232.913323][T12863] inactive_anon 221184
[ 3232.913323][T12863] active_anon 299008
[ 3232.913323][T12863] inactive_file 0
[ 3232.913323][T12863] active_file 0
[ 3232.913323][T12863] unevictable 0
[ 3232.913323][T12863] slab_reclaimable 216400
[ 3232.913323][T12863] slab_unreclaimable 308217872
[ 3233.013643][T12863] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12862,uid=0
[ 3233.029446][T12863] Memory cgroup out of memory: Killed process 12862 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3233.081633][T12870] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3233.097907][T12863] socket: no more sockets
[ 3233.108386][T12870] CPU: 1 PID: 12870 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3233.117103][T12870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3233.127197][T12870] Call Trace:
[ 3233.130496][T12870]  <TASK>
[ 3233.133449][T12870]  dump_stack_lvl+0xd1/0x138
[ 3233.138077][T12870]  dump_header+0x10b/0x85f
[ 3233.142533][T12870]  oom_kill_process.cold+0x10/0x15
[ 3233.147700][T12870]  out_of_memory+0x35c/0x14a0
[ 3233.152430][T12870]  ? find_held_lock+0x2d/0x110
[ 3233.157240][T12870]  ? oom_killer_disable+0x280/0x280
[ 3233.162490][T12870]  ? find_held_lock+0x2d/0x110
[ 3233.167302][T12870]  mem_cgroup_out_of_memory+0x206/0x270
[ 3233.172899][T12870]  ? mem_cgroup_margin+0x130/0x130
[ 3233.178047][T12870]  ? lock_downgrade+0x6e0/0x6e0
[ 3233.182953][T12870]  try_charge_memcg+0xefb/0x12f0
[ 3233.187935][T12870]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3233.193958][T12870]  ? lock_downgrade+0x6e0/0x6e0
[ 3233.198856][T12870]  charge_memcg+0x90/0x3b0
[ 3233.203315][T12870]  __mem_cgroup_charge+0x2b/0x90
[ 3233.208288][T12870]  ? _compound_head+0x5d/0x150
[ 3233.213087][T12870]  __handle_mm_fault+0x187d/0x3c90
[ 3233.218242][T12870]  ? vm_iomap_memory+0x190/0x190
[ 3233.223247][T12870]  handle_mm_fault+0x1b6/0x850
[ 3233.228054][T12870]  do_user_addr_fault+0x475/0x1210
[ 3233.233207][T12870]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3233.238801][T12870]  exc_page_fault+0x98/0x170
[ 3233.243425][T12870]  asm_exc_page_fault+0x26/0x30
[ 3233.248303][T12870] RIP: 0033:0x7fde80a2bd49
[ 3233.252749][T12870] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3233.272397][T12870] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
10:33:14 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40346)

10:33:14 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0xbe29, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:14 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x4c00000000000000}}], 0x2, 0x0)

10:33:14 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000007000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3233.278505][T12870] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3233.286504][T12870] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3233.294503][T12870] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3233.302496][T12870] R10: 00007fde80600068 R11: 0000000000000246 R12: 00000000003154fe
[ 3233.310504][T12870] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3233.318523][T12870]  </TASK>
[ 3233.391704][T12870] memory: usage 307200kB, limit 307200kB, failcnt 40024
[ 3233.399241][T12870] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3233.409578][T12870] Memory cgroup stats for /syz2:
[ 3233.409796][T12870] anon 131072
[ 3233.409796][T12870] file 307200
[ 3233.409796][T12870] kernel 314134528
[ 3233.409796][T12870] kernel_stack 65536
[ 3233.409796][T12870] pagetables 86016
[ 3233.409796][T12870] sec_pagetables 0
[ 3233.409796][T12870] percpu 5433504
[ 3233.409796][T12870] sock 0
[ 3233.409796][T12870] vmalloc 16384
[ 3233.409796][T12870] shmem 307200
[ 3233.409796][T12870] zswap 0
[ 3233.409796][T12870] zswapped 0
[ 3233.409796][T12870] file_mapped 299008
[ 3233.409796][T12870] file_dirty 0
[ 3233.409796][T12870] file_writeback 0
[ 3233.409796][T12870] swapcached 0
[ 3233.409796][T12870] anon_thp 0
[ 3233.409796][T12870] file_thp 0
[ 3233.409796][T12870] shmem_thp 0
[ 3233.409796][T12870] inactive_anon 139264
[ 3233.409796][T12870] active_anon 299008
[ 3233.409796][T12870] inactive_file 0
[ 3233.409796][T12870] active_file 0
[ 3233.409796][T12870] unevictable 0
[ 3233.409796][T12870] slab_reclaimable 112984
[ 3233.409796][T12870] slab_unreclaimable 308388680
[ 3233.513048][T12870] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12870,uid=0
[ 3233.530462][T12870] Memory cgroup out of memory: Killed process 12870 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3233.548408][T12872] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3233.559805][T12872] CPU: 0 PID: 12872 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3233.568513][T12872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3233.578928][T12872] Call Trace:
[ 3233.582206][T12872]  <TASK>
[ 3233.585134][T12872]  dump_stack_lvl+0xd1/0x138
[ 3233.589733][T12872]  dump_header+0x10b/0x85f
[ 3233.594153][T12872]  oom_kill_process.cold+0x10/0x15
[ 3233.599273][T12872]  out_of_memory+0x35c/0x14a0
[ 3233.603958][T12872]  ? oom_killer_disable+0x280/0x280
[ 3233.609157][T12872]  ? find_held_lock+0x2d/0x110
[ 3233.613961][T12872]  mem_cgroup_out_of_memory+0x206/0x270
[ 3233.619523][T12872]  ? mem_cgroup_margin+0x130/0x130
[ 3233.624674][T12872]  ? lock_downgrade+0x6e0/0x6e0
[ 3233.629574][T12872]  try_charge_memcg+0xefb/0x12f0
[ 3233.634535][T12872]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3233.640514][T12872]  ? lock_downgrade+0x6e0/0x6e0
[ 3233.645368][T12872]  charge_memcg+0x90/0x3b0
[ 3233.649783][T12872]  __mem_cgroup_charge+0x2b/0x90
[ 3233.654718][T12872]  do_wp_page+0x7ec/0x3370
[ 3233.659140][T12872]  ? lock_release+0x810/0x810
[ 3233.663835][T12872]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3233.669598][T12872]  ? do_raw_spin_lock+0x124/0x2b0
[ 3233.674658][T12872]  ? rwlock_bug.part.0+0x90/0x90
[ 3233.679623][T12872]  ? lock_chain_count+0x20/0x20
[ 3233.684493][T12872]  __handle_mm_fault+0x1f58/0x3c90
[ 3233.689629][T12872]  ? vm_iomap_memory+0x190/0x190
[ 3233.694582][T12872]  handle_mm_fault+0x1b6/0x850
[ 3233.699351][T12872]  do_user_addr_fault+0x475/0x1210
[ 3233.704477][T12872]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3233.710026][T12872]  exc_page_fault+0x98/0x170
[ 3233.714624][T12872]  asm_exc_page_fault+0x26/0x30
[ 3233.719502][T12872] RIP: 0033:0x7fbb9f039570
[ 3233.723940][T12872] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3233.743560][T12872] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3233.749620][T12872] RAX: 000000000cb6f9d9 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3233.757592][T12872] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5b1b00
[ 3233.766093][T12872] RBP: 000000000cb6f9d9 R08: 00000000000019d9 R09: 000000000cb6f9dd
[ 3233.774439][T12872] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3233.782435][T12872] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff87beef82
[ 3233.790426][T12872]  ? __sock_create+0x62/0x790
[ 3233.795115][T12872]  </TASK>
[ 3233.806338][T12872] memory: usage 307200kB, limit 307200kB, failcnt 157250
[ 3233.813583][T12872] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3233.820997][T12872] Memory cgroup stats for /syz4:
[ 3233.821223][T12872] anon 114688
[ 3233.821223][T12872] file 438272
[ 3233.821223][T12872] kernel 314015744
[ 3233.821223][T12872] kernel_stack 65536
[ 3233.821223][T12872] pagetables 73728
[ 3233.821223][T12872] sec_pagetables 0
[ 3233.821223][T12872] percpu 5617024
[ 3233.821223][T12872] sock 4096
[ 3233.821223][T12872] vmalloc 0
[ 3233.821223][T12872] shmem 438272
[ 3233.821223][T12872] zswap 0
[ 3233.821223][T12872] zswapped 0
[ 3233.821223][T12872] file_mapped 393216
[ 3233.821223][T12872] file_dirty 0
[ 3233.821223][T12872] file_writeback 0
[ 3233.821223][T12872] swapcached 0
[ 3233.821223][T12872] anon_thp 0
[ 3233.821223][T12872] file_thp 0
[ 3233.821223][T12872] shmem_thp 0
[ 3233.821223][T12872] inactive_anon 126976
[ 3233.821223][T12872] active_anon 425984
[ 3233.821223][T12872] inactive_file 0
[ 3233.821223][T12872] active_file 0
[ 3233.821223][T12872] unevictable 0
[ 3233.821223][T12872] slab_reclaimable 23024
[ 3233.821223][T12872] slab_unreclaimable 308202640
[ 3233.919922][T12872] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12872,uid=0
10:33:14 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xe43ffff00000000}}], 0x2, 0x0)

10:33:14 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:14 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x5000000000000000}}], 0x2, 0x0)

10:33:14 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000009000000000000000000000500010006"], 0x1c}}, 0x0)

10:33:14 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x68)

[ 3233.935851][T12872] Memory cgroup out of memory: Killed process 12872 (syz-executor.4) total-vm:56588kB, anon-rss:452kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3233.984064][T12880] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3234.004606][T12880] CPU: 1 PID: 12880 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3234.013422][T12880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3234.023494][T12880] Call Trace:
[ 3234.026795][T12880]  <TASK>
[ 3234.029751][T12880]  dump_stack_lvl+0xd1/0x138
[ 3234.034384][T12880]  dump_header+0x10b/0x85f
[ 3234.038852][T12880]  oom_kill_process.cold+0x10/0x15
[ 3234.044012][T12880]  out_of_memory+0x35c/0x14a0
[ 3234.048737][T12880]  ? find_held_lock+0x2d/0x110
10:33:14 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000e000000000000000000000500010006"], 0x1c}}, 0x0)

10:33:14 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x2, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3234.053542][T12880]  ? oom_killer_disable+0x280/0x280
[ 3234.058792][T12880]  ? find_held_lock+0x2d/0x110
[ 3234.063602][T12880]  mem_cgroup_out_of_memory+0x206/0x270
[ 3234.069204][T12880]  ? mem_cgroup_margin+0x130/0x130
[ 3234.074358][T12880]  ? lock_downgrade+0x6e0/0x6e0
[ 3234.079262][T12880]  try_charge_memcg+0xefb/0x12f0
[ 3234.084247][T12880]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3234.090271][T12880]  ? lock_downgrade+0x6e0/0x6e0
[ 3234.095167][T12880]  charge_memcg+0x90/0x3b0
[ 3234.099624][T12880]  __mem_cgroup_charge+0x2b/0x90
[ 3234.104595][T12880]  ? copy_mc_to_kernel+0x3e/0x90
[ 3234.109577][T12880]  do_wp_page+0x7ec/0x3370
[ 3234.114043][T12880]  ? lock_release+0x810/0x810
[ 3234.118748][T12880]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3234.124159][T12880]  ? do_raw_spin_lock+0x124/0x2b0
[ 3234.129216][T12880]  ? rwlock_bug.part.0+0x90/0x90
[ 3234.134190][T12880]  ? lock_chain_count+0x20/0x20
[ 3234.139088][T12880]  __handle_mm_fault+0x1f58/0x3c90
[ 3234.144255][T12880]  ? vm_iomap_memory+0x190/0x190
[ 3234.149277][T12880]  handle_mm_fault+0x1b6/0x850
10:33:15 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x5c00000000000000}}], 0x2, 0x0)

[ 3234.154088][T12880]  do_user_addr_fault+0x475/0x1210
[ 3234.159250][T12880]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3234.164878][T12880]  exc_page_fault+0x98/0x170
[ 3234.169506][T12880]  asm_exc_page_fault+0x26/0x30
[ 3234.174393][T12880] RIP: 0033:0x7f36ee036f3d
[ 3234.178832][T12880] Code: e0 04 8b 44 02 08 85 c0 0f 85 3e 0a 00 00 31 c0 b9 40 42 0f 00 ba 81 00 00 00 c7 06 01 00 00 00 bf ca 00 00 00 e8 73 51 05 00 <83> 05 44 6a 17 00 01 80 bc 24 d8 00 00 00 00 0f b6 05 57 e7 c9 00
[ 3234.198474][T12880] RSP: 002b:00007ffc6b5fd8b0 EFLAGS: 00010207
[ 3234.204573][T12880] RAX: 0000000000000001 RBX: 00007f36ee1abf8c RCX: 00007f36ee08c0c9
[ 3234.212571][T12880] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f36ee1abf88
[ 3234.220564][T12880] RBP: 00007f36ee1abf80 R08: 00007f36ecbfe700 R09: 0000000000000000
[ 3234.228558][T12880] R10: 00007f36ecbfe700 R11: 0000000000000246 R12: 00007f36ee1abf8c
[ 3234.236553][T12880] R13: 00007f36edc00060 R14: 00007f36ee1abf80 R15: 0000000000000000
[ 3234.244575][T12880]  </TASK>
[ 3234.253227][T12880] memory: usage 307200kB, limit 307200kB, failcnt 33366
[ 3234.260817][T12880] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3234.267928][T12880] Memory cgroup stats for /syz5:
[ 3234.268113][T12880] anon 90112
[ 3234.268113][T12880] file 425984
[ 3234.268113][T12880] kernel 314056704
[ 3234.268113][T12880] kernel_stack 65536
[ 3234.268113][T12880] pagetables 77824
[ 3234.268113][T12880] sec_pagetables 0
[ 3234.268113][T12880] percpu 5429952
[ 3234.268113][T12880] sock 0
[ 3234.268113][T12880] vmalloc 8192
[ 3234.268113][T12880] shmem 425984
[ 3234.268113][T12880] zswap 0
[ 3234.268113][T12880] zswapped 0
[ 3234.268113][T12880] file_mapped 393216
[ 3234.268113][T12880] file_dirty 0
[ 3234.268113][T12880] file_writeback 0
[ 3234.268113][T12880] swapcached 0
[ 3234.268113][T12880] anon_thp 0
[ 3234.268113][T12880] file_thp 0
[ 3234.268113][T12880] shmem_thp 0
[ 3234.268113][T12880] inactive_anon 217088
[ 3234.268113][T12880] active_anon 299008
[ 3234.268113][T12880] inactive_file 0
[ 3234.268113][T12880] active_file 0
[ 3234.268113][T12880] unevictable 0
[ 3234.268113][T12880] slab_reclaimable 218328
[ 3234.268113][T12880] slab_unreclaimable 308218520
10:33:15 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40347)

10:33:15 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000f000000000000000000000500010006"], 0x1c}}, 0x0)

10:33:15 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x6000000000000000}}], 0x2, 0x0)

10:33:15 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x3, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3234.421608][T12880] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12880,uid=0
[ 3234.438694][T12880] Memory cgroup out of memory: Killed process 12880 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3234.507147][T12901] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3234.539413][T12901] CPU: 0 PID: 12901 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3234.548135][T12901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3234.558213][T12901] Call Trace:
[ 3234.561516][T12901]  <TASK>
[ 3234.564471][T12901]  dump_stack_lvl+0xd1/0x138
[ 3234.569126][T12901]  dump_header+0x10b/0x85f
[ 3234.573595][T12901]  oom_kill_process.cold+0x10/0x15
[ 3234.578755][T12901]  out_of_memory+0x35c/0x14a0
[ 3234.583483][T12901]  ? find_held_lock+0x2d/0x110
[ 3234.588289][T12901]  ? oom_killer_disable+0x280/0x280
[ 3234.593525][T12901]  ? find_held_lock+0x2d/0x110
[ 3234.598321][T12901]  mem_cgroup_out_of_memory+0x206/0x270
[ 3234.603906][T12901]  ? mem_cgroup_margin+0x130/0x130
[ 3234.609057][T12901]  ? lock_downgrade+0x6e0/0x6e0
[ 3234.613979][T12901]  try_charge_memcg+0xefb/0x12f0
[ 3234.618960][T12901]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3234.624978][T12901]  ? lock_downgrade+0x6e0/0x6e0
[ 3234.629877][T12901]  charge_memcg+0x90/0x3b0
[ 3234.634321][T12901]  __mem_cgroup_charge+0x2b/0x90
[ 3234.639295][T12901]  do_wp_page+0x7ec/0x3370
[ 3234.643769][T12901]  ? lock_release+0x810/0x810
[ 3234.648477][T12901]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3234.653892][T12901]  ? do_raw_spin_lock+0x124/0x2b0
[ 3234.658953][T12901]  ? rwlock_bug.part.0+0x90/0x90
[ 3234.663934][T12901]  ? lock_chain_count+0x20/0x20
[ 3234.668816][T12901]  __handle_mm_fault+0x1f58/0x3c90
[ 3234.674233][T12901]  ? vm_iomap_memory+0x190/0x190
[ 3234.679251][T12901]  handle_mm_fault+0x1b6/0x850
[ 3234.684062][T12901]  do_user_addr_fault+0x475/0x1210
[ 3234.689223][T12901]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3234.694909][T12901]  exc_page_fault+0x98/0x170
[ 3234.699531][T12901]  asm_exc_page_fault+0x26/0x30
[ 3234.704410][T12901] RIP: 0033:0x7fbb9f039570
[ 3234.708850][T12901] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3234.728470][T12901] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3234.734549][T12901] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3234.742570][T12901] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3234.750548][T12901] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3234.758542][T12901] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3234.766526][T12901] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3234.774492][T12901]  ? __sys_socket+0x7c/0x250
[ 3234.779095][T12901]  </TASK>
[ 3234.786338][T12901] memory: usage 307184kB, limit 307200kB, failcnt 157359
[ 3234.793397][T12901] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3234.800668][T12901] Memory cgroup stats for /syz4:
[ 3234.800862][T12901] anon 102400
[ 3234.800862][T12901] file 438272
[ 3234.800862][T12901] kernel 314011648
[ 3234.800862][T12901] kernel_stack 65536
[ 3234.800862][T12901] pagetables 73728
[ 3234.800862][T12901] sec_pagetables 0
[ 3234.800862][T12901] percpu 5617024
[ 3234.800862][T12901] sock 4096
[ 3234.800862][T12901] vmalloc 0
[ 3234.800862][T12901] shmem 438272
[ 3234.800862][T12901] zswap 0
[ 3234.800862][T12901] zswapped 0
[ 3234.800862][T12901] file_mapped 393216
[ 3234.800862][T12901] file_dirty 0
[ 3234.800862][T12901] file_writeback 0
[ 3234.800862][T12901] swapcached 0
[ 3234.800862][T12901] anon_thp 0
[ 3234.800862][T12901] file_thp 0
[ 3234.800862][T12901] shmem_thp 0
[ 3234.800862][T12901] inactive_anon 114688
[ 3234.800862][T12901] active_anon 425984
[ 3234.800862][T12901] inactive_file 0
[ 3234.800862][T12901] active_file 0
[ 3234.800862][T12901] unevictable 0
[ 3234.800862][T12901] slab_reclaimable 23024
[ 3234.800862][T12901] slab_unreclaimable 308202944
10:33:15 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e41, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:15 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000060000000000000000000000500010006"], 0x1c}}, 0x0)

10:33:15 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x6036114300000000}}], 0x2, 0x0)

10:33:15 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x4, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:15 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x6c)

[ 3234.898067][T12901] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12901,uid=0
[ 3234.916225][T12901] Memory cgroup out of memory: Killed process 12901 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3234.943492][T12912] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3234.954474][T12912] CPU: 0 PID: 12912 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3234.963185][T12912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3234.973262][T12912] Call Trace:
[ 3234.976566][T12912]  <TASK>
[ 3234.979522][T12912]  dump_stack_lvl+0xd1/0x138
[ 3234.984152][T12912]  dump_header+0x10b/0x85f
[ 3234.988620][T12912]  oom_kill_process.cold+0x10/0x15
[ 3234.993779][T12912]  out_of_memory+0x35c/0x14a0
[ 3234.998508][T12912]  ? find_held_lock+0x2d/0x110
[ 3235.003327][T12912]  ? oom_killer_disable+0x280/0x280
[ 3235.008578][T12912]  ? find_held_lock+0x2d/0x110
[ 3235.013393][T12912]  mem_cgroup_out_of_memory+0x206/0x270
[ 3235.018981][T12912]  ? mem_cgroup_margin+0x130/0x130
[ 3235.024142][T12912]  ? lock_downgrade+0x6e0/0x6e0
[ 3235.029074][T12912]  try_charge_memcg+0xefb/0x12f0
[ 3235.034144][T12912]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3235.040160][T12912]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3235.045937][T12912]  ? lock_downgrade+0x6e0/0x6e0
[ 3235.050824][T12912]  ? lock_downgrade+0x6e0/0x6e0
[ 3235.055725][T12912]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3235.061323][T12912]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3235.067514][T12912]  copy_process+0x4e3/0x7520
[ 3235.072129][T12912]  ? __lock_acquire+0xbc3/0x56d0
[ 3235.077094][T12912]  ? __cleanup_sighand+0xb0/0xb0
[ 3235.082045][T12912]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3235.088057][T12912]  ? psi_memstall_leave+0x174/0x250
[ 3235.093281][T12912]  kernel_clone+0xeb/0x990
[ 3235.097717][T12912]  ? create_io_thread+0xf0/0xf0
[ 3235.102586][T12912]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3235.108854][T12912]  ? lock_downgrade+0x6e0/0x6e0
[ 3235.113726][T12912]  __do_sys_clone+0xba/0x100
[ 3235.118332][T12912]  ? kernel_clone+0x990/0x990
[ 3235.123036][T12912]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3235.128950][T12912]  do_syscall_64+0x39/0xb0
[ 3235.133398][T12912]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3235.139306][T12912] RIP: 0033:0x7f36ee08d4f1
[ 3235.143742][T12912] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3235.163382][T12912] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3235.171824][T12912] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3235.179806][T12912] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3235.187784][T12912] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3235.195762][T12912] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
10:33:15 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x5, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3235.203769][T12912] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3235.211767][T12912]  </TASK>
10:33:16 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x6, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:16 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000f0000000000000000000000500010006"], 0x1c}}, 0x0)

[ 3235.388987][T12912] memory: usage 307184kB, limit 307200kB, failcnt 33467
[ 3235.397580][T12912] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3235.405733][T12912] Memory cgroup stats for /syz5:
[ 3235.405907][T12912] anon 86016
[ 3235.405907][T12912] file 425984
[ 3235.405907][T12912] kernel 314044416
[ 3235.405907][T12912] kernel_stack 32768
[ 3235.405907][T12912] pagetables 77824
[ 3235.405907][T12912] sec_pagetables 0
[ 3235.405907][T12912] percpu 5429952
[ 3235.405907][T12912] sock 0
[ 3235.405907][T12912] vmalloc 8192
[ 3235.405907][T12912] shmem 425984
[ 3235.405907][T12912] zswap 0
[ 3235.405907][T12912] zswapped 0
[ 3235.405907][T12912] file_mapped 393216
[ 3235.405907][T12912] file_dirty 0
[ 3235.405907][T12912] file_writeback 0
[ 3235.405907][T12912] swapcached 0
[ 3235.405907][T12912] anon_thp 0
[ 3235.405907][T12912] file_thp 0
[ 3235.405907][T12912] shmem_thp 0
[ 3235.405907][T12912] inactive_anon 212992
[ 3235.405907][T12912] active_anon 299008
[ 3235.405907][T12912] inactive_file 0
[ 3235.405907][T12912] active_file 0
[ 3235.405907][T12912] unevictable 0
[ 3235.405907][T12912] slab_reclaimable 216400
[ 3235.405907][T12912] slab_unreclaimable 308217408
[ 3235.501536][T12912] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12912,uid=0
[ 3235.517682][T12912] Memory cgroup out of memory: Killed process 12912 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:16 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40348)

10:33:16 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x60ea000000000000}}], 0x2, 0x0)

10:33:16 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x7, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:16 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000080010000000000000000000500010006"], 0x1c}}, 0x0)

[ 3235.535245][T12918] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3235.564442][T12918] CPU: 0 PID: 12918 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3235.573427][T12918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3235.583508][T12918] Call Trace:
[ 3235.586813][T12918]  <TASK>
[ 3235.589768][T12918]  dump_stack_lvl+0xd1/0x138
[ 3235.594401][T12918]  dump_header+0x10b/0x85f
[ 3235.598906][T12918]  oom_kill_process.cold+0x10/0x15
[ 3235.604069][T12918]  out_of_memory+0x35c/0x14a0
[ 3235.608806][T12918]  ? oom_killer_disable+0x280/0x280
[ 3235.614075][T12918]  ? find_held_lock+0x2d/0x110
[ 3235.618894][T12918]  mem_cgroup_out_of_memory+0x206/0x270
[ 3235.624493][T12918]  ? mem_cgroup_margin+0x130/0x130
[ 3235.629634][T12918]  ? lock_downgrade+0x6e0/0x6e0
[ 3235.634509][T12918]  try_charge_memcg+0xefb/0x12f0
[ 3235.639463][T12918]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3235.645461][T12918]  ? lock_downgrade+0x6e0/0x6e0
[ 3235.650332][T12918]  charge_memcg+0x90/0x3b0
[ 3235.654762][T12918]  __mem_cgroup_charge+0x2b/0x90
[ 3235.659713][T12918]  do_wp_page+0x7ec/0x3370
[ 3235.664150][T12918]  ? lock_release+0x810/0x810
[ 3235.668837][T12918]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3235.674577][T12918]  ? do_raw_spin_lock+0x124/0x2b0
[ 3235.679615][T12918]  ? rwlock_bug.part.0+0x90/0x90
[ 3235.684561][T12918]  ? lock_chain_count+0x20/0x20
[ 3235.689430][T12918]  __handle_mm_fault+0x1f58/0x3c90
[ 3235.694566][T12918]  ? vm_iomap_memory+0x190/0x190
[ 3235.699543][T12918]  handle_mm_fault+0x1b6/0x850
[ 3235.704333][T12918]  do_user_addr_fault+0x475/0x1210
[ 3235.709460][T12918]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3235.715041][T12918]  exc_page_fault+0x98/0x170
[ 3235.719649][T12918]  asm_exc_page_fault+0x26/0x30
[ 3235.724512][T12918] RIP: 0033:0x7fbb9f039570
[ 3235.728936][T12918] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3235.748566][T12918] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3235.754640][T12918] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3235.762619][T12918] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3235.770942][T12918] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3235.778916][T12918] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3235.786892][T12918] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3235.794871][T12918]  ? __sys_socket+0x7c/0x250
[ 3235.799500][T12918]  </TASK>
[ 3235.822245][T12918] memory: usage 307200kB, limit 307200kB, failcnt 157454
[ 3235.830018][T12918] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3235.837427][T12918] Memory cgroup stats for /syz4:
[ 3235.837609][T12918] anon 102400
[ 3235.837609][T12918] file 438272
[ 3235.837609][T12918] kernel 314028032
[ 3235.837609][T12918] kernel_stack 65536
[ 3235.837609][T12918] pagetables 73728
[ 3235.837609][T12918] sec_pagetables 0
[ 3235.837609][T12918] percpu 5617088
[ 3235.837609][T12918] sock 4096
[ 3235.837609][T12918] vmalloc 0
[ 3235.837609][T12918] shmem 438272
[ 3235.837609][T12918] zswap 0
[ 3235.837609][T12918] zswapped 0
[ 3235.837609][T12918] file_mapped 393216
[ 3235.837609][T12918] file_dirty 0
[ 3235.837609][T12918] file_writeback 0
[ 3235.837609][T12918] swapcached 0
[ 3235.837609][T12918] anon_thp 0
[ 3235.837609][T12918] file_thp 0
[ 3235.837609][T12918] shmem_thp 0
[ 3235.837609][T12918] inactive_anon 114688
[ 3235.837609][T12918] active_anon 425984
[ 3235.837609][T12918] inactive_file 0
[ 3235.837609][T12918] active_file 0
[ 3235.837609][T12918] unevictable 0
[ 3235.837609][T12918] slab_reclaimable 23024
[ 3235.837609][T12918] slab_unreclaimable 308214616
10:33:16 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e41, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:16 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x74)

10:33:16 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x8, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:16 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x610ec40800000000}}], 0x2, 0x0)

10:33:16 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000030000000000000000000500010006"], 0x1c}}, 0x0)

[ 3235.933227][T12918] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12918,uid=0
[ 3235.949783][T12918] Memory cgroup out of memory: Killed process 12918 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3235.981247][T12937] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
10:33:16 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x6300000000000000}}], 0x2, 0x0)

10:33:16 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x9, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3236.036291][T12937] CPU: 0 PID: 12937 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3236.045030][T12937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3236.055114][T12937] Call Trace:
[ 3236.058417][T12937]  <TASK>
[ 3236.061372][T12937]  dump_stack_lvl+0xd1/0x138
[ 3236.066004][T12937]  dump_header+0x10b/0x85f
[ 3236.070473][T12937]  oom_kill_process.cold+0x10/0x15
[ 3236.075632][T12937]  out_of_memory+0x35c/0x14a0
[ 3236.080442][T12937]  ? find_held_lock+0x2d/0x110
[ 3236.085245][T12937]  ? oom_killer_disable+0x280/0x280
[ 3236.090496][T12937]  ? find_held_lock+0x2d/0x110
[ 3236.095304][T12937]  mem_cgroup_out_of_memory+0x206/0x270
[ 3236.100872][T12937]  ? mem_cgroup_margin+0x130/0x130
[ 3236.105998][T12937]  ? lock_downgrade+0x6e0/0x6e0
[ 3236.110871][T12937]  try_charge_memcg+0xefb/0x12f0
[ 3236.115827][T12937]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3236.121819][T12937]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3236.127560][T12937]  ? lock_downgrade+0x6e0/0x6e0
[ 3236.132419][T12937]  ? lock_downgrade+0x6e0/0x6e0
[ 3236.137291][T12937]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3236.142851][T12937]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3236.149036][T12937]  copy_process+0x4e3/0x7520
[ 3236.153640][T12937]  ? __lock_acquire+0xbc3/0x56d0
[ 3236.158597][T12937]  ? __cleanup_sighand+0xb0/0xb0
[ 3236.163546][T12937]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3236.169535][T12937]  ? psi_memstall_leave+0x174/0x250
[ 3236.174756][T12937]  kernel_clone+0xeb/0x990
[ 3236.179186][T12937]  ? create_io_thread+0xf0/0xf0
[ 3236.184052][T12937]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3236.190311][T12937]  ? lock_downgrade+0x6e0/0x6e0
[ 3236.195178][T12937]  __do_sys_clone+0xba/0x100
[ 3236.199778][T12937]  ? kernel_clone+0x990/0x990
[ 3236.204495][T12937]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3236.210424][T12937]  do_syscall_64+0x39/0xb0
[ 3236.214881][T12937]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3236.220812][T12937] RIP: 0033:0x7f36ee08d4f1
[ 3236.225339][T12937] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3236.244969][T12937] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3236.253404][T12937] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3236.261490][T12937] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3236.269490][T12937] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3236.277474][T12937] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
10:33:17 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000e8030000000000000000000500010006"], 0x1c}}, 0x0)

[ 3236.285460][T12937] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3236.293476][T12937]  </TASK>
[ 3236.354786][T12937] memory: usage 307200kB, limit 307200kB, failcnt 33570
[ 3236.362297][T12937] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3236.369598][T12937] Memory cgroup stats for /syz5:
[ 3236.369779][T12937] anon 86016
[ 3236.369779][T12937] file 425984
[ 3236.369779][T12937] kernel 314060800
[ 3236.369779][T12937] kernel_stack 32768
[ 3236.369779][T12937] pagetables 77824
[ 3236.369779][T12937] sec_pagetables 0
[ 3236.369779][T12937] percpu 5430016
[ 3236.369779][T12937] sock 0
[ 3236.369779][T12937] vmalloc 8192
[ 3236.369779][T12937] shmem 425984
[ 3236.369779][T12937] zswap 0
[ 3236.369779][T12937] zswapped 0
[ 3236.369779][T12937] file_mapped 393216
[ 3236.369779][T12937] file_dirty 0
[ 3236.369779][T12937] file_writeback 0
[ 3236.369779][T12937] swapcached 0
[ 3236.369779][T12937] anon_thp 0
[ 3236.369779][T12937] file_thp 0
[ 3236.369779][T12937] shmem_thp 0
[ 3236.369779][T12937] inactive_anon 212992
[ 3236.369779][T12937] active_anon 299008
[ 3236.369779][T12937] inactive_file 0
[ 3236.369779][T12937] active_file 0
[ 3236.369779][T12937] unevictable 0
[ 3236.369779][T12937] slab_reclaimable 216400
[ 3236.369779][T12937] slab_unreclaimable 308229192
[ 3236.477005][T12937] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12937,uid=0
[ 3236.493304][T12937] Memory cgroup out of memory: Killed process 12937 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3236.513523][T12951] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000
[ 3236.530428][T12951] CPU: 1 PID: 12951 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3236.539159][T12951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3236.549238][T12951] Call Trace:
[ 3236.552539][T12951]  <TASK>
[ 3236.555497][T12951]  dump_stack_lvl+0xd1/0x138
[ 3236.560131][T12951]  dump_header+0x10b/0x85f
[ 3236.564605][T12951]  oom_kill_process.cold+0x10/0x15
[ 3236.570125][T12951]  out_of_memory+0x35c/0x14a0
[ 3236.574860][T12951]  ? oom_killer_disable+0x280/0x280
[ 3236.580128][T12951]  ? find_held_lock+0x2d/0x110
[ 3236.584958][T12951]  mem_cgroup_out_of_memory+0x206/0x270
[ 3236.590564][T12951]  ? mem_cgroup_margin+0x130/0x130
[ 3236.595717][T12951]  ? lock_downgrade+0x6e0/0x6e0
[ 3236.600626][T12951]  try_charge_memcg+0xefb/0x12f0
10:33:17 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40349)

10:33:17 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x6400000000000000}}], 0x2, 0x0)

10:33:17 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xa, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:17 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000050000000000000000000500010006"], 0x1c}}, 0x0)

[ 3236.605608][T12951]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3236.611631][T12951]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3236.617403][T12951]  ? lock_downgrade+0x6e0/0x6e0
[ 3236.622312][T12951]  obj_cgroup_charge+0x2af/0x5e0
[ 3236.627298][T12951]  __kmem_cache_alloc_node+0xb2/0x430
[ 3236.632699][T12951]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3236.638094][T12951]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3236.643483][T12951]  __kmalloc_node_track_caller+0x4b/0xc0
[ 3236.649140][T12951]  kmemdup+0x2c/0x60
[ 3236.653055][T12951]  neigh_sysctl_register+0x9e/0x5f0
[ 3236.658272][T12951]  ? neigh_stat_seq_show+0x420/0x420
[ 3236.663576][T12951]  ? inetdev_init+0x23d/0x580
[ 3236.668285][T12951]  ? inetdev_event+0xe20/0x16c0
[ 3236.673148][T12951]  ? notifier_call_chain+0xb5/0x200
[ 3236.678363][T12951]  ? call_netdevice_notifiers_info+0xb5/0x130
[ 3236.684462][T12951]  ? register_netdevice+0xfb4/0x1640
[ 3236.689777][T12951]  ? br_dev_newlink+0x27/0x110
[ 3236.694583][T12951]  ? __rtnl_newlink+0x10c2/0x1840
[ 3236.699638][T12951]  ? rtnl_newlink+0x68/0xa0
[ 3236.704154][T12951]  ? rtnetlink_rcv_msg+0x43e/0xca0
[ 3236.709279][T12951]  ? netlink_rcv_skb+0x165/0x440
[ 3236.714238][T12951]  ? netlink_unicast+0x547/0x7f0
[ 3236.719200][T12951]  ? netlink_sendmsg+0x91b/0xe10
[ 3236.724158][T12951]  ? sock_sendmsg+0xd3/0x120
[ 3236.728764][T12951]  ? ____sys_sendmsg+0x712/0x8c0
[ 3236.733733][T12951]  ? ___sys_sendmsg+0x110/0x1b0
[ 3236.738623][T12951]  devinet_sysctl_register+0xb1/0x230
[ 3236.744028][T12951]  inetdev_init+0x286/0x580
[ 3236.748564][T12951]  inetdev_event+0xe20/0x16c0
[ 3236.753265][T12951]  ? del_default_gids+0xe0/0xe0
[ 3236.758137][T12951]  ? is_ndev_for_default_gid_filter.part.0+0x2e0/0x2e0
[ 3236.765016][T12951]  ? devinet_init_net+0x650/0x650
[ 3236.770061][T12951]  ? skb_dequeue+0x129/0x180
[ 3236.774669][T12951]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3236.780610][T12951]  notifier_call_chain+0xb5/0x200
[ 3236.785667][T12951]  call_netdevice_notifiers_info+0xb5/0x130
[ 3236.791595][T12951]  register_netdevice+0xfb4/0x1640
[ 3236.796735][T12951]  ? unregister_netdevice_queue+0x3c0/0x3c0
[ 3236.802660][T12951]  br_dev_newlink+0x27/0x110
[ 3236.807275][T12951]  ? br_changelink+0x1620/0x1620
[ 3236.812235][T12951]  __rtnl_newlink+0x10c2/0x1840
[ 3236.817117][T12951]  ? rtnl_link_unregister+0x250/0x250
[ 3236.822542][T12951]  rtnl_newlink+0x68/0xa0
[ 3236.826890][T12951]  ? __rtnl_newlink+0x1840/0x1840
[ 3236.831928][T12951]  rtnetlink_rcv_msg+0x43e/0xca0
[ 3236.836883][T12951]  ? rtnl_getlink+0xae0/0xae0
[ 3236.841577][T12951]  ? __dev_queue_xmit+0xb54/0x3ba0
[ 3236.846723][T12951]  netlink_rcv_skb+0x165/0x440
[ 3236.851511][T12951]  ? rtnl_getlink+0xae0/0xae0
[ 3236.856204][T12951]  ? netlink_ack+0x1370/0x1370
[ 3236.861003][T12951]  ? netlink_deliver_tap+0x1b1/0xc50
[ 3236.866313][T12951]  netlink_unicast+0x547/0x7f0
[ 3236.871106][T12951]  ? netlink_attachskb+0x890/0x890
[ 3236.876234][T12951]  ? __virt_addr_valid+0x61/0x2e0
[ 3236.881278][T12951]  ? __phys_addr_symbol+0x30/0x70
[ 3236.886318][T12951]  ? __check_object_size+0x2e2/0x5a0
[ 3236.891627][T12951]  netlink_sendmsg+0x91b/0xe10
[ 3236.896423][T12951]  ? netlink_unicast+0x7f0/0x7f0
[ 3236.901394][T12951]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3236.906705][T12951]  ? netlink_unicast+0x7f0/0x7f0
[ 3236.911676][T12951]  sock_sendmsg+0xd3/0x120
[ 3236.916122][T12951]  ____sys_sendmsg+0x712/0x8c0
[ 3236.920908][T12951]  ? copy_msghdr_from_user+0xfc/0x150
[ 3236.926299][T12951]  ? kernel_sendmsg+0x50/0x50
[ 3236.930999][T12951]  ? futex_unqueue+0xb7/0x120
[ 3236.935695][T12951]  ___sys_sendmsg+0x110/0x1b0
[ 3236.940391][T12951]  ? do_recvmmsg+0x6e0/0x6e0
[ 3236.945007][T12951]  ? __fget_files+0x248/0x440
[ 3236.949694][T12951]  ? lock_downgrade+0x6e0/0x6e0
[ 3236.954565][T12951]  ? __fget_files+0x26a/0x440
[ 3236.959253][T12951]  ? __fget_light+0xe5/0x270
[ 3236.963859][T12951]  __sys_sendmsg+0xf7/0x1c0
[ 3236.968383][T12951]  ? __sys_sendmsg_sock+0x40/0x40
[ 3236.973428][T12951]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3236.979361][T12951]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3236.985266][T12951]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3236.990477][T12951]  do_syscall_64+0x39/0xb0
[ 3236.994912][T12951]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3237.000812][T12951] RIP: 0033:0x7fde80a8c0c9
[ 3237.005236][T12951] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3237.024850][T12951] RSP: 002b:00007fde818ce168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3237.033273][T12951] RAX: ffffffffffffffda RBX: 00007fde80babf80 RCX: 00007fde80a8c0c9
[ 3237.041249][T12951] RDX: 0000000000000074 RSI: 00000000200000c0 RDI: 0000000000000003
[ 3237.049224][T12951] RBP: 00007fde80ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3237.057199][T12951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3237.065183][T12951] R13: 00007ffd6245db6f R14: 00007fde818ce300 R15: 0000000000022000
[ 3237.073186][T12951]  </TASK>
[ 3237.094480][T12951] memory: usage 307200kB, limit 307200kB, failcnt 40283
[ 3237.125172][T12951] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3237.134986][T12951] Memory cgroup stats for /syz2:
[ 3237.135185][T12951] anon 135168
[ 3237.135185][T12951] file 307200
[ 3237.135185][T12951] kernel 314097664
[ 3237.135185][T12951] kernel_stack 32768
[ 3237.135185][T12951] pagetables 86016
[ 3237.135185][T12951] sec_pagetables 0
[ 3237.135185][T12951] percpu 5433440
[ 3237.135185][T12951] sock 0
[ 3237.135185][T12951] vmalloc 16384
[ 3237.135185][T12951] shmem 307200
[ 3237.135185][T12951] zswap 0
[ 3237.135185][T12951] zswapped 0
[ 3237.135185][T12951] file_mapped 299008
[ 3237.135185][T12951] file_dirty 0
[ 3237.135185][T12951] file_writeback 0
[ 3237.135185][T12951] swapcached 0
[ 3237.135185][T12951] anon_thp 0
[ 3237.135185][T12951] file_thp 0
[ 3237.135185][T12951] shmem_thp 0
[ 3237.135185][T12951] inactive_anon 143360
[ 3237.135185][T12951] active_anon 299008
[ 3237.135185][T12951] inactive_file 0
[ 3237.135185][T12951] active_file 0
[ 3237.135185][T12951] unevictable 0
[ 3237.135185][T12951] slab_reclaimable 112984
[ 3237.135185][T12951] slab_unreclaimable 308388424
[ 3237.233734][T12951] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12940,uid=0
[ 3237.252722][T12951] Memory cgroup out of memory: Killed process 12951 (syz-executor.2) total-vm:54540kB, anon-rss:504kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3237.290712][T12959] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3237.310417][T12959] CPU: 0 PID: 12959 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3237.319227][T12959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3237.329296][T12959] Call Trace:
[ 3237.332590][T12959]  <TASK>
[ 3237.335514][T12959]  dump_stack_lvl+0xd1/0x138
[ 3237.340105][T12959]  dump_header+0x10b/0x85f
[ 3237.344537][T12959]  oom_kill_process.cold+0x10/0x15
[ 3237.349666][T12959]  out_of_memory+0x35c/0x14a0
[ 3237.354361][T12959]  ? find_held_lock+0x2d/0x110
[ 3237.359139][T12959]  ? oom_killer_disable+0x280/0x280
[ 3237.364357][T12959]  ? find_held_lock+0x2d/0x110
[ 3237.369169][T12959]  mem_cgroup_out_of_memory+0x206/0x270
[ 3237.374753][T12959]  ? mem_cgroup_margin+0x130/0x130
[ 3237.379900][T12959]  ? lock_downgrade+0x6e0/0x6e0
[ 3237.384788][T12959]  try_charge_memcg+0xefb/0x12f0
[ 3237.389752][T12959]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3237.395726][T12959]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3237.401449][T12959]  ? lock_downgrade+0x6e0/0x6e0
[ 3237.406297][T12959]  ? lock_downgrade+0x6e0/0x6e0
[ 3237.411148][T12959]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3237.416704][T12959]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3237.422894][T12959]  copy_process+0x4e3/0x7520
[ 3237.427515][T12959]  ? __lock_acquire+0xbc3/0x56d0
[ 3237.432468][T12959]  ? __cleanup_sighand+0xb0/0xb0
[ 3237.437398][T12959]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3237.443369][T12959]  ? psi_memstall_leave+0x174/0x250
[ 3237.448570][T12959]  kernel_clone+0xeb/0x990
[ 3237.452982][T12959]  ? create_io_thread+0xf0/0xf0
[ 3237.457827][T12959]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3237.464067][T12959]  ? lock_downgrade+0x6e0/0x6e0
[ 3237.468938][T12959]  __do_sys_clone+0xba/0x100
[ 3237.473551][T12959]  ? kernel_clone+0x990/0x990
[ 3237.478270][T12959]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3237.484186][T12959]  do_syscall_64+0x39/0xb0
[ 3237.488599][T12959]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3237.494486][T12959] RIP: 0033:0x7f36ee08d4f1
[ 3237.498905][T12959] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3237.518518][T12959] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3237.527041][T12959] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3237.535036][T12959] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3237.543029][T12959] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3237.551027][T12959] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3237.559005][T12959] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3237.567001][T12959]  </TASK>
[ 3237.583924][T12959] memory: usage 307200kB, limit 307200kB, failcnt 33686
[ 3237.591337][T12959] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3237.598731][T12959] Memory cgroup stats for /syz5:
[ 3237.598947][T12959] anon 86016
[ 3237.598947][T12959] file 425984
[ 3237.598947][T12959] kernel 314044416
[ 3237.598947][T12959] kernel_stack 32768
[ 3237.598947][T12959] pagetables 77824
[ 3237.598947][T12959] sec_pagetables 0
[ 3237.598947][T12959] percpu 5429952
[ 3237.598947][T12959] sock 0
[ 3237.598947][T12959] vmalloc 8192
[ 3237.598947][T12959] shmem 425984
[ 3237.598947][T12959] zswap 0
[ 3237.598947][T12959] zswapped 0
[ 3237.598947][T12959] file_mapped 393216
[ 3237.598947][T12959] file_dirty 0
[ 3237.598947][T12959] file_writeback 0
[ 3237.598947][T12959] swapcached 0
[ 3237.598947][T12959] anon_thp 0
[ 3237.598947][T12959] file_thp 0
[ 3237.598947][T12959] shmem_thp 0
[ 3237.598947][T12959] inactive_anon 196608
[ 3237.598947][T12959] active_anon 299008
[ 3237.598947][T12959] inactive_file 0
[ 3237.598947][T12959] active_file 0
[ 3237.598947][T12959] unevictable 0
[ 3237.598947][T12959] slab_reclaimable 216400
[ 3237.598947][T12959] slab_unreclaimable 308219960
[ 3237.696231][T12959] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12959,uid=0
[ 3237.711935][T12959] Memory cgroup out of memory: Killed process 12959 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3237.729468][T12952] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3237.746541][T12952] CPU: 0 PID: 12952 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3237.755259][T12952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3237.765335][T12952] Call Trace:
[ 3237.768633][T12952]  <TASK>
[ 3237.771586][T12952]  dump_stack_lvl+0xd1/0x138
[ 3237.776216][T12952]  dump_header+0x10b/0x85f
[ 3237.780680][T12952]  oom_kill_process.cold+0x10/0x15
[ 3237.785841][T12952]  out_of_memory+0x35c/0x14a0
[ 3237.790572][T12952]  ? oom_killer_disable+0x280/0x280
[ 3237.795851][T12952]  ? find_held_lock+0x2d/0x110
[ 3237.800664][T12952]  mem_cgroup_out_of_memory+0x206/0x270
[ 3237.806252][T12952]  ? mem_cgroup_margin+0x130/0x130
[ 3237.811407][T12952]  ? lock_downgrade+0x6e0/0x6e0
[ 3237.816316][T12952]  try_charge_memcg+0xefb/0x12f0
[ 3237.821298][T12952]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3237.827320][T12952]  ? lock_downgrade+0x6e0/0x6e0
[ 3237.832197][T12952]  charge_memcg+0x90/0x3b0
[ 3237.836630][T12952]  __mem_cgroup_charge+0x2b/0x90
[ 3237.841563][T12952]  do_wp_page+0x7ec/0x3370
[ 3237.845980][T12952]  ? lock_release+0x810/0x810
[ 3237.850647][T12952]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3237.856035][T12952]  ? do_raw_spin_lock+0x124/0x2b0
[ 3237.861081][T12952]  ? rwlock_bug.part.0+0x90/0x90
[ 3237.866032][T12952]  ? lock_chain_count+0x20/0x20
[ 3237.870898][T12952]  __handle_mm_fault+0x1f58/0x3c90
[ 3237.876037][T12952]  ? vm_iomap_memory+0x190/0x190
[ 3237.881011][T12952]  handle_mm_fault+0x1b6/0x850
[ 3237.885796][T12952]  do_user_addr_fault+0x475/0x1210
[ 3237.890922][T12952]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3237.896503][T12952]  exc_page_fault+0x98/0x170
[ 3237.901103][T12952]  asm_exc_page_fault+0x26/0x30
[ 3237.905960][T12952] RIP: 0033:0x7fbb9f039570
[ 3237.910377][T12952] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3237.929998][T12952] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3237.936076][T12952] RAX: 000000000cb6f9d9 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3237.944050][T12952] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5b1b00
[ 3237.952068][T12952] RBP: 000000000cb6f9d9 R08: 00000000000019d9 R09: 000000000cb6f9dd
[ 3237.960045][T12952] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3237.968018][T12952] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff87beef82
[ 3237.975996][T12952]  ? __sock_create+0x62/0x790
[ 3237.980712][T12952]  </TASK>
[ 3237.987492][T12952] memory: usage 307200kB, limit 307200kB, failcnt 157571
[ 3237.997603][T12952] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3238.004950][T12952] Memory cgroup stats for /syz4:
[ 3238.005159][T12952] anon 114688
[ 3238.005159][T12952] file 438272
[ 3238.005159][T12952] kernel 313995264
[ 3238.005159][T12952] kernel_stack 65536
[ 3238.005159][T12952] pagetables 73728
[ 3238.005159][T12952] sec_pagetables 0
[ 3238.005159][T12952] percpu 5616960
[ 3238.005159][T12952] sock 4096
[ 3238.005159][T12952] vmalloc 0
[ 3238.005159][T12952] shmem 438272
[ 3238.005159][T12952] zswap 0
[ 3238.005159][T12952] zswapped 0
[ 3238.005159][T12952] file_mapped 393216
[ 3238.005159][T12952] file_dirty 0
[ 3238.005159][T12952] file_writeback 0
[ 3238.005159][T12952] swapcached 0
[ 3238.005159][T12952] anon_thp 0
[ 3238.005159][T12952] file_thp 0
[ 3238.005159][T12952] shmem_thp 0
[ 3238.005159][T12952] inactive_anon 126976
[ 3238.005159][T12952] active_anon 425984
[ 3238.005159][T12952] inactive_file 0
[ 3238.005159][T12952] active_file 0
[ 3238.005159][T12952] unevictable 0
[ 3238.005159][T12952] slab_reclaimable 23024
10:33:18 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e41, 0x0, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:18 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xe, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:18 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x643a000000000000}}], 0x2, 0x0)

10:33:18 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000060000000000000000000500010006"], 0x1c}}, 0x0)

10:33:18 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4034a)

10:33:18 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x7a)

[ 3238.005159][T12952] slab_unreclaimable 308191352
[ 3238.107926][T12952] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12952,uid=0
[ 3238.124085][T12952] Memory cgroup out of memory: Killed process 12952 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:19 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000070000000000000000000500010006"], 0x1c}}, 0x0)

10:33:19 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x10, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:19 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x653a000000000000}}], 0x2, 0x0)

[ 3238.265330][T12968] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
10:33:19 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000090000000000000000000500010006"], 0x1c}}, 0x0)

10:33:19 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x6800000000000000}}], 0x2, 0x0)

[ 3238.310112][T12968] CPU: 0 PID: 12968 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3238.318839][T12968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3238.328917][T12968] Call Trace:
[ 3238.332224][T12968]  <TASK>
[ 3238.335180][T12968]  dump_stack_lvl+0xd1/0x138
[ 3238.339813][T12968]  dump_header+0x10b/0x85f
[ 3238.344264][T12968]  oom_kill_process.cold+0x10/0x15
[ 3238.349426][T12968]  out_of_memory+0x35c/0x14a0
[ 3238.354154][T12968]  ? find_held_lock+0x2d/0x110
10:33:19 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x6c00000000000000}}], 0x2, 0x0)

[ 3238.358962][T12968]  ? oom_killer_disable+0x280/0x280
[ 3238.364208][T12968]  ? find_held_lock+0x2d/0x110
[ 3238.369031][T12968]  mem_cgroup_out_of_memory+0x206/0x270
[ 3238.374623][T12968]  ? mem_cgroup_margin+0x130/0x130
[ 3238.379785][T12968]  ? lock_downgrade+0x6e0/0x6e0
[ 3238.384684][T12968]  try_charge_memcg+0xefb/0x12f0
[ 3238.389665][T12968]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3238.395686][T12968]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3238.401448][T12968]  ? lock_downgrade+0x6e0/0x6e0
[ 3238.406332][T12968]  ? lock_downgrade+0x6e0/0x6e0
[ 3238.411231][T12968]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3238.416815][T12968]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3238.423006][T12968]  copy_process+0x4e3/0x7520
[ 3238.427720][T12968]  ? __lock_acquire+0xbc3/0x56d0
[ 3238.432699][T12968]  ? __cleanup_sighand+0xb0/0xb0
[ 3238.437667][T12968]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3238.443677][T12968]  ? psi_memstall_leave+0x174/0x250
[ 3238.448918][T12968]  kernel_clone+0xeb/0x990
[ 3238.453370][T12968]  ? create_io_thread+0xf0/0xf0
[ 3238.458253][T12968]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3238.464542][T12968]  ? lock_downgrade+0x6e0/0x6e0
[ 3238.469437][T12968]  __do_sys_clone+0xba/0x100
[ 3238.474053][T12968]  ? kernel_clone+0x990/0x990
[ 3238.478868][T12968]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3238.484806][T12968]  do_syscall_64+0x39/0xb0
[ 3238.489263][T12968]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3238.495183][T12968] RIP: 0033:0x7f36ee08d4f1
[ 3238.499618][T12968] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3238.519246][T12968] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3238.527695][T12968] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3238.535685][T12968] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3238.543721][T12968] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3238.551726][T12968] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3238.559724][T12968] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3238.567764][T12968]  </TASK>
[ 3238.590918][T12968] memory: usage 307184kB, limit 307200kB, failcnt 33785
[ 3238.598540][T12968] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3238.605789][T12968] Memory cgroup stats for /syz5:
[ 3238.606011][T12968] anon 86016
[ 3238.606011][T12968] file 425984
[ 3238.606011][T12968] kernel 314044416
[ 3238.606011][T12968] kernel_stack 32768
[ 3238.606011][T12968] pagetables 77824
[ 3238.606011][T12968] sec_pagetables 0
[ 3238.606011][T12968] percpu 5429952
[ 3238.606011][T12968] sock 0
[ 3238.606011][T12968] vmalloc 8192
[ 3238.606011][T12968] shmem 425984
[ 3238.606011][T12968] zswap 0
[ 3238.606011][T12968] zswapped 0
[ 3238.606011][T12968] file_mapped 393216
[ 3238.606011][T12968] file_dirty 0
[ 3238.606011][T12968] file_writeback 0
[ 3238.606011][T12968] swapcached 0
[ 3238.606011][T12968] anon_thp 0
[ 3238.606011][T12968] file_thp 0
[ 3238.606011][T12968] shmem_thp 0
[ 3238.606011][T12968] inactive_anon 212992
[ 3238.606011][T12968] active_anon 299008
[ 3238.606011][T12968] inactive_file 0
[ 3238.606011][T12968] active_file 0
[ 3238.606011][T12968] unevictable 0
[ 3238.606011][T12968] slab_reclaimable 216400
[ 3238.606011][T12968] slab_unreclaimable 308217712
[ 3238.715101][T12968] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12968,uid=0
[ 3238.731190][T12968] Memory cgroup out of memory: Killed process 12968 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3238.749176][T12969] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3238.794986][T12969] CPU: 1 PID: 12969 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3238.803717][T12969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3238.813779][T12969] Call Trace:
[ 3238.817060][T12969]  <TASK>
[ 3238.820007][T12969]  dump_stack_lvl+0xd1/0x138
[ 3238.824626][T12969]  dump_header+0x10b/0x85f
[ 3238.829075][T12969]  oom_kill_process.cold+0x10/0x15
[ 3238.834210][T12969]  out_of_memory+0x35c/0x14a0
[ 3238.838916][T12969]  ? oom_killer_disable+0x280/0x280
[ 3238.844160][T12969]  ? find_held_lock+0x2d/0x110
[ 3238.848947][T12969]  mem_cgroup_out_of_memory+0x206/0x270
[ 3238.854514][T12969]  ? mem_cgroup_margin+0x130/0x130
[ 3238.859641][T12969]  ? lock_downgrade+0x6e0/0x6e0
[ 3238.864517][T12969]  try_charge_memcg+0xefb/0x12f0
[ 3238.869560][T12969]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3238.875571][T12969]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3238.881327][T12969]  ? lock_downgrade+0x6e0/0x6e0
[ 3238.886214][T12969]  obj_cgroup_charge+0x2af/0x5e0
[ 3238.891173][T12969]  ? __anon_vma_prepare+0x64/0x580
[ 3238.896299][T12969]  kmem_cache_alloc+0xb5/0x430
[ 3238.901075][T12969]  __anon_vma_prepare+0x64/0x580
[ 3238.906029][T12969]  ? __pmd_alloc+0x30c/0x5d0
[ 3238.910642][T12969]  __handle_mm_fault+0x392f/0x3c90
[ 3238.915776][T12969]  ? vm_iomap_memory+0x190/0x190
[ 3238.920754][T12969]  handle_mm_fault+0x1b6/0x850
[ 3238.925552][T12969]  do_user_addr_fault+0x475/0x1210
[ 3238.930683][T12969]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3238.936259][T12969]  exc_page_fault+0x98/0x170
[ 3238.940869][T12969]  asm_exc_page_fault+0x26/0x30
[ 3238.945732][T12969] RIP: 0033:0x7fde80a2bd49
[ 3238.950158][T12969] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3238.969780][T12969] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3238.975854][T12969] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3238.983829][T12969] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3238.991809][T12969] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3238.999789][T12969] R10: 00007fde80600068 R11: 0000000000000246 R12: 000000000031693c
[ 3239.007763][T12969] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3239.015756][T12969]  </TASK>
[ 3239.030993][T12969] memory: usage 307192kB, limit 307200kB, failcnt 40389
[ 3239.038186][T12969] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3239.045472][T12969] Memory cgroup stats for /syz2:
[ 3239.045677][T12969] anon 131072
[ 3239.045677][T12969] file 307200
[ 3239.045677][T12969] kernel 314126336
[ 3239.045677][T12969] kernel_stack 65536
[ 3239.045677][T12969] pagetables 86016
[ 3239.045677][T12969] sec_pagetables 0
[ 3239.045677][T12969] percpu 5433504
[ 3239.045677][T12969] sock 0
[ 3239.045677][T12969] vmalloc 16384
[ 3239.045677][T12969] shmem 307200
[ 3239.045677][T12969] zswap 0
[ 3239.045677][T12969] zswapped 0
[ 3239.045677][T12969] file_mapped 299008
[ 3239.045677][T12969] file_dirty 0
[ 3239.045677][T12969] file_writeback 0
[ 3239.045677][T12969] swapcached 0
[ 3239.045677][T12969] anon_thp 0
[ 3239.045677][T12969] file_thp 0
[ 3239.045677][T12969] shmem_thp 0
[ 3239.045677][T12969] inactive_anon 139264
[ 3239.045677][T12969] active_anon 299008
[ 3239.045677][T12969] inactive_file 0
[ 3239.045677][T12969] active_file 0
[ 3239.045677][T12969] unevictable 0
[ 3239.045677][T12969] slab_reclaimable 112984
[ 3239.045677][T12969] slab_unreclaimable 308382120
[ 3239.147699][T12969] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12969,uid=0
[ 3239.163765][T12969] Memory cgroup out of memory: Killed process 12969 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3239.205933][T12982] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3239.216400][T12982] CPU: 0 PID: 12982 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3239.225125][T12982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3239.235189][T12982] Call Trace:
[ 3239.238475][T12982]  <TASK>
[ 3239.241403][T12982]  dump_stack_lvl+0xd1/0x138
[ 3239.245992][T12982]  dump_header+0x10b/0x85f
[ 3239.250408][T12982]  oom_kill_process.cold+0x10/0x15
[ 3239.255518][T12982]  out_of_memory+0x35c/0x14a0
[ 3239.260202][T12982]  ? oom_killer_disable+0x280/0x280
[ 3239.265399][T12982]  ? find_held_lock+0x2d/0x110
[ 3239.270161][T12982]  mem_cgroup_out_of_memory+0x206/0x270
[ 3239.275721][T12982]  ? mem_cgroup_margin+0x130/0x130
[ 3239.280864][T12982]  ? lock_downgrade+0x6e0/0x6e0
[ 3239.285737][T12982]  try_charge_memcg+0xe89/0x12f0
[ 3239.290707][T12982]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3239.296727][T12982]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3239.302472][T12982]  ? lock_downgrade+0x6e0/0x6e0
[ 3239.307335][T12982]  ? lock_downgrade+0x6e0/0x6e0
[ 3239.312215][T12982]  obj_cgroup_charge+0x2af/0x5e0
[ 3239.317198][T12982]  kmem_cache_alloc_lru+0x145/0x760
[ 3239.322405][T12982]  ? sock_alloc_inode+0x27/0x1d0
[ 3239.327371][T12982]  sock_alloc_inode+0x27/0x1d0
[ 3239.332154][T12982]  ? sock_free_inode+0x30/0x30
[ 3239.336932][T12982]  alloc_inode+0x61/0x230
[ 3239.341290][T12982]  new_inode_pseudo+0x17/0x80
[ 3239.345982][T12982]  sock_alloc+0x40/0x260
[ 3239.350237][T12982]  __sock_create+0xbd/0x790
[ 3239.354775][T12982]  __sys_socket+0x133/0x250
[ 3239.359293][T12982]  ? __sys_socket_file+0x1f0/0x1f0
[ 3239.364430][T12982]  __x64_sys_socket+0x73/0xb0
[ 3239.369121][T12982]  do_syscall_64+0x39/0xb0
[ 3239.373553][T12982]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3239.379469][T12982] RIP: 0033:0x7fbb9f08c0c9
[ 3239.383897][T12982] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3239.403622][T12982] RSP: 002b:00007fbb9fe42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3239.412069][T12982] RAX: ffffffffffffffda RBX: 00007fbb9f1abf80 RCX: 00007fbb9f08c0c9
[ 3239.420055][T12982] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000000a
[ 3239.428041][T12982] RBP: 00007fbb9f0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3239.436024][T12982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3239.444010][T12982] R13: 00007fff7101e80f R14: 00007fbb9fe42300 R15: 0000000000022000
[ 3239.452007][T12982]  </TASK>
[ 3239.465289][T12982] memory: usage 307200kB, limit 307200kB, failcnt 157707
[ 3239.472439][T12982] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3239.479870][T12982] Memory cgroup stats for /syz4:
[ 3239.480048][T12982] anon 102400
[ 3239.480048][T12982] file 438272
[ 3239.480048][T12982] kernel 314028032
[ 3239.480048][T12982] kernel_stack 65536
[ 3239.480048][T12982] pagetables 81920
[ 3239.480048][T12982] sec_pagetables 0
[ 3239.480048][T12982] percpu 5617024
[ 3239.480048][T12982] sock 4096
[ 3239.480048][T12982] vmalloc 0
[ 3239.480048][T12982] shmem 438272
[ 3239.480048][T12982] zswap 0
[ 3239.480048][T12982] zswapped 0
[ 3239.480048][T12982] file_mapped 393216
[ 3239.480048][T12982] file_dirty 0
[ 3239.480048][T12982] file_writeback 0
[ 3239.480048][T12982] swapcached 0
[ 3239.480048][T12982] anon_thp 0
[ 3239.480048][T12982] file_thp 0
[ 3239.480048][T12982] shmem_thp 0
[ 3239.480048][T12982] inactive_anon 110592
[ 3239.480048][T12982] active_anon 425984
[ 3239.480048][T12982] inactive_file 0
[ 3239.480048][T12982] active_file 0
[ 3239.480048][T12982] unevictable 0
10:33:20 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x10, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:20 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000e0000000000000000000500010006"], 0x1c}}, 0x0)

10:33:20 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x11, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:20 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x710b000000000000}}], 0x2, 0x0)

10:33:20 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4034b)

10:33:20 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xd6)

[ 3239.480048][T12982] slab_reclaimable 21096
[ 3239.480048][T12982] slab_unreclaimable 308208888
[ 3239.577457][T12982] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12976,uid=0
[ 3239.593151][T12982] Memory cgroup out of memory: Killed process 12976 (syz-executor.4) total-vm:56720kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:20 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000c00e0000000000000000000500010006"], 0x1c}}, 0x0)

10:33:20 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x30, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:20 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x7400000000000000}}], 0x2, 0x0)

10:33:20 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xea)

10:33:20 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000f0000000000000000000500010006"], 0x1c}}, 0x0)

10:33:20 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x48, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3239.826027][T12993] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3239.876304][T12993] CPU: 0 PID: 12993 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3239.885038][T12993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3239.895113][T12993] Call Trace:
[ 3239.898412][T12993]  <TASK>
[ 3239.901365][T12993]  dump_stack_lvl+0xd1/0x138
[ 3239.905995][T12993]  dump_header+0x10b/0x85f
[ 3239.910453][T12993]  oom_kill_process.cold+0x10/0x15
[ 3239.915603][T12993]  out_of_memory+0x35c/0x14a0
[ 3239.920323][T12993]  ? find_held_lock+0x2d/0x110
[ 3239.925121][T12993]  ? oom_killer_disable+0x280/0x280
[ 3239.930369][T12993]  ? find_held_lock+0x2d/0x110
[ 3239.935179][T12993]  mem_cgroup_out_of_memory+0x206/0x270
[ 3239.940756][T12993]  ? mem_cgroup_margin+0x130/0x130
[ 3239.945882][T12993]  ? lock_downgrade+0x6e0/0x6e0
[ 3239.950754][T12993]  try_charge_memcg+0xefb/0x12f0
[ 3239.955713][T12993]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3239.961708][T12993]  ? lock_downgrade+0x6e0/0x6e0
[ 3239.966581][T12993]  charge_memcg+0x90/0x3b0
[ 3239.971005][T12993]  __mem_cgroup_charge+0x2b/0x90
[ 3239.975949][T12993]  ? copy_mc_to_kernel+0x3e/0x90
[ 3239.980893][T12993]  do_wp_page+0x7ec/0x3370
[ 3239.985331][T12993]  ? lock_release+0x810/0x810
[ 3239.990015][T12993]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3239.995429][T12993]  ? do_raw_spin_lock+0x124/0x2b0
[ 3240.000476][T12993]  ? rwlock_bug.part.0+0x90/0x90
[ 3240.005423][T12993]  ? lock_chain_count+0x20/0x20
[ 3240.010284][T12993]  __handle_mm_fault+0x1f58/0x3c90
[ 3240.015418][T12993]  ? vm_iomap_memory+0x190/0x190
[ 3240.020388][T12993]  handle_mm_fault+0x1b6/0x850
[ 3240.025169][T12993]  do_user_addr_fault+0x475/0x1210
[ 3240.030295][T12993]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3240.035860][T12993]  exc_page_fault+0x98/0x170
[ 3240.040458][T12993]  asm_exc_page_fault+0x26/0x30
[ 3240.045314][T12993] RIP: 0033:0x7f36ee036645
[ 3240.049733][T12993] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
[ 3240.069362][T12993] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
[ 3240.075441][T12993] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3240.083424][T12993] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3240.091409][T12993] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
[ 3240.099386][T12993] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 0000000000316f2f
[ 3240.107380][T12993] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3240.115377][T12993]  </TASK>
[ 3240.158313][T12993] memory: usage 307200kB, limit 307200kB, failcnt 33888
[ 3240.172421][T12993] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3240.179625][T12993] Memory cgroup stats for /syz5:
[ 3240.179781][T12993] anon 94208
[ 3240.179781][T12993] file 425984
[ 3240.179781][T12993] kernel 314052608
[ 3240.179781][T12993] kernel_stack 65536
[ 3240.179781][T12993] pagetables 77824
[ 3240.179781][T12993] sec_pagetables 0
[ 3240.179781][T12993] percpu 5429952
[ 3240.179781][T12993] sock 0
[ 3240.179781][T12993] vmalloc 8192
[ 3240.179781][T12993] shmem 425984
[ 3240.179781][T12993] zswap 0
[ 3240.179781][T12993] zswapped 0
[ 3240.179781][T12993] file_mapped 393216
[ 3240.179781][T12993] file_dirty 0
[ 3240.179781][T12993] file_writeback 0
[ 3240.179781][T12993] swapcached 0
[ 3240.179781][T12993] anon_thp 0
[ 3240.179781][T12993] file_thp 0
[ 3240.179781][T12993] shmem_thp 0
[ 3240.179781][T12993] inactive_anon 221184
[ 3240.179781][T12993] active_anon 299008
[ 3240.179781][T12993] inactive_file 0
[ 3240.179781][T12993] active_file 0
[ 3240.179781][T12993] unevictable 0
[ 3240.179781][T12993] slab_reclaimable 218328
[ 3240.179781][T12993] slab_unreclaimable 308218520
[ 3240.278340][T12993] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=12993,uid=0
[ 3240.293997][T12993] Memory cgroup out of memory: Killed process 12993 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3240.353753][T13009] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3240.375113][T13009] CPU: 0 PID: 13009 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3240.383836][T13009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3240.393904][T13009] Call Trace:
[ 3240.397178][T13009]  <TASK>
[ 3240.400099][T13009]  dump_stack_lvl+0xd1/0x138
[ 3240.404690][T13009]  dump_header+0x10b/0x85f
[ 3240.409111][T13009]  oom_kill_process.cold+0x10/0x15
[ 3240.414239][T13009]  out_of_memory+0x35c/0x14a0
[ 3240.418946][T13009]  ? find_held_lock+0x2d/0x110
[ 3240.423712][T13009]  ? oom_killer_disable+0x280/0x280
[ 3240.428909][T13009]  ? find_held_lock+0x2d/0x110
[ 3240.433669][T13009]  mem_cgroup_out_of_memory+0x206/0x270
[ 3240.439230][T13009]  ? mem_cgroup_margin+0x130/0x130
[ 3240.444377][T13009]  ? lock_downgrade+0x6e0/0x6e0
[ 3240.449272][T13009]  try_charge_memcg+0xefb/0x12f0
[ 3240.454226][T13009]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3240.460201][T13009]  ? lock_downgrade+0x6e0/0x6e0
[ 3240.465053][T13009]  charge_memcg+0x90/0x3b0
[ 3240.469462][T13009]  __mem_cgroup_charge+0x2b/0x90
[ 3240.474395][T13009]  do_wp_page+0x7ec/0x3370
[ 3240.478812][T13009]  ? lock_release+0x810/0x810
[ 3240.483477][T13009]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3240.488917][T13009]  ? do_raw_spin_lock+0x124/0x2b0
[ 3240.493969][T13009]  ? rwlock_bug.part.0+0x90/0x90
[ 3240.498930][T13009]  ? lock_chain_count+0x20/0x20
[ 3240.503793][T13009]  __handle_mm_fault+0x1f58/0x3c90
[ 3240.508906][T13009]  ? vm_iomap_memory+0x190/0x190
[ 3240.513871][T13009]  handle_mm_fault+0x1b6/0x850
[ 3240.518638][T13009]  do_user_addr_fault+0x475/0x1210
[ 3240.523751][T13009]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3240.529297][T13009]  exc_page_fault+0x98/0x170
[ 3240.533881][T13009]  asm_exc_page_fault+0x26/0x30
[ 3240.538734][T13009] RIP: 0033:0x7fbb9f039570
[ 3240.543169][T13009] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3240.562787][T13009] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3240.568849][T13009] RAX: 000000009ca42836 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3240.576810][T13009] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc359
[ 3240.584779][T13009] RBP: 000000009ca42836 R08: 0000000000000836 R09: 000000009ca4283a
[ 3240.592773][T13009] R10: 00007fbb9ec001e8 R11: 0000000000000000 R12: 00007fbb9f1a0000
[ 3240.600763][T13009] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff87bf13fb
[ 3240.608744][T13009]  ? __sys_socket+0xcb/0x250
[ 3240.613346][T13009]  </TASK>
[ 3240.621524][T13009] memory: usage 307200kB, limit 307200kB, failcnt 157871
[ 3240.629820][T13009] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3240.636950][T13009] Memory cgroup stats for /syz4:
[ 3240.637158][T13009] anon 110592
[ 3240.637158][T13009] file 438272
[ 3240.637158][T13009] kernel 314019840
[ 3240.637158][T13009] kernel_stack 65536
[ 3240.637158][T13009] pagetables 81920
[ 3240.637158][T13009] sec_pagetables 0
[ 3240.637158][T13009] percpu 5617024
[ 3240.637158][T13009] sock 4096
[ 3240.637158][T13009] vmalloc 0
[ 3240.637158][T13009] shmem 438272
[ 3240.637158][T13009] zswap 0
[ 3240.637158][T13009] zswapped 0
[ 3240.637158][T13009] file_mapped 393216
[ 3240.637158][T13009] file_dirty 0
[ 3240.637158][T13009] file_writeback 0
[ 3240.637158][T13009] swapcached 0
[ 3240.637158][T13009] anon_thp 0
[ 3240.637158][T13009] file_thp 0
[ 3240.637158][T13009] shmem_thp 0
[ 3240.637158][T13009] inactive_anon 94208
[ 3240.637158][T13009] active_anon 425984
[ 3240.637158][T13009] inactive_file 0
[ 3240.637158][T13009] active_file 0
[ 3240.637158][T13009] unevictable 0
[ 3240.637158][T13009] slab_reclaimable 23024
[ 3240.637158][T13009] slab_unreclaimable 308203232
[ 3240.733730][T13009] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13009,uid=0
10:33:21 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x10, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:21 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x7800000000000000}}], 0x2, 0x0)

10:33:21 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000051140000000000000000000500010006"], 0x1c}}, 0x0)

10:33:21 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x4c, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:21 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4034c)

10:33:21 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xf0)

[ 3240.754519][T13009] Memory cgroup out of memory: Killed process 13009 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:21 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x7a00000000000000}}], 0x2, 0x0)

10:33:21 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000001f0000000000000000000500010006"], 0x1c}}, 0x0)

10:33:21 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x5b, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:21 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x8004020000000000}}], 0x2, 0x0)

10:33:21 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x68, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:21 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xf8)

[ 3240.965922][T13022] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3241.007585][T13022] CPU: 1 PID: 13022 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3241.016321][T13022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3241.026409][T13022] Call Trace:
[ 3241.029716][T13022]  <TASK>
[ 3241.032670][T13022]  dump_stack_lvl+0xd1/0x138
[ 3241.037306][T13022]  dump_header+0x10b/0x85f
[ 3241.041775][T13022]  oom_kill_process.cold+0x10/0x15
[ 3241.046939][T13022]  out_of_memory+0x35c/0x14a0
[ 3241.051670][T13022]  ? find_held_lock+0x2d/0x110
[ 3241.056482][T13022]  ? oom_killer_disable+0x280/0x280
[ 3241.061732][T13022]  ? find_held_lock+0x2d/0x110
[ 3241.066544][T13022]  mem_cgroup_out_of_memory+0x206/0x270
[ 3241.072131][T13022]  ? mem_cgroup_margin+0x130/0x130
[ 3241.077282][T13022]  ? lock_downgrade+0x6e0/0x6e0
[ 3241.082178][T13022]  try_charge_memcg+0xefb/0x12f0
[ 3241.087162][T13022]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3241.093179][T13022]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3241.098944][T13022]  ? lock_downgrade+0x6e0/0x6e0
[ 3241.103812][T13022]  ? lock_downgrade+0x6e0/0x6e0
[ 3241.108698][T13022]  obj_cgroup_charge+0x2af/0x5e0
[ 3241.113664][T13022]  kmem_cache_alloc_lru+0x145/0x760
[ 3241.118875][T13022]  ? sock_alloc_inode+0x27/0x1d0
[ 3241.123841][T13022]  sock_alloc_inode+0x27/0x1d0
[ 3241.128625][T13022]  ? sock_free_inode+0x30/0x30
[ 3241.133406][T13022]  alloc_inode+0x61/0x230
[ 3241.137780][T13022]  new_inode_pseudo+0x17/0x80
[ 3241.142488][T13022]  sock_alloc+0x40/0x260
[ 3241.146752][T13022]  __sock_create+0xbd/0x790
[ 3241.151283][T13022]  __sys_socket+0x133/0x250
[ 3241.155807][T13022]  ? __sys_socket_file+0x1f0/0x1f0
[ 3241.160952][T13022]  __x64_sys_socket+0x73/0xb0
[ 3241.165656][T13022]  do_syscall_64+0x39/0xb0
[ 3241.170095][T13022]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3241.176003][T13022] RIP: 0033:0x7f36ee08c0c9
[ 3241.180422][T13022] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3241.200038][T13022] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3241.208462][T13022] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3241.216437][T13022] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3241.224430][T13022] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3241.232408][T13022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3241.240390][T13022] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3241.248384][T13022]  </TASK>
[ 3241.277673][T13022] memory: usage 307200kB, limit 307200kB, failcnt 34001
[ 3241.287484][T13022] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3241.294549][T13022] Memory cgroup stats for /syz5:
[ 3241.294718][T13022] anon 94208
[ 3241.294718][T13022] file 425984
[ 3241.294718][T13022] kernel 314052608
[ 3241.294718][T13022] kernel_stack 65536
[ 3241.294718][T13022] pagetables 77824
[ 3241.294718][T13022] sec_pagetables 0
[ 3241.294718][T13022] percpu 5429952
[ 3241.294718][T13022] sock 0
[ 3241.294718][T13022] vmalloc 8192
[ 3241.294718][T13022] shmem 425984
[ 3241.294718][T13022] zswap 0
[ 3241.294718][T13022] zswapped 0
[ 3241.294718][T13022] file_mapped 393216
[ 3241.294718][T13022] file_dirty 0
[ 3241.294718][T13022] file_writeback 0
[ 3241.294718][T13022] swapcached 0
[ 3241.294718][T13022] anon_thp 0
[ 3241.294718][T13022] file_thp 0
[ 3241.294718][T13022] shmem_thp 0
[ 3241.294718][T13022] inactive_anon 221184
[ 3241.294718][T13022] active_anon 299008
[ 3241.294718][T13022] inactive_file 0
[ 3241.294718][T13022] active_file 0
[ 3241.294718][T13022] unevictable 0
[ 3241.294718][T13022] slab_reclaimable 216400
[ 3241.294718][T13022] slab_unreclaimable 308217872
[ 3241.394083][T13022] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13017,uid=0
[ 3241.409827][T13022] Memory cgroup out of memory: Killed process 13017 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3241.433203][T13024] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3241.449581][T13022] socket: no more sockets
[ 3241.450377][T13024] CPU: 0 PID: 13024 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3241.462618][T13024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3241.472694][T13024] Call Trace:
[ 3241.475990][T13024]  <TASK>
[ 3241.478943][T13024]  dump_stack_lvl+0xd1/0x138
[ 3241.483579][T13024]  dump_header+0x10b/0x85f
[ 3241.488037][T13024]  oom_kill_process.cold+0x10/0x15
[ 3241.493156][T13024]  out_of_memory+0x35c/0x14a0
[ 3241.497843][T13024]  ? oom_killer_disable+0x280/0x280
[ 3241.503043][T13024]  ? find_held_lock+0x2d/0x110
[ 3241.507827][T13024]  mem_cgroup_out_of_memory+0x206/0x270
[ 3241.513414][T13024]  ? mem_cgroup_margin+0x130/0x130
[ 3241.518565][T13024]  ? lock_downgrade+0x6e0/0x6e0
[ 3241.523459][T13024]  try_charge_memcg+0xefb/0x12f0
[ 3241.528427][T13024]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3241.534411][T13024]  ? lock_downgrade+0x6e0/0x6e0
[ 3241.539264][T13024]  charge_memcg+0x90/0x3b0
[ 3241.543682][T13024]  __mem_cgroup_charge+0x2b/0x90
[ 3241.548620][T13024]  do_wp_page+0x7ec/0x3370
[ 3241.553040][T13024]  ? lock_release+0x810/0x810
[ 3241.557722][T13024]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3241.563132][T13024]  ? do_raw_spin_lock+0x124/0x2b0
[ 3241.568182][T13024]  ? rwlock_bug.part.0+0x90/0x90
[ 3241.573132][T13024]  ? lock_chain_count+0x20/0x20
[ 3241.577978][T13024]  __handle_mm_fault+0x1f58/0x3c90
[ 3241.583090][T13024]  ? vm_iomap_memory+0x190/0x190
[ 3241.588039][T13024]  handle_mm_fault+0x1b6/0x850
[ 3241.592804][T13024]  do_user_addr_fault+0x475/0x1210
[ 3241.597934][T13024]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3241.603488][T13024]  exc_page_fault+0x98/0x170
[ 3241.608088][T13024]  asm_exc_page_fault+0x26/0x30
[ 3241.612967][T13024] RIP: 0033:0x7fbb9f039570
[ 3241.617406][T13024] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3241.637029][T13024] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3241.643112][T13024] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3241.651094][T13024] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3241.659075][T13024] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3241.667070][T13024] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3241.675059][T13024] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3241.683045][T13024]  ? __sys_socket+0x7c/0x250
[ 3241.687682][T13024]  </TASK>
[ 3241.694599][T13024] memory: usage 307200kB, limit 307200kB, failcnt 157978
[ 3241.701657][T13024] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3241.708630][T13024] Memory cgroup stats for /syz4:
[ 3241.708813][T13024] anon 102400
[ 3241.708813][T13024] file 438272
[ 3241.708813][T13024] kernel 314011648
[ 3241.708813][T13024] kernel_stack 65536
[ 3241.708813][T13024] pagetables 73728
[ 3241.708813][T13024] sec_pagetables 0
[ 3241.708813][T13024] percpu 5617024
[ 3241.708813][T13024] sock 4096
[ 3241.708813][T13024] vmalloc 0
[ 3241.708813][T13024] shmem 438272
[ 3241.708813][T13024] zswap 0
[ 3241.708813][T13024] zswapped 0
[ 3241.708813][T13024] file_mapped 393216
[ 3241.708813][T13024] file_dirty 0
[ 3241.708813][T13024] file_writeback 0
[ 3241.708813][T13024] swapcached 0
[ 3241.708813][T13024] anon_thp 0
[ 3241.708813][T13024] file_thp 0
[ 3241.708813][T13024] shmem_thp 0
[ 3241.708813][T13024] inactive_anon 110592
[ 3241.708813][T13024] active_anon 425984
[ 3241.708813][T13024] inactive_file 0
[ 3241.708813][T13024] active_file 0
[ 3241.708813][T13024] unevictable 0
[ 3241.708813][T13024] slab_reclaimable 23024
[ 3241.708813][T13024] slab_unreclaimable 308205384
[ 3241.804592][  T547] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3241.817335][T13024] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13024,uid=0
10:33:22 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x10, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:22 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x6c, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:22 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000014510000000000000000000500010006"], 0x1c}}, 0x0)

10:33:22 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4034d)

10:33:22 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x8d23d71600000000}}], 0x2, 0x0)

10:33:22 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xfb)

[ 3241.835928][T13024] Memory cgroup out of memory: Killed process 13024 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:22 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x74, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:22 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x8dffffff00000000}}], 0x2, 0x0)

10:33:22 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000600000000000000000000500010006"], 0x1c}}, 0x0)

10:33:22 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0xfe)

10:33:22 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x7a, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3242.008756][T13039] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3242.045574][T13039] CPU: 0 PID: 13039 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3242.054308][T13039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3242.064388][T13039] Call Trace:
[ 3242.067691][T13039]  <TASK>
[ 3242.070647][T13039]  dump_stack_lvl+0xd1/0x138
[ 3242.075277][T13039]  dump_header+0x10b/0x85f
[ 3242.079741][T13039]  oom_kill_process.cold+0x10/0x15
[ 3242.084901][T13039]  out_of_memory+0x35c/0x14a0
[ 3242.089630][T13039]  ? find_held_lock+0x2d/0x110
[ 3242.094444][T13039]  ? oom_killer_disable+0x280/0x280
[ 3242.099687][T13039]  ? find_held_lock+0x2d/0x110
10:33:22 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x1f4, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3242.104493][T13039]  mem_cgroup_out_of_memory+0x206/0x270
[ 3242.110082][T13039]  ? mem_cgroup_margin+0x130/0x130
[ 3242.115236][T13039]  ? lock_downgrade+0x6e0/0x6e0
[ 3242.120135][T13039]  try_charge_memcg+0xefb/0x12f0
[ 3242.125113][T13039]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3242.131126][T13039]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3242.136889][T13039]  ? lock_downgrade+0x6e0/0x6e0
[ 3242.141777][T13039]  ? lock_downgrade+0x6e0/0x6e0
[ 3242.146674][T13039]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3242.152269][T13039]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3242.158465][T13039]  copy_process+0x4e3/0x7520
[ 3242.163097][T13039]  ? __lock_acquire+0xbc3/0x56d0
[ 3242.168080][T13039]  ? __cleanup_sighand+0xb0/0xb0
[ 3242.173049][T13039]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3242.179152][T13039]  ? psi_memstall_leave+0x174/0x250
[ 3242.184396][T13039]  kernel_clone+0xeb/0x990
[ 3242.188855][T13039]  ? create_io_thread+0xf0/0xf0
[ 3242.193746][T13039]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3242.200029][T13039]  ? lock_downgrade+0x6e0/0x6e0
[ 3242.204919][T13039]  __do_sys_clone+0xba/0x100
[ 3242.209543][T13039]  ? kernel_clone+0x990/0x990
[ 3242.214264][T13039]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3242.220204][T13039]  do_syscall_64+0x39/0xb0
[ 3242.224660][T13039]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3242.230588][T13039] RIP: 0033:0x7f36ee08d4f1
[ 3242.235033][T13039] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3242.254657][T13039] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3242.263103][T13039] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3242.271100][T13039] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3242.279097][T13039] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3242.287067][T13039] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3242.295031][T13039] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3242.303103][T13039]  </TASK>
[ 3242.324615][T13039] memory: usage 307200kB, limit 307200kB, failcnt 34119
[ 3242.331599][T13039] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3242.341098][T13039] Memory cgroup stats for /syz5:
[ 3242.341318][T13039] anon 86016
[ 3242.341318][T13039] file 425984
[ 3242.341318][T13039] kernel 314060800
[ 3242.341318][T13039] kernel_stack 32768
[ 3242.341318][T13039] pagetables 77824
[ 3242.341318][T13039] sec_pagetables 0
[ 3242.341318][T13039] percpu 5430016
[ 3242.341318][T13039] sock 0
[ 3242.341318][T13039] vmalloc 8192
[ 3242.341318][T13039] shmem 425984
[ 3242.341318][T13039] zswap 0
[ 3242.341318][T13039] zswapped 0
[ 3242.341318][T13039] file_mapped 393216
[ 3242.341318][T13039] file_dirty 0
[ 3242.341318][T13039] file_writeback 0
[ 3242.341318][T13039] swapcached 0
[ 3242.341318][T13039] anon_thp 0
[ 3242.341318][T13039] file_thp 0
[ 3242.341318][T13039] shmem_thp 0
[ 3242.341318][T13039] inactive_anon 212992
[ 3242.341318][T13039] active_anon 299008
[ 3242.341318][T13039] inactive_file 0
[ 3242.341318][T13039] active_file 0
[ 3242.341318][T13039] unevictable 0
[ 3242.341318][T13039] slab_reclaimable 216400
[ 3242.341318][T13039] slab_unreclaimable 308229192
[ 3242.435531][T13039] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13039,uid=0
[ 3242.454682][T13039] Memory cgroup out of memory: Killed process 13039 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3242.484407][T13045] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3242.500069][T13045] CPU: 0 PID: 13045 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3242.508791][T13045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3242.518872][T13045] Call Trace:
[ 3242.522163][T13045]  <TASK>
[ 3242.525119][T13045]  dump_stack_lvl+0xd1/0x138
[ 3242.529711][T13045]  dump_header+0x10b/0x85f
[ 3242.534128][T13045]  oom_kill_process.cold+0x10/0x15
[ 3242.539242][T13045]  out_of_memory+0x35c/0x14a0
[ 3242.543922][T13045]  ? oom_killer_disable+0x280/0x280
[ 3242.549147][T13045]  ? find_held_lock+0x2d/0x110
[ 3242.553959][T13045]  mem_cgroup_out_of_memory+0x206/0x270
[ 3242.559541][T13045]  ? mem_cgroup_margin+0x130/0x130
[ 3242.564686][T13045]  ? lock_downgrade+0x6e0/0x6e0
[ 3242.569564][T13045]  try_charge_memcg+0xefb/0x12f0
[ 3242.574500][T13045]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3242.580480][T13045]  ? lock_downgrade+0x6e0/0x6e0
[ 3242.585333][T13045]  charge_memcg+0x90/0x3b0
[ 3242.589745][T13045]  __mem_cgroup_charge+0x2b/0x90
[ 3242.594696][T13045]  do_wp_page+0x7ec/0x3370
[ 3242.599153][T13045]  ? lock_release+0x810/0x810
[ 3242.603856][T13045]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3242.609269][T13045]  ? do_raw_spin_lock+0x124/0x2b0
[ 3242.614320][T13045]  ? rwlock_bug.part.0+0x90/0x90
[ 3242.619257][T13045]  ? lock_chain_count+0x20/0x20
[ 3242.624118][T13045]  __handle_mm_fault+0x1f58/0x3c90
[ 3242.629233][T13045]  ? vm_iomap_memory+0x190/0x190
[ 3242.634196][T13045]  handle_mm_fault+0x1b6/0x850
[ 3242.638991][T13045]  do_user_addr_fault+0x475/0x1210
[ 3242.644104][T13045]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3242.649674][T13045]  exc_page_fault+0x98/0x170
[ 3242.654292][T13045]  asm_exc_page_fault+0x26/0x30
[ 3242.659168][T13045] RIP: 0033:0x7fbb9f039570
[ 3242.663598][T13045] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3242.683219][T13045] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3242.689284][T13045] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3242.697262][T13045] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3242.705256][T13045] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3242.713247][T13045] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3242.721242][T13045] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3242.729238][T13045]  ? __sys_socket+0x7c/0x250
[ 3242.733871][T13045]  </TASK>
[ 3242.740758][T13045] memory: usage 307200kB, limit 307200kB, failcnt 158059
[ 3242.750432][T13045] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3242.757814][T13045] Memory cgroup stats for /syz4:
[ 3242.758026][T13045] anon 102400
[ 3242.758026][T13045] file 438272
[ 3242.758026][T13045] kernel 314028032
[ 3242.758026][T13045] kernel_stack 65536
[ 3242.758026][T13045] pagetables 73728
[ 3242.758026][T13045] sec_pagetables 0
[ 3242.758026][T13045] percpu 5617088
[ 3242.758026][T13045] sock 4096
[ 3242.758026][T13045] vmalloc 0
[ 3242.758026][T13045] shmem 438272
[ 3242.758026][T13045] zswap 0
[ 3242.758026][T13045] zswapped 0
[ 3242.758026][T13045] file_mapped 393216
[ 3242.758026][T13045] file_dirty 0
[ 3242.758026][T13045] file_writeback 0
[ 3242.758026][T13045] swapcached 0
[ 3242.758026][T13045] anon_thp 0
[ 3242.758026][T13045] file_thp 0
[ 3242.758026][T13045] shmem_thp 0
[ 3242.758026][T13045] inactive_anon 114688
[ 3242.758026][T13045] active_anon 425984
[ 3242.758026][T13045] inactive_file 0
[ 3242.758026][T13045] active_file 0
[ 3242.758026][T13045] unevictable 0
[ 3242.758026][T13045] slab_reclaimable 23024
[ 3242.758026][T13045] slab_unreclaimable 308214616
[ 3242.855390][T13045] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13045,uid=0
10:33:23 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x74, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:23 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x11a)

10:33:23 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x2ff, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:23 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000ec00000000000000000000500010006"], 0x1c}}, 0x0)

10:33:23 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xb95f537100000000}}], 0x2, 0x0)

10:33:23 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4034e)

[ 3242.874648][T13045] Memory cgroup out of memory: Killed process 13045 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:23 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000003e80000000000000000000500010006"], 0x1c}}, 0x0)

10:33:23 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xbb57130d00000000}}], 0x2, 0x0)

10:33:23 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x300, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:23 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xc6822b8700000000}}], 0x2, 0x0)

[ 3243.047464][T13064] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3243.082768][T13064] CPU: 0 PID: 13064 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3243.091508][T13064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3243.101590][T13064] Call Trace:
[ 3243.104896][T13064]  <TASK>
[ 3243.107848][T13064]  dump_stack_lvl+0xd1/0x138
[ 3243.112468][T13064]  dump_header+0x10b/0x85f
[ 3243.116919][T13064]  oom_kill_process.cold+0x10/0x15
[ 3243.122079][T13064]  out_of_memory+0x35c/0x14a0
[ 3243.126808][T13064]  ? find_held_lock+0x2d/0x110
[ 3243.131613][T13064]  ? oom_killer_disable+0x280/0x280
[ 3243.136854][T13064]  ? find_held_lock+0x2d/0x110
[ 3243.141645][T13064]  mem_cgroup_out_of_memory+0x206/0x270
[ 3243.147211][T13064]  ? mem_cgroup_margin+0x130/0x130
[ 3243.152340][T13064]  ? lock_downgrade+0x6e0/0x6e0
[ 3243.157214][T13064]  try_charge_memcg+0xefb/0x12f0
[ 3243.162170][T13064]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3243.168163][T13064]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3243.173920][T13064]  ? lock_downgrade+0x6e0/0x6e0
[ 3243.178781][T13064]  ? lock_downgrade+0x6e0/0x6e0
[ 3243.183654][T13064]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3243.189301][T13064]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3243.195469][T13064]  copy_process+0x1359/0x7520
[ 3243.200158][T13064]  ? __lock_acquire+0xbc3/0x56d0
[ 3243.205112][T13064]  ? __cleanup_sighand+0xb0/0xb0
[ 3243.210059][T13064]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3243.216049][T13064]  ? psi_memstall_leave+0x174/0x250
[ 3243.221271][T13064]  kernel_clone+0xeb/0x990
[ 3243.225707][T13064]  ? create_io_thread+0xf0/0xf0
[ 3243.230566][T13064]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3243.236910][T13064]  ? lock_downgrade+0x6e0/0x6e0
[ 3243.241774][T13064]  __do_sys_clone+0xba/0x100
[ 3243.246376][T13064]  ? kernel_clone+0x990/0x990
[ 3243.251080][T13064]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3243.256999][T13064]  do_syscall_64+0x39/0xb0
[ 3243.261438][T13064]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3243.267343][T13064] RIP: 0033:0x7f36ee08d4f1
[ 3243.271765][T13064] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
10:33:24 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000f00000000000000000000500010006"], 0x1c}}, 0x0)

10:33:24 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x3e8, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3243.291473][T13064] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3243.299893][T13064] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3243.307868][T13064] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3243.315842][T13064] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3243.323814][T13064] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3243.331787][T13064] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3243.339775][T13064]  </TASK>
[ 3243.394649][T13064] memory: usage 307200kB, limit 307200kB, failcnt 34214
[ 3243.401765][T13064] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3243.424109][T13064] Memory cgroup stats for /syz5:
[ 3243.433574][T13064] anon 86016
[ 3243.433574][T13064] file 425984
[ 3243.433574][T13064] kernel 314060800
[ 3243.433574][T13064] kernel_stack 32768
[ 3243.433574][T13064] pagetables 77824
[ 3243.433574][T13064] sec_pagetables 0
[ 3243.433574][T13064] percpu 5430016
[ 3243.433574][T13064] sock 0
[ 3243.433574][T13064] vmalloc 8192
[ 3243.433574][T13064] shmem 425984
[ 3243.433574][T13064] zswap 0
[ 3243.433574][T13064] zswapped 0
[ 3243.433574][T13064] file_mapped 393216
[ 3243.433574][T13064] file_dirty 0
[ 3243.433574][T13064] file_writeback 0
[ 3243.433574][T13064] swapcached 0
[ 3243.433574][T13064] anon_thp 0
[ 3243.433574][T13064] file_thp 0
[ 3243.433574][T13064] shmem_thp 0
[ 3243.433574][T13064] inactive_anon 212992
[ 3243.433574][T13064] active_anon 299008
[ 3243.433574][T13064] inactive_file 0
[ 3243.433574][T13064] active_file 0
[ 3243.433574][T13064] unevictable 0
[ 3243.433574][T13064] slab_reclaimable 216400
[ 3243.433574][T13064] slab_unreclaimable 308229192
[ 3243.529502][T13064] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13064,uid=0
[ 3243.555412][T13064] Memory cgroup out of memory: Killed process 13064 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3243.573140][T13069] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3243.584466][T13069] CPU: 0 PID: 13069 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3243.593179][T13069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3243.603265][T13069] Call Trace:
[ 3243.606562][T13069]  <TASK>
[ 3243.609511][T13069]  dump_stack_lvl+0xd1/0x138
[ 3243.614133][T13069]  dump_header+0x10b/0x85f
[ 3243.618594][T13069]  oom_kill_process.cold+0x10/0x15
[ 3243.623764][T13069]  out_of_memory+0x35c/0x14a0
[ 3243.628464][T13069]  ? oom_killer_disable+0x280/0x280
[ 3243.633665][T13069]  ? find_held_lock+0x2d/0x110
[ 3243.638430][T13069]  mem_cgroup_out_of_memory+0x206/0x270
[ 3243.643974][T13069]  ? mem_cgroup_margin+0x130/0x130
[ 3243.649091][T13069]  ? lock_downgrade+0x6e0/0x6e0
[ 3243.653967][T13069]  try_charge_memcg+0xefb/0x12f0
[ 3243.658920][T13069]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3243.664918][T13069]  ? lock_downgrade+0x6e0/0x6e0
[ 3243.669786][T13069]  charge_memcg+0x90/0x3b0
[ 3243.674217][T13069]  __mem_cgroup_charge+0x2b/0x90
[ 3243.679165][T13069]  do_wp_page+0x7ec/0x3370
[ 3243.683604][T13069]  ? lock_release+0x810/0x810
[ 3243.688285][T13069]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3243.693673][T13069]  ? do_raw_spin_lock+0x124/0x2b0
[ 3243.698708][T13069]  ? rwlock_bug.part.0+0x90/0x90
[ 3243.703675][T13069]  ? lock_chain_count+0x20/0x20
[ 3243.708539][T13069]  __handle_mm_fault+0x1f58/0x3c90
[ 3243.713712][T13069]  ? vm_iomap_memory+0x190/0x190
[ 3243.718688][T13069]  handle_mm_fault+0x1b6/0x850
[ 3243.723474][T13069]  do_user_addr_fault+0x475/0x1210
[ 3243.728603][T13069]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3243.734171][T13069]  exc_page_fault+0x98/0x170
[ 3243.738776][T13069]  asm_exc_page_fault+0x26/0x30
[ 3243.743631][T13069] RIP: 0033:0x7fbb9f039570
[ 3243.748051][T13069] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3243.767671][T13069] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3243.773744][T13069] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3243.781714][T13069] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3243.789690][T13069] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3243.797770][T13069] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3243.805743][T13069] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3243.813716][T13069]  ? __sys_socket+0x7c/0x250
[ 3243.818425][T13069]  </TASK>
[ 3243.826230][T13069] memory: usage 307200kB, limit 307200kB, failcnt 158153
[ 3243.833467][T13069] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3243.841447][T13069] Memory cgroup stats for /syz4:
[ 3243.841637][T13069] anon 102400
[ 3243.841637][T13069] file 438272
[ 3243.841637][T13069] kernel 314028032
[ 3243.841637][T13069] kernel_stack 65536
[ 3243.841637][T13069] pagetables 73728
[ 3243.841637][T13069] sec_pagetables 0
[ 3243.841637][T13069] percpu 5617088
[ 3243.841637][T13069] sock 4096
[ 3243.841637][T13069] vmalloc 0
[ 3243.841637][T13069] shmem 438272
[ 3243.841637][T13069] zswap 0
[ 3243.841637][T13069] zswapped 0
[ 3243.841637][T13069] file_mapped 393216
[ 3243.841637][T13069] file_dirty 0
[ 3243.841637][T13069] file_writeback 0
[ 3243.841637][T13069] swapcached 0
[ 3243.841637][T13069] anon_thp 0
[ 3243.841637][T13069] file_thp 0
[ 3243.841637][T13069] shmem_thp 0
[ 3243.841637][T13069] inactive_anon 114688
[ 3243.841637][T13069] active_anon 425984
[ 3243.841637][T13069] inactive_file 0
[ 3243.841637][T13069] active_file 0
[ 3243.841637][T13069] unevictable 0
[ 3243.841637][T13069] slab_reclaimable 23024
[ 3243.841637][T13069] slab_unreclaimable 308214616
10:33:24 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x74, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3243.956677][T13069] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13069,uid=0
[ 3243.972449][T13069] Memory cgroup out of memory: Killed process 13069 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:24 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x138)

10:33:24 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000400300000000000000000500010006"], 0x1c}}, 0x0)

10:33:24 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xe803000000000000}}], 0x2, 0x0)

10:33:24 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x500, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:24 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4034f)

10:33:24 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xeffdffff00000000}}], 0x2, 0x0)

10:33:24 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x5aa, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:24 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000400000000000000000500010006"], 0x1c}}, 0x0)

[ 3244.183123][T13089] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3244.208268][T13089] CPU: 1 PID: 13089 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3244.216994][T13089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3244.227076][T13089] Call Trace:
[ 3244.230372][T13089]  <TASK>
[ 3244.233325][T13089]  dump_stack_lvl+0xd1/0x138
[ 3244.237952][T13089]  dump_header+0x10b/0x85f
[ 3244.242418][T13089]  oom_kill_process.cold+0x10/0x15
[ 3244.247581][T13089]  out_of_memory+0x35c/0x14a0
[ 3244.252313][T13089]  ? find_held_lock+0x2d/0x110
[ 3244.257120][T13089]  ? oom_killer_disable+0x280/0x280
[ 3244.262365][T13089]  ? find_held_lock+0x2d/0x110
[ 3244.267174][T13089]  mem_cgroup_out_of_memory+0x206/0x270
[ 3244.272763][T13089]  ? mem_cgroup_margin+0x130/0x130
[ 3244.277911][T13089]  ? lock_downgrade+0x6e0/0x6e0
10:33:25 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x600, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3244.282809][T13089]  try_charge_memcg+0xefb/0x12f0
[ 3244.287789][T13089]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3244.293795][T13089]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3244.299547][T13089]  ? lock_downgrade+0x6e0/0x6e0
[ 3244.304430][T13089]  ? lock_downgrade+0x6e0/0x6e0
[ 3244.309327][T13089]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3244.314904][T13089]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3244.321073][T13089]  copy_process+0x1359/0x7520
[ 3244.325766][T13089]  ? __lock_acquire+0xbc3/0x56d0
[ 3244.330722][T13089]  ? __cleanup_sighand+0xb0/0xb0
[ 3244.335672][T13089]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3244.341665][T13089]  ? psi_memstall_leave+0x174/0x250
[ 3244.346889][T13089]  kernel_clone+0xeb/0x990
[ 3244.351326][T13089]  ? create_io_thread+0xf0/0xf0
[ 3244.356189][T13089]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3244.362450][T13089]  ? lock_downgrade+0x6e0/0x6e0
[ 3244.367317][T13089]  __do_sys_clone+0xba/0x100
[ 3244.371915][T13089]  ? kernel_clone+0x990/0x990
[ 3244.376627][T13089]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3244.382531][T13089]  do_syscall_64+0x39/0xb0
[ 3244.386959][T13089]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3244.392857][T13089] RIP: 0033:0x7f36ee08d4f1
[ 3244.397274][T13089] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3244.416887][T13089] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3244.425304][T13089] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
10:33:25 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xf1bc000000000000}}], 0x2, 0x0)

[ 3244.433280][T13089] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3244.441251][T13089] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3244.449226][T13089] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3244.457197][T13089] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3244.465188][T13089]  </TASK>
10:33:25 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000034000000000000000000500010006"], 0x1c}}, 0x0)

[ 3244.586019][T13089] memory: usage 307184kB, limit 307200kB, failcnt 34310
[ 3244.593139][T13089] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3244.602187][T13089] Memory cgroup stats for /syz5:
[ 3244.602410][T13089] anon 86016
[ 3244.602410][T13089] file 425984
[ 3244.602410][T13089] kernel 314044416
[ 3244.602410][T13089] kernel_stack 32768
[ 3244.602410][T13089] pagetables 77824
[ 3244.602410][T13089] sec_pagetables 0
[ 3244.602410][T13089] percpu 5429952
[ 3244.602410][T13089] sock 0
[ 3244.602410][T13089] vmalloc 8192
[ 3244.602410][T13089] shmem 425984
[ 3244.602410][T13089] zswap 0
[ 3244.602410][T13089] zswapped 0
[ 3244.602410][T13089] file_mapped 393216
[ 3244.602410][T13089] file_dirty 0
[ 3244.602410][T13089] file_writeback 0
[ 3244.602410][T13089] swapcached 0
[ 3244.602410][T13089] anon_thp 0
[ 3244.602410][T13089] file_thp 0
[ 3244.602410][T13089] shmem_thp 0
[ 3244.602410][T13089] inactive_anon 212992
[ 3244.602410][T13089] active_anon 299008
[ 3244.602410][T13089] inactive_file 0
[ 3244.602410][T13089] active_file 0
[ 3244.602410][T13089] unevictable 0
[ 3244.602410][T13089] slab_reclaimable 216400
[ 3244.602410][T13089] slab_unreclaimable 308217408
[ 3244.698558][T13089] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13089,uid=0
[ 3244.718922][T13089] Memory cgroup out of memory: Killed process 13089 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3244.737335][T13084] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3244.753324][T13084] CPU: 1 PID: 13084 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3244.762047][T13084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3244.772125][T13084] Call Trace:
[ 3244.775422][T13084]  <TASK>
[ 3244.778405][T13084]  dump_stack_lvl+0xd1/0x138
[ 3244.783037][T13084]  dump_header+0x10b/0x85f
[ 3244.787505][T13084]  oom_kill_process.cold+0x10/0x15
[ 3244.792671][T13084]  out_of_memory+0x35c/0x14a0
[ 3244.797403][T13084]  ? oom_killer_disable+0x280/0x280
[ 3244.802646][T13084]  ? find_held_lock+0x2d/0x110
[ 3244.807462][T13084]  mem_cgroup_out_of_memory+0x206/0x270
[ 3244.813054][T13084]  ? mem_cgroup_margin+0x130/0x130
[ 3244.818205][T13084]  ? lock_downgrade+0x6e0/0x6e0
[ 3244.823105][T13084]  try_charge_memcg+0xefb/0x12f0
[ 3244.828085][T13084]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3244.834103][T13084]  ? lock_downgrade+0x6e0/0x6e0
[ 3244.838998][T13084]  charge_memcg+0x90/0x3b0
[ 3244.843434][T13084]  __mem_cgroup_charge+0x2b/0x90
[ 3244.848385][T13084]  do_wp_page+0x7ec/0x3370
[ 3244.852842][T13084]  ? lock_release+0x810/0x810
[ 3244.857544][T13084]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3244.862951][T13084]  ? do_raw_spin_lock+0x124/0x2b0
[ 3244.868006][T13084]  ? rwlock_bug.part.0+0x90/0x90
[ 3244.872990][T13084]  ? lock_chain_count+0x20/0x20
[ 3244.877875][T13084]  __handle_mm_fault+0x1f58/0x3c90
[ 3244.883034][T13084]  ? vm_iomap_memory+0x190/0x190
[ 3244.888127][T13084]  handle_mm_fault+0x1b6/0x850
[ 3244.892951][T13084]  do_user_addr_fault+0x475/0x1210
[ 3244.898108][T13084]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3244.903698][T13084]  exc_page_fault+0x98/0x170
[ 3244.908318][T13084]  asm_exc_page_fault+0x26/0x30
[ 3244.913199][T13084] RIP: 0033:0x7fbb9f039570
[ 3244.917645][T13084] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3244.937282][T13084] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3244.943373][T13084] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3244.951367][T13084] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3244.959358][T13084] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3244.967363][T13084] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3244.975358][T13084] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3244.983350][T13084]  ? __sys_socket+0x7c/0x250
[ 3244.987999][T13084]  </TASK>
[ 3245.000589][T13084] memory: usage 307192kB, limit 307200kB, failcnt 158265
[ 3245.007889][T13084] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3245.015517][T13084] Memory cgroup stats for /syz4:
[ 3245.015751][T13084] anon 102400
[ 3245.015751][T13084] file 438272
[ 3245.015751][T13084] kernel 314011648
[ 3245.015751][T13084] kernel_stack 65536
[ 3245.015751][T13084] pagetables 73728
[ 3245.015751][T13084] sec_pagetables 0
[ 3245.015751][T13084] percpu 5617024
[ 3245.015751][T13084] sock 4096
[ 3245.015751][T13084] vmalloc 0
[ 3245.015751][T13084] shmem 438272
[ 3245.015751][T13084] zswap 0
[ 3245.015751][T13084] zswapped 0
[ 3245.015751][T13084] file_mapped 393216
[ 3245.015751][T13084] file_dirty 0
[ 3245.015751][T13084] file_writeback 0
[ 3245.015751][T13084] swapcached 0
[ 3245.015751][T13084] anon_thp 0
[ 3245.015751][T13084] file_thp 0
[ 3245.015751][T13084] shmem_thp 0
[ 3245.015751][T13084] inactive_anon 114688
[ 3245.015751][T13084] active_anon 425984
[ 3245.015751][T13084] inactive_file 0
[ 3245.015751][T13084] active_file 0
[ 3245.015751][T13084] unevictable 0
[ 3245.015751][T13084] slab_reclaimable 23024
[ 3245.015751][T13084] slab_unreclaimable 308205384
[ 3245.115046][T13084] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13084,uid=0
10:33:26 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x74, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3245.132165][T13084] Memory cgroup out of memory: Killed process 13084 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:26 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x17c)

10:33:26 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x700, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:26 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xf401000000000000}}], 0x2, 0x0)

10:33:26 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000fffff000000000000000000500010006"], 0x1c}}, 0x0)

10:33:26 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40350)

10:33:26 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000001000000000000000500010006"], 0x1c}}, 0x0)

10:33:26 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xf5ffffff00000000}}], 0x2, 0x0)

10:33:26 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x900, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:26 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000002000000000000000500010006"], 0x1c}}, 0x0)

[ 3245.334656][T13108] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3245.366057][T13108] CPU: 0 PID: 13108 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3245.374790][T13108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3245.384863][T13108] Call Trace:
[ 3245.388160][T13108]  <TASK>
[ 3245.391109][T13108]  dump_stack_lvl+0xd1/0x138
[ 3245.395749][T13108]  dump_header+0x10b/0x85f
[ 3245.400212][T13108]  oom_kill_process.cold+0x10/0x15
[ 3245.405369][T13108]  out_of_memory+0x35c/0x14a0
[ 3245.410102][T13108]  ? find_held_lock+0x2d/0x110
[ 3245.414908][T13108]  ? oom_killer_disable+0x280/0x280
[ 3245.420151][T13108]  ? find_held_lock+0x2d/0x110
[ 3245.424959][T13108]  mem_cgroup_out_of_memory+0x206/0x270
[ 3245.430547][T13108]  ? mem_cgroup_margin+0x130/0x130
[ 3245.435699][T13108]  ? lock_downgrade+0x6e0/0x6e0
[ 3245.440598][T13108]  try_charge_memcg+0xefb/0x12f0
[ 3245.445577][T13108]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3245.451597][T13108]  ? lock_downgrade+0x6e0/0x6e0
[ 3245.456495][T13108]  charge_memcg+0x90/0x3b0
[ 3245.460940][T13108]  __mem_cgroup_charge+0x2b/0x90
[ 3245.465910][T13108]  do_wp_page+0x7ec/0x3370
[ 3245.470371][T13108]  ? lock_release+0x810/0x810
[ 3245.475085][T13108]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3245.480486][T13108]  ? do_raw_spin_lock+0x124/0x2b0
[ 3245.485520][T13108]  ? rwlock_bug.part.0+0x90/0x90
[ 3245.490466][T13108]  ? lock_chain_count+0x20/0x20
[ 3245.495327][T13108]  __handle_mm_fault+0x1f58/0x3c90
[ 3245.500459][T13108]  ? vm_iomap_memory+0x190/0x190
[ 3245.505432][T13108]  handle_mm_fault+0x1b6/0x850
[ 3245.510214][T13108]  do_user_addr_fault+0x475/0x1210
[ 3245.515340][T13108]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3245.520917][T13108]  exc_page_fault+0x98/0x170
[ 3245.525515][T13108]  asm_exc_page_fault+0x26/0x30
[ 3245.530377][T13108] RIP: 0033:0x7fbb9f039570
[ 3245.534796][T13108] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3245.554408][T13108] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3245.560484][T13108] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3245.568460][T13108] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3245.576436][T13108] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
10:33:26 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000003000000000000000500010006"], 0x1c}}, 0x0)

10:33:26 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x1ae)

[ 3245.584409][T13108] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3245.592386][T13108] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3245.600362][T13108]  ? __sys_socket+0x7c/0x250
[ 3245.604985][T13108]  </TASK>
[ 3245.669177][T13108] memory: usage 307200kB, limit 307200kB, failcnt 158360
[ 3245.678274][T13108] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3245.685721][T13108] Memory cgroup stats for /syz4:
[ 3245.685895][T13108] anon 102400
[ 3245.685895][T13108] file 438272
[ 3245.685895][T13108] kernel 314028032
[ 3245.685895][T13108] kernel_stack 65536
[ 3245.685895][T13108] pagetables 73728
[ 3245.685895][T13108] sec_pagetables 0
[ 3245.685895][T13108] percpu 5617088
[ 3245.685895][T13108] sock 4096
[ 3245.685895][T13108] vmalloc 0
[ 3245.685895][T13108] shmem 438272
[ 3245.685895][T13108] zswap 0
[ 3245.685895][T13108] zswapped 0
[ 3245.685895][T13108] file_mapped 393216
[ 3245.685895][T13108] file_dirty 0
[ 3245.685895][T13108] file_writeback 0
[ 3245.685895][T13108] swapcached 0
[ 3245.685895][T13108] anon_thp 0
[ 3245.685895][T13108] file_thp 0
[ 3245.685895][T13108] shmem_thp 0
[ 3245.685895][T13108] inactive_anon 114688
[ 3245.685895][T13108] active_anon 425984
[ 3245.685895][T13108] inactive_file 0
[ 3245.685895][T13108] active_file 0
10:33:26 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x1ae)

10:33:26 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xa00, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:26 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfbffff7f00000000}}], 0x2, 0x0)

10:33:26 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000004000000000000000500010006"], 0x1c}}, 0x0)

10:33:26 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x1bb)

[ 3245.685895][T13108] unevictable 0
[ 3245.685895][T13108] slab_reclaimable 23024
[ 3245.685895][T13108] slab_unreclaimable 308214616
[ 3245.780687][T13108] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13108,uid=0
[ 3245.797078][T13108] Memory cgroup out of memory: Killed process 13108 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3245.863077][T13132] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3245.913457][T13132] CPU: 1 PID: 13132 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3245.922185][T13132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3245.932261][T13132] Call Trace:
[ 3245.935559][T13132]  <TASK>
[ 3245.938519][T13132]  dump_stack_lvl+0xd1/0x138
[ 3245.943243][T13132]  dump_header+0x10b/0x85f
[ 3245.947709][T13132]  oom_kill_process.cold+0x10/0x15
[ 3245.952877][T13132]  out_of_memory+0x35c/0x14a0
[ 3245.957606][T13132]  ? find_held_lock+0x2d/0x110
[ 3245.962414][T13132]  ? oom_killer_disable+0x280/0x280
[ 3245.967665][T13132]  ? find_held_lock+0x2d/0x110
[ 3245.972479][T13132]  mem_cgroup_out_of_memory+0x206/0x270
[ 3245.978075][T13132]  ? mem_cgroup_margin+0x130/0x130
[ 3245.983265][T13132]  ? lock_downgrade+0x6e0/0x6e0
[ 3245.988178][T13132]  try_charge_memcg+0xefb/0x12f0
[ 3245.993166][T13132]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3245.999190][T13132]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3246.004960][T13132]  ? lock_downgrade+0x6e0/0x6e0
[ 3246.009852][T13132]  ? lock_downgrade+0x6e0/0x6e0
[ 3246.014752][T13132]  obj_cgroup_charge+0x2af/0x5e0
[ 3246.019735][T13132]  kmem_cache_alloc_lru+0x145/0x760
[ 3246.024964][T13132]  ? sock_alloc_inode+0x27/0x1d0
[ 3246.029955][T13132]  sock_alloc_inode+0x27/0x1d0
[ 3246.034840][T13132]  ? sock_free_inode+0x30/0x30
[ 3246.039638][T13132]  alloc_inode+0x61/0x230
[ 3246.044011][T13132]  new_inode_pseudo+0x17/0x80
[ 3246.048731][T13132]  sock_alloc+0x40/0x260
[ 3246.053014][T13132]  __sock_create+0xbd/0x790
[ 3246.057570][T13132]  __sys_socket+0x133/0x250
[ 3246.062108][T13132]  ? __sys_socket_file+0x1f0/0x1f0
[ 3246.067274][T13132]  __x64_sys_socket+0x73/0xb0
[ 3246.071980][T13132]  do_syscall_64+0x39/0xb0
[ 3246.076447][T13132]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3246.082465][T13132] RIP: 0033:0x7f36ee08c0c9
[ 3246.086905][T13132] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3246.106541][T13132] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3246.114986][T13132] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3246.122983][T13132] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3246.130977][T13132] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3246.139013][T13132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3246.147007][T13132] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3246.155036][T13132]  </TASK>
[ 3246.171536][T13132] memory: usage 307200kB, limit 307200kB, failcnt 34438
[ 3246.178946][T13132] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3246.187376][T13132] Memory cgroup stats for /syz5:
[ 3246.187608][T13132] anon 94208
[ 3246.187608][T13132] file 425984
[ 3246.187608][T13132] kernel 314052608
[ 3246.187608][T13132] kernel_stack 65536
[ 3246.187608][T13132] pagetables 77824
[ 3246.187608][T13132] sec_pagetables 0
[ 3246.187608][T13132] percpu 5429952
[ 3246.187608][T13132] sock 0
[ 3246.187608][T13132] vmalloc 8192
[ 3246.187608][T13132] shmem 425984
[ 3246.187608][T13132] zswap 0
[ 3246.187608][T13132] zswapped 0
[ 3246.187608][T13132] file_mapped 393216
[ 3246.187608][T13132] file_dirty 0
[ 3246.187608][T13132] file_writeback 0
[ 3246.187608][T13132] swapcached 0
[ 3246.187608][T13132] anon_thp 0
[ 3246.187608][T13132] file_thp 0
[ 3246.187608][T13132] shmem_thp 0
[ 3246.187608][T13132] inactive_anon 221184
[ 3246.187608][T13132] active_anon 299008
[ 3246.187608][T13132] inactive_file 0
[ 3246.187608][T13132] active_file 0
[ 3246.187608][T13132] unevictable 0
[ 3246.187608][T13132] slab_reclaimable 216400
[ 3246.187608][T13132] slab_unreclaimable 308217872
[ 3246.286712][T13132] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13112,uid=0
[ 3246.302915][T13132] Memory cgroup out of memory: Killed process 13112 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:27 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40351)

10:33:27 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfc00000000000000}}], 0x2, 0x0)

10:33:27 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000005000000000000000500010006"], 0x1c}}, 0x0)

10:33:27 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xbb8, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:27 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x1bd)

[ 3246.333408][T13132] socket: no more sockets
10:33:27 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xe00, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:27 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfe80000000000000}}], 0x2, 0x0)

[ 3246.432665][T13141] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3246.485406][T13141] CPU: 0 PID: 13141 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3246.494144][T13141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3246.504225][T13141] Call Trace:
[ 3246.507523][T13141]  <TASK>
[ 3246.510475][T13141]  dump_stack_lvl+0xd1/0x138
[ 3246.515105][T13141]  dump_header+0x10b/0x85f
[ 3246.519568][T13141]  oom_kill_process.cold+0x10/0x15
[ 3246.524732][T13141]  out_of_memory+0x35c/0x14a0
[ 3246.529469][T13141]  ? find_held_lock+0x2d/0x110
[ 3246.534268][T13141]  ? oom_killer_disable+0x280/0x280
[ 3246.539506][T13141]  ? find_held_lock+0x2d/0x110
[ 3246.544296][T13141]  mem_cgroup_out_of_memory+0x206/0x270
[ 3246.549863][T13141]  ? mem_cgroup_margin+0x130/0x130
[ 3246.554992][T13141]  ? lock_downgrade+0x6e0/0x6e0
[ 3246.559867][T13141]  try_charge_memcg+0xefb/0x12f0
[ 3246.564823][T13141]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3246.570817][T13141]  ? lock_downgrade+0x6e0/0x6e0
[ 3246.575774][T13141]  charge_memcg+0x90/0x3b0
[ 3246.580202][T13141]  __mem_cgroup_charge+0x2b/0x90
[ 3246.585149][T13141]  do_wp_page+0x7ec/0x3370
[ 3246.589586][T13141]  ? lock_release+0x810/0x810
[ 3246.594268][T13141]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3246.599659][T13141]  ? do_raw_spin_lock+0x124/0x2b0
[ 3246.604689][T13141]  ? rwlock_bug.part.0+0x90/0x90
[ 3246.609633][T13141]  ? lock_chain_count+0x20/0x20
[ 3246.614501][T13141]  __handle_mm_fault+0x1f58/0x3c90
[ 3246.619633][T13141]  ? vm_iomap_memory+0x190/0x190
[ 3246.624605][T13141]  handle_mm_fault+0x1b6/0x850
[ 3246.629388][T13141]  do_user_addr_fault+0x475/0x1210
[ 3246.634516][T13141]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3246.640084][T13141]  exc_page_fault+0x98/0x170
[ 3246.644682][T13141]  asm_exc_page_fault+0x26/0x30
[ 3246.649546][T13141] RIP: 0033:0x7fbb9f039570
[ 3246.653967][T13141] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3246.673576][T13141] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3246.679646][T13141] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3246.687621][T13141] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3246.695619][T13141] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3246.703628][T13141] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3246.711602][T13141] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3246.719576][T13141]  ? __sys_socket+0x7c/0x250
[ 3246.724194][T13141]  </TASK>
[ 3246.731626][T13141] memory: usage 307200kB, limit 307200kB, failcnt 158474
[ 3246.744444][T13141] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3246.751407][T13141] Memory cgroup stats for /syz4:
[ 3246.751627][T13141] anon 102400
[ 3246.751627][T13141] file 438272
[ 3246.751627][T13141] kernel 314028032
[ 3246.751627][T13141] kernel_stack 65536
[ 3246.751627][T13141] pagetables 73728
[ 3246.751627][T13141] sec_pagetables 0
[ 3246.751627][T13141] percpu 5617088
[ 3246.751627][T13141] sock 4096
[ 3246.751627][T13141] vmalloc 0
[ 3246.751627][T13141] shmem 438272
[ 3246.751627][T13141] zswap 0
[ 3246.751627][T13141] zswapped 0
[ 3246.751627][T13141] file_mapped 393216
[ 3246.751627][T13141] file_dirty 0
[ 3246.751627][T13141] file_writeback 0
[ 3246.751627][T13141] swapcached 0
[ 3246.751627][T13141] anon_thp 0
[ 3246.751627][T13141] file_thp 0
[ 3246.751627][T13141] shmem_thp 0
[ 3246.751627][T13141] inactive_anon 114688
[ 3246.751627][T13141] active_anon 425984
[ 3246.751627][T13141] inactive_file 0
[ 3246.751627][T13141] active_file 0
[ 3246.751627][T13141] unevictable 0
[ 3246.751627][T13141] slab_reclaimable 23024
[ 3246.751627][T13141] slab_unreclaimable 308212560
[ 3246.853311][T13141] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13141,uid=0
10:33:27 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x1ae)

10:33:27 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000006000000000000000500010006"], 0x1c}}, 0x0)

10:33:27 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x1c4)

10:33:27 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x1100, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:27 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfec0000000000000}}], 0x2, 0x0)

[ 3246.870792][T13141] Memory cgroup out of memory: Killed process 13141 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3246.904625][T13150] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3246.970024][T13150] CPU: 1 PID: 13150 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3246.978756][T13150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3246.988836][T13150] Call Trace:
[ 3246.992155][T13150]  <TASK>
[ 3246.995104][T13150]  dump_stack_lvl+0xd1/0x138
[ 3246.999714][T13150]  dump_header+0x10b/0x85f
[ 3247.004151][T13150]  oom_kill_process.cold+0x10/0x15
[ 3247.009285][T13150]  out_of_memory+0x35c/0x14a0
[ 3247.013984][T13150]  ? find_held_lock+0x2d/0x110
[ 3247.018768][T13150]  ? oom_killer_disable+0x280/0x280
[ 3247.023989][T13150]  ? find_held_lock+0x2d/0x110
[ 3247.028771][T13150]  mem_cgroup_out_of_memory+0x206/0x270
[ 3247.034347][T13150]  ? mem_cgroup_margin+0x130/0x130
[ 3247.039471][T13150]  ? lock_downgrade+0x6e0/0x6e0
[ 3247.044353][T13150]  try_charge_memcg+0xefb/0x12f0
[ 3247.049306][T13150]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3247.055302][T13150]  ? lock_downgrade+0x6e0/0x6e0
[ 3247.060174][T13150]  charge_memcg+0x90/0x3b0
[ 3247.064600][T13150]  __mem_cgroup_charge+0x2b/0x90
[ 3247.069552][T13150]  ? copy_mc_to_kernel+0x3e/0x90
[ 3247.074535][T13150]  do_wp_page+0x7ec/0x3370
[ 3247.078980][T13150]  ? lock_release+0x810/0x810
[ 3247.083704][T13150]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3247.089093][T13150]  ? do_raw_spin_lock+0x124/0x2b0
[ 3247.094143][T13150]  ? rwlock_bug.part.0+0x90/0x90
[ 3247.099099][T13150]  ? lock_chain_count+0x20/0x20
[ 3247.103986][T13150]  __handle_mm_fault+0x1f58/0x3c90
[ 3247.109145][T13150]  ? vm_iomap_memory+0x190/0x190
[ 3247.114132][T13150]  handle_mm_fault+0x1b6/0x850
[ 3247.118925][T13150]  do_user_addr_fault+0x475/0x1210
[ 3247.124178][T13150]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3247.129764][T13150]  exc_page_fault+0x98/0x170
[ 3247.134380][T13150]  asm_exc_page_fault+0x26/0x30
[ 3247.139251][T13150] RIP: 0033:0x7f36ee036645
[ 3247.143676][T13150] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
[ 3247.163306][T13150] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
[ 3247.169382][T13150] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3247.177361][T13150] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3247.185337][T13150] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
[ 3247.193310][T13150] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 0000000000318b0e
[ 3247.201285][T13150] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3247.209278][T13150]  </TASK>
[ 3247.251602][T13150] memory: usage 307200kB, limit 307200kB, failcnt 34594
[ 3247.259065][T13150] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3247.266492][T13150] Memory cgroup stats for /syz5:
[ 3247.266701][T13150] anon 94208
[ 3247.266701][T13150] file 425984
[ 3247.266701][T13150] kernel 314052608
[ 3247.266701][T13150] kernel_stack 65536
[ 3247.266701][T13150] pagetables 77824
[ 3247.266701][T13150] sec_pagetables 0
[ 3247.266701][T13150] percpu 5429952
[ 3247.266701][T13150] sock 0
[ 3247.266701][T13150] vmalloc 8192
[ 3247.266701][T13150] shmem 425984
[ 3247.266701][T13150] zswap 0
[ 3247.266701][T13150] zswapped 0
[ 3247.266701][T13150] file_mapped 393216
[ 3247.266701][T13150] file_dirty 0
[ 3247.266701][T13150] file_writeback 0
[ 3247.266701][T13150] swapcached 0
[ 3247.266701][T13150] anon_thp 0
[ 3247.266701][T13150] file_thp 0
[ 3247.266701][T13150] shmem_thp 0
[ 3247.266701][T13150] inactive_anon 221184
[ 3247.266701][T13150] active_anon 299008
[ 3247.266701][T13150] inactive_file 0
[ 3247.266701][T13150] active_file 0
[ 3247.266701][T13150] unevictable 0
[ 3247.266701][T13150] slab_reclaimable 218328
[ 3247.266701][T13150] slab_unreclaimable 308218520
[ 3247.378668][T13150] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13150,uid=0
10:33:28 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40352)

10:33:28 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xfeffffff00000000}}], 0x2, 0x0)

10:33:28 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x1f00, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:28 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000007000000000000000500010006"], 0x1c}}, 0x0)

10:33:28 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x1e2)

[ 3247.394593][T13150] Memory cgroup out of memory: Killed process 13150 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3247.412211][T13166] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3247.422846][T13166] CPU: 1 PID: 13166 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3247.431570][T13166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3247.441657][T13166] Call Trace:
[ 3247.444964][T13166]  <TASK>
[ 3247.447928][T13166]  dump_stack_lvl+0xd1/0x138
[ 3247.452564][T13166]  dump_header+0x10b/0x85f
[ 3247.457037][T13166]  oom_kill_process.cold+0x10/0x15
[ 3247.462199][T13166]  out_of_memory+0x35c/0x14a0
[ 3247.466937][T13166]  ? oom_killer_disable+0x280/0x280
[ 3247.472190][T13166]  ? find_held_lock+0x2d/0x110
[ 3247.477007][T13166]  mem_cgroup_out_of_memory+0x206/0x270
[ 3247.482605][T13166]  ? mem_cgroup_margin+0x130/0x130
[ 3247.487780][T13166]  ? lock_downgrade+0x6e0/0x6e0
[ 3247.492683][T13166]  try_charge_memcg+0xefb/0x12f0
10:33:28 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xff00000000000000}}], 0x2, 0x0)

[ 3247.497665][T13166]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3247.503685][T13166]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3247.509454][T13166]  ? lock_downgrade+0x6e0/0x6e0
[ 3247.514342][T13166]  ? lock_downgrade+0x6e0/0x6e0
[ 3247.519255][T13166]  obj_cgroup_charge+0x2af/0x5e0
[ 3247.524245][T13166]  kmem_cache_alloc_lru+0x145/0x760
[ 3247.529478][T13166]  ? sock_alloc_inode+0x27/0x1d0
[ 3247.534469][T13166]  sock_alloc_inode+0x27/0x1d0
[ 3247.539274][T13166]  ? sock_free_inode+0x30/0x30
[ 3247.544085][T13166]  alloc_inode+0x61/0x230
[ 3247.548462][T13166]  new_inode_pseudo+0x17/0x80
10:33:28 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xffffff7f00000000}}], 0x2, 0x0)

[ 3247.553188][T13166]  sock_alloc+0x40/0x260
[ 3247.557475][T13166]  __sock_create+0xbd/0x790
[ 3247.562026][T13166]  __sys_socket+0x133/0x250
[ 3247.566570][T13166]  ? __sys_socket_file+0x1f0/0x1f0
[ 3247.571739][T13166]  __x64_sys_socket+0x73/0xb0
[ 3247.576463][T13166]  do_syscall_64+0x39/0xb0
[ 3247.580928][T13166]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3247.586855][T13166] RIP: 0033:0x7fbb9f08c0c9
[ 3247.591304][T13166] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3247.610944][T13166] RSP: 002b:00007fbb9fe42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3247.619390][T13166] RAX: ffffffffffffffda RBX: 00007fbb9f1abf80 RCX: 00007fbb9f08c0c9
[ 3247.627400][T13166] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3247.635408][T13166] RBP: 00007fbb9f0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3247.643411][T13166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3247.651411][T13166] R13: 00007fff7101e80f R14: 00007fbb9fe42300 R15: 0000000000022000
[ 3247.659411][T13166]  </TASK>
[ 3247.667252][T13166] memory: usage 307200kB, limit 307200kB, failcnt 158576
[ 3247.675248][T13166] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3247.682222][T13166] Memory cgroup stats for /syz4:
[ 3247.682464][T13166] anon 98304
[ 3247.682464][T13166] file 438272
[ 3247.682464][T13166] kernel 314032128
[ 3247.682464][T13166] kernel_stack 65536
[ 3247.682464][T13166] pagetables 81920
[ 3247.682464][T13166] sec_pagetables 0
[ 3247.682464][T13166] percpu 5617088
[ 3247.682464][T13166] sock 4096
[ 3247.682464][T13166] vmalloc 0
[ 3247.682464][T13166] shmem 438272
[ 3247.682464][T13166] zswap 0
[ 3247.682464][T13166] zswapped 0
[ 3247.682464][T13166] file_mapped 393216
[ 3247.682464][T13166] file_dirty 0
[ 3247.682464][T13166] file_writeback 0
[ 3247.682464][T13166] swapcached 0
[ 3247.682464][T13166] anon_thp 0
[ 3247.682464][T13166] file_thp 0
[ 3247.682464][T13166] shmem_thp 0
[ 3247.682464][T13166] inactive_anon 110592
[ 3247.682464][T13166] active_anon 425984
[ 3247.682464][T13166] inactive_file 0
[ 3247.682464][T13166] active_file 0
[ 3247.682464][T13166] unevictable 0
[ 3247.682464][T13166] slab_reclaimable 21096
[ 3247.682464][T13166] slab_unreclaimable 308213176
[ 3247.779441][T13166] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13163,uid=0
10:33:28 executing program 4:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x1ae)

10:33:28 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000009000000000000000500010006"], 0x1c}}, 0x0)

10:33:28 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0xffffffff00000000}}], 0x2, 0x0)

10:33:28 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x3000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3247.796155][T13166] Memory cgroup out of memory: Killed process 13163 (syz-executor.4) total-vm:56720kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:28 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000000e000000000000000500010006"], 0x1c}}, 0x0)

[ 3247.907859][T13180] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3247.934935][T13180] CPU: 1 PID: 13180 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3247.943679][T13180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3247.953764][T13180] Call Trace:
[ 3247.957069][T13180]  <TASK>
[ 3247.960029][T13180]  dump_stack_lvl+0xd1/0x138
[ 3247.964662][T13180]  dump_header+0x10b/0x85f
[ 3247.969129][T13180]  oom_kill_process.cold+0x10/0x15
[ 3247.974297][T13180]  out_of_memory+0x35c/0x14a0
[ 3247.979025][T13180]  ? find_held_lock+0x2d/0x110
[ 3247.983837][T13180]  ? oom_killer_disable+0x280/0x280
[ 3247.989086][T13180]  ? find_held_lock+0x2d/0x110
[ 3247.993896][T13180]  mem_cgroup_out_of_memory+0x206/0x270
[ 3247.999484][T13180]  ? mem_cgroup_margin+0x130/0x130
[ 3248.004615][T13180]  ? lock_downgrade+0x6e0/0x6e0
[ 3248.009488][T13180]  try_charge_memcg+0xefb/0x12f0
[ 3248.014443][T13180]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3248.020439][T13180]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3248.026199][T13180]  ? lock_downgrade+0x6e0/0x6e0
[ 3248.031065][T13180]  ? lock_downgrade+0x6e0/0x6e0
[ 3248.035934][T13180]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3248.041495][T13180]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3248.047765][T13180]  copy_process+0x4e3/0x7520
[ 3248.052369][T13180]  ? __lock_acquire+0xbc3/0x56d0
[ 3248.057329][T13180]  ? __cleanup_sighand+0xb0/0xb0
[ 3248.062277][T13180]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3248.068272][T13180]  ? psi_memstall_leave+0x174/0x250
[ 3248.073496][T13180]  kernel_clone+0xeb/0x990
[ 3248.077926][T13180]  ? create_io_thread+0xf0/0xf0
[ 3248.082794][T13180]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3248.089074][T13180]  ? lock_downgrade+0x6e0/0x6e0
[ 3248.093943][T13180]  __do_sys_clone+0xba/0x100
[ 3248.098548][T13180]  ? kernel_clone+0x990/0x990
[ 3248.103255][T13180]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3248.109167][T13180]  do_syscall_64+0x39/0xb0
[ 3248.113601][T13180]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3248.119506][T13180] RIP: 0033:0x7f36ee08d4f1
[ 3248.123948][T13180] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3248.143586][T13180] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3248.152053][T13180] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3248.160037][T13180] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3248.168015][T13180] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3248.175990][T13180] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3248.184057][T13180] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3248.192052][T13180]  </TASK>
[ 3248.207155][T13180] memory: usage 307200kB, limit 307200kB, failcnt 34704
[ 3248.214674][T13180] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3248.221722][T13180] Memory cgroup stats for /syz5:
[ 3248.221870][T13180] anon 86016
[ 3248.221870][T13180] file 425984
[ 3248.221870][T13180] kernel 314060800
[ 3248.221870][T13180] kernel_stack 32768
[ 3248.221870][T13180] pagetables 77824
[ 3248.221870][T13180] sec_pagetables 0
[ 3248.221870][T13180] percpu 5430016
[ 3248.221870][T13180] sock 0
[ 3248.221870][T13180] vmalloc 8192
[ 3248.221870][T13180] shmem 425984
[ 3248.221870][T13180] zswap 0
[ 3248.221870][T13180] zswapped 0
[ 3248.221870][T13180] file_mapped 393216
[ 3248.221870][T13180] file_dirty 0
[ 3248.221870][T13180] file_writeback 0
[ 3248.221870][T13180] swapcached 0
[ 3248.221870][T13180] anon_thp 0
[ 3248.221870][T13180] file_thp 0
[ 3248.221870][T13180] shmem_thp 0
[ 3248.221870][T13180] inactive_anon 204800
[ 3248.221870][T13180] active_anon 299008
[ 3248.221870][T13180] inactive_file 0
[ 3248.221870][T13180] active_file 0
[ 3248.221870][T13180] unevictable 0
10:33:29 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40353)

10:33:29 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x3f00, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:29 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0}}], 0x2, 0x0)

10:33:29 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x1ec)

10:33:29 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000000f000000000000000500010006"], 0x1c}}, 0x0)

[ 3248.221870][T13180] slab_reclaimable 216400
[ 3248.221870][T13180] slab_unreclaimable 308229192
[ 3248.316519][T13180] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13180,uid=0
[ 3248.335328][T13180] Memory cgroup out of memory: Killed process 13180 (syz-executor.5) total-vm:54540kB, anon-rss:356kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3248.386372][T13187] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3248.433941][T13187] CPU: 0 PID: 13187 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3248.442677][T13187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3248.452761][T13187] Call Trace:
[ 3248.456068][T13187]  <TASK>
[ 3248.459025][T13187]  dump_stack_lvl+0xd1/0x138
[ 3248.463655][T13187]  dump_header+0x10b/0x85f
[ 3248.468123][T13187]  oom_kill_process.cold+0x10/0x15
[ 3248.473294][T13187]  out_of_memory+0x35c/0x14a0
[ 3248.478060][T13187]  ? find_held_lock+0x2d/0x110
10:33:29 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000005114000000000000000500010006"], 0x1c}}, 0x0)

10:33:29 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x4000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3248.482868][T13187]  ? oom_killer_disable+0x280/0x280
[ 3248.488117][T13187]  ? find_held_lock+0x2d/0x110
[ 3248.492936][T13187]  mem_cgroup_out_of_memory+0x206/0x270
[ 3248.498529][T13187]  ? mem_cgroup_margin+0x130/0x130
[ 3248.503682][T13187]  ? lock_downgrade+0x6e0/0x6e0
[ 3248.508591][T13187]  try_charge_memcg+0xefb/0x12f0
[ 3248.513573][T13187]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3248.519597][T13187]  ? lock_downgrade+0x6e0/0x6e0
[ 3248.524536][T13187]  charge_memcg+0x90/0x3b0
[ 3248.529026][T13187]  __mem_cgroup_charge+0x2b/0x90
[ 3248.534012][T13187]  do_wp_page+0x7ec/0x3370
[ 3248.538481][T13187]  ? lock_release+0x810/0x810
[ 3248.543190][T13187]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3248.548610][T13187]  ? do_raw_spin_lock+0x124/0x2b0
[ 3248.553671][T13187]  ? rwlock_bug.part.0+0x90/0x90
[ 3248.558647][T13187]  ? lock_chain_count+0x20/0x20
[ 3248.563564][T13187]  __handle_mm_fault+0x1f58/0x3c90
[ 3248.568742][T13187]  ? vm_iomap_memory+0x190/0x190
[ 3248.573866][T13187]  handle_mm_fault+0x1b6/0x850
[ 3248.578683][T13187]  do_user_addr_fault+0x475/0x1210
[ 3248.583838][T13187]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3248.589440][T13187]  exc_page_fault+0x98/0x170
[ 3248.594072][T13187]  asm_exc_page_fault+0x26/0x30
[ 3248.598958][T13187] RIP: 0033:0x7fbb9f039570
[ 3248.603398][T13187] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3248.623038][T13187] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3248.629139][T13187] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3248.637157][T13187] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3248.645162][T13187] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3248.653164][T13187] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3248.661164][T13187] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3248.669162][T13187]  ? __sys_socket+0x7c/0x250
[ 3248.673812][T13187]  </TASK>
[ 3248.681592][T13187] memory: usage 307200kB, limit 307200kB, failcnt 158706
[ 3248.743733][T13187] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3248.751410][T13187] Memory cgroup stats for /syz4:
[ 3248.751607][T13187] anon 102400
[ 3248.751607][T13187] file 438272
[ 3248.751607][T13187] kernel 314028032
[ 3248.751607][T13187] kernel_stack 65536
[ 3248.751607][T13187] pagetables 73728
[ 3248.751607][T13187] sec_pagetables 0
[ 3248.751607][T13187] percpu 5617088
[ 3248.751607][T13187] sock 4096
[ 3248.751607][T13187] vmalloc 0
[ 3248.751607][T13187] shmem 438272
[ 3248.751607][T13187] zswap 0
[ 3248.751607][T13187] zswapped 0
[ 3248.751607][T13187] file_mapped 393216
[ 3248.751607][T13187] file_dirty 0
[ 3248.751607][T13187] file_writeback 0
[ 3248.751607][T13187] swapcached 0
[ 3248.751607][T13187] anon_thp 0
[ 3248.751607][T13187] file_thp 0
[ 3248.751607][T13187] shmem_thp 0
[ 3248.751607][T13187] inactive_anon 114688
[ 3248.751607][T13187] active_anon 425984
[ 3248.751607][T13187] inactive_file 0
[ 3248.751607][T13187] active_file 0
[ 3248.751607][T13187] unevictable 0
[ 3248.751607][T13187] slab_reclaimable 23024
[ 3248.751607][T13187] slab_unreclaimable 308212560
[ 3248.849313][T13187] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13187,uid=0
[ 3248.865236][T13187] Memory cgroup out of memory: Killed process 13187 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3248.883286][T13201] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3248.900116][T13201] CPU: 0 PID: 13201 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3248.908833][T13201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3248.918898][T13201] Call Trace:
[ 3248.922181][T13201]  <TASK>
[ 3248.925115][T13201]  dump_stack_lvl+0xd1/0x138
[ 3248.929722][T13201]  dump_header+0x10b/0x85f
[ 3248.934160][T13201]  oom_kill_process.cold+0x10/0x15
[ 3248.939293][T13201]  out_of_memory+0x35c/0x14a0
[ 3248.943995][T13201]  ? oom_killer_disable+0x280/0x280
[ 3248.949214][T13201]  ? find_held_lock+0x2d/0x110
[ 3248.954022][T13201]  mem_cgroup_out_of_memory+0x206/0x270
[ 3248.959590][T13201]  ? mem_cgroup_margin+0x130/0x130
[ 3248.964722][T13201]  ? lock_downgrade+0x6e0/0x6e0
[ 3248.969593][T13201]  try_charge_memcg+0xefb/0x12f0
[ 3248.974550][T13201]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3248.980539][T13201]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3248.986277][T13201]  ? lock_downgrade+0x6e0/0x6e0
[ 3248.991137][T13201]  ? lock_downgrade+0x6e0/0x6e0
[ 3248.996005][T13201]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3249.001564][T13201]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3249.007737][T13201]  copy_process+0x4e3/0x7520
[ 3249.012338][T13201]  ? __lock_acquire+0xbc3/0x56d0
[ 3249.017296][T13201]  ? __cleanup_sighand+0xb0/0xb0
[ 3249.022242][T13201]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3249.028232][T13201]  ? psi_memstall_leave+0x174/0x250
[ 3249.033451][T13201]  kernel_clone+0xeb/0x990
[ 3249.037879][T13201]  ? create_io_thread+0xf0/0xf0
[ 3249.042746][T13201]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3249.049006][T13201]  ? lock_downgrade+0x6e0/0x6e0
[ 3249.053876][T13201]  __do_sys_clone+0xba/0x100
[ 3249.058476][T13201]  ? kernel_clone+0x990/0x990
[ 3249.063199][T13201]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3249.069108][T13201]  do_syscall_64+0x39/0xb0
[ 3249.073541][T13201]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3249.079489][T13201] RIP: 0033:0x7f36ee08d4f1
[ 3249.083909][T13201] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3249.103523][T13201] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3249.111944][T13201] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3249.119921][T13201] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3249.127898][T13201] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3249.135875][T13201] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
10:33:30 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000000f000000000000000500010006"], 0x1c}}, 0x0)

10:33:30 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x4800, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:30 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x2}}], 0x2, 0x0)

10:33:30 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000001f000000000000000500010006"], 0x1c}}, 0x0)

10:33:30 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x212)

[ 3249.143872][T13201] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3249.151881][T13201]  </TASK>
[ 3249.158172][T13201] memory: usage 307200kB, limit 307200kB, failcnt 34831
[ 3249.166653][T13201] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3249.209126][T13201] Memory cgroup stats for /syz5:
[ 3249.209313][T13201] anon 86016
[ 3249.209313][T13201] file 425984
[ 3249.209313][T13201] kernel 314060800
[ 3249.209313][T13201] kernel_stack 32768
[ 3249.209313][T13201] pagetables 77824
[ 3249.209313][T13201] sec_pagetables 0
[ 3249.209313][T13201] percpu 5430016
[ 3249.209313][T13201] sock 0
[ 3249.209313][T13201] vmalloc 8192
[ 3249.209313][T13201] shmem 425984
[ 3249.209313][T13201] zswap 0
[ 3249.209313][T13201] zswapped 0
[ 3249.209313][T13201] file_mapped 393216
[ 3249.209313][T13201] file_dirty 0
[ 3249.209313][T13201] file_writeback 0
[ 3249.209313][T13201] swapcached 0
[ 3249.209313][T13201] anon_thp 0
[ 3249.209313][T13201] file_thp 0
[ 3249.209313][T13201] shmem_thp 0
[ 3249.209313][T13201] inactive_anon 212992
[ 3249.209313][T13201] active_anon 299008
[ 3249.209313][T13201] inactive_file 0
[ 3249.209313][T13201] active_file 0
[ 3249.209313][T13201] unevictable 0
[ 3249.209313][T13201] slab_reclaimable 216400
[ 3249.209313][T13201] slab_unreclaimable 308229192
[ 3249.321130][T13201] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13201,uid=0
[ 3249.338664][T13201] Memory cgroup out of memory: Killed process 13201 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:30 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40354)

10:33:30 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000060000000000000000500010006"], 0x1c}}, 0x0)

10:33:30 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x3}}], 0x2, 0x0)

10:33:30 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x4c00, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3249.369952][T13214] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3249.431969][T13214] CPU: 1 PID: 13214 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3249.440715][T13214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3249.450804][T13214] Call Trace:
[ 3249.454118][T13214]  <TASK>
[ 3249.457079][T13214]  dump_stack_lvl+0xd1/0x138
[ 3249.461726][T13214]  dump_header+0x10b/0x85f
[ 3249.466199][T13214]  oom_kill_process.cold+0x10/0x15
[ 3249.471359][T13214]  out_of_memory+0x35c/0x14a0
[ 3249.476181][T13214]  ? oom_killer_disable+0x280/0x280
10:33:30 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000180000000000000000500010006"], 0x1c}}, 0x0)

[ 3249.481444][T13214]  ? find_held_lock+0x2d/0x110
[ 3249.486285][T13214]  mem_cgroup_out_of_memory+0x206/0x270
[ 3249.491868][T13214]  ? mem_cgroup_margin+0x130/0x130
[ 3249.497028][T13214]  ? lock_downgrade+0x6e0/0x6e0
[ 3249.501931][T13214]  try_charge_memcg+0xefb/0x12f0
[ 3249.506914][T13214]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3249.512924][T13214]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3249.518692][T13214]  ? lock_downgrade+0x6e0/0x6e0
[ 3249.523674][T13214]  ? lock_downgrade+0x6e0/0x6e0
[ 3249.528569][T13214]  obj_cgroup_charge+0x2af/0x5e0
[ 3249.533528][T13214]  kmem_cache_alloc_lru+0x145/0x760
[ 3249.538824][T13214]  ? sock_alloc_inode+0x27/0x1d0
[ 3249.543784][T13214]  sock_alloc_inode+0x27/0x1d0
[ 3249.548739][T13214]  ? sock_free_inode+0x30/0x30
[ 3249.553520][T13214]  alloc_inode+0x61/0x230
[ 3249.557873][T13214]  new_inode_pseudo+0x17/0x80
[ 3249.562576][T13214]  sock_alloc+0x40/0x260
[ 3249.566838][T13214]  __sock_create+0xbd/0x790
[ 3249.571367][T13214]  __sys_socket+0x133/0x250
[ 3249.575917][T13214]  ? __sys_socket_file+0x1f0/0x1f0
[ 3249.581058][T13214]  __x64_sys_socket+0x73/0xb0
[ 3249.585776][T13214]  do_syscall_64+0x39/0xb0
[ 3249.590215][T13214]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3249.596222][T13214] RIP: 0033:0x7fbb9f08c0c9
[ 3249.600650][T13214] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3249.620269][T13214] RSP: 002b:00007fbb9fe42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
10:33:30 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x5b00, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3249.628954][T13214] RAX: ffffffffffffffda RBX: 00007fbb9f1abf80 RCX: 00007fbb9f08c0c9
[ 3249.636931][T13214] RDX: 000000000000000c RSI: 0000000000000003 RDI: 0000000000000010
[ 3249.644918][T13214] RBP: 00007fbb9f0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3249.652897][T13214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3249.660875][T13214] R13: 00007fff7101e80f R14: 00007fbb9fe42300 R15: 0000000000022000
[ 3249.668888][T13214]  </TASK>
10:33:30 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000ffffff9e000000000000000500010006"], 0x1c}}, 0x0)

[ 3249.811875][T13214] memory: usage 307200kB, limit 307200kB, failcnt 158790
[ 3249.832821][T13214] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3249.842385][T13214] Memory cgroup stats for /syz4:
[ 3249.842599][T13214] anon 98304
[ 3249.842599][T13214] file 438272
[ 3249.842599][T13214] kernel 314032128
[ 3249.842599][T13214] kernel_stack 65536
[ 3249.842599][T13214] pagetables 81920
[ 3249.842599][T13214] sec_pagetables 0
[ 3249.842599][T13214] percpu 5617088
[ 3249.842599][T13214] sock 4096
[ 3249.842599][T13214] vmalloc 0
[ 3249.842599][T13214] shmem 438272
[ 3249.842599][T13214] zswap 0
[ 3249.842599][T13214] zswapped 0
[ 3249.842599][T13214] file_mapped 393216
[ 3249.842599][T13214] file_dirty 0
[ 3249.842599][T13214] file_writeback 0
[ 3249.842599][T13214] swapcached 0
[ 3249.842599][T13214] anon_thp 0
[ 3249.842599][T13214] file_thp 0
[ 3249.842599][T13214] shmem_thp 0
[ 3249.842599][T13214] inactive_anon 110592
[ 3249.842599][T13214] active_anon 425984
[ 3249.842599][T13214] inactive_file 0
[ 3249.842599][T13214] active_file 0
[ 3249.842599][T13214] unevictable 0
[ 3249.842599][T13214] slab_reclaimable 21096
[ 3249.842599][T13214] slab_unreclaimable 308212544
[ 3249.942532][T13214] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13211,uid=0
[ 3249.958668][T13214] Memory cgroup out of memory: Killed process 13211 (syz-executor.4) total-vm:56720kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3249.977381][T13213] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=2, oom_score_adj=1000
[ 3249.991739][T13214] socket: no more sockets
[ 3250.008217][T13213] CPU: 0 PID: 13213 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3250.016930][T13213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3250.026978][T13213] Call Trace:
[ 3250.030249][T13213]  <TASK>
[ 3250.033174][T13213]  dump_stack_lvl+0xd1/0x138
[ 3250.037764][T13213]  dump_header+0x10b/0x85f
[ 3250.042276][T13213]  oom_kill_process.cold+0x10/0x15
[ 3250.047396][T13213]  out_of_memory+0x35c/0x14a0
[ 3250.052077][T13213]  ? oom_killer_disable+0x280/0x280
[ 3250.057275][T13213]  ? find_held_lock+0x2d/0x110
[ 3250.062040][T13213]  mem_cgroup_out_of_memory+0x206/0x270
[ 3250.067628][T13213]  ? mem_cgroup_margin+0x130/0x130
[ 3250.072781][T13213]  ? lock_downgrade+0x6e0/0x6e0
[ 3250.077683][T13213]  try_charge_memcg+0xefb/0x12f0
[ 3250.082656][T13213]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3250.088660][T13213]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3250.094381][T13213]  ? lock_downgrade+0x6e0/0x6e0
[ 3250.099236][T13213]  obj_cgroup_charge+0x2af/0x5e0
[ 3250.104172][T13213]  __kmem_cache_alloc_node+0xb2/0x430
[ 3250.109540][T13213]  ? __devinet_sysctl_register+0x98/0x280
[ 3250.115274][T13213]  ? __devinet_sysctl_register+0x98/0x280
[ 3250.121021][T13213]  __kmalloc_node_track_caller+0x4b/0xc0
[ 3250.126695][T13213]  kmemdup+0x2c/0x60
[ 3250.130621][T13213]  __devinet_sysctl_register+0x98/0x280
[ 3250.136188][T13213]  ? inet_netconf_notify_devconf+0x260/0x260
[ 3250.142177][T13213]  ? br_set_state+0x587/0x610
[ 3250.146879][T13213]  ? __rtnl_newlink+0x10c2/0x1840
[ 3250.151924][T13213]  ? rtnl_newlink+0x68/0xa0
[ 3250.156424][T13213]  ? rtnetlink_rcv_msg+0x43e/0xca0
[ 3250.161644][T13213]  ? netlink_rcv_skb+0x165/0x440
[ 3250.166603][T13213]  ? netlink_unicast+0x547/0x7f0
[ 3250.171585][T13213]  ? netlink_sendmsg+0x91b/0xe10
[ 3250.176567][T13213]  ? sock_sendmsg+0xd3/0x120
[ 3250.181193][T13213]  ? ____sys_sendmsg+0x712/0x8c0
[ 3250.186153][T13213]  ? ___sys_sendmsg+0x110/0x1b0
[ 3250.191012][T13213]  devinet_sysctl_register+0x160/0x230
[ 3250.196474][T13213]  inetdev_init+0x286/0x580
[ 3250.200977][T13213]  inetdev_event+0xe20/0x16c0
[ 3250.205651][T13213]  ? del_default_gids+0xe0/0xe0
[ 3250.210499][T13213]  ? is_ndev_for_default_gid_filter.part.0+0x2e0/0x2e0
[ 3250.217370][T13213]  ? devinet_init_net+0x650/0x650
[ 3250.222432][T13213]  ? skb_dequeue+0x129/0x180
[ 3250.227057][T13213]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3250.233002][T13213]  notifier_call_chain+0xb5/0x200
[ 3250.238052][T13213]  call_netdevice_notifiers_info+0xb5/0x130
[ 3250.243961][T13213]  register_netdevice+0xfb4/0x1640
[ 3250.249104][T13213]  ? unregister_netdevice_queue+0x3c0/0x3c0
[ 3250.255010][T13213]  br_dev_newlink+0x27/0x110
[ 3250.259610][T13213]  ? br_changelink+0x1620/0x1620
[ 3250.264648][T13213]  __rtnl_newlink+0x10c2/0x1840
[ 3250.269559][T13213]  ? rtnl_link_unregister+0x250/0x250
[ 3250.274967][T13213]  ? __kmem_cache_alloc_node+0x48/0x430
[ 3250.280669][T13213]  rtnl_newlink+0x68/0xa0
[ 3250.285024][T13213]  ? __rtnl_newlink+0x1840/0x1840
[ 3250.290047][T13213]  rtnetlink_rcv_msg+0x43e/0xca0
[ 3250.295063][T13213]  ? rtnl_getlink+0xae0/0xae0
[ 3250.299751][T13213]  ? __dev_queue_xmit+0xb54/0x3ba0
[ 3250.304904][T13213]  netlink_rcv_skb+0x165/0x440
[ 3250.309681][T13213]  ? rtnl_getlink+0xae0/0xae0
[ 3250.314368][T13213]  ? netlink_ack+0x1370/0x1370
[ 3250.319203][T13213]  ? netlink_deliver_tap+0x1b1/0xc50
[ 3250.324541][T13213]  netlink_unicast+0x547/0x7f0
[ 3250.329354][T13213]  ? netlink_attachskb+0x890/0x890
[ 3250.334495][T13213]  ? __virt_addr_valid+0x61/0x2e0
[ 3250.339521][T13213]  ? __phys_addr_symbol+0x30/0x70
[ 3250.344541][T13213]  ? __check_object_size+0x2e2/0x5a0
[ 3250.349832][T13213]  netlink_sendmsg+0x91b/0xe10
[ 3250.354603][T13213]  ? netlink_unicast+0x7f0/0x7f0
[ 3250.359545][T13213]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3250.364846][T13213]  ? netlink_unicast+0x7f0/0x7f0
[ 3250.369825][T13213]  sock_sendmsg+0xd3/0x120
[ 3250.374282][T13213]  ____sys_sendmsg+0x712/0x8c0
[ 3250.379075][T13213]  ? copy_msghdr_from_user+0xfc/0x150
[ 3250.384478][T13213]  ? kernel_sendmsg+0x50/0x50
[ 3250.389158][T13213]  ? futex_unqueue+0xb7/0x120
[ 3250.393844][T13213]  ___sys_sendmsg+0x110/0x1b0
[ 3250.398532][T13213]  ? do_recvmmsg+0x6e0/0x6e0
[ 3250.403123][T13213]  ? __fget_files+0x248/0x440
[ 3250.407794][T13213]  ? lock_downgrade+0x6e0/0x6e0
[ 3250.412647][T13213]  ? __fget_files+0x26a/0x440
[ 3250.417346][T13213]  ? __fget_light+0xe5/0x270
[ 3250.421982][T13213]  __sys_sendmsg+0xf7/0x1c0
[ 3250.426525][T13213]  ? __sys_sendmsg_sock+0x40/0x40
[ 3250.431593][T13213]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3250.437584][T13213]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3250.443750][T13213]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3250.448968][T13213]  do_syscall_64+0x39/0xb0
[ 3250.453425][T13213]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3250.459337][T13213] RIP: 0033:0x7fde80a8c0c9
[ 3250.463750][T13213] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3250.483370][T13213] RSP: 002b:00007fde818ce168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3250.491809][T13213] RAX: ffffffffffffffda RBX: 00007fde80babf80 RCX: 00007fde80a8c0c9
[ 3250.499776][T13213] RDX: 0000000000000212 RSI: 00000000200000c0 RDI: 0000000000000003
10:33:31 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000000f000000000000000500010006"], 0x1c}}, 0x0)

10:33:31 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x4}}], 0x2, 0x0)

10:33:31 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000ec0000000000000000500010006"], 0x1c}}, 0x0)

10:33:31 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x6800, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3250.507738][T13213] RBP: 00007fde80ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3250.515712][T13213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3250.523704][T13213] R13: 00007ffd6245db6f R14: 00007fde818ce300 R15: 0000000000022000
[ 3250.531723][T13213]  </TASK>
[ 3250.547832][T13213] memory: usage 307196kB, limit 307200kB, failcnt 41845
[ 3250.594400][T13213] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3250.622326][T13213] Memory cgroup stats for /syz2:
[ 3250.622539][T13213] anon 135168
[ 3250.622539][T13213] file 307200
[ 3250.622539][T13213] kernel 314093568
[ 3250.622539][T13213] kernel_stack 32768
[ 3250.622539][T13213] pagetables 86016
[ 3250.622539][T13213] sec_pagetables 0
[ 3250.622539][T13213] percpu 5433440
[ 3250.622539][T13213] sock 0
[ 3250.622539][T13213] vmalloc 24576
[ 3250.622539][T13213] shmem 307200
[ 3250.622539][T13213] zswap 0
[ 3250.622539][T13213] zswapped 0
[ 3250.622539][T13213] file_mapped 299008
[ 3250.622539][T13213] file_dirty 0
[ 3250.622539][T13213] file_writeback 0
[ 3250.622539][T13213] swapcached 0
[ 3250.622539][T13213] anon_thp 0
[ 3250.622539][T13213] file_thp 0
[ 3250.622539][T13213] shmem_thp 0
[ 3250.622539][T13213] inactive_anon 143360
[ 3250.622539][T13213] active_anon 299008
[ 3250.622539][T13213] inactive_file 0
[ 3250.622539][T13213] active_file 0
[ 3250.622539][T13213] unevictable 0
[ 3250.622539][T13213] slab_reclaimable 112984
[ 3250.622539][T13213] slab_unreclaimable 308378192
[ 3250.726510][T13213] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=13208,uid=0
[ 3250.745925][T13213] Memory cgroup out of memory: Killed process 13213 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3250.782782][T13223] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3250.810296][T13223] CPU: 1 PID: 13223 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3250.819021][T13223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3250.829096][T13223] Call Trace:
[ 3250.832381][T13223]  <TASK>
[ 3250.835319][T13223]  dump_stack_lvl+0xd1/0x138
[ 3250.839932][T13223]  dump_header+0x10b/0x85f
[ 3250.844377][T13223]  oom_kill_process.cold+0x10/0x15
[ 3250.849512][T13223]  out_of_memory+0x35c/0x14a0
[ 3250.854220][T13223]  ? find_held_lock+0x2d/0x110
[ 3250.859009][T13223]  ? oom_killer_disable+0x280/0x280
[ 3250.864234][T13223]  ? find_held_lock+0x2d/0x110
[ 3250.869025][T13223]  mem_cgroup_out_of_memory+0x206/0x270
[ 3250.874595][T13223]  ? mem_cgroup_margin+0x130/0x130
[ 3250.879726][T13223]  ? lock_downgrade+0x6e0/0x6e0
[ 3250.884604][T13223]  try_charge_memcg+0xefb/0x12f0
[ 3250.889578][T13223]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3250.895577][T13223]  ? lock_downgrade+0x6e0/0x6e0
[ 3250.900642][T13223]  charge_memcg+0x90/0x3b0
[ 3250.905081][T13223]  __mem_cgroup_charge+0x2b/0x90
[ 3250.910028][T13223]  ? copy_mc_to_kernel+0x3e/0x90
[ 3250.914975][T13223]  do_wp_page+0x7ec/0x3370
[ 3250.919412][T13223]  ? lock_release+0x810/0x810
[ 3250.924098][T13223]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3250.929488][T13223]  ? do_raw_spin_lock+0x124/0x2b0
[ 3250.934527][T13223]  ? rwlock_bug.part.0+0x90/0x90
[ 3250.939490][T13223]  ? lock_chain_count+0x20/0x20
[ 3250.944353][T13223]  __handle_mm_fault+0x1f58/0x3c90
[ 3250.949494][T13223]  ? vm_iomap_memory+0x190/0x190
[ 3250.954469][T13223]  handle_mm_fault+0x1b6/0x850
[ 3250.959288][T13223]  do_user_addr_fault+0x475/0x1210
[ 3250.964423][T13223]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3250.970001][T13223]  exc_page_fault+0x98/0x170
[ 3250.974607][T13223]  asm_exc_page_fault+0x26/0x30
[ 3250.979466][T13223] RIP: 0033:0x7f36ee036645
[ 3250.983888][T13223] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
[ 3251.003505][T13223] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
[ 3251.009580][T13223] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3251.017557][T13223] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3251.025560][T13223] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
[ 3251.033556][T13223] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 0000000000319a31
[ 3251.041537][T13223] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3251.049530][T13223]  </TASK>
[ 3251.060848][T13223] memory: usage 307200kB, limit 307200kB, failcnt 34973
[ 3251.069641][T13223] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3251.077016][T13223] Memory cgroup stats for /syz5:
[ 3251.077227][T13223] anon 94208
[ 3251.077227][T13223] file 425984
[ 3251.077227][T13223] kernel 314052608
[ 3251.077227][T13223] kernel_stack 65536
[ 3251.077227][T13223] pagetables 77824
[ 3251.077227][T13223] sec_pagetables 0
[ 3251.077227][T13223] percpu 5429952
[ 3251.077227][T13223] sock 0
[ 3251.077227][T13223] vmalloc 8192
[ 3251.077227][T13223] shmem 425984
[ 3251.077227][T13223] zswap 0
[ 3251.077227][T13223] zswapped 0
[ 3251.077227][T13223] file_mapped 393216
[ 3251.077227][T13223] file_dirty 0
[ 3251.077227][T13223] file_writeback 0
[ 3251.077227][T13223] swapcached 0
[ 3251.077227][T13223] anon_thp 0
[ 3251.077227][T13223] file_thp 0
[ 3251.077227][T13223] shmem_thp 0
[ 3251.077227][T13223] inactive_anon 221184
[ 3251.077227][T13223] active_anon 299008
[ 3251.077227][T13223] inactive_file 0
[ 3251.077227][T13223] active_file 0
[ 3251.077227][T13223] unevictable 0
[ 3251.077227][T13223] slab_reclaimable 218328
[ 3251.077227][T13223] slab_unreclaimable 308218520
[ 3251.179808][T13223] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13223,uid=0
[ 3251.195989][T13223] Memory cgroup out of memory: Killed process 13223 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:32 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x21a)

10:33:32 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x5}}], 0x2, 0x0)

10:33:32 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000003e8000000000000000500010006"], 0x1c}}, 0x0)

10:33:32 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x6c00, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:32 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40355)

[ 3251.240282][T13234] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3251.250947][T13234] CPU: 1 PID: 13234 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3251.259663][T13234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3251.269748][T13234] Call Trace:
[ 3251.273051][T13234]  <TASK>
[ 3251.276009][T13234]  dump_stack_lvl+0xd1/0x138
[ 3251.280642][T13234]  dump_header+0x10b/0x85f
[ 3251.285102][T13234]  oom_kill_process.cold+0x10/0x15
[ 3251.290244][T13234]  out_of_memory+0x35c/0x14a0
[ 3251.294947][T13234]  ? find_held_lock+0x2d/0x110
[ 3251.299730][T13234]  ? oom_killer_disable+0x280/0x280
[ 3251.304949][T13234]  ? find_held_lock+0x2d/0x110
[ 3251.309733][T13234]  mem_cgroup_out_of_memory+0x206/0x270
[ 3251.315297][T13234]  ? mem_cgroup_margin+0x130/0x130
[ 3251.320463][T13234]  ? lock_downgrade+0x6e0/0x6e0
[ 3251.325344][T13234]  try_charge_memcg+0xefb/0x12f0
[ 3251.330309][T13234]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3251.336315][T13234]  ? lock_downgrade+0x6e0/0x6e0
[ 3251.341197][T13234]  charge_memcg+0x90/0x3b0
[ 3251.345633][T13234]  __mem_cgroup_charge+0x2b/0x90
[ 3251.350584][T13234]  do_wp_page+0x7ec/0x3370
[ 3251.355025][T13234]  ? lock_release+0x810/0x810
[ 3251.359706][T13234]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3251.365093][T13234]  ? do_raw_spin_lock+0x124/0x2b0
[ 3251.370125][T13234]  ? rwlock_bug.part.0+0x90/0x90
[ 3251.375077][T13234]  ? lock_chain_count+0x20/0x20
[ 3251.379944][T13234]  __handle_mm_fault+0x1f58/0x3c90
[ 3251.385082][T13234]  ? vm_iomap_memory+0x190/0x190
[ 3251.390062][T13234]  handle_mm_fault+0x1b6/0x850
[ 3251.394859][T13234]  do_user_addr_fault+0x475/0x1210
[ 3251.400008][T13234]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3251.405587][T13234]  exc_page_fault+0x98/0x170
[ 3251.410201][T13234]  asm_exc_page_fault+0x26/0x30
[ 3251.415071][T13234] RIP: 0033:0x7fbb9f039570
[ 3251.419496][T13234] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3251.439112][T13234] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3251.445189][T13234] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3251.453166][T13234] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3251.461144][T13234] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3251.469139][T13234] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3251.477134][T13234] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3251.485127][T13234]  ? security_socket_create+0x3f/0xc0
[ 3251.490547][T13234]  </TASK>
[ 3251.496969][T13234] memory: usage 307200kB, limit 307200kB, failcnt 158952
[ 3251.504143][T13234] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3251.512164][T13234] Memory cgroup stats for /syz4:
[ 3251.512348][T13234] anon 118784
[ 3251.512348][T13234] file 438272
[ 3251.512348][T13234] kernel 314011648
[ 3251.512348][T13234] kernel_stack 65536
[ 3251.512348][T13234] pagetables 73728
[ 3251.512348][T13234] sec_pagetables 0
[ 3251.512348][T13234] percpu 5617024
[ 3251.512348][T13234] sock 4096
[ 3251.512348][T13234] vmalloc 0
[ 3251.512348][T13234] shmem 438272
[ 3251.512348][T13234] zswap 0
[ 3251.512348][T13234] zswapped 0
[ 3251.512348][T13234] file_mapped 393216
[ 3251.512348][T13234] file_dirty 0
[ 3251.512348][T13234] file_writeback 0
[ 3251.512348][T13234] swapcached 0
[ 3251.512348][T13234] anon_thp 0
[ 3251.512348][T13234] file_thp 0
[ 3251.512348][T13234] shmem_thp 0
[ 3251.512348][T13234] inactive_anon 131072
[ 3251.512348][T13234] active_anon 425984
[ 3251.512348][T13234] inactive_file 0
10:33:32 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000fffffff0000000000000000500010006"], 0x1c}}, 0x0)

10:33:32 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x7400, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:32 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x6}}], 0x2, 0x0)

[ 3251.512348][T13234] active_file 0
[ 3251.512348][T13234] unevictable 0
[ 3251.512348][T13234] slab_reclaimable 23024
[ 3251.512348][T13234] slab_unreclaimable 308200776
[ 3251.622982][T13234] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13234,uid=0
[ 3251.652425][T13234] Memory cgroup out of memory: Killed process 13234 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:32 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000000f000000000000000500010006"], 0x1c}}, 0x0)

10:33:32 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x7a00, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3251.694001][T13245] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3251.717624][T13245] CPU: 0 PID: 13245 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3251.726365][T13245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3251.736457][T13245] Call Trace:
[ 3251.739761][T13245]  <TASK>
[ 3251.742720][T13245]  dump_stack_lvl+0xd1/0x138
[ 3251.747373][T13245]  dump_header+0x10b/0x85f
[ 3251.751841][T13245]  oom_kill_process.cold+0x10/0x15
[ 3251.757002][T13245]  out_of_memory+0x35c/0x14a0
[ 3251.761736][T13245]  ? oom_killer_disable+0x280/0x280
[ 3251.766984][T13245]  ? find_held_lock+0x2d/0x110
[ 3251.771796][T13245]  mem_cgroup_out_of_memory+0x206/0x270
[ 3251.777394][T13245]  ? mem_cgroup_margin+0x130/0x130
[ 3251.782546][T13245]  ? lock_downgrade+0x6e0/0x6e0
[ 3251.787446][T13245]  try_charge_memcg+0xefb/0x12f0
[ 3251.792429][T13245]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3251.798446][T13245]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3251.804211][T13245]  ? lock_downgrade+0x6e0/0x6e0
[ 3251.809118][T13245]  obj_cgroup_charge+0x2af/0x5e0
[ 3251.814091][T13245]  ? __anon_vma_prepare+0x64/0x580
[ 3251.819239][T13245]  kmem_cache_alloc+0xb5/0x430
[ 3251.824034][T13245]  __anon_vma_prepare+0x64/0x580
[ 3251.829011][T13245]  ? __pmd_alloc+0x30c/0x5d0
[ 3251.833641][T13245]  __handle_mm_fault+0x392f/0x3c90
[ 3251.838802][T13245]  ? vm_iomap_memory+0x190/0x190
[ 3251.843804][T13245]  handle_mm_fault+0x1b6/0x850
[ 3251.848605][T13245]  do_user_addr_fault+0x475/0x1210
[ 3251.853737][T13245]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3251.859306][T13245]  exc_page_fault+0x98/0x170
[ 3251.863915][T13245]  asm_exc_page_fault+0x26/0x30
[ 3251.868773][T13245] RIP: 0033:0x7fde80a2bd49
[ 3251.873192][T13245] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3251.892813][T13245] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3251.898888][T13245] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3251.906863][T13245] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3251.914841][T13245] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3251.922818][T13245] R10: 00007fde80600068 R11: 0000000000000246 R12: 0000000000319d8a
[ 3251.930793][T13245] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3251.938791][T13245]  </TASK>
10:33:32 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000f0ffff000000000000000500010006"], 0x1c}}, 0x0)

10:33:32 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x7}}], 0x2, 0x0)

[ 3251.953172][T13245] memory: usage 307200kB, limit 307200kB, failcnt 41977
[ 3251.963155][T13245] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3251.993458][T13245] Memory cgroup stats for /syz2:
[ 3251.993673][T13245] anon 131072
[ 3251.993673][T13245] file 307200
[ 3251.993673][T13245] kernel 314134528
[ 3251.993673][T13245] kernel_stack 65536
[ 3251.993673][T13245] pagetables 86016
[ 3251.993673][T13245] sec_pagetables 0
[ 3251.993673][T13245] percpu 5433504
[ 3251.993673][T13245] sock 0
[ 3251.993673][T13245] vmalloc 16384
[ 3251.993673][T13245] shmem 307200
[ 3251.993673][T13245] zswap 0
[ 3251.993673][T13245] zswapped 0
[ 3251.993673][T13245] file_mapped 299008
[ 3251.993673][T13245] file_dirty 0
[ 3251.993673][T13245] file_writeback 0
[ 3251.993673][T13245] swapcached 0
[ 3251.993673][T13245] anon_thp 0
[ 3251.993673][T13245] file_thp 0
[ 3251.993673][T13245] shmem_thp 0
[ 3251.993673][T13245] inactive_anon 139264
[ 3251.993673][T13245] active_anon 299008
[ 3251.993673][T13245] inactive_file 0
[ 3251.993673][T13245] active_file 0
[ 3251.993673][T13245] unevictable 0
[ 3251.993673][T13245] slab_reclaimable 112984
[ 3251.993673][T13245] slab_unreclaimable 308390336
[ 3252.089321][T13245] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=13245,uid=0
[ 3252.122829][T13245] Memory cgroup out of memory: Killed process 13245 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
10:33:32 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x22a)

10:33:32 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x80fe, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:32 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300007fffffff000000000000000500010006"], 0x1c}}, 0x0)

10:33:32 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x8}}], 0x2, 0x0)

[ 3252.147757][T13248] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3252.182849][T13248] CPU: 1 PID: 13248 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3252.191589][T13248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3252.201680][T13248] Call Trace:
[ 3252.204990][T13248]  <TASK>
[ 3252.207954][T13248]  dump_stack_lvl+0xd1/0x138
[ 3252.212595][T13248]  dump_header+0x10b/0x85f
[ 3252.217070][T13248]  oom_kill_process.cold+0x10/0x15
[ 3252.222242][T13248]  out_of_memory+0x35c/0x14a0
[ 3252.226983][T13248]  ? oom_killer_disable+0x280/0x280
[ 3252.232248][T13248]  ? find_held_lock+0x2d/0x110
[ 3252.237063][T13248]  mem_cgroup_out_of_memory+0x206/0x270
[ 3252.242656][T13248]  ? mem_cgroup_margin+0x130/0x130
[ 3252.247809][T13248]  ? lock_downgrade+0x6e0/0x6e0
[ 3252.252714][T13248]  try_charge_memcg+0xefb/0x12f0
[ 3252.257695][T13248]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3252.263707][T13248]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3252.269472][T13248]  ? lock_downgrade+0x6e0/0x6e0
[ 3252.274361][T13248]  ? lock_downgrade+0x6e0/0x6e0
[ 3252.279268][T13248]  obj_cgroup_charge+0x2af/0x5e0
[ 3252.284256][T13248]  kmem_cache_alloc_lru+0x145/0x760
[ 3252.289482][T13248]  ? sock_alloc_inode+0x27/0x1d0
[ 3252.294474][T13248]  sock_alloc_inode+0x27/0x1d0
[ 3252.299276][T13248]  ? sock_free_inode+0x30/0x30
[ 3252.304083][T13248]  alloc_inode+0x61/0x230
[ 3252.308455][T13248]  new_inode_pseudo+0x17/0x80
[ 3252.313180][T13248]  sock_alloc+0x40/0x260
[ 3252.317468][T13248]  __sock_create+0xbd/0x790
[ 3252.322022][T13248]  __sys_socket+0x133/0x250
[ 3252.326568][T13248]  ? __sys_socket_file+0x1f0/0x1f0
[ 3252.331732][T13248]  __x64_sys_socket+0x73/0xb0
[ 3252.336451][T13248]  do_syscall_64+0x39/0xb0
[ 3252.340906][T13248]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3252.346830][T13248] RIP: 0033:0x7f36ee08c0c9
[ 3252.351270][T13248] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3252.370910][T13248] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3252.379366][T13248] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3252.387388][T13248] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3252.395391][T13248] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3252.403389][T13248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3252.411384][T13248] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3252.419403][T13248]  </TASK>
[ 3252.440319][T13248] memory: usage 307200kB, limit 307200kB, failcnt 35092
[ 3252.447948][T13248] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3252.455441][T13248] Memory cgroup stats for /syz5:
[ 3252.455656][T13248] anon 94208
[ 3252.455656][T13248] file 425984
[ 3252.455656][T13248] kernel 314052608
[ 3252.455656][T13248] kernel_stack 65536
[ 3252.455656][T13248] pagetables 77824
[ 3252.455656][T13248] sec_pagetables 0
[ 3252.455656][T13248] percpu 5429952
[ 3252.455656][T13248] sock 0
[ 3252.455656][T13248] vmalloc 8192
[ 3252.455656][T13248] shmem 425984
[ 3252.455656][T13248] zswap 0
[ 3252.455656][T13248] zswapped 0
[ 3252.455656][T13248] file_mapped 393216
[ 3252.455656][T13248] file_dirty 0
[ 3252.455656][T13248] file_writeback 0
[ 3252.455656][T13248] swapcached 0
[ 3252.455656][T13248] anon_thp 0
[ 3252.455656][T13248] file_thp 0
[ 3252.455656][T13248] shmem_thp 0
[ 3252.455656][T13248] inactive_anon 221184
[ 3252.455656][T13248] active_anon 299008
[ 3252.455656][T13248] inactive_file 0
[ 3252.455656][T13248] active_file 0
[ 3252.455656][T13248] unevictable 0
[ 3252.455656][T13248] slab_reclaimable 216400
[ 3252.455656][T13248] slab_unreclaimable 308217872
[ 3252.555565][T13248] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13243,uid=0
[ 3252.571628][T13248] Memory cgroup out of memory: Killed process 13243 (syz-executor.5) total-vm:54540kB, anon-rss:468kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:33 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40356)

10:33:33 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300009effffff000000000000000500010006"], 0x1c}}, 0x0)

10:33:33 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xaa05, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:33 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x9}}], 0x2, 0x0)

[ 3252.604572][T13248] socket: no more sockets
[ 3252.619053][T13268] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3252.634812][T13268] CPU: 0 PID: 13268 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3252.643538][T13268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3252.653615][T13268] Call Trace:
[ 3252.656913][T13268]  <TASK>
[ 3252.659909][T13268]  dump_stack_lvl+0xd1/0x138
[ 3252.664540][T13268]  dump_header+0x10b/0x85f
[ 3252.669008][T13268]  oom_kill_process.cold+0x10/0x15
[ 3252.674168][T13268]  out_of_memory+0x35c/0x14a0
[ 3252.679068][T13268]  ? find_held_lock+0x2d/0x110
[ 3252.683877][T13268]  ? oom_killer_disable+0x280/0x280
[ 3252.689216][T13268]  ? find_held_lock+0x2d/0x110
[ 3252.694023][T13268]  mem_cgroup_out_of_memory+0x206/0x270
[ 3252.699603][T13268]  ? mem_cgroup_margin+0x130/0x130
[ 3252.704737][T13268]  ? lock_downgrade+0x6e0/0x6e0
[ 3252.709614][T13268]  try_charge_memcg+0xefb/0x12f0
[ 3252.714566][T13268]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3252.720561][T13268]  ? lock_downgrade+0x6e0/0x6e0
[ 3252.725432][T13268]  charge_memcg+0x90/0x3b0
[ 3252.729864][T13268]  __mem_cgroup_charge+0x2b/0x90
[ 3252.734817][T13268]  do_wp_page+0x7ec/0x3370
[ 3252.739258][T13268]  ? lock_release+0x810/0x810
[ 3252.743942][T13268]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3252.749330][T13268]  ? do_raw_spin_lock+0x124/0x2b0
[ 3252.754366][T13268]  ? rwlock_bug.part.0+0x90/0x90
[ 3252.759336][T13268]  ? lock_chain_count+0x20/0x20
[ 3252.764200][T13268]  __handle_mm_fault+0x1f58/0x3c90
[ 3252.769333][T13268]  ? vm_iomap_memory+0x190/0x190
[ 3252.774312][T13268]  handle_mm_fault+0x1b6/0x850
[ 3252.779098][T13268]  do_user_addr_fault+0x475/0x1210
[ 3252.784224][T13268]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3252.789802][T13268]  exc_page_fault+0x98/0x170
[ 3252.794409][T13268]  asm_exc_page_fault+0x26/0x30
[ 3252.799278][T13268] RIP: 0033:0x7fde80a39570
[ 3252.803705][T13268] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3252.823327][T13268] RSP: 002b:00007ffd6245db10 EFLAGS: 00010246
[ 3252.829404][T13268] RAX: 000000005b2f10f2 RBX: 00007fde80bac018 RCX: 0000001b32820000
[ 3252.837379][T13268] RDX: 0000000000000000 RSI: 0000001b32820018 RDI: 000000000a252404
[ 3252.845354][T13268] RBP: 000000005b2f10f2 R08: 00000000000010f2 R09: 000000005b2f10f6
[ 3252.853329][T13268] R10: 00007ffd6245dcd0 R11: 0000000000000246 R12: 00007fde80ba0000
[ 3252.861305][T13268] R13: 0000000000000001 R14: 000000000000000b R15: ffffffff83d0c452
[ 3252.869284][T13268]  ? apparmor_socket_create+0xb2/0x660
[ 3252.874858][T13268]  </TASK>
[ 3252.923933][T13268] memory: usage 307184kB, limit 307200kB, failcnt 42082
[ 3252.940911][T13268] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3252.948177][T13268] Memory cgroup stats for /syz2:
[ 3252.948408][T13268] anon 122880
[ 3252.948408][T13268] file 307200
[ 3252.948408][T13268] kernel 314126336
[ 3252.948408][T13268] kernel_stack 65536
[ 3252.948408][T13268] pagetables 77824
[ 3252.948408][T13268] sec_pagetables 0
[ 3252.948408][T13268] percpu 5433504
[ 3252.948408][T13268] sock 0
[ 3252.948408][T13268] vmalloc 16384
[ 3252.948408][T13268] shmem 307200
[ 3252.948408][T13268] zswap 0
[ 3252.948408][T13268] zswapped 0
[ 3252.948408][T13268] file_mapped 299008
[ 3252.948408][T13268] file_dirty 0
[ 3252.948408][T13268] file_writeback 0
[ 3252.948408][T13268] swapcached 0
[ 3252.948408][T13268] anon_thp 0
[ 3252.948408][T13268] file_thp 0
[ 3252.948408][T13268] shmem_thp 0
[ 3252.948408][T13268] inactive_anon 131072
[ 3252.948408][T13268] active_anon 299008
[ 3252.948408][T13268] inactive_file 0
[ 3252.948408][T13268] active_file 0
[ 3252.948408][T13268] unevictable 0
[ 3252.948408][T13268] slab_reclaimable 112984
[ 3252.948408][T13268] slab_unreclaimable 308390336
[ 3253.047030][T13268] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=13268,uid=0
[ 3253.068161][T13268] Memory cgroup out of memory: Killed process 13268 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 3253.085980][T13261] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3253.096626][T13261] CPU: 0 PID: 13261 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3253.105334][T13261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3253.115410][T13261] Call Trace:
[ 3253.118708][T13261]  <TASK>
[ 3253.121658][T13261]  dump_stack_lvl+0xd1/0x138
[ 3253.126277][T13261]  dump_header+0x10b/0x85f
[ 3253.130700][T13261]  oom_kill_process.cold+0x10/0x15
[ 3253.135833][T13261]  out_of_memory+0x35c/0x14a0
[ 3253.140530][T13261]  ? oom_killer_disable+0x280/0x280
[ 3253.145729][T13261]  ? find_held_lock+0x2d/0x110
[ 3253.150508][T13261]  mem_cgroup_out_of_memory+0x206/0x270
[ 3253.156069][T13261]  ? mem_cgroup_margin+0x130/0x130
[ 3253.161212][T13261]  ? lock_downgrade+0x6e0/0x6e0
[ 3253.166086][T13261]  try_charge_memcg+0xefb/0x12f0
[ 3253.171040][T13261]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3253.177035][T13261]  ? lock_downgrade+0x6e0/0x6e0
[ 3253.181923][T13261]  charge_memcg+0x90/0x3b0
[ 3253.186362][T13261]  __mem_cgroup_charge+0x2b/0x90
[ 3253.191402][T13261]  do_wp_page+0x7ec/0x3370
[ 3253.195841][T13261]  ? lock_release+0x810/0x810
[ 3253.200540][T13261]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3253.205929][T13261]  ? do_raw_spin_lock+0x124/0x2b0
[ 3253.210967][T13261]  ? rwlock_bug.part.0+0x90/0x90
[ 3253.215917][T13261]  ? lock_chain_count+0x20/0x20
[ 3253.220780][T13261]  __handle_mm_fault+0x1f58/0x3c90
[ 3253.225913][T13261]  ? vm_iomap_memory+0x190/0x190
[ 3253.230891][T13261]  handle_mm_fault+0x1b6/0x850
[ 3253.235674][T13261]  do_user_addr_fault+0x475/0x1210
[ 3253.240805][T13261]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3253.246375][T13261]  exc_page_fault+0x98/0x170
[ 3253.250975][T13261]  asm_exc_page_fault+0x26/0x30
[ 3253.255836][T13261] RIP: 0033:0x7fbb9f039570
[ 3253.260258][T13261] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3253.279870][T13261] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3253.285943][T13261] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3253.293919][T13261] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3253.301892][T13261] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3253.309896][T13261] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3253.317879][T13261] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3253.325858][T13261]  ? security_socket_create+0x3f/0xc0
[ 3253.331280][T13261]  </TASK>
[ 3253.345716][T13261] memory: usage 307200kB, limit 307200kB, failcnt 159050
[ 3253.352786][T13261] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3253.360151][T13261] Memory cgroup stats for /syz4:
[ 3253.360384][T13261] anon 118784
[ 3253.360384][T13261] file 438272
[ 3253.360384][T13261] kernel 314011648
[ 3253.360384][T13261] kernel_stack 65536
[ 3253.360384][T13261] pagetables 73728
[ 3253.360384][T13261] sec_pagetables 0
[ 3253.360384][T13261] percpu 5617024
[ 3253.360384][T13261] sock 4096
[ 3253.360384][T13261] vmalloc 0
[ 3253.360384][T13261] shmem 438272
[ 3253.360384][T13261] zswap 0
[ 3253.360384][T13261] zswapped 0
[ 3253.360384][T13261] file_mapped 393216
[ 3253.360384][T13261] file_dirty 0
[ 3253.360384][T13261] file_writeback 0
[ 3253.360384][T13261] swapcached 0
[ 3253.360384][T13261] anon_thp 0
[ 3253.360384][T13261] file_thp 0
[ 3253.360384][T13261] shmem_thp 0
[ 3253.360384][T13261] inactive_anon 131072
[ 3253.360384][T13261] active_anon 425984
[ 3253.360384][T13261] inactive_file 0
[ 3253.360384][T13261] active_file 0
[ 3253.360384][T13261] unevictable 0
[ 3253.360384][T13261] slab_reclaimable 23024
[ 3253.360384][T13261] slab_unreclaimable 308200776
[ 3253.460874][T13261] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13261,uid=0
[ 3253.477870][T13261] Memory cgroup out of memory: Killed process 13261 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3253.522138][T13272] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3253.542307][T13272] CPU: 1 PID: 13272 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3253.551116][T13272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3253.561216][T13272] Call Trace:
[ 3253.564518][T13272]  <TASK>
[ 3253.567473][T13272]  dump_stack_lvl+0xd1/0x138
10:33:34 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x3}}], 0x2, 0x0)

10:33:34 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xb80b, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:34 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xa}}], 0x2, 0x0)

10:33:34 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000f0ffffff000000000000000500010006"], 0x1c}}, 0x0)

10:33:34 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x266)

[ 3253.572107][T13272]  dump_header+0x10b/0x85f
[ 3253.576582][T13272]  oom_kill_process.cold+0x10/0x15
[ 3253.581758][T13272]  out_of_memory+0x35c/0x14a0
[ 3253.586490][T13272]  ? find_held_lock+0x2d/0x110
[ 3253.591310][T13272]  ? oom_killer_disable+0x280/0x280
[ 3253.596561][T13272]  ? find_held_lock+0x2d/0x110
[ 3253.601370][T13272]  mem_cgroup_out_of_memory+0x206/0x270
[ 3253.606965][T13272]  ? mem_cgroup_margin+0x130/0x130
[ 3253.612114][T13272]  ? lock_downgrade+0x6e0/0x6e0
[ 3253.617020][T13272]  try_charge_memcg+0xefb/0x12f0
[ 3253.621990][T13272]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3253.627995][T13272]  ? lock_downgrade+0x6e0/0x6e0
[ 3253.632872][T13272]  charge_memcg+0x90/0x3b0
[ 3253.637308][T13272]  __mem_cgroup_charge+0x2b/0x90
[ 3253.642429][T13272]  ? copy_mc_to_kernel+0x3e/0x90
[ 3253.647381][T13272]  do_wp_page+0x7ec/0x3370
[ 3253.651819][T13272]  ? lock_release+0x810/0x810
[ 3253.656507][T13272]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3253.661901][T13272]  ? do_raw_spin_lock+0x124/0x2b0
[ 3253.666937][T13272]  ? rwlock_bug.part.0+0x90/0x90
[ 3253.671883][T13272]  ? lock_chain_count+0x20/0x20
[ 3253.676767][T13272]  __handle_mm_fault+0x1f58/0x3c90
[ 3253.681901][T13272]  ? vm_iomap_memory+0x190/0x190
[ 3253.686877][T13272]  handle_mm_fault+0x1b6/0x850
[ 3253.691664][T13272]  do_user_addr_fault+0x475/0x1210
[ 3253.696790][T13272]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3253.702357][T13272]  exc_page_fault+0x98/0x170
[ 3253.706960][T13272]  asm_exc_page_fault+0x26/0x30
[ 3253.711819][T13272] RIP: 0033:0x7f36ee036645
[ 3253.716244][T13272] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
[ 3253.735883][T13272] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
[ 3253.741958][T13272] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3253.749932][T13272] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3253.757905][T13272] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
10:33:34 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xe803, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3253.765892][T13272] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 000000000031a4de
[ 3253.773874][T13272] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3253.781883][T13272]  </TASK>
[ 3253.790205][T13272] memory: usage 307200kB, limit 307200kB, failcnt 35225
[ 3253.836041][T13272] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3253.842949][T13272] Memory cgroup stats for /syz5:
[ 3253.843126][T13272] anon 94208
[ 3253.843126][T13272] file 425984
[ 3253.843126][T13272] kernel 314052608
[ 3253.843126][T13272] kernel_stack 65536
[ 3253.843126][T13272] pagetables 77824
[ 3253.843126][T13272] sec_pagetables 0
[ 3253.843126][T13272] percpu 5429952
[ 3253.843126][T13272] sock 0
[ 3253.843126][T13272] vmalloc 8192
[ 3253.843126][T13272] shmem 425984
[ 3253.843126][T13272] zswap 0
10:33:34 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000800100000000000500010006"], 0x1c}}, 0x0)

10:33:34 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xe}}], 0x2, 0x0)

[ 3253.843126][T13272] zswapped 0
[ 3253.843126][T13272] file_mapped 393216
[ 3253.843126][T13272] file_dirty 0
[ 3253.843126][T13272] file_writeback 0
[ 3253.843126][T13272] swapcached 0
[ 3253.843126][T13272] anon_thp 0
[ 3253.843126][T13272] file_thp 0
[ 3253.843126][T13272] shmem_thp 0
[ 3253.843126][T13272] inactive_anon 221184
[ 3253.843126][T13272] active_anon 299008
[ 3253.843126][T13272] inactive_file 0
[ 3253.843126][T13272] active_file 0
[ 3253.843126][T13272] unevictable 0
[ 3253.843126][T13272] slab_reclaimable 218328
[ 3253.843126][T13272] slab_unreclaimable 308218520
[ 3253.992222][T13272] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13272,uid=0
[ 3254.023211][T13272] Memory cgroup out of memory: Killed process 13272 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3254.063484][T13281] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3254.074674][T13281] CPU: 0 PID: 13281 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3254.083393][T13281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3254.093477][T13281] Call Trace:
[ 3254.096780][T13281]  <TASK>
[ 3254.099990][T13281]  dump_stack_lvl+0xd1/0x138
[ 3254.104616][T13281]  dump_header+0x10b/0x85f
[ 3254.109078][T13281]  oom_kill_process.cold+0x10/0x15
[ 3254.114237][T13281]  out_of_memory+0x35c/0x14a0
[ 3254.118955][T13281]  ? oom_killer_disable+0x280/0x280
[ 3254.124164][T13281]  ? find_held_lock+0x2d/0x110
[ 3254.128934][T13281]  mem_cgroup_out_of_memory+0x206/0x270
[ 3254.134499][T13281]  ? mem_cgroup_margin+0x130/0x130
[ 3254.139652][T13281]  ? lock_downgrade+0x6e0/0x6e0
[ 3254.144553][T13281]  try_charge_memcg+0xefb/0x12f0
[ 3254.149533][T13281]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3254.155559][T13281]  ? lock_downgrade+0x6e0/0x6e0
[ 3254.160460][T13281]  charge_memcg+0x90/0x3b0
[ 3254.164911][T13281]  __mem_cgroup_charge+0x2b/0x90
[ 3254.169891][T13281]  do_wp_page+0x7ec/0x3370
[ 3254.174324][T13281]  ? lock_release+0x810/0x810
[ 3254.179001][T13281]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3254.184391][T13281]  ? do_raw_spin_lock+0x124/0x2b0
[ 3254.189446][T13281]  ? rwlock_bug.part.0+0x90/0x90
[ 3254.194417][T13281]  ? lock_chain_count+0x20/0x20
[ 3254.199301][T13281]  __handle_mm_fault+0x1f58/0x3c90
[ 3254.204443][T13281]  ? vm_iomap_memory+0x190/0x190
[ 3254.209399][T13281]  handle_mm_fault+0x1b6/0x850
[ 3254.214184][T13281]  do_user_addr_fault+0x475/0x1210
[ 3254.219301][T13281]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3254.224851][T13281]  exc_page_fault+0x98/0x170
[ 3254.229448][T13281]  asm_exc_page_fault+0x26/0x30
[ 3254.234323][T13281] RIP: 0033:0x7fde80a39570
[ 3254.238763][T13281] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3254.258392][T13281] RSP: 002b:00007ffd6245db10 EFLAGS: 00010246
[ 3254.264466][T13281] RAX: 000000005b2f10f2 RBX: 00007fde80bac018 RCX: 0000001b32820000
[ 3254.272442][T13281] RDX: 0000000000000000 RSI: 0000001b32820018 RDI: 000000000a252404
[ 3254.280437][T13281] RBP: 000000005b2f10f2 R08: 00000000000010f2 R09: 000000005b2f10f6
[ 3254.288421][T13281] R10: 00007ffd6245dcd0 R11: 0000000000000246 R12: 00007fde80ba0000
[ 3254.296416][T13281] R13: 0000000000000001 R14: 000000000000000b R15: ffffffff83d0c452
[ 3254.304409][T13281]  ? apparmor_socket_create+0xb2/0x660
[ 3254.309917][T13281]  </TASK>
10:33:35 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40357)

10:33:35 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000001000000000500010006"], 0x1c}}, 0x0)

10:33:35 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xf401, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:35 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x10}}], 0x2, 0x0)

[ 3254.321380][T13281] memory: usage 307192kB, limit 307200kB, failcnt 42153
[ 3254.363355][T13281] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3254.390690][T13281] Memory cgroup stats for /syz2:
[ 3254.390876][T13281] anon 122880
[ 3254.390876][T13281] file 307200
[ 3254.390876][T13281] kernel 314118144
[ 3254.390876][T13281] kernel_stack 65536
[ 3254.390876][T13281] pagetables 77824
[ 3254.390876][T13281] sec_pagetables 0
[ 3254.390876][T13281] percpu 5433504
[ 3254.390876][T13281] sock 0
[ 3254.390876][T13281] vmalloc 16384
[ 3254.390876][T13281] shmem 307200
[ 3254.390876][T13281] zswap 0
[ 3254.390876][T13281] zswapped 0
[ 3254.390876][T13281] file_mapped 299008
[ 3254.390876][T13281] file_dirty 0
[ 3254.390876][T13281] file_writeback 0
[ 3254.390876][T13281] swapcached 0
[ 3254.390876][T13281] anon_thp 0
[ 3254.390876][T13281] file_thp 0
[ 3254.390876][T13281] shmem_thp 0
[ 3254.390876][T13281] inactive_anon 131072
[ 3254.390876][T13281] active_anon 299008
[ 3254.390876][T13281] inactive_file 0
[ 3254.390876][T13281] active_file 0
[ 3254.390876][T13281] unevictable 0
[ 3254.390876][T13281] slab_reclaimable 112984
[ 3254.390876][T13281] slab_unreclaimable 308382120
[ 3254.510842][T13281] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=13281,uid=0
[ 3254.530018][T13281] Memory cgroup out of memory: Killed process 13281 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[ 3254.554427][T13288] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3254.565398][T13288] CPU: 1 PID: 13288 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3254.574114][T13288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3254.584196][T13288] Call Trace:
[ 3254.587495][T13288]  <TASK>
[ 3254.590443][T13288]  dump_stack_lvl+0xd1/0x138
[ 3254.595072][T13288]  dump_header+0x10b/0x85f
[ 3254.599533][T13288]  oom_kill_process.cold+0x10/0x15
[ 3254.604703][T13288]  out_of_memory+0x35c/0x14a0
[ 3254.609440][T13288]  ? oom_killer_disable+0x280/0x280
[ 3254.614715][T13288]  ? find_held_lock+0x2d/0x110
[ 3254.619537][T13288]  mem_cgroup_out_of_memory+0x206/0x270
[ 3254.625133][T13288]  ? mem_cgroup_margin+0x130/0x130
[ 3254.630406][T13288]  ? lock_downgrade+0x6e0/0x6e0
[ 3254.635303][T13288]  try_charge_memcg+0xefb/0x12f0
[ 3254.640280][T13288]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3254.646299][T13288]  ? lock_downgrade+0x6e0/0x6e0
[ 3254.651198][T13288]  charge_memcg+0x90/0x3b0
[ 3254.655690][T13288]  __mem_cgroup_charge+0x2b/0x90
[ 3254.660662][T13288]  do_wp_page+0x7ec/0x3370
[ 3254.665123][T13288]  ? lock_release+0x810/0x810
[ 3254.669825][T13288]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3254.675240][T13288]  ? do_raw_spin_lock+0x124/0x2b0
[ 3254.680293][T13288]  ? rwlock_bug.part.0+0x90/0x90
[ 3254.685257][T13288]  ? lock_chain_count+0x20/0x20
[ 3254.690142][T13288]  __handle_mm_fault+0x1f58/0x3c90
[ 3254.695305][T13288]  ? vm_iomap_memory+0x190/0x190
[ 3254.700312][T13288]  handle_mm_fault+0x1b6/0x850
[ 3254.705123][T13288]  do_user_addr_fault+0x475/0x1210
[ 3254.710275][T13288]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3254.715870][T13288]  exc_page_fault+0x98/0x170
[ 3254.720664][T13288]  asm_exc_page_fault+0x26/0x30
[ 3254.725560][T13288] RIP: 0033:0x7fbb9f039570
[ 3254.729999][T13288] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3254.749644][T13288] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3254.755741][T13288] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3254.763736][T13288] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3254.771731][T13288] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3254.779725][T13288] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3254.787721][T13288] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3254.795714][T13288]  ? security_socket_create+0x3f/0xc0
[ 3254.801153][T13288]  </TASK>
[ 3254.807938][T13288] memory: usage 307200kB, limit 307200kB, failcnt 159180
[ 3254.815204][T13288] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3254.822229][T13288] Memory cgroup stats for /syz4:
[ 3254.822455][T13288] anon 118784
[ 3254.822455][T13288] file 438272
[ 3254.822455][T13288] kernel 314011648
[ 3254.822455][T13288] kernel_stack 65536
[ 3254.822455][T13288] pagetables 73728
[ 3254.822455][T13288] sec_pagetables 0
[ 3254.822455][T13288] percpu 5617024
[ 3254.822455][T13288] sock 4096
[ 3254.822455][T13288] vmalloc 0
[ 3254.822455][T13288] shmem 438272
[ 3254.822455][T13288] zswap 0
[ 3254.822455][T13288] zswapped 0
[ 3254.822455][T13288] file_mapped 393216
[ 3254.822455][T13288] file_dirty 0
[ 3254.822455][T13288] file_writeback 0
[ 3254.822455][T13288] swapcached 0
[ 3254.822455][T13288] anon_thp 0
[ 3254.822455][T13288] file_thp 0
[ 3254.822455][T13288] shmem_thp 0
[ 3254.822455][T13288] inactive_anon 131072
[ 3254.822455][T13288] active_anon 425984
[ 3254.822455][T13288] inactive_file 0
[ 3254.822455][T13288] active_file 0
[ 3254.822455][T13288] unevictable 0
[ 3254.822455][T13288] slab_reclaimable 23024
10:33:35 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x3}}], 0x2, 0x0)

10:33:35 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000004000000000500010006"], 0x1c}}, 0x0)

10:33:35 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x11}}], 0x2, 0x0)

10:33:35 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xfe80, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:35 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x282)

[ 3254.822455][T13288] slab_unreclaimable 308202640
[ 3254.919521][T13288] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13288,uid=0
[ 3254.935507][T13288] Memory cgroup out of memory: Killed process 13288 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:35 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xff00, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:35 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000340000000000500010006"], 0x1c}}, 0x0)

[ 3254.994704][T13300] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3255.064364][T13300] CPU: 1 PID: 13300 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3255.073097][T13300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3255.083182][T13300] Call Trace:
[ 3255.086484][T13300]  <TASK>
[ 3255.089439][T13300]  dump_stack_lvl+0xd1/0x138
[ 3255.094073][T13300]  dump_header+0x10b/0x85f
[ 3255.098544][T13300]  oom_kill_process.cold+0x10/0x15
[ 3255.103710][T13300]  out_of_memory+0x35c/0x14a0
[ 3255.108439][T13300]  ? find_held_lock+0x2d/0x110
[ 3255.113252][T13300]  ? oom_killer_disable+0x280/0x280
[ 3255.118509][T13300]  ? find_held_lock+0x2d/0x110
[ 3255.123364][T13300]  mem_cgroup_out_of_memory+0x206/0x270
[ 3255.128965][T13300]  ? mem_cgroup_margin+0x130/0x130
[ 3255.134138][T13300]  ? lock_downgrade+0x6e0/0x6e0
[ 3255.139055][T13300]  try_charge_memcg+0xefb/0x12f0
[ 3255.144049][T13300]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3255.150078][T13300]  ? lock_downgrade+0x6e0/0x6e0
[ 3255.154984][T13300]  charge_memcg+0x90/0x3b0
[ 3255.159445][T13300]  __mem_cgroup_charge+0x2b/0x90
[ 3255.164537][T13300]  ? copy_mc_to_kernel+0x3e/0x90
[ 3255.169944][T13300]  do_wp_page+0x7ec/0x3370
[ 3255.174397][T13300]  ? lock_release+0x810/0x810
[ 3255.179089][T13300]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3255.184480][T13300]  ? do_raw_spin_lock+0x124/0x2b0
[ 3255.189527][T13300]  ? rwlock_bug.part.0+0x90/0x90
[ 3255.194476][T13300]  ? lock_chain_count+0x20/0x20
[ 3255.199350][T13300]  __handle_mm_fault+0x1f58/0x3c90
[ 3255.204487][T13300]  ? vm_iomap_memory+0x190/0x190
[ 3255.209469][T13300]  handle_mm_fault+0x1b6/0x850
[ 3255.214352][T13300]  do_user_addr_fault+0x475/0x1210
[ 3255.219481][T13300]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3255.225146][T13300]  exc_page_fault+0x98/0x170
[ 3255.229745][T13300]  asm_exc_page_fault+0x26/0x30
[ 3255.234606][T13300] RIP: 0033:0x7f36ee036645
[ 3255.239027][T13300] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
10:33:35 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000fffffffffffff0000000000500010006"], 0x1c}}, 0x0)

[ 3255.263097][T13300] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
[ 3255.269178][T13300] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3255.277153][T13300] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3255.285150][T13300] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
[ 3255.293227][T13300] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 000000000031aa8f
[ 3255.301210][T13300] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3255.309210][T13300]  </TASK>
[ 3255.343911][T13300] memory: usage 307200kB, limit 307200kB, failcnt 35320
[ 3255.351887][T13300] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3255.359116][T13300] Memory cgroup stats for /syz5:
[ 3255.359307][T13300] anon 94208
[ 3255.359307][T13300] file 425984
[ 3255.359307][T13300] kernel 314052608
[ 3255.359307][T13300] kernel_stack 65536
[ 3255.359307][T13300] pagetables 77824
[ 3255.359307][T13300] sec_pagetables 0
[ 3255.359307][T13300] percpu 5429952
[ 3255.359307][T13300] sock 0
[ 3255.359307][T13300] vmalloc 8192
[ 3255.359307][T13300] shmem 425984
[ 3255.359307][T13300] zswap 0
[ 3255.359307][T13300] zswapped 0
[ 3255.359307][T13300] file_mapped 393216
[ 3255.359307][T13300] file_dirty 0
[ 3255.359307][T13300] file_writeback 0
[ 3255.359307][T13300] swapcached 0
[ 3255.359307][T13300] anon_thp 0
[ 3255.359307][T13300] file_thp 0
[ 3255.359307][T13300] shmem_thp 0
[ 3255.359307][T13300] inactive_anon 221184
[ 3255.359307][T13300] active_anon 299008
[ 3255.359307][T13300] inactive_file 0
[ 3255.359307][T13300] active_file 0
[ 3255.359307][T13300] unevictable 0
[ 3255.359307][T13300] slab_reclaimable 218328
[ 3255.359307][T13300] slab_unreclaimable 308218520
[ 3255.470753][T13300] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13300,uid=0
[ 3255.487770][T13300] Memory cgroup out of memory: Killed process 13300 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3255.505754][T13312] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3255.524406][T13312] CPU: 1 PID: 13312 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3255.533122][T13312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
10:33:36 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40358)

10:33:36 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x34}}], 0x2, 0x0)

10:33:36 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xff02, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:36 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000000010000000500010006"], 0x1c}}, 0x0)

[ 3255.543200][T13312] Call Trace:
[ 3255.546503][T13312]  <TASK>
[ 3255.549458][T13312]  dump_stack_lvl+0xd1/0x138
[ 3255.554090][T13312]  dump_header+0x10b/0x85f
[ 3255.558549][T13312]  oom_kill_process.cold+0x10/0x15
[ 3255.563966][T13312]  out_of_memory+0x35c/0x14a0
[ 3255.568698][T13312]  ? oom_killer_disable+0x280/0x280
[ 3255.573938][T13312]  ? find_held_lock+0x2d/0x110
[ 3255.578834][T13312]  mem_cgroup_out_of_memory+0x206/0x270
[ 3255.584408][T13312]  ? mem_cgroup_margin+0x130/0x130
[ 3255.589536][T13312]  ? lock_downgrade+0x6e0/0x6e0
[ 3255.594413][T13312]  try_charge_memcg+0xefb/0x12f0
[ 3255.599371][T13312]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3255.605367][T13312]  ? lock_downgrade+0x6e0/0x6e0
[ 3255.610245][T13312]  charge_memcg+0x90/0x3b0
[ 3255.614679][T13312]  __mem_cgroup_charge+0x2b/0x90
[ 3255.619632][T13312]  do_wp_page+0x7ec/0x3370
[ 3255.624160][T13312]  ? lock_release+0x810/0x810
[ 3255.628849][T13312]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3255.634238][T13312]  ? do_raw_spin_lock+0x124/0x2b0
[ 3255.639292][T13312]  ? rwlock_bug.part.0+0x90/0x90
[ 3255.644240][T13312]  ? lock_chain_count+0x20/0x20
[ 3255.649108][T13312]  __handle_mm_fault+0x1f58/0x3c90
[ 3255.654243][T13312]  ? vm_iomap_memory+0x190/0x190
[ 3255.659224][T13312]  handle_mm_fault+0x1b6/0x850
[ 3255.664012][T13312]  do_user_addr_fault+0x475/0x1210
[ 3255.669141][T13312]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3255.674714][T13312]  exc_page_fault+0x98/0x170
[ 3255.679320][T13312]  asm_exc_page_fault+0x26/0x30
[ 3255.684178][T13312] RIP: 0033:0x7fbb9f039570
[ 3255.688598][T13312] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3255.708211][T13312] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3255.714290][T13312] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3255.722285][T13312] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3255.730267][T13312] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3255.738239][T13312] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3255.746211][T13312] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3255.754187][T13312]  ? __sys_socket+0x7c/0x250
[ 3255.758809][T13312]  </TASK>
[ 3255.765180][T13312] memory: usage 307192kB, limit 307200kB, failcnt 159266
[ 3255.792756][T13312] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3255.849605][T13312] Memory cgroup stats for /syz4:
[ 3255.849821][T13312] anon 102400
[ 3255.849821][T13312] file 438272
[ 3255.849821][T13312] kernel 314019840
[ 3255.849821][T13312] kernel_stack 65536
[ 3255.849821][T13312] pagetables 73728
[ 3255.849821][T13312] sec_pagetables 0
[ 3255.849821][T13312] percpu 5617088
[ 3255.849821][T13312] sock 4096
[ 3255.849821][T13312] vmalloc 0
[ 3255.849821][T13312] shmem 438272
[ 3255.849821][T13312] zswap 0
[ 3255.849821][T13312] zswapped 0
[ 3255.849821][T13312] file_mapped 393216
[ 3255.849821][T13312] file_dirty 0
[ 3255.849821][T13312] file_writeback 0
[ 3255.849821][T13312] swapcached 0
[ 3255.849821][T13312] anon_thp 0
[ 3255.849821][T13312] file_thp 0
[ 3255.849821][T13312] shmem_thp 0
[ 3255.849821][T13312] inactive_anon 114688
[ 3255.849821][T13312] active_anon 425984
[ 3255.849821][T13312] inactive_file 0
[ 3255.849821][T13312] active_file 0
[ 3255.849821][T13312] unevictable 0
[ 3255.849821][T13312] slab_reclaimable 23024
[ 3255.849821][T13312] slab_unreclaimable 308204888
[ 3255.967298][T13312] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13312,uid=0
[ 3255.994536][T13312] Memory cgroup out of memory: Killed process 13312 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3256.019684][T13326] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3256.030162][T13326] CPU: 0 PID: 13326 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3256.038862][T13326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3256.048939][T13326] Call Trace:
[ 3256.052249][T13326]  <TASK>
[ 3256.055206][T13326]  dump_stack_lvl+0xd1/0x138
[ 3256.059835][T13326]  dump_header+0x10b/0x85f
[ 3256.064296][T13326]  oom_kill_process.cold+0x10/0x15
10:33:36 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x3}}], 0x2, 0x0)

10:33:36 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x28a)

10:33:36 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x48}}], 0x2, 0x0)

10:33:36 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x34000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:36 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000000020000000500010006"], 0x1c}}, 0x0)

[ 3256.069461][T13326]  out_of_memory+0x35c/0x14a0
[ 3256.074189][T13326]  ? oom_killer_disable+0x280/0x280
[ 3256.079432][T13326]  ? find_held_lock+0x2d/0x110
[ 3256.084247][T13326]  mem_cgroup_out_of_memory+0x206/0x270
[ 3256.089842][T13326]  ? mem_cgroup_margin+0x130/0x130
[ 3256.095077][T13326]  ? lock_downgrade+0x6e0/0x6e0
[ 3256.099975][T13326]  try_charge_memcg+0xefb/0x12f0
[ 3256.104953][T13326]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3256.110967][T13326]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3256.116729][T13326]  ? lock_downgrade+0x6e0/0x6e0
[ 3256.121620][T13326]  ? lock_downgrade+0x6e0/0x6e0
[ 3256.126523][T13326]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3256.132104][T13326]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3256.138309][T13326]  copy_process+0x4e3/0x7520
[ 3256.142933][T13326]  ? __lock_acquire+0xbc3/0x56d0
[ 3256.147918][T13326]  ? __cleanup_sighand+0xb0/0xb0
[ 3256.152892][T13326]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3256.158913][T13326]  ? psi_memstall_leave+0x174/0x250
[ 3256.164156][T13326]  kernel_clone+0xeb/0x990
10:33:37 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x100000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3256.168611][T13326]  ? create_io_thread+0xf0/0xf0
[ 3256.173503][T13326]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3256.179788][T13326]  ? lock_downgrade+0x6e0/0x6e0
[ 3256.184687][T13326]  __do_sys_clone+0xba/0x100
[ 3256.189310][T13326]  ? kernel_clone+0x990/0x990
[ 3256.194030][T13326]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3256.199961][T13326]  do_syscall_64+0x39/0xb0
[ 3256.204424][T13326]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3256.210345][T13326] RIP: 0033:0x7f36ee08d4f1
10:33:37 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x400300, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3256.214793][T13326] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3256.234435][T13326] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3256.242875][T13326] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3256.250872][T13326] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3256.258868][T13326] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
10:33:37 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000000030000000500010006"], 0x1c}}, 0x0)

[ 3256.266877][T13326] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3256.274873][T13326] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3256.282890][T13326]  </TASK>
[ 3256.359978][T13326] memory: usage 307172kB, limit 307200kB, failcnt 35410
[ 3256.369703][T13326] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3256.377177][T13326] Memory cgroup stats for /syz5:
[ 3256.377398][T13326] anon 86016
[ 3256.377398][T13326] file 425984
[ 3256.377398][T13326] kernel 314032128
[ 3256.377398][T13326] kernel_stack 32768
[ 3256.377398][T13326] pagetables 77824
[ 3256.377398][T13326] sec_pagetables 0
[ 3256.377398][T13326] percpu 5429952
[ 3256.377398][T13326] sock 0
[ 3256.377398][T13326] vmalloc 8192
[ 3256.377398][T13326] shmem 425984
[ 3256.377398][T13326] zswap 0
[ 3256.377398][T13326] zswapped 0
[ 3256.377398][T13326] file_mapped 393216
[ 3256.377398][T13326] file_dirty 0
[ 3256.377398][T13326] file_writeback 0
[ 3256.377398][T13326] swapcached 0
[ 3256.377398][T13326] anon_thp 0
[ 3256.377398][T13326] file_thp 0
[ 3256.377398][T13326] shmem_thp 0
[ 3256.377398][T13326] inactive_anon 212992
[ 3256.377398][T13326] active_anon 299008
[ 3256.377398][T13326] inactive_file 0
[ 3256.377398][T13326] active_file 0
[ 3256.377398][T13326] unevictable 0
[ 3256.377398][T13326] slab_reclaimable 216400
[ 3256.377398][T13326] slab_unreclaimable 308217408
[ 3256.479911][T13326] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13326,uid=0
10:33:37 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40359)

10:33:37 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x4c}}], 0x2, 0x0)

10:33:37 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x1000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:37 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000000040000000500010006"], 0x1c}}, 0x0)

[ 3256.496815][T13326] Memory cgroup out of memory: Killed process 13326 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3256.625494][T13330] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3256.638644][T13330] CPU: 1 PID: 13330 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3256.647376][T13330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3256.657551][T13330] Call Trace:
[ 3256.660849][T13330]  <TASK>
[ 3256.663800][T13330]  dump_stack_lvl+0xd1/0x138
[ 3256.668436][T13330]  dump_header+0x10b/0x85f
[ 3256.672897][T13330]  oom_kill_process.cold+0x10/0x15
[ 3256.678056][T13330]  out_of_memory+0x35c/0x14a0
[ 3256.682776][T13330]  ? find_held_lock+0x2d/0x110
[ 3256.687572][T13330]  ? oom_killer_disable+0x280/0x280
[ 3256.692793][T13330]  ? find_held_lock+0x2d/0x110
[ 3256.697579][T13330]  mem_cgroup_out_of_memory+0x206/0x270
[ 3256.703149][T13330]  ? mem_cgroup_margin+0x130/0x130
[ 3256.708278][T13330]  ? lock_downgrade+0x6e0/0x6e0
[ 3256.713158][T13330]  try_charge_memcg+0xefb/0x12f0
[ 3256.718120][T13330]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3256.724142][T13330]  ? lock_downgrade+0x6e0/0x6e0
[ 3256.729038][T13330]  charge_memcg+0x90/0x3b0
[ 3256.733474][T13330]  __mem_cgroup_charge+0x2b/0x90
[ 3256.738427][T13330]  do_wp_page+0x7ec/0x3370
[ 3256.742868][T13330]  ? lock_release+0x810/0x810
[ 3256.747553][T13330]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3256.752943][T13330]  ? do_raw_spin_lock+0x124/0x2b0
[ 3256.757978][T13330]  ? rwlock_bug.part.0+0x90/0x90
[ 3256.762924][T13330]  ? lock_chain_count+0x20/0x20
[ 3256.768136][T13330]  __handle_mm_fault+0x1f58/0x3c90
[ 3256.773273][T13330]  ? vm_iomap_memory+0x190/0x190
[ 3256.778250][T13330]  handle_mm_fault+0x1b6/0x850
[ 3256.783035][T13330]  do_user_addr_fault+0x475/0x1210
[ 3256.788163][T13330]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3256.793732][T13330]  exc_page_fault+0x98/0x170
[ 3256.798334][T13330]  asm_exc_page_fault+0x26/0x30
[ 3256.803196][T13330] RIP: 0033:0x7fbb9f039570
[ 3256.807617][T13330] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3256.827235][T13330] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3256.833310][T13330] RAX: 0000000047165cfb RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3256.841284][T13330] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 0000000000000022
[ 3256.849259][T13330] RBP: 0000000047165cfb R08: 0000000000001cfb R09: 0000000047165cff
[ 3256.857235][T13330] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3256.865210][T13330] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff87bf1591
[ 3256.873186][T13330]  ? __x64_sys_socket+0x11/0xb0
[ 3256.878091][T13330]  </TASK>
[ 3256.916212][T13330] memory: usage 307200kB, limit 307200kB, failcnt 159366
[ 3256.923355][T13330] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3256.930723][T13330] Memory cgroup stats for /syz4:
[ 3256.930929][T13330] anon 98304
[ 3256.930929][T13330] file 438272
[ 3256.930929][T13330] kernel 314032128
[ 3256.930929][T13330] kernel_stack 65536
[ 3256.930929][T13330] pagetables 73728
[ 3256.930929][T13330] sec_pagetables 0
[ 3256.930929][T13330] percpu 5617088
[ 3256.930929][T13330] sock 4096
[ 3256.930929][T13330] vmalloc 0
[ 3256.930929][T13330] shmem 438272
[ 3256.930929][T13330] zswap 0
[ 3256.930929][T13330] zswapped 0
[ 3256.930929][T13330] file_mapped 393216
[ 3256.930929][T13330] file_dirty 0
[ 3256.930929][T13330] file_writeback 0
[ 3256.930929][T13330] swapcached 0
[ 3256.930929][T13330] anon_thp 0
[ 3256.930929][T13330] file_thp 0
[ 3256.930929][T13330] shmem_thp 0
[ 3256.930929][T13330] inactive_anon 110592
[ 3256.930929][T13330] active_anon 425984
[ 3256.930929][T13330] inactive_file 0
[ 3256.930929][T13330] active_file 0
[ 3256.930929][T13330] unevictable 0
[ 3256.930929][T13330] slab_reclaimable 23024
[ 3256.930929][T13330] slab_unreclaimable 308214424
[ 3257.029104][T13330] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13330,uid=0
[ 3257.044882][T13330] Memory cgroup out of memory: Killed process 13330 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3257.062503][T13353] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3257.072859][T13353] CPU: 0 PID: 13353 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3257.081567][T13353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3257.091636][T13353] Call Trace:
[ 3257.094913][T13353]  <TASK>
[ 3257.097840][T13353]  dump_stack_lvl+0xd1/0x138
[ 3257.102470][T13353]  dump_header+0x10b/0x85f
[ 3257.106982][T13353]  oom_kill_process.cold+0x10/0x15
[ 3257.112108][T13353]  out_of_memory+0x35c/0x14a0
[ 3257.116804][T13353]  ? oom_killer_disable+0x280/0x280
[ 3257.122009][T13353]  ? find_held_lock+0x2d/0x110
[ 3257.126811][T13353]  mem_cgroup_out_of_memory+0x206/0x270
[ 3257.132402][T13353]  ? mem_cgroup_margin+0x130/0x130
[ 3257.137553][T13353]  ? lock_downgrade+0x6e0/0x6e0
[ 3257.142447][T13353]  try_charge_memcg+0xefb/0x12f0
[ 3257.147419][T13353]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3257.153425][T13353]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3257.159264][T13353]  ? lock_downgrade+0x6e0/0x6e0
[ 3257.164112][T13353]  ? lock_downgrade+0x6e0/0x6e0
[ 3257.168989][T13353]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3257.174640][T13353]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3257.180829][T13353]  copy_process+0x1359/0x7520
[ 3257.185524][T13353]  ? __lock_acquire+0xbc3/0x56d0
[ 3257.190480][T13353]  ? __cleanup_sighand+0xb0/0xb0
[ 3257.195430][T13353]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3257.201424][T13353]  ? psi_memstall_leave+0x174/0x250
[ 3257.206646][T13353]  kernel_clone+0xeb/0x990
[ 3257.211077][T13353]  ? create_io_thread+0xf0/0xf0
[ 3257.215948][T13353]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3257.222216][T13353]  ? lock_downgrade+0x6e0/0x6e0
[ 3257.227085][T13353]  __do_sys_clone+0xba/0x100
[ 3257.231683][T13353]  ? kernel_clone+0x990/0x990
[ 3257.236383][T13353]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3257.242294][T13353]  do_syscall_64+0x39/0xb0
[ 3257.246726][T13353]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3257.252642][T13353] RIP: 0033:0x7f36ee08d4f1
[ 3257.257061][T13353] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3257.276773][T13353] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3257.286154][T13353] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3257.294142][T13353] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3257.302135][T13353] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3257.310120][T13353] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
10:33:38 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000340000000000500010006"], 0x1c}}, 0x0)

10:33:38 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x2dc)

10:33:38 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x2000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:38 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000000050000000500010006"], 0x1c}}, 0x0)

10:33:38 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x50}}], 0x2, 0x0)

[ 3257.318103][T13353] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3257.326102][T13353]  </TASK>
[ 3257.371411][T13353] memory: usage 307188kB, limit 307200kB, failcnt 35507
[ 3257.378746][T13353] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3257.386554][T13353] Memory cgroup stats for /syz5:
[ 3257.386732][T13353] anon 86016
[ 3257.386732][T13353] file 425984
[ 3257.386732][T13353] kernel 314048512
[ 3257.386732][T13353] kernel_stack 32768
[ 3257.386732][T13353] pagetables 77824
[ 3257.386732][T13353] sec_pagetables 0
[ 3257.386732][T13353] percpu 5430016
[ 3257.386732][T13353] sock 0
[ 3257.386732][T13353] vmalloc 8192
[ 3257.386732][T13353] shmem 425984
[ 3257.386732][T13353] zswap 0
[ 3257.386732][T13353] zswapped 0
[ 3257.386732][T13353] file_mapped 393216
[ 3257.386732][T13353] file_dirty 0
[ 3257.386732][T13353] file_writeback 0
[ 3257.386732][T13353] swapcached 0
[ 3257.386732][T13353] anon_thp 0
[ 3257.386732][T13353] file_thp 0
[ 3257.386732][T13353] shmem_thp 0
[ 3257.386732][T13353] inactive_anon 212992
[ 3257.386732][T13353] active_anon 299008
[ 3257.386732][T13353] inactive_file 0
[ 3257.386732][T13353] active_file 0
[ 3257.386732][T13353] unevictable 0
10:33:38 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x3000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:38 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000000060000000500010006"], 0x1c}}, 0x0)

10:33:38 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x5c}}], 0x2, 0x0)

[ 3257.386732][T13353] slab_reclaimable 216400
[ 3257.386732][T13353] slab_unreclaimable 308229192
[ 3257.502300][T13353] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13353,uid=0
[ 3257.594567][T13353] Memory cgroup out of memory: Killed process 13353 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3257.629341][T13360] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
10:33:38 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4035a)

10:33:38 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x4000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:38 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000000070000000500010006"], 0x1c}}, 0x0)

10:33:38 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x60}}], 0x2, 0x0)

[ 3257.648694][T13360] CPU: 0 PID: 13360 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3257.657415][T13360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3257.667491][T13360] Call Trace:
[ 3257.670790][T13360]  <TASK>
[ 3257.673746][T13360]  dump_stack_lvl+0xd1/0x138
[ 3257.678381][T13360]  dump_header+0x10b/0x85f
[ 3257.682849][T13360]  oom_kill_process.cold+0x10/0x15
[ 3257.688021][T13360]  out_of_memory+0x35c/0x14a0
[ 3257.692751][T13360]  ? oom_killer_disable+0x280/0x280
[ 3257.697994][T13360]  ? find_held_lock+0x2d/0x110
[ 3257.702811][T13360]  mem_cgroup_out_of_memory+0x206/0x270
[ 3257.708397][T13360]  ? mem_cgroup_margin+0x130/0x130
[ 3257.713543][T13360]  ? lock_downgrade+0x6e0/0x6e0
[ 3257.718417][T13360]  try_charge_memcg+0xefb/0x12f0
[ 3257.723374][T13360]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3257.729392][T13360]  ? lock_downgrade+0x6e0/0x6e0
[ 3257.734271][T13360]  charge_memcg+0x90/0x3b0
[ 3257.738702][T13360]  __mem_cgroup_charge+0x2b/0x90
[ 3257.743652][T13360]  do_wp_page+0x7ec/0x3370
[ 3257.748093][T13360]  ? lock_release+0x810/0x810
[ 3257.752779][T13360]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3257.758168][T13360]  ? do_raw_spin_lock+0x124/0x2b0
[ 3257.763201][T13360]  ? rwlock_bug.part.0+0x90/0x90
[ 3257.768151][T13360]  ? lock_chain_count+0x20/0x20
[ 3257.773015][T13360]  __handle_mm_fault+0x1f58/0x3c90
[ 3257.778147][T13360]  ? vm_iomap_memory+0x190/0x190
[ 3257.783122][T13360]  handle_mm_fault+0x1b6/0x850
[ 3257.787909][T13360]  do_user_addr_fault+0x475/0x1210
[ 3257.793048][T13360]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3257.798615][T13360]  exc_page_fault+0x98/0x170
[ 3257.803214][T13360]  asm_exc_page_fault+0x26/0x30
[ 3257.808082][T13360] RIP: 0033:0x7fbb9f039570
[ 3257.812504][T13360] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3257.832121][T13360] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3257.838201][T13360] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3257.846181][T13360] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3257.854166][T13360] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3257.862150][T13360] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3257.870128][T13360] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3257.878125][T13360]  ? __sys_socket+0x7c/0x250
[ 3257.882752][T13360]  </TASK>
[ 3257.893506][T13360] memory: usage 307200kB, limit 307200kB, failcnt 159461
[ 3257.914947][T13360] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3257.948420][T13360] Memory cgroup stats for /syz4:
[ 3257.948645][T13360] anon 102400
[ 3257.948645][T13360] file 438272
[ 3257.948645][T13360] kernel 314028032
[ 3257.948645][T13360] kernel_stack 65536
[ 3257.948645][T13360] pagetables 73728
[ 3257.948645][T13360] sec_pagetables 0
[ 3257.948645][T13360] percpu 5617088
[ 3257.948645][T13360] sock 4096
[ 3257.948645][T13360] vmalloc 0
[ 3257.948645][T13360] shmem 438272
[ 3257.948645][T13360] zswap 0
[ 3257.948645][T13360] zswapped 0
[ 3257.948645][T13360] file_mapped 393216
[ 3257.948645][T13360] file_dirty 0
[ 3257.948645][T13360] file_writeback 0
[ 3257.948645][T13360] swapcached 0
[ 3257.948645][T13360] anon_thp 0
[ 3257.948645][T13360] file_thp 0
[ 3257.948645][T13360] shmem_thp 0
[ 3257.948645][T13360] inactive_anon 114688
[ 3257.948645][T13360] active_anon 425984
[ 3257.948645][T13360] inactive_file 0
[ 3257.948645][T13360] active_file 0
[ 3257.948645][T13360] unevictable 0
[ 3257.948645][T13360] slab_reclaimable 23024
[ 3257.948645][T13360] slab_unreclaimable 308212560
[ 3258.068567][T13360] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13360,uid=0
[ 3258.085410][T13360] Memory cgroup out of memory: Killed process 13360 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3258.103390][T13362] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000
[ 3258.115595][T13362] CPU: 1 PID: 13362 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3258.124309][T13362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3258.134392][T13362] Call Trace:
[ 3258.137721][T13362]  <TASK>
[ 3258.140675][T13362]  dump_stack_lvl+0xd1/0x138
[ 3258.145312][T13362]  dump_header+0x10b/0x85f
[ 3258.149864][T13362]  oom_kill_process.cold+0x10/0x15
[ 3258.155055][T13362]  out_of_memory+0x35c/0x14a0
[ 3258.159787][T13362]  ? oom_killer_disable+0x280/0x280
[ 3258.165026][T13362]  ? find_held_lock+0x2d/0x110
[ 3258.169819][T13362]  mem_cgroup_out_of_memory+0x206/0x270
[ 3258.175390][T13362]  ? mem_cgroup_margin+0x130/0x130
[ 3258.180523][T13362]  ? lock_downgrade+0x6e0/0x6e0
[ 3258.185397][T13362]  try_charge_memcg+0xefb/0x12f0
[ 3258.190377][T13362]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3258.196368][T13362]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3258.202112][T13362]  ? lock_downgrade+0x6e0/0x6e0
[ 3258.206992][T13362]  obj_cgroup_charge+0x2af/0x5e0
[ 3258.211960][T13362]  __kmem_cache_alloc_node+0xb2/0x430
[ 3258.217349][T13362]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3258.222736][T13362]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3258.228206][T13362]  __kmalloc_node_track_caller+0x4b/0xc0
[ 3258.233865][T13362]  kmemdup+0x2c/0x60
[ 3258.237782][T13362]  neigh_sysctl_register+0x9e/0x5f0
[ 3258.243004][T13362]  ? neigh_stat_seq_show+0x420/0x420
[ 3258.248314][T13362]  ? inetdev_init+0x23d/0x580
[ 3258.253007][T13362]  ? inetdev_event+0xe20/0x16c0
[ 3258.257871][T13362]  ? notifier_call_chain+0xb5/0x200
[ 3258.263082][T13362]  ? call_netdevice_notifiers_info+0xb5/0x130
[ 3258.269169][T13362]  ? register_netdevice+0xfb4/0x1640
[ 3258.274469][T13362]  ? br_dev_newlink+0x27/0x110
[ 3258.279253][T13362]  ? __rtnl_newlink+0x10c2/0x1840
[ 3258.284298][T13362]  ? rtnl_newlink+0x68/0xa0
[ 3258.288823][T13362]  ? rtnetlink_rcv_msg+0x43e/0xca0
[ 3258.293948][T13362]  ? netlink_rcv_skb+0x165/0x440
[ 3258.298926][T13362]  ? netlink_unicast+0x547/0x7f0
[ 3258.303898][T13362]  ? netlink_sendmsg+0x91b/0xe10
[ 3258.308861][T13362]  ? sock_sendmsg+0xd3/0x120
[ 3258.313490][T13362]  ? ____sys_sendmsg+0x712/0x8c0
[ 3258.318455][T13362]  ? ___sys_sendmsg+0x110/0x1b0
[ 3258.323337][T13362]  devinet_sysctl_register+0xb1/0x230
[ 3258.328731][T13362]  inetdev_init+0x286/0x580
[ 3258.333257][T13362]  inetdev_event+0xe20/0x16c0
[ 3258.337945][T13362]  ? del_default_gids+0xe0/0xe0
[ 3258.342815][T13362]  ? is_ndev_for_default_gid_filter.part.0+0x2e0/0x2e0
[ 3258.349687][T13362]  ? devinet_init_net+0x650/0x650
[ 3258.354727][T13362]  ? skb_dequeue+0x129/0x180
[ 3258.359335][T13362]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3258.365275][T13362]  notifier_call_chain+0xb5/0x200
[ 3258.370322][T13362]  call_netdevice_notifiers_info+0xb5/0x130
[ 3258.376242][T13362]  register_netdevice+0xfb4/0x1640
[ 3258.381378][T13362]  ? unregister_netdevice_queue+0x3c0/0x3c0
[ 3258.387309][T13362]  br_dev_newlink+0x27/0x110
[ 3258.391947][T13362]  ? br_changelink+0x1620/0x1620
[ 3258.396914][T13362]  __rtnl_newlink+0x10c2/0x1840
[ 3258.401978][T13362]  ? rtnl_link_unregister+0x250/0x250
[ 3258.407414][T13362]  rtnl_newlink+0x68/0xa0
[ 3258.411774][T13362]  ? __rtnl_newlink+0x1840/0x1840
[ 3258.416818][T13362]  rtnetlink_rcv_msg+0x43e/0xca0
[ 3258.421784][T13362]  ? rtnl_getlink+0xae0/0xae0
[ 3258.426481][T13362]  ? __dev_queue_xmit+0xb54/0x3ba0
[ 3258.431619][T13362]  ? exc_int3+0xf/0x80
[ 3258.435723][T13362]  netlink_rcv_skb+0x165/0x440
[ 3258.440510][T13362]  ? rtnl_getlink+0xae0/0xae0
[ 3258.445203][T13362]  ? netlink_ack+0x1370/0x1370
[ 3258.450014][T13362]  ? netlink_deliver_tap+0x1b1/0xc50
[ 3258.455324][T13362]  netlink_unicast+0x547/0x7f0
[ 3258.460111][T13362]  ? netlink_attachskb+0x890/0x890
[ 3258.465240][T13362]  ? __virt_addr_valid+0x61/0x2e0
[ 3258.470281][T13362]  ? __phys_addr_symbol+0x30/0x70
[ 3258.475333][T13362]  ? __check_object_size+0x2e2/0x5a0
[ 3258.480656][T13362]  netlink_sendmsg+0x91b/0xe10
[ 3258.485452][T13362]  ? netlink_unicast+0x7f0/0x7f0
[ 3258.490443][T13362]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3258.495758][T13362]  ? netlink_unicast+0x7f0/0x7f0
[ 3258.500729][T13362]  sock_sendmsg+0xd3/0x120
[ 3258.505171][T13362]  ____sys_sendmsg+0x712/0x8c0
[ 3258.509969][T13362]  ? copy_msghdr_from_user+0xfc/0x150
[ 3258.515366][T13362]  ? kernel_sendmsg+0x50/0x50
[ 3258.520160][T13362]  ? futex_unqueue+0xb7/0x120
[ 3258.524875][T13362]  ___sys_sendmsg+0x110/0x1b0
[ 3258.529588][T13362]  ? do_recvmmsg+0x6e0/0x6e0
[ 3258.534227][T13362]  ? __fget_files+0x248/0x440
[ 3258.538941][T13362]  ? lock_downgrade+0x6e0/0x6e0
[ 3258.543823][T13362]  ? __fget_files+0x26a/0x440
[ 3258.548533][T13362]  ? __fget_light+0xe5/0x270
[ 3258.553235][T13362]  __sys_sendmsg+0xf7/0x1c0
[ 3258.557768][T13362]  ? __sys_sendmsg_sock+0x40/0x40
[ 3258.562819][T13362]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3258.568770][T13362]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3258.574683][T13362]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3258.579952][T13362]  do_syscall_64+0x39/0xb0
[ 3258.584484][T13362]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3258.590392][T13362] RIP: 0033:0x7fde80a8c0c9
[ 3258.594815][T13362] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
10:33:38 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000340000000000500010006"], 0x1c}}, 0x0)

[ 3258.614442][T13362] RSP: 002b:00007fde818ce168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3258.622870][T13362] RAX: ffffffffffffffda RBX: 00007fde80babf80 RCX: 00007fde80a8c0c9
[ 3258.630848][T13362] RDX: 00000000000002dc RSI: 00000000200000c0 RDI: 0000000000000003
[ 3258.638822][T13362] RBP: 00007fde80ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3258.646802][T13362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3258.654806][T13362] R13: 00007ffd6245db6f R14: 00007fde818ce300 R15: 0000000000022000
[ 3258.662804][T13362]  </TASK>
[ 3258.672257][ T9895] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3258.734503][T13362] memory: usage 307200kB, limit 307200kB, failcnt 42427
[ 3258.741616][T13362] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3258.750424][T13362] Memory cgroup stats for /syz2:
[ 3258.750613][T13362] anon 135168
[ 3258.750613][T13362] file 307200
[ 3258.750613][T13362] kernel 314130432
[ 3258.750613][T13362] kernel_stack 65536
[ 3258.750613][T13362] pagetables 86016
[ 3258.750613][T13362] sec_pagetables 0
[ 3258.750613][T13362] percpu 5433440
[ 3258.750613][T13362] sock 0
[ 3258.750613][T13362] vmalloc 16384
[ 3258.750613][T13362] shmem 307200
[ 3258.750613][T13362] zswap 0
[ 3258.750613][T13362] zswapped 0
[ 3258.750613][T13362] file_mapped 299008
[ 3258.750613][T13362] file_dirty 0
[ 3258.750613][T13362] file_writeback 0
[ 3258.750613][T13362] swapcached 0
[ 3258.750613][T13362] anon_thp 0
[ 3258.750613][T13362] file_thp 0
[ 3258.750613][T13362] shmem_thp 0
[ 3258.750613][T13362] inactive_anon 143360
[ 3258.750613][T13362] active_anon 299008
[ 3258.750613][T13362] inactive_file 0
[ 3258.750613][T13362] active_file 0
[ 3258.750613][T13362] unevictable 0
[ 3258.750613][T13362] slab_reclaimable 112984
[ 3258.750613][T13362] slab_unreclaimable 308388424
[ 3258.848363][T13362] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=13354,uid=0
[ 3258.864216][T13362] Memory cgroup out of memory: Killed process 13362 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3258.881925][T13378] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3258.904560][T13378] CPU: 0 PID: 13378 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3258.913276][T13378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3258.923351][T13378] Call Trace:
[ 3258.926646][T13378]  <TASK>
[ 3258.929593][T13378]  dump_stack_lvl+0xd1/0x138
[ 3258.934199][T13378]  dump_header+0x10b/0x85f
[ 3258.938636][T13378]  oom_kill_process.cold+0x10/0x15
[ 3258.943768][T13378]  out_of_memory+0x35c/0x14a0
[ 3258.948470][T13378]  ? oom_killer_disable+0x280/0x280
[ 3258.953687][T13378]  ? find_held_lock+0x2d/0x110
[ 3258.958465][T13378]  mem_cgroup_out_of_memory+0x206/0x270
[ 3258.964022][T13378]  ? mem_cgroup_margin+0x130/0x130
[ 3258.969144][T13378]  ? lock_downgrade+0x6e0/0x6e0
[ 3258.974013][T13378]  try_charge_memcg+0xefb/0x12f0
[ 3258.978960][T13378]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3258.984951][T13378]  ? lock_downgrade+0x6e0/0x6e0
[ 3258.989818][T13378]  charge_memcg+0x90/0x3b0
[ 3258.994244][T13378]  __mem_cgroup_charge+0x2b/0x90
[ 3258.999197][T13378]  ? copy_mc_to_kernel+0x3e/0x90
[ 3259.004142][T13378]  do_wp_page+0x7ec/0x3370
[ 3259.008574][T13378]  ? lock_release+0x810/0x810
[ 3259.013255][T13378]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3259.018637][T13378]  ? do_raw_spin_lock+0x124/0x2b0
[ 3259.023679][T13378]  ? rwlock_bug.part.0+0x90/0x90
[ 3259.028641][T13378]  ? lock_chain_count+0x20/0x20
[ 3259.033504][T13378]  __handle_mm_fault+0x1f58/0x3c90
[ 3259.038635][T13378]  ? vm_iomap_memory+0x190/0x190
[ 3259.043626][T13378]  handle_mm_fault+0x1b6/0x850
[ 3259.048408][T13378]  do_user_addr_fault+0x475/0x1210
[ 3259.053531][T13378]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3259.059094][T13378]  exc_page_fault+0x98/0x170
[ 3259.063696][T13378]  asm_exc_page_fault+0x26/0x30
[ 3259.068553][T13378] RIP: 0033:0x7fbb9f036f3d
[ 3259.072991][T13378] Code: e0 04 8b 44 02 08 85 c0 0f 85 3e 0a 00 00 31 c0 b9 40 42 0f 00 ba 81 00 00 00 c7 06 01 00 00 00 bf ca 00 00 00 e8 73 51 05 00 <83> 05 44 6a 17 00 01 80 bc 24 d8 00 00 00 00 0f b6 05 57 e7 c9 00
[ 3259.092602][T13378] RSP: 002b:00007fff7101e890 EFLAGS: 00010217
[ 3259.098675][T13378] RAX: 0000000000000000 RBX: 00007fbb9f1abf8c RCX: 00007fbb9f08c0c9
[ 3259.106663][T13378] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbb9f1abf88
[ 3259.114636][T13378] RBP: 00007fbb9f1abf80 R08: 00007fbb9fe42700 R09: 0000000000000000
[ 3259.122615][T13378] R10: 00007fbb9fe42700 R11: 0000000000000246 R12: 00007fbb9f1abf8c
[ 3259.130596][T13378] R13: 00007fbb9ec00060 R14: 00007fbb9f1abf80 R15: 0000000000000000
[ 3259.138679][T13378]  </TASK>
[ 3259.145637][T13378] memory: usage 307200kB, limit 307200kB, failcnt 159552
[ 3259.153609][T13378] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3259.160662][T13378] Memory cgroup stats for /syz4:
[ 3259.160839][T13378] anon 90112
[ 3259.160839][T13378] file 438272
[ 3259.160839][T13378] kernel 314019840
[ 3259.160839][T13378] kernel_stack 65536
[ 3259.160839][T13378] pagetables 73728
[ 3259.160839][T13378] sec_pagetables 0
[ 3259.160839][T13378] percpu 5617088
[ 3259.160839][T13378] sock 4096
[ 3259.160839][T13378] vmalloc 0
[ 3259.160839][T13378] shmem 438272
[ 3259.160839][T13378] zswap 0
[ 3259.160839][T13378] zswapped 0
[ 3259.160839][T13378] file_mapped 393216
[ 3259.160839][T13378] file_dirty 0
[ 3259.160839][T13378] file_writeback 0
[ 3259.160839][T13378] swapcached 0
[ 3259.160839][T13378] anon_thp 0
[ 3259.160839][T13378] file_thp 0
[ 3259.160839][T13378] shmem_thp 0
[ 3259.160839][T13378] inactive_anon 102400
[ 3259.160839][T13378] active_anon 425984
[ 3259.160839][T13378] inactive_file 0
[ 3259.160839][T13378] active_file 0
[ 3259.160839][T13378] unevictable 0
[ 3259.160839][T13378] slab_reclaimable 23024
[ 3259.160839][T13378] slab_unreclaimable 308203976
[ 3259.258738][T13378] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13378,uid=0
[ 3259.277268][T13378] Memory cgroup out of memory: Killed process 13378 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3259.294966][T13380] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3259.310346][T13380] CPU: 0 PID: 13380 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3259.319064][T13380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3259.329199][T13380] Call Trace:
[ 3259.332469][T13380]  <TASK>
[ 3259.335394][T13380]  dump_stack_lvl+0xd1/0x138
[ 3259.339985][T13380]  dump_header+0x10b/0x85f
[ 3259.344405][T13380]  oom_kill_process.cold+0x10/0x15
[ 3259.349523][T13380]  out_of_memory+0x35c/0x14a0
[ 3259.354230][T13380]  ? oom_killer_disable+0x280/0x280
[ 3259.359442][T13380]  ? find_held_lock+0x2d/0x110
[ 3259.364214][T13380]  mem_cgroup_out_of_memory+0x206/0x270
[ 3259.369775][T13380]  ? mem_cgroup_margin+0x130/0x130
[ 3259.374909][T13380]  ? lock_downgrade+0x6e0/0x6e0
[ 3259.379785][T13380]  try_charge_memcg+0xefb/0x12f0
[ 3259.384741][T13380]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3259.390734][T13380]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3259.396476][T13380]  ? lock_downgrade+0x6e0/0x6e0
[ 3259.401337][T13380]  ? lock_downgrade+0x6e0/0x6e0
[ 3259.406206][T13380]  obj_cgroup_charge+0x2af/0x5e0
[ 3259.411158][T13380]  kmem_cache_alloc_lru+0x145/0x760
[ 3259.416374][T13380]  ? sock_alloc_inode+0x27/0x1d0
[ 3259.421344][T13380]  sock_alloc_inode+0x27/0x1d0
[ 3259.426128][T13380]  ? sock_free_inode+0x30/0x30
[ 3259.430911][T13380]  alloc_inode+0x61/0x230
[ 3259.435258][T13380]  new_inode_pseudo+0x17/0x80
[ 3259.439953][T13380]  sock_alloc+0x40/0x260
[ 3259.444213][T13380]  __sock_create+0xbd/0x790
[ 3259.448743][T13380]  __sys_socket+0x133/0x250
[ 3259.453268][T13380]  ? __sys_socket_file+0x1f0/0x1f0
[ 3259.458410][T13380]  __x64_sys_socket+0x73/0xb0
[ 3259.463106][T13380]  do_syscall_64+0x39/0xb0
[ 3259.467548][T13380]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3259.473456][T13380] RIP: 0033:0x7f36ee08c0c9
[ 3259.477882][T13380] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3259.497499][T13380] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3259.505930][T13380] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3259.513909][T13380] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3259.521884][T13380] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3259.529859][T13380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
10:33:40 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x2de)

10:33:40 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000000090000000500010006"], 0x1c}}, 0x0)

10:33:40 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x5000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:40 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x63}}], 0x2, 0x0)

10:33:40 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000340000000000500010006"], 0x1c}}, 0x0)

[ 3259.537832][T13380] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3259.545825][T13380]  </TASK>
[ 3259.567438][T13380] memory: usage 307200kB, limit 307200kB, failcnt 35632
[ 3259.614363][T13380] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3259.642450][T13380] Memory cgroup stats for /syz5:
[ 3259.642687][T13380] anon 94208
[ 3259.642687][T13380] file 425984
[ 3259.642687][T13380] kernel 314052608
[ 3259.642687][T13380] kernel_stack 65536
10:33:40 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x6000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3259.642687][T13380] pagetables 77824
[ 3259.642687][T13380] sec_pagetables 0
[ 3259.642687][T13380] percpu 5429952
[ 3259.642687][T13380] sock 0
[ 3259.642687][T13380] vmalloc 8192
[ 3259.642687][T13380] shmem 425984
[ 3259.642687][T13380] zswap 0
[ 3259.642687][T13380] zswapped 0
[ 3259.642687][T13380] file_mapped 393216
[ 3259.642687][T13380] file_dirty 0
[ 3259.642687][T13380] file_writeback 0
[ 3259.642687][T13380] swapcached 0
[ 3259.642687][T13380] anon_thp 0
[ 3259.642687][T13380] file_thp 0
[ 3259.642687][T13380] shmem_thp 0
[ 3259.642687][T13380] inactive_anon 221184
10:33:40 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000000000000000e0000000500010006"], 0x1c}}, 0x0)

[ 3259.642687][T13380] active_anon 299008
[ 3259.642687][T13380] inactive_file 0
[ 3259.642687][T13380] active_file 0
[ 3259.642687][T13380] unevictable 0
[ 3259.642687][T13380] slab_reclaimable 216400
[ 3259.642687][T13380] slab_unreclaimable 308217872
[ 3259.794215][T13380] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13373,uid=0
[ 3259.819031][T13380] Memory cgroup out of memory: Killed process 13373 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:40 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4035b)

10:33:40 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x64}}], 0x2, 0x0)

10:33:40 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x7000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:40 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000000000000000f0000000500010006"], 0x1c}}, 0x0)

10:33:40 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x2f8)

[ 3259.849020][T13389] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3259.889711][T13389] CPU: 1 PID: 13389 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3259.898443][T13389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3259.908526][T13389] Call Trace:
[ 3259.911868][T13389]  <TASK>
[ 3259.914822][T13389]  dump_stack_lvl+0xd1/0x138
[ 3259.919456][T13389]  dump_header+0x10b/0x85f
[ 3259.923927][T13389]  oom_kill_process.cold+0x10/0x15
[ 3259.929090][T13389]  out_of_memory+0x35c/0x14a0
[ 3259.933914][T13389]  ? oom_killer_disable+0x280/0x280
[ 3259.939168][T13389]  ? find_held_lock+0x2d/0x110
[ 3259.943978][T13389]  mem_cgroup_out_of_memory+0x206/0x270
[ 3259.949575][T13389]  ? mem_cgroup_margin+0x130/0x130
[ 3259.954730][T13389]  ? lock_downgrade+0x6e0/0x6e0
[ 3259.959629][T13389]  try_charge_memcg+0xefb/0x12f0
[ 3259.964612][T13389]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3259.970629][T13389]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3259.976395][T13389]  ? lock_downgrade+0x6e0/0x6e0
[ 3259.981284][T13389]  ? lock_downgrade+0x6e0/0x6e0
[ 3259.986193][T13389]  obj_cgroup_charge+0x2af/0x5e0
[ 3259.991191][T13389]  kmem_cache_alloc_lru+0x145/0x760
[ 3259.996424][T13389]  ? __d_alloc+0x32/0x980
[ 3260.000805][T13389]  __d_alloc+0x32/0x980
[ 3260.005004][T13389]  d_alloc_pseudo+0x1d/0x70
[ 3260.009550][T13389]  alloc_file_pseudo+0xca/0x250
[ 3260.014439][T13389]  ? alloc_file+0x800/0x800
[ 3260.018982][T13389]  ? _raw_spin_unlock+0x3a/0x40
[ 3260.023870][T13389]  ? alloc_fd+0x2d8/0x6d0
[ 3260.028242][T13389]  sock_alloc_file+0x53/0x190
[ 3260.032962][T13389]  __sys_socket+0x1a8/0x250
10:33:40 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x68}}], 0x2, 0x0)

[ 3260.037511][T13389]  ? __sys_socket_file+0x1f0/0x1f0
[ 3260.042678][T13389]  __x64_sys_socket+0x73/0xb0
[ 3260.047399][T13389]  do_syscall_64+0x39/0xb0
[ 3260.051859][T13389]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3260.057819][T13389] RIP: 0033:0x7fbb9f08c0c9
[ 3260.062259][T13389] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3260.081900][T13389] RSP: 002b:00007fbb9fe42168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
10:33:40 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000051140000000500010006"], 0x1c}}, 0x0)

10:33:40 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x8000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3260.090353][T13389] RAX: ffffffffffffffda RBX: 00007fbb9f1abf80 RCX: 00007fbb9f08c0c9
[ 3260.098355][T13389] RDX: 000000000000000c RSI: 0000000000000003 RDI: 0000000000000010
[ 3260.106350][T13389] RBP: 00007fbb9f0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3260.114343][T13389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3260.122340][T13389] R13: 00007fff7101e80f R14: 00007fbb9fe42300 R15: 0000000000022000
[ 3260.130359][T13389]  </TASK>
10:33:41 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x6c}}], 0x2, 0x0)

[ 3260.208936][T13389] memory: usage 307184kB, limit 307200kB, failcnt 159657
[ 3260.216322][T13389] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3260.223201][T13389] Memory cgroup stats for /syz4:
[ 3260.223404][T13389] anon 94208
[ 3260.223404][T13389] file 438272
[ 3260.223404][T13389] kernel 314019840
[ 3260.223404][T13389] kernel_stack 65536
[ 3260.223404][T13389] pagetables 81920
[ 3260.223404][T13389] sec_pagetables 0
[ 3260.223404][T13389] percpu 5617024
[ 3260.223404][T13389] sock 4096
[ 3260.223404][T13389] vmalloc 0
[ 3260.223404][T13389] shmem 438272
[ 3260.223404][T13389] zswap 0
[ 3260.223404][T13389] zswapped 0
[ 3260.223404][T13389] file_mapped 393216
[ 3260.223404][T13389] file_dirty 0
[ 3260.223404][T13389] file_writeback 0
[ 3260.223404][T13389] swapcached 0
[ 3260.223404][T13389] anon_thp 0
[ 3260.223404][T13389] file_thp 0
[ 3260.223404][T13389] shmem_thp 0
[ 3260.223404][T13389] inactive_anon 106496
[ 3260.223404][T13389] active_anon 425984
[ 3260.223404][T13389] inactive_file 0
[ 3260.223404][T13389] active_file 0
[ 3260.223404][T13389] unevictable 0
[ 3260.223404][T13389] slab_reclaimable 22640
[ 3260.223404][T13389] slab_unreclaimable 308200528
[ 3260.344122][T13389] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13384,uid=0
[ 3260.370657][T13389] Memory cgroup out of memory: Killed process 13384 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3260.390183][T13402] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3260.406741][T13402] CPU: 1 PID: 13402 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3260.415452][T13402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3260.425522][T13402] Call Trace:
[ 3260.428817][T13402]  <TASK>
[ 3260.431756][T13402]  dump_stack_lvl+0xd1/0x138
[ 3260.436364][T13402]  dump_header+0x10b/0x85f
[ 3260.440807][T13402]  oom_kill_process.cold+0x10/0x15
[ 3260.445956][T13402]  out_of_memory+0x35c/0x14a0
[ 3260.450666][T13402]  ? oom_killer_disable+0x280/0x280
[ 3260.455888][T13402]  ? find_held_lock+0x2d/0x110
[ 3260.460676][T13402]  mem_cgroup_out_of_memory+0x206/0x270
[ 3260.466240][T13402]  ? mem_cgroup_margin+0x130/0x130
[ 3260.471368][T13402]  ? lock_downgrade+0x6e0/0x6e0
[ 3260.476264][T13402]  try_charge_memcg+0xefb/0x12f0
[ 3260.481238][T13402]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3260.487237][T13402]  ? lock_downgrade+0x6e0/0x6e0
[ 3260.492126][T13402]  charge_memcg+0x90/0x3b0
[ 3260.496557][T13402]  __mem_cgroup_charge+0x2b/0x90
[ 3260.501504][T13402]  ? copy_mc_to_kernel+0x3e/0x90
[ 3260.506457][T13402]  do_wp_page+0x7ec/0x3370
[ 3260.510918][T13402]  ? lock_release+0x810/0x810
[ 3260.515606][T13402]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3260.520995][T13402]  ? do_raw_spin_lock+0x124/0x2b0
[ 3260.526031][T13402]  ? rwlock_bug.part.0+0x90/0x90
[ 3260.530980][T13402]  ? lock_chain_count+0x20/0x20
[ 3260.535845][T13402]  __handle_mm_fault+0x1f58/0x3c90
[ 3260.540982][T13402]  ? vm_iomap_memory+0x190/0x190
[ 3260.545979][T13402]  handle_mm_fault+0x1b6/0x850
[ 3260.550766][T13402]  do_user_addr_fault+0x475/0x1210
[ 3260.555892][T13402]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3260.561473][T13402]  exc_page_fault+0x98/0x170
[ 3260.566074][T13402]  asm_exc_page_fault+0x26/0x30
[ 3260.570933][T13402] RIP: 0033:0x7f36ee036645
[ 3260.575360][T13402] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
[ 3260.594975][T13402] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
[ 3260.601050][T13402] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3260.609026][T13402] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3260.617014][T13402] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
[ 3260.624989][T13402] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 000000000031bf03
[ 3260.632985][T13402] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3260.640998][T13402]  </TASK>
10:33:41 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000000000000000e0000000500010006"], 0x1c}}, 0x0)

10:33:41 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000000000000001f0000000500010006"], 0x1c}}, 0x0)

10:33:41 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x9000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3260.652898][T13402] memory: usage 307200kB, limit 307200kB, failcnt 35713
[ 3260.675660][T13402] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3260.703229][T13402] Memory cgroup stats for /syz5:
[ 3260.703436][T13402] anon 94208
[ 3260.703436][T13402] file 425984
[ 3260.703436][T13402] kernel 314052608
[ 3260.703436][T13402] kernel_stack 65536
[ 3260.703436][T13402] pagetables 77824
[ 3260.703436][T13402] sec_pagetables 0
[ 3260.703436][T13402] percpu 5429952
[ 3260.703436][T13402] sock 0
[ 3260.703436][T13402] vmalloc 8192
[ 3260.703436][T13402] shmem 425984
[ 3260.703436][T13402] zswap 0
[ 3260.703436][T13402] zswapped 0
[ 3260.703436][T13402] file_mapped 393216
[ 3260.703436][T13402] file_dirty 0
[ 3260.703436][T13402] file_writeback 0
[ 3260.703436][T13402] swapcached 0
[ 3260.703436][T13402] anon_thp 0
[ 3260.703436][T13402] file_thp 0
[ 3260.703436][T13402] shmem_thp 0
[ 3260.703436][T13402] inactive_anon 221184
[ 3260.703436][T13402] active_anon 299008
[ 3260.703436][T13402] inactive_file 0
[ 3260.703436][T13402] active_file 0
[ 3260.703436][T13402] unevictable 0
[ 3260.703436][T13402] slab_reclaimable 218328
[ 3260.703436][T13402] slab_unreclaimable 308218520
10:33:41 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4035c)

10:33:41 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x74}}], 0x2, 0x0)

10:33:41 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xa000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:41 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000000600000000500010006"], 0x1c}}, 0x0)

10:33:41 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x2fb)

[ 3260.802420][T13402] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13402,uid=0
[ 3260.818257][T13402] Memory cgroup out of memory: Killed process 13402 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:41 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000ffffff9e0000000500010006"], 0x1c}}, 0x0)

10:33:41 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xe000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:41 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x300)

10:33:41 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x78}}], 0x2, 0x0)

[ 3260.971099][T13417] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3260.997686][T13417] CPU: 1 PID: 13417 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3261.006428][T13417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3261.016512][T13417] Call Trace:
[ 3261.019813][T13417]  <TASK>
[ 3261.022770][T13417]  dump_stack_lvl+0xd1/0x138
[ 3261.027404][T13417]  dump_header+0x10b/0x85f
[ 3261.031870][T13417]  oom_kill_process.cold+0x10/0x15
[ 3261.037038][T13417]  out_of_memory+0x35c/0x14a0
[ 3261.041767][T13417]  ? find_held_lock+0x2d/0x110
[ 3261.046590][T13417]  ? oom_killer_disable+0x280/0x280
[ 3261.051837][T13417]  ? find_held_lock+0x2d/0x110
[ 3261.056644][T13417]  mem_cgroup_out_of_memory+0x206/0x270
[ 3261.062220][T13417]  ? mem_cgroup_margin+0x130/0x130
[ 3261.067367][T13417]  ? lock_downgrade+0x6e0/0x6e0
[ 3261.072242][T13417]  try_charge_memcg+0xefb/0x12f0
[ 3261.077194][T13417]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3261.083189][T13417]  ? lock_downgrade+0x6e0/0x6e0
[ 3261.088059][T13417]  charge_memcg+0x90/0x3b0
[ 3261.092491][T13417]  __mem_cgroup_charge+0x2b/0x90
[ 3261.097443][T13417]  do_wp_page+0x7ec/0x3370
[ 3261.101880][T13417]  ? lock_release+0x810/0x810
[ 3261.106571][T13417]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3261.111961][T13417]  ? do_raw_spin_lock+0x124/0x2b0
[ 3261.116996][T13417]  ? rwlock_bug.part.0+0x90/0x90
[ 3261.121944][T13417]  ? lock_chain_count+0x20/0x20
[ 3261.126811][T13417]  __handle_mm_fault+0x1f58/0x3c90
[ 3261.131948][T13417]  ? vm_iomap_memory+0x190/0x190
[ 3261.136930][T13417]  handle_mm_fault+0x1b6/0x850
[ 3261.141716][T13417]  do_user_addr_fault+0x475/0x1210
[ 3261.146845][T13417]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3261.152418][T13417]  exc_page_fault+0x98/0x170
[ 3261.157020][T13417]  asm_exc_page_fault+0x26/0x30
[ 3261.161881][T13417] RIP: 0033:0x7fbb9f039570
[ 3261.166308][T13417] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3261.185937][T13417] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3261.192013][T13417] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3261.199987][T13417] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3261.207961][T13417] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3261.215938][T13417] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3261.223923][T13417] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3261.231908][T13417]  ? __sys_socket+0x7c/0x250
[ 3261.236534][T13417]  </TASK>
[ 3261.245080][T13417] memory: usage 307200kB, limit 307200kB, failcnt 159781
[ 3261.292654][T13417] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3261.317611][T13417] Memory cgroup stats for /syz4:
[ 3261.317958][T13417] anon 102400
[ 3261.317958][T13417] file 438272
[ 3261.317958][T13417] kernel 314028032
[ 3261.317958][T13417] kernel_stack 65536
[ 3261.317958][T13417] pagetables 73728
[ 3261.317958][T13417] sec_pagetables 0
[ 3261.317958][T13417] percpu 5617088
[ 3261.317958][T13417] sock 4096
[ 3261.317958][T13417] vmalloc 0
[ 3261.317958][T13417] shmem 438272
[ 3261.317958][T13417] zswap 0
[ 3261.317958][T13417] zswapped 0
[ 3261.317958][T13417] file_mapped 393216
[ 3261.317958][T13417] file_dirty 0
[ 3261.317958][T13417] file_writeback 0
[ 3261.317958][T13417] swapcached 0
[ 3261.317958][T13417] anon_thp 0
[ 3261.317958][T13417] file_thp 0
[ 3261.317958][T13417] shmem_thp 0
[ 3261.317958][T13417] inactive_anon 114688
[ 3261.317958][T13417] active_anon 425984
[ 3261.317958][T13417] inactive_file 0
[ 3261.317958][T13417] active_file 0
[ 3261.317958][T13417] unevictable 0
[ 3261.317958][T13417] slab_reclaimable 23024
[ 3261.317958][T13417] slab_unreclaimable 308212560
[ 3261.419478][T13417] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13417,uid=0
10:33:42 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000000000000000e0000000500010006"], 0x1c}}, 0x0)

10:33:42 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000007060300000000000000000ec00000000500010006"], 0x1c}}, 0x0)

10:33:42 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x10000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3261.435529][T13417] Memory cgroup out of memory: Killed process 13417 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3261.461868][T13427] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3261.493164][T13427] CPU: 1 PID: 13427 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3261.501890][T13427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3261.511967][T13427] Call Trace:
[ 3261.515262][T13427]  <TASK>
[ 3261.518216][T13427]  dump_stack_lvl+0xd1/0x138
[ 3261.522843][T13427]  dump_header+0x10b/0x85f
[ 3261.527302][T13427]  oom_kill_process.cold+0x10/0x15
[ 3261.532456][T13427]  out_of_memory+0x35c/0x14a0
[ 3261.537183][T13427]  ? find_held_lock+0x2d/0x110
[ 3261.541988][T13427]  ? oom_killer_disable+0x280/0x280
[ 3261.547233][T13427]  ? find_held_lock+0x2d/0x110
[ 3261.552039][T13427]  mem_cgroup_out_of_memory+0x206/0x270
[ 3261.557630][T13427]  ? mem_cgroup_margin+0x130/0x130
[ 3261.562778][T13427]  ? lock_downgrade+0x6e0/0x6e0
[ 3261.567722][T13427]  try_charge_memcg+0xefb/0x12f0
[ 3261.572705][T13427]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3261.578716][T13427]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3261.584476][T13427]  ? lock_downgrade+0x6e0/0x6e0
[ 3261.589359][T13427]  ? lock_downgrade+0x6e0/0x6e0
[ 3261.594253][T13427]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3261.599832][T13427]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3261.606026][T13427]  copy_process+0x1359/0x7520
[ 3261.610742][T13427]  ? __lock_acquire+0xbc3/0x56d0
[ 3261.615720][T13427]  ? __cleanup_sighand+0xb0/0xb0
[ 3261.620687][T13427]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3261.626700][T13427]  ? psi_memstall_leave+0x174/0x250
[ 3261.631944][T13427]  kernel_clone+0xeb/0x990
[ 3261.636398][T13427]  ? create_io_thread+0xf0/0xf0
[ 3261.641281][T13427]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3261.647562][T13427]  ? lock_downgrade+0x6e0/0x6e0
[ 3261.652540][T13427]  __do_sys_clone+0xba/0x100
[ 3261.657159][T13427]  ? kernel_clone+0x990/0x990
[ 3261.661884][T13427]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3261.667811][T13427]  do_syscall_64+0x39/0xb0
[ 3261.672250][T13427]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3261.678156][T13427] RIP: 0033:0x7f36ee08d4f1
[ 3261.682593][T13427] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3261.702225][T13427] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3261.710668][T13427] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3261.718667][T13427] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3261.726662][T13427] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3261.734654][T13427] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3261.742648][T13427] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3261.750663][T13427]  </TASK>
[ 3261.757502][T13427] memory: usage 307200kB, limit 307200kB, failcnt 35824
[ 3261.764717][T13427] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3261.771745][T13427] Memory cgroup stats for /syz5:
[ 3261.771946][T13427] anon 86016
[ 3261.771946][T13427] file 425984
[ 3261.771946][T13427] kernel 314060800
[ 3261.771946][T13427] kernel_stack 32768
[ 3261.771946][T13427] pagetables 77824
[ 3261.771946][T13427] sec_pagetables 0
[ 3261.771946][T13427] percpu 5430016
[ 3261.771946][T13427] sock 0
[ 3261.771946][T13427] vmalloc 8192
[ 3261.771946][T13427] shmem 425984
[ 3261.771946][T13427] zswap 0
[ 3261.771946][T13427] zswapped 0
[ 3261.771946][T13427] file_mapped 393216
[ 3261.771946][T13427] file_dirty 0
[ 3261.771946][T13427] file_writeback 0
[ 3261.771946][T13427] swapcached 0
[ 3261.771946][T13427] anon_thp 0
[ 3261.771946][T13427] file_thp 0
[ 3261.771946][T13427] shmem_thp 0
[ 3261.771946][T13427] inactive_anon 212992
[ 3261.771946][T13427] active_anon 299008
[ 3261.771946][T13427] inactive_file 0
[ 3261.771946][T13427] active_file 0
[ 3261.771946][T13427] unevictable 0
[ 3261.771946][T13427] slab_reclaimable 216400
[ 3261.771946][T13427] slab_unreclaimable 308229192
[ 3261.878392][T13427] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13427,uid=0
10:33:42 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4035d)

10:33:42 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x7a}}], 0x2, 0x0)

10:33:42 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x11000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:42 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000000003e80000000500010006"], 0x1c}}, 0x0)

[ 3261.894393][T13427] Memory cgroup out of memory: Killed process 13427 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
10:33:42 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x1f000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:42 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xfc}}], 0x2, 0x0)

10:33:42 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000000fffffff00000000500010006"], 0x1c}}, 0x0)

[ 3261.983039][T13440] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3262.024648][T13440] CPU: 0 PID: 13440 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3262.033387][T13440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3262.043468][T13440] Call Trace:
[ 3262.046768][T13440]  <TASK>
[ 3262.049721][T13440]  dump_stack_lvl+0xd1/0x138
[ 3262.054361][T13440]  dump_header+0x10b/0x85f
[ 3262.058827][T13440]  oom_kill_process.cold+0x10/0x15
[ 3262.063991][T13440]  out_of_memory+0x35c/0x14a0
[ 3262.068720][T13440]  ? find_held_lock+0x2d/0x110
10:33:42 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x306)

[ 3262.073523][T13440]  ? oom_killer_disable+0x280/0x280
[ 3262.078770][T13440]  ? find_held_lock+0x2d/0x110
[ 3262.083589][T13440]  mem_cgroup_out_of_memory+0x206/0x270
[ 3262.089204][T13440]  ? mem_cgroup_margin+0x130/0x130
[ 3262.094350][T13440]  ? lock_downgrade+0x6e0/0x6e0
[ 3262.099246][T13440]  try_charge_memcg+0xefb/0x12f0
[ 3262.104226][T13440]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3262.110247][T13440]  ? lock_downgrade+0x6e0/0x6e0
[ 3262.115144][T13440]  charge_memcg+0x90/0x3b0
[ 3262.119596][T13440]  __mem_cgroup_charge+0x2b/0x90
10:33:42 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x1f4}}], 0x2, 0x0)

[ 3262.124569][T13440]  do_wp_page+0x7ec/0x3370
[ 3262.129030][T13440]  ? lock_release+0x810/0x810
[ 3262.133736][T13440]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3262.139152][T13440]  ? do_raw_spin_lock+0x124/0x2b0
[ 3262.144217][T13440]  ? rwlock_bug.part.0+0x90/0x90
[ 3262.149195][T13440]  ? lock_chain_count+0x20/0x20
[ 3262.154116][T13440]  __handle_mm_fault+0x1f58/0x3c90
[ 3262.159311][T13440]  ? vm_iomap_memory+0x190/0x190
[ 3262.164320][T13440]  handle_mm_fault+0x1b6/0x850
[ 3262.169133][T13440]  do_user_addr_fault+0x475/0x1210
[ 3262.174288][T13440]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3262.179891][T13440]  exc_page_fault+0x98/0x170
[ 3262.184521][T13440]  asm_exc_page_fault+0x26/0x30
[ 3262.189399][T13440] RIP: 0033:0x7fbb9f039570
[ 3262.193834][T13440] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3262.213465][T13440] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3262.219563][T13440] RAX: 000000006d122758 RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3262.227649][T13440] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000c5bc22a
[ 3262.235644][T13440] RBP: 000000006d122758 R08: 0000000000000758 R09: 000000006d12275c
[ 3262.243641][T13440] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3262.251638][T13440] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff87bf13ac
[ 3262.259640][T13440]  ? __sys_socket+0x7c/0x250
[ 3262.264377][T13440]  </TASK>
[ 3262.286726][T13440] memory: usage 307200kB, limit 307200kB, failcnt 159889
[ 3262.304369][T13440] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3262.311317][T13440] Memory cgroup stats for /syz4:
[ 3262.311535][T13440] anon 102400
[ 3262.311535][T13440] file 438272
[ 3262.311535][T13440] kernel 314028032
[ 3262.311535][T13440] kernel_stack 65536
[ 3262.311535][T13440] pagetables 73728
[ 3262.311535][T13440] sec_pagetables 0
[ 3262.311535][T13440] percpu 5617088
[ 3262.311535][T13440] sock 4096
[ 3262.311535][T13440] vmalloc 0
[ 3262.311535][T13440] shmem 438272
[ 3262.311535][T13440] zswap 0
[ 3262.311535][T13440] zswapped 0
[ 3262.311535][T13440] file_mapped 393216
[ 3262.311535][T13440] file_dirty 0
[ 3262.311535][T13440] file_writeback 0
[ 3262.311535][T13440] swapcached 0
[ 3262.311535][T13440] anon_thp 0
[ 3262.311535][T13440] file_thp 0
[ 3262.311535][T13440] shmem_thp 0
[ 3262.311535][T13440] inactive_anon 114688
[ 3262.311535][T13440] active_anon 425984
[ 3262.311535][T13440] inactive_file 0
[ 3262.311535][T13440] active_file 0
[ 3262.311535][T13440] unevictable 0
[ 3262.311535][T13440] slab_reclaimable 23024
[ 3262.311535][T13440] slab_unreclaimable 308212560
[ 3262.410093][T13440] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13440,uid=0
10:33:43 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000000000000000e0000000500010006"], 0x1c}}, 0x0)

10:33:43 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x30000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:43 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x300}}], 0x2, 0x0)

[ 3262.425919][T13440] Memory cgroup out of memory: Killed process 13440 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3262.481370][T13449] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3262.499375][T13449] CPU: 1 PID: 13449 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3262.508095][T13449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3262.518175][T13449] Call Trace:
[ 3262.521476][T13449]  <TASK>
[ 3262.524428][T13449]  dump_stack_lvl+0xd1/0x138
[ 3262.529052][T13449]  dump_header+0x10b/0x85f
[ 3262.533503][T13449]  oom_kill_process.cold+0x10/0x15
[ 3262.538649][T13449]  out_of_memory+0x35c/0x14a0
[ 3262.543358][T13449]  ? find_held_lock+0x2d/0x110
[ 3262.548140][T13449]  ? oom_killer_disable+0x280/0x280
[ 3262.553364][T13449]  ? find_held_lock+0x2d/0x110
[ 3262.558150][T13449]  mem_cgroup_out_of_memory+0x206/0x270
[ 3262.563713][T13449]  ? mem_cgroup_margin+0x130/0x130
[ 3262.568847][T13449]  ? lock_downgrade+0x6e0/0x6e0
[ 3262.573720][T13449]  try_charge_memcg+0xefb/0x12f0
[ 3262.578679][T13449]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3262.584675][T13449]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3262.590421][T13449]  ? lock_downgrade+0x6e0/0x6e0
[ 3262.595284][T13449]  ? lock_downgrade+0x6e0/0x6e0
[ 3262.600155][T13449]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3262.605722][T13449]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3262.611901][T13449]  copy_process+0x1359/0x7520
[ 3262.616590][T13449]  ? __lock_acquire+0xbc3/0x56d0
[ 3262.621591][T13449]  ? __cleanup_sighand+0xb0/0xb0
[ 3262.626551][T13449]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3262.632553][T13449]  ? psi_memstall_leave+0x174/0x250
[ 3262.637783][T13449]  kernel_clone+0xeb/0x990
[ 3262.642216][T13449]  ? create_io_thread+0xf0/0xf0
[ 3262.647087][T13449]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3262.653383][T13449]  ? lock_downgrade+0x6e0/0x6e0
[ 3262.658257][T13449]  __do_sys_clone+0xba/0x100
[ 3262.662859][T13449]  ? kernel_clone+0x990/0x990
[ 3262.667561][T13449]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3262.673469][T13449]  do_syscall_64+0x39/0xb0
[ 3262.677903][T13449]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3262.683808][T13449] RIP: 0033:0x7f36ee08d4f1
[ 3262.688231][T13449] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3262.707846][T13449] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3262.716268][T13449] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3262.724263][T13449] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3262.732244][T13449] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3262.740218][T13449] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3262.748193][T13449] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3262.756185][T13449]  </TASK>
[ 3262.763570][T13449] memory: usage 307200kB, limit 307200kB, failcnt 35930
[ 3262.776556][T13449] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3262.783445][T13449] Memory cgroup stats for /syz5:
[ 3262.783640][T13449] anon 86016
[ 3262.783640][T13449] file 425984
[ 3262.783640][T13449] kernel 314060800
[ 3262.783640][T13449] kernel_stack 32768
[ 3262.783640][T13449] pagetables 77824
[ 3262.783640][T13449] sec_pagetables 0
[ 3262.783640][T13449] percpu 5430016
[ 3262.783640][T13449] sock 0
[ 3262.783640][T13449] vmalloc 8192
[ 3262.783640][T13449] shmem 425984
[ 3262.783640][T13449] zswap 0
[ 3262.783640][T13449] zswapped 0
[ 3262.783640][T13449] file_mapped 393216
[ 3262.783640][T13449] file_dirty 0
[ 3262.783640][T13449] file_writeback 0
[ 3262.783640][T13449] swapcached 0
[ 3262.783640][T13449] anon_thp 0
[ 3262.783640][T13449] file_thp 0
[ 3262.783640][T13449] shmem_thp 0
[ 3262.783640][T13449] inactive_anon 212992
[ 3262.783640][T13449] active_anon 299008
[ 3262.783640][T13449] inactive_file 0
[ 3262.783640][T13449] active_file 0
[ 3262.783640][T13449] unevictable 0
[ 3262.783640][T13449] slab_reclaimable 216400
[ 3262.783640][T13449] slab_unreclaimable 308229192
[ 3262.903863][T13449] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13449,uid=0
[ 3262.922317][T13449] Memory cgroup out of memory: Killed process 13449 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3262.943533][T13450] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3262.954126][T13450] CPU: 1 PID: 13450 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3262.962852][T13450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3262.972927][T13450] Call Trace:
[ 3262.976226][T13450]  <TASK>
[ 3262.979172][T13450]  dump_stack_lvl+0xd1/0x138
[ 3262.983786][T13450]  dump_header+0x10b/0x85f
[ 3262.988223][T13450]  oom_kill_process.cold+0x10/0x15
[ 3262.993381][T13450]  out_of_memory+0x35c/0x14a0
[ 3262.998110][T13450]  ? oom_killer_disable+0x280/0x280
[ 3263.003353][T13450]  ? find_held_lock+0x2d/0x110
[ 3263.008158][T13450]  mem_cgroup_out_of_memory+0x206/0x270
[ 3263.013744][T13450]  ? mem_cgroup_margin+0x130/0x130
[ 3263.018894][T13450]  ? lock_downgrade+0x6e0/0x6e0
[ 3263.023790][T13450]  try_charge_memcg+0xefb/0x12f0
[ 3263.028764][T13450]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3263.034786][T13450]  ? lock_downgrade+0x6e0/0x6e0
[ 3263.039861][T13450]  charge_memcg+0x90/0x3b0
[ 3263.044309][T13450]  __mem_cgroup_charge+0x2b/0x90
[ 3263.049284][T13450]  do_wp_page+0x7ec/0x3370
[ 3263.053747][T13450]  ? lock_release+0x810/0x810
[ 3263.058536][T13450]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3263.063930][T13450]  ? do_raw_spin_lock+0x124/0x2b0
[ 3263.068962][T13450]  ? rwlock_bug.part.0+0x90/0x90
[ 3263.073942][T13450]  ? lock_chain_count+0x20/0x20
[ 3263.078807][T13450]  __handle_mm_fault+0x1f58/0x3c90
[ 3263.083969][T13450]  ? vm_iomap_memory+0x190/0x190
[ 3263.088950][T13450]  handle_mm_fault+0x1b6/0x850
[ 3263.093739][T13450]  do_user_addr_fault+0x475/0x1210
[ 3263.098863][T13450]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3263.104447][T13450]  exc_page_fault+0x98/0x170
[ 3263.109066][T13450]  asm_exc_page_fault+0x26/0x30
[ 3263.113946][T13450] RIP: 0033:0x7fde80a39570
[ 3263.118380][T13450] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3263.138013][T13450] RSP: 002b:00007ffd6245db10 EFLAGS: 00010246
[ 3263.144097][T13450] RAX: 0000000036641734 RBX: 00007fde80bac0e8 RCX: 0000001b32820000
10:33:44 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4035e)

10:33:44 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000000007fffffff0000000500010006"], 0x1c}}, 0x0)

10:33:44 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x3f000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:44 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x3e8}}], 0x2, 0x0)

[ 3263.152076][T13450] RDX: 0000000000000000 RSI: 0000001b32820018 RDI: 000000000c5bfa59
[ 3263.160069][T13450] RBP: 0000000036641734 R08: 0000000000001734 R09: 0000000036641738
[ 3263.168063][T13450] R10: 00007ffd6245dcd0 R11: 0000000000000246 R12: 00007fde80ba0000
[ 3263.176055][T13450] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff87bf7289
[ 3263.184035][T13450]  ? __sys_sendmsg+0x99/0x1c0
[ 3263.188752][T13450]  </TASK>
10:33:44 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x500}}], 0x2, 0x0)

10:33:44 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x40000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:44 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000f0ffffffffffff0000000500010006"], 0x1c}}, 0x0)

[ 3263.248495][T13450] memory: usage 307200kB, limit 307200kB, failcnt 43040
[ 3263.276448][T13450] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3263.300888][T13450] Memory cgroup stats for /syz2:
[ 3263.301070][T13450] anon 110592
[ 3263.301070][T13450] file 307200
[ 3263.301070][T13450] kernel 314155008
[ 3263.301070][T13450] kernel_stack 98304
[ 3263.301070][T13450] pagetables 86016
[ 3263.301070][T13450] sec_pagetables 0
[ 3263.301070][T13450] percpu 5433440
[ 3263.301070][T13450] sock 0
[ 3263.301070][T13450] vmalloc 16384
[ 3263.301070][T13450] shmem 307200
[ 3263.301070][T13450] zswap 0
[ 3263.301070][T13450] zswapped 0
[ 3263.301070][T13450] file_mapped 299008
[ 3263.301070][T13450] file_dirty 0
[ 3263.301070][T13450] file_writeback 0
[ 3263.301070][T13450] swapcached 0
[ 3263.301070][T13450] anon_thp 0
[ 3263.301070][T13450] file_thp 0
[ 3263.301070][T13450] shmem_thp 0
[ 3263.301070][T13450] inactive_anon 118784
[ 3263.301070][T13450] active_anon 299008
[ 3263.301070][T13450] inactive_file 0
[ 3263.301070][T13450] active_file 0
[ 3263.301070][T13450] unevictable 0
[ 3263.301070][T13450] slab_reclaimable 112984
[ 3263.301070][T13450] slab_unreclaimable 308381480
[ 3263.408601][T13450] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=13450,uid=0
[ 3263.433612][T13450] Memory cgroup out of memory: Killed process 13450 (syz-executor.2) total-vm:54672kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3263.451556][T13473] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3263.469885][T13473] CPU: 1 PID: 13473 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3263.478603][T13473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3263.488686][T13473] Call Trace:
[ 3263.491984][T13473]  <TASK>
[ 3263.494937][T13473]  dump_stack_lvl+0xd1/0x138
[ 3263.499562][T13473]  dump_header+0x10b/0x85f
[ 3263.504022][T13473]  oom_kill_process.cold+0x10/0x15
[ 3263.509184][T13473]  out_of_memory+0x35c/0x14a0
[ 3263.513909][T13473]  ? oom_killer_disable+0x280/0x280
[ 3263.519154][T13473]  ? find_held_lock+0x2d/0x110
[ 3263.523961][T13473]  mem_cgroup_out_of_memory+0x206/0x270
[ 3263.529552][T13473]  ? mem_cgroup_margin+0x130/0x130
[ 3263.534702][T13473]  ? lock_downgrade+0x6e0/0x6e0
[ 3263.539583][T13473]  try_charge_memcg+0xefb/0x12f0
[ 3263.544548][T13473]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3263.550545][T13473]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3263.556288][T13473]  ? lock_downgrade+0x6e0/0x6e0
[ 3263.561152][T13473]  ? lock_downgrade+0x6e0/0x6e0
[ 3263.566025][T13473]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3263.571596][T13473]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3263.577862][T13473]  copy_process+0x4e3/0x7520
[ 3263.582468][T13473]  ? __lock_acquire+0xbc3/0x56d0
[ 3263.587424][T13473]  ? __cleanup_sighand+0xb0/0xb0
[ 3263.592374][T13473]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3263.598378][T13473]  ? psi_memstall_leave+0x174/0x250
[ 3263.603598][T13473]  kernel_clone+0xeb/0x990
[ 3263.608223][T13473]  ? create_io_thread+0xf0/0xf0
[ 3263.613087][T13473]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3263.619347][T13473]  ? lock_downgrade+0x6e0/0x6e0
[ 3263.624218][T13473]  __do_sys_clone+0xba/0x100
[ 3263.628818][T13473]  ? kernel_clone+0x990/0x990
[ 3263.633519][T13473]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3263.639425][T13473]  do_syscall_64+0x39/0xb0
[ 3263.643858][T13473]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3263.649760][T13473] RIP: 0033:0x7f36ee08d4f1
[ 3263.654185][T13473] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3263.673797][T13473] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3263.682233][T13473] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3263.690229][T13473] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3263.698223][T13473] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
10:33:44 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x32a)

10:33:44 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x4055d9a4, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3263.706199][T13473] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3263.714175][T13473] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3263.722184][T13473]  </TASK>
[ 3263.729292][T13473] memory: usage 307200kB, limit 307200kB, failcnt 36016
[ 3263.740641][T13473] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3263.748080][T13473] Memory cgroup stats for /syz5:
[ 3263.748289][T13473] anon 86016
[ 3263.748289][T13473] file 425984
[ 3263.748289][T13473] kernel 314060800
[ 3263.748289][T13473] kernel_stack 32768
[ 3263.748289][T13473] pagetables 77824
[ 3263.748289][T13473] sec_pagetables 0
[ 3263.748289][T13473] percpu 5430016
[ 3263.748289][T13473] sock 0
[ 3263.748289][T13473] vmalloc 8192
[ 3263.748289][T13473] shmem 425984
[ 3263.748289][T13473] zswap 0
[ 3263.748289][T13473] zswapped 0
[ 3263.748289][T13473] file_mapped 393216
[ 3263.748289][T13473] file_dirty 0
[ 3263.748289][T13473] file_writeback 0
[ 3263.748289][T13473] swapcached 0
[ 3263.748289][T13473] anon_thp 0
[ 3263.748289][T13473] file_thp 0
[ 3263.748289][T13473] shmem_thp 0
[ 3263.748289][T13473] inactive_anon 212992
[ 3263.748289][T13473] active_anon 299008
[ 3263.748289][T13473] inactive_file 0
[ 3263.748289][T13473] active_file 0
[ 3263.748289][T13473] unevictable 0
[ 3263.748289][T13473] slab_reclaimable 216400
[ 3263.748289][T13473] slab_unreclaimable 308229192
[ 3263.860195][T13473] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13473,uid=0
[ 3263.876962][T13473] Memory cgroup out of memory: Killed process 13473 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3263.895621][T13465] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3263.911265][T13465] CPU: 0 PID: 13465 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3263.919976][T13465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3263.930054][T13465] Call Trace:
[ 3263.933351][T13465]  <TASK>
[ 3263.936298][T13465]  dump_stack_lvl+0xd1/0x138
[ 3263.940923][T13465]  dump_header+0x10b/0x85f
[ 3263.945373][T13465]  oom_kill_process.cold+0x10/0x15
[ 3263.950494][T13465]  out_of_memory+0x35c/0x14a0
[ 3263.955201][T13465]  ? oom_killer_disable+0x280/0x280
[ 3263.960397][T13465]  ? find_held_lock+0x2d/0x110
[ 3263.965182][T13465]  mem_cgroup_out_of_memory+0x206/0x270
[ 3263.970769][T13465]  ? mem_cgroup_margin+0x130/0x130
[ 3263.975915][T13465]  ? lock_downgrade+0x6e0/0x6e0
[ 3263.980813][T13465]  try_charge_memcg+0xefb/0x12f0
[ 3263.985789][T13465]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3263.991792][T13465]  ? lock_downgrade+0x6e0/0x6e0
[ 3263.996647][T13465]  charge_memcg+0x90/0x3b0
[ 3264.001063][T13465]  __mem_cgroup_charge+0x2b/0x90
[ 3264.006002][T13465]  do_wp_page+0x7ec/0x3370
[ 3264.010422][T13465]  ? lock_release+0x810/0x810
[ 3264.015114][T13465]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3264.020516][T13465]  ? do_raw_spin_lock+0x124/0x2b0
[ 3264.025552][T13465]  ? rwlock_bug.part.0+0x90/0x90
[ 3264.030496][T13465]  ? lock_chain_count+0x20/0x20
[ 3264.035358][T13465]  __handle_mm_fault+0x1f58/0x3c90
[ 3264.040500][T13465]  ? vm_iomap_memory+0x190/0x190
[ 3264.045475][T13465]  handle_mm_fault+0x1b6/0x850
[ 3264.050430][T13465]  do_user_addr_fault+0x475/0x1210
[ 3264.055558][T13465]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3264.061129][T13465]  exc_page_fault+0x98/0x170
[ 3264.065729][T13465]  asm_exc_page_fault+0x26/0x30
[ 3264.070589][T13465] RIP: 0033:0x7fbb9f039570
[ 3264.075008][T13465] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3264.094622][T13465] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3264.100694][T13465] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3264.108668][T13465] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3264.116644][T13465] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3264.124628][T13465] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3264.132611][T13465] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3264.140594][T13465]  ? security_socket_create+0x3f/0xc0
[ 3264.146008][T13465]  </TASK>
[ 3264.154673][T13465] memory: usage 307200kB, limit 307200kB, failcnt 160015
[ 3264.161737][T13465] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3264.168770][T13465] Memory cgroup stats for /syz4:
[ 3264.168938][T13465] anon 118784
[ 3264.168938][T13465] file 438272
[ 3264.168938][T13465] kernel 314011648
[ 3264.168938][T13465] kernel_stack 65536
[ 3264.168938][T13465] pagetables 73728
[ 3264.168938][T13465] sec_pagetables 0
[ 3264.168938][T13465] percpu 5617024
[ 3264.168938][T13465] sock 4096
[ 3264.168938][T13465] vmalloc 0
[ 3264.168938][T13465] shmem 438272
[ 3264.168938][T13465] zswap 0
[ 3264.168938][T13465] zswapped 0
[ 3264.168938][T13465] file_mapped 393216
[ 3264.168938][T13465] file_dirty 0
[ 3264.168938][T13465] file_writeback 0
[ 3264.168938][T13465] swapcached 0
[ 3264.168938][T13465] anon_thp 0
[ 3264.168938][T13465] file_thp 0
[ 3264.168938][T13465] shmem_thp 0
[ 3264.168938][T13465] inactive_anon 114688
[ 3264.168938][T13465] active_anon 425984
[ 3264.168938][T13465] inactive_file 0
[ 3264.168938][T13465] active_file 0
[ 3264.168938][T13465] unevictable 0
[ 3264.168938][T13465] slab_reclaimable 23024
[ 3264.168938][T13465] slab_unreclaimable 308200776
10:33:45 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x1f000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:45 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000020000000000000000000500010006"], 0x1c}}, 0x0)

10:33:45 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x600}}], 0x2, 0x0)

10:33:45 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x48000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:45 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x4035f)

[ 3264.266111][T13465] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13465,uid=0
[ 3264.283004][T13465] Memory cgroup out of memory: Killed process 13465 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:45 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000030000000000000000000500010006"], 0x1c}}, 0x0)

10:33:45 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x4c000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:45 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x700}}], 0x2, 0x0)

10:33:45 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x32c)

10:33:45 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000040000000000000000000500010006"], 0x1c}}, 0x0)

[ 3264.453314][T13488] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3264.496997][T13488] CPU: 0 PID: 13488 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3264.505743][T13488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3264.515997][T13488] Call Trace:
[ 3264.519329][T13488]  <TASK>
[ 3264.522288][T13488]  dump_stack_lvl+0xd1/0x138
[ 3264.526917][T13488]  dump_header+0x10b/0x85f
[ 3264.531379][T13488]  oom_kill_process.cold+0x10/0x15
[ 3264.536537][T13488]  out_of_memory+0x35c/0x14a0
[ 3264.541259][T13488]  ? find_held_lock+0x2d/0x110
[ 3264.546068][T13488]  ? oom_killer_disable+0x280/0x280
[ 3264.551304][T13488]  ? find_held_lock+0x2d/0x110
[ 3264.556115][T13488]  mem_cgroup_out_of_memory+0x206/0x270
[ 3264.561701][T13488]  ? mem_cgroup_margin+0x130/0x130
[ 3264.566852][T13488]  ? lock_downgrade+0x6e0/0x6e0
[ 3264.571750][T13488]  try_charge_memcg+0xefb/0x12f0
[ 3264.576728][T13488]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3264.582748][T13488]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3264.588511][T13488]  ? lock_downgrade+0x6e0/0x6e0
[ 3264.593389][T13488]  ? lock_downgrade+0x6e0/0x6e0
[ 3264.598286][T13488]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3264.603866][T13488]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3264.610057][T13488]  copy_process+0x4e3/0x7520
[ 3264.614664][T13488]  ? __lock_acquire+0xbc3/0x56d0
[ 3264.619619][T13488]  ? __cleanup_sighand+0xb0/0xb0
[ 3264.624564][T13488]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3264.630554][T13488]  ? psi_memstall_leave+0x174/0x250
[ 3264.635772][T13488]  kernel_clone+0xeb/0x990
[ 3264.640199][T13488]  ? create_io_thread+0xf0/0xf0
[ 3264.645061][T13488]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3264.651322][T13488]  ? lock_downgrade+0x6e0/0x6e0
[ 3264.656194][T13488]  __do_sys_clone+0xba/0x100
[ 3264.660795][T13488]  ? kernel_clone+0x990/0x990
[ 3264.665493][T13488]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3264.671402][T13488]  do_syscall_64+0x39/0xb0
[ 3264.675833][T13488]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3264.681734][T13488] RIP: 0033:0x7f36ee08d4f1
[ 3264.686159][T13488] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3264.705771][T13488] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3264.714191][T13488] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3264.722165][T13488] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3264.730141][T13488] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3264.738116][T13488] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
10:33:45 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x900}}], 0x2, 0x0)

10:33:45 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x5b000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3264.746089][T13488] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3264.754094][T13488]  </TASK>
[ 3264.785256][T32549] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3264.804945][T13488] memory: usage 307200kB, limit 307200kB, failcnt 36135
[ 3264.813681][T13488] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3264.828142][T13488] Memory cgroup stats for /syz5:
[ 3264.828352][T13488] anon 86016
[ 3264.828352][T13488] file 425984
[ 3264.828352][T13488] kernel 314060800
[ 3264.828352][T13488] kernel_stack 32768
[ 3264.828352][T13488] pagetables 77824
[ 3264.828352][T13488] sec_pagetables 0
[ 3264.828352][T13488] percpu 5430016
[ 3264.828352][T13488] sock 0
[ 3264.828352][T13488] vmalloc 8192
[ 3264.828352][T13488] shmem 425984
[ 3264.828352][T13488] zswap 0
[ 3264.828352][T13488] zswapped 0
[ 3264.828352][T13488] file_mapped 393216
[ 3264.828352][T13488] file_dirty 0
[ 3264.828352][T13488] file_writeback 0
[ 3264.828352][T13488] swapcached 0
[ 3264.828352][T13488] anon_thp 0
[ 3264.828352][T13488] file_thp 0
[ 3264.828352][T13488] shmem_thp 0
[ 3264.828352][T13488] inactive_anon 212992
[ 3264.828352][T13488] active_anon 299008
[ 3264.828352][T13488] inactive_file 0
[ 3264.828352][T13488] active_file 0
[ 3264.828352][T13488] unevictable 0
[ 3264.828352][T13488] slab_reclaimable 216400
[ 3264.828352][T13488] slab_unreclaimable 308229192
[ 3264.926776][T13488] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13488,uid=0
[ 3264.942783][T13488] Memory cgroup out of memory: Killed process 13488 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3265.008370][T13494] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3265.019233][T13494] CPU: 1 PID: 13494 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3265.027957][T13494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3265.038044][T13494] Call Trace:
[ 3265.041355][T13494]  <TASK>
[ 3265.044307][T13494]  dump_stack_lvl+0xd1/0x138
[ 3265.048948][T13494]  dump_header+0x10b/0x85f
[ 3265.053519][T13494]  oom_kill_process.cold+0x10/0x15
[ 3265.058681][T13494]  out_of_memory+0x35c/0x14a0
[ 3265.063416][T13494]  ? find_held_lock+0x2d/0x110
[ 3265.068225][T13494]  ? oom_killer_disable+0x280/0x280
[ 3265.073479][T13494]  ? find_held_lock+0x2d/0x110
[ 3265.078289][T13494]  mem_cgroup_out_of_memory+0x206/0x270
[ 3265.083867][T13494]  ? mem_cgroup_margin+0x130/0x130
[ 3265.088993][T13494]  ? lock_downgrade+0x6e0/0x6e0
[ 3265.093876][T13494]  try_charge_memcg+0xefb/0x12f0
[ 3265.098832][T13494]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3265.104849][T13494]  ? lock_downgrade+0x6e0/0x6e0
[ 3265.109750][T13494]  charge_memcg+0x90/0x3b0
[ 3265.114192][T13494]  __mem_cgroup_charge+0x2b/0x90
[ 3265.119235][T13494]  do_wp_page+0x7ec/0x3370
[ 3265.123676][T13494]  ? lock_release+0x810/0x810
[ 3265.128359][T13494]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3265.133767][T13494]  ? do_raw_spin_lock+0x124/0x2b0
[ 3265.138819][T13494]  ? rwlock_bug.part.0+0x90/0x90
[ 3265.143780][T13494]  ? lock_chain_count+0x20/0x20
[ 3265.148651][T13494]  __handle_mm_fault+0x1f58/0x3c90
[ 3265.153817][T13494]  ? vm_iomap_memory+0x190/0x190
[ 3265.158830][T13494]  handle_mm_fault+0x1b6/0x850
[ 3265.163638][T13494]  do_user_addr_fault+0x475/0x1210
[ 3265.168787][T13494]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3265.174381][T13494]  exc_page_fault+0x98/0x170
[ 3265.179007][T13494]  asm_exc_page_fault+0x26/0x30
[ 3265.183884][T13494] RIP: 0033:0x7fbb9f039570
[ 3265.188321][T13494] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3265.208049][T13494] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3265.214133][T13494] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3265.222112][T13494] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3265.230107][T13494] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3265.238105][T13494] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3265.246096][T13494] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3265.254078][T13494]  ? security_socket_create+0x3f/0xc0
[ 3265.259491][T13494]  </TASK>
[ 3265.272479][T13494] memory: usage 307200kB, limit 307200kB, failcnt 160128
[ 3265.279830][T13494] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3265.287300][T13494] Memory cgroup stats for /syz4:
[ 3265.287499][T13494] anon 118784
[ 3265.287499][T13494] file 438272
[ 3265.287499][T13494] kernel 314011648
[ 3265.287499][T13494] kernel_stack 65536
[ 3265.287499][T13494] pagetables 73728
[ 3265.287499][T13494] sec_pagetables 0
[ 3265.287499][T13494] percpu 5617024
[ 3265.287499][T13494] sock 4096
[ 3265.287499][T13494] vmalloc 0
[ 3265.287499][T13494] shmem 438272
[ 3265.287499][T13494] zswap 0
[ 3265.287499][T13494] zswapped 0
[ 3265.287499][T13494] file_mapped 393216
[ 3265.287499][T13494] file_dirty 0
[ 3265.287499][T13494] file_writeback 0
[ 3265.287499][T13494] swapcached 0
[ 3265.287499][T13494] anon_thp 0
[ 3265.287499][T13494] file_thp 0
[ 3265.287499][T13494] shmem_thp 0
[ 3265.287499][T13494] inactive_anon 131072
[ 3265.287499][T13494] active_anon 425984
[ 3265.287499][T13494] inactive_file 0
[ 3265.287499][T13494] active_file 0
[ 3265.287499][T13494] unevictable 0
[ 3265.287499][T13494] slab_reclaimable 23024
[ 3265.287499][T13494] slab_unreclaimable 308202832
[ 3265.388549][T13494] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13494,uid=0
10:33:46 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x1f000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:46 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x68000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:46 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xa00}}], 0x2, 0x0)

10:33:46 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000050000000000000000000500010006"], 0x1c}}, 0x0)

10:33:46 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40360)

10:33:46 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x33a)

[ 3265.405864][T13494] Memory cgroup out of memory: Killed process 13494 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:46 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x6c000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:46 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000060000000000000000000500010006"], 0x1c}}, 0x0)

10:33:46 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xb71}}], 0x2, 0x0)

[ 3265.569910][T13512] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3265.612708][T13512] CPU: 1 PID: 13512 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3265.621443][T13512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3265.631529][T13512] Call Trace:
[ 3265.634833][T13512]  <TASK>
[ 3265.637790][T13512]  dump_stack_lvl+0xd1/0x138
[ 3265.642422][T13512]  dump_header+0x10b/0x85f
[ 3265.646892][T13512]  oom_kill_process.cold+0x10/0x15
[ 3265.652055][T13512]  out_of_memory+0x35c/0x14a0
[ 3265.656786][T13512]  ? find_held_lock+0x2d/0x110
10:33:46 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x74000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:46 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x7a000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3265.661591][T13512]  ? oom_killer_disable+0x280/0x280
[ 3265.666840][T13512]  ? find_held_lock+0x2d/0x110
[ 3265.671653][T13512]  mem_cgroup_out_of_memory+0x206/0x270
[ 3265.677242][T13512]  ? mem_cgroup_margin+0x130/0x130
[ 3265.682397][T13512]  ? lock_downgrade+0x6e0/0x6e0
[ 3265.687293][T13512]  try_charge_memcg+0xefb/0x12f0
[ 3265.692273][T13512]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3265.698286][T13512]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3265.704053][T13512]  ? lock_downgrade+0x6e0/0x6e0
10:33:46 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xe00}}], 0x2, 0x0)

[ 3265.708937][T13512]  ? lock_downgrade+0x6e0/0x6e0
[ 3265.713925][T13512]  __memcg_kmem_charge_page+0x16e/0x3b0
[ 3265.719686][T13512]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 3265.725897][T13512]  copy_process+0x4e3/0x7520
[ 3265.730520][T13512]  ? __lock_acquire+0xbc3/0x56d0
[ 3265.735524][T13512]  ? __cleanup_sighand+0xb0/0xb0
[ 3265.740496][T13512]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3265.746510][T13512]  ? psi_memstall_leave+0x174/0x250
[ 3265.751758][T13512]  kernel_clone+0xeb/0x990
[ 3265.756211][T13512]  ? create_io_thread+0xf0/0xf0
[ 3265.761100][T13512]  ? percpu_ref_put_many.constprop.0+0x6a/0x1a0
[ 3265.767385][T13512]  ? lock_downgrade+0x6e0/0x6e0
[ 3265.772276][T13512]  __do_sys_clone+0xba/0x100
[ 3265.776896][T13512]  ? kernel_clone+0x990/0x990
[ 3265.781625][T13512]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3265.787560][T13512]  do_syscall_64+0x39/0xb0
[ 3265.792018][T13512]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3265.797939][T13512] RIP: 0033:0x7f36ee08d4f1
[ 3265.802385][T13512] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 3265.822026][T13512] RSP: 002b:00007ffc6b5fd778 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 3265.830474][T13512] RAX: ffffffffffffffda RBX: 00007f36ecbfe700 RCX: 00007f36ee08d4f1
[ 3265.838475][T13512] RDX: 00007f36ecbfe9d0 RSI: 00007f36ecbfe2f0 RDI: 00000000003d0f00
[ 3265.846475][T13512] RBP: 00007ffc6b5fd9c0 R08: 00007f36ecbfe700 R09: 00007f36ecbfe700
[ 3265.854471][T13512] R10: 00007f36ecbfe9d0 R11: 0000000000000206 R12: 00007ffc6b5fd82e
[ 3265.862463][T13512] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3265.870492][T13512]  </TASK>
[ 3265.876150][T13512] memory: usage 307200kB, limit 307200kB, failcnt 36244
[ 3265.886144][T13512] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3265.900733][T13512] Memory cgroup stats for /syz5:
[ 3265.900959][T13512] anon 86016
[ 3265.900959][T13512] file 425984
[ 3265.900959][T13512] kernel 314060800
[ 3265.900959][T13512] kernel_stack 32768
[ 3265.900959][T13512] pagetables 77824
[ 3265.900959][T13512] sec_pagetables 0
[ 3265.900959][T13512] percpu 5430016
[ 3265.900959][T13512] sock 0
[ 3265.900959][T13512] vmalloc 8192
[ 3265.900959][T13512] shmem 425984
[ 3265.900959][T13512] zswap 0
[ 3265.900959][T13512] zswapped 0
[ 3265.900959][T13512] file_mapped 393216
[ 3265.900959][T13512] file_dirty 0
[ 3265.900959][T13512] file_writeback 0
[ 3265.900959][T13512] swapcached 0
[ 3265.900959][T13512] anon_thp 0
[ 3265.900959][T13512] file_thp 0
[ 3265.900959][T13512] shmem_thp 0
[ 3265.900959][T13512] inactive_anon 212992
[ 3265.900959][T13512] active_anon 299008
[ 3265.900959][T13512] inactive_file 0
[ 3265.900959][T13512] active_file 0
[ 3265.900959][T13512] unevictable 0
[ 3265.900959][T13512] slab_reclaimable 216400
[ 3265.900959][T13512] slab_unreclaimable 308229192
[ 3265.998907][T13512] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13512,uid=0
[ 3266.019298][T13512] Memory cgroup out of memory: Killed process 13512 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3266.044612][T13516] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000
[ 3266.066159][ T1199] ieee802154 phy1 wpan1: encryption failed: -22
[ 3266.071191][T13516] CPU: 1 PID: 13516 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3266.081128][T13516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3266.091292][T13516] Call Trace:
[ 3266.094591][T13516]  <TASK>
[ 3266.097577][T13516]  dump_stack_lvl+0xd1/0x138
[ 3266.102231][T13516]  dump_header+0x10b/0x85f
[ 3266.106699][T13516]  oom_kill_process.cold+0x10/0x15
[ 3266.111862][T13516]  out_of_memory+0x35c/0x14a0
[ 3266.116593][T13516]  ? oom_killer_disable+0x280/0x280
[ 3266.121837][T13516]  ? find_held_lock+0x2d/0x110
[ 3266.126647][T13516]  mem_cgroup_out_of_memory+0x206/0x270
[ 3266.132320][T13516]  ? mem_cgroup_margin+0x130/0x130
[ 3266.137480][T13516]  ? lock_downgrade+0x6e0/0x6e0
[ 3266.142378][T13516]  try_charge_memcg+0xefb/0x12f0
[ 3266.147357][T13516]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3266.153355][T13516]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3266.159089][T13516]  ? lock_downgrade+0x6e0/0x6e0
[ 3266.163967][T13516]  obj_cgroup_charge+0x2af/0x5e0
[ 3266.168928][T13516]  __kmem_cache_alloc_node+0xb2/0x430
[ 3266.174326][T13516]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3266.179730][T13516]  ? neigh_sysctl_register+0x9e/0x5f0
[ 3266.185129][T13516]  __kmalloc_node_track_caller+0x4b/0xc0
[ 3266.190807][T13516]  kmemdup+0x2c/0x60
[ 3266.194734][T13516]  neigh_sysctl_register+0x9e/0x5f0
[ 3266.199950][T13516]  ? neigh_stat_seq_show+0x420/0x420
[ 3266.205245][T13516]  ? inetdev_init+0x23d/0x580
[ 3266.209938][T13516]  ? inetdev_event+0xe20/0x16c0
[ 3266.214806][T13516]  ? notifier_call_chain+0xb5/0x200
[ 3266.220025][T13516]  ? call_netdevice_notifiers_info+0xb5/0x130
[ 3266.226117][T13516]  ? register_netdevice+0xfb4/0x1640
[ 3266.231421][T13516]  ? br_dev_newlink+0x27/0x110
[ 3266.236202][T13516]  ? __rtnl_newlink+0x10c2/0x1840
[ 3266.241246][T13516]  ? rtnl_newlink+0x68/0xa0
[ 3266.245764][T13516]  ? rtnetlink_rcv_msg+0x43e/0xca0
[ 3266.250889][T13516]  ? netlink_rcv_skb+0x165/0x440
[ 3266.255874][T13516]  ? netlink_unicast+0x547/0x7f0
[ 3266.260836][T13516]  ? netlink_sendmsg+0x91b/0xe10
[ 3266.265789][T13516]  ? sock_sendmsg+0xd3/0x120
[ 3266.270493][T13516]  ? ____sys_sendmsg+0x712/0x8c0
[ 3266.275444][T13516]  ? ___sys_sendmsg+0x110/0x1b0
[ 3266.280319][T13516]  devinet_sysctl_register+0xb1/0x230
[ 3266.285708][T13516]  inetdev_init+0x286/0x580
[ 3266.290230][T13516]  inetdev_event+0xe20/0x16c0
[ 3266.294936][T13516]  ? del_default_gids+0xe0/0xe0
[ 3266.299826][T13516]  ? is_ndev_for_default_gid_filter.part.0+0x2e0/0x2e0
[ 3266.306720][T13516]  ? devinet_init_net+0x650/0x650
[ 3266.311765][T13516]  ? skb_dequeue+0x129/0x180
[ 3266.316374][T13516]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3266.322295][T13516]  notifier_call_chain+0xb5/0x200
[ 3266.327344][T13516]  call_netdevice_notifiers_info+0xb5/0x130
[ 3266.333263][T13516]  register_netdevice+0xfb4/0x1640
[ 3266.338399][T13516]  ? unregister_netdevice_queue+0x3c0/0x3c0
[ 3266.344323][T13516]  br_dev_newlink+0x27/0x110
[ 3266.348943][T13516]  ? br_changelink+0x1620/0x1620
[ 3266.353908][T13516]  __rtnl_newlink+0x10c2/0x1840
[ 3266.358787][T13516]  ? find_held_lock+0x2d/0x110
[ 3266.363572][T13516]  ? rtnl_link_unregister+0x250/0x250
[ 3266.368965][T13516]  ? __kmem_cache_alloc_node+0x48/0x430
[ 3266.374637][T13516]  rtnl_newlink+0x68/0xa0
[ 3266.378984][T13516]  ? __rtnl_newlink+0x1840/0x1840
[ 3266.384024][T13516]  rtnetlink_rcv_msg+0x43e/0xca0
[ 3266.388995][T13516]  ? rtnl_getlink+0xae0/0xae0
[ 3266.393686][T13516]  ? __dev_queue_xmit+0xb54/0x3ba0
[ 3266.398829][T13516]  netlink_rcv_skb+0x165/0x440
[ 3266.403620][T13516]  ? rtnl_getlink+0xae0/0xae0
[ 3266.408319][T13516]  ? netlink_ack+0x1370/0x1370
[ 3266.413209][T13516]  ? netlink_deliver_tap+0x1b1/0xc50
[ 3266.418521][T13516]  netlink_unicast+0x547/0x7f0
[ 3266.423309][T13516]  ? netlink_attachskb+0x890/0x890
[ 3266.428440][T13516]  ? __virt_addr_valid+0x61/0x2e0
[ 3266.433484][T13516]  ? __phys_addr_symbol+0x30/0x70
[ 3266.438526][T13516]  ? __check_object_size+0x2e2/0x5a0
[ 3266.443829][T13516]  netlink_sendmsg+0x91b/0xe10
[ 3266.448624][T13516]  ? netlink_unicast+0x7f0/0x7f0
[ 3266.453590][T13516]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3266.458898][T13516]  ? netlink_unicast+0x7f0/0x7f0
[ 3266.463881][T13516]  sock_sendmsg+0xd3/0x120
[ 3266.468316][T13516]  ____sys_sendmsg+0x712/0x8c0
[ 3266.473099][T13516]  ? copy_msghdr_from_user+0xfc/0x150
[ 3266.478513][T13516]  ? kernel_sendmsg+0x50/0x50
[ 3266.483210][T13516]  ? futex_unqueue+0xb7/0x120
[ 3266.487910][T13516]  ___sys_sendmsg+0x110/0x1b0
[ 3266.492631][T13516]  ? do_recvmmsg+0x6e0/0x6e0
[ 3266.497245][T13516]  ? __fget_files+0x248/0x440
[ 3266.501949][T13516]  ? lock_downgrade+0x6e0/0x6e0
[ 3266.506822][T13516]  ? __fget_files+0x26a/0x440
[ 3266.511517][T13516]  ? __fget_light+0xe5/0x270
[ 3266.516129][T13516]  __sys_sendmsg+0xf7/0x1c0
[ 3266.520653][T13516]  ? __sys_sendmsg_sock+0x40/0x40
[ 3266.525698][T13516]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[ 3266.531623][T13516]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3266.537549][T13516]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3266.542758][T13516]  do_syscall_64+0x39/0xb0
[ 3266.547195][T13516]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3266.553098][T13516] RIP: 0033:0x7fde80a8c0c9
[ 3266.557520][T13516] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3266.577133][T13516] RSP: 002b:00007fde818ce168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3266.585556][T13516] RAX: ffffffffffffffda RBX: 00007fde80babf80 RCX: 00007fde80a8c0c9
[ 3266.593530][T13516] RDX: 000000000000033a RSI: 00000000200000c0 RDI: 0000000000000003
[ 3266.601506][T13516] RBP: 00007fde80ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3266.609481][T13516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3266.617457][T13516] R13: 00007ffd6245db6f R14: 00007fde818ce300 R15: 0000000000022000
[ 3266.625449][T13516]  </TASK>
[ 3266.642452][T13516] memory: usage 307200kB, limit 307200kB, failcnt 43390
[ 3266.649569][T13516] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3266.656587][T13516] Memory cgroup stats for /syz2:
[ 3266.656793][T13516] anon 135168
[ 3266.656793][T13516] file 307200
[ 3266.656793][T13516] kernel 314130432
[ 3266.656793][T13516] kernel_stack 65536
[ 3266.656793][T13516] pagetables 86016
[ 3266.656793][T13516] sec_pagetables 0
[ 3266.656793][T13516] percpu 5433440
[ 3266.656793][T13516] sock 0
[ 3266.656793][T13516] vmalloc 16384
[ 3266.656793][T13516] shmem 307200
[ 3266.656793][T13516] zswap 0
[ 3266.656793][T13516] zswapped 0
[ 3266.656793][T13516] file_mapped 299008
[ 3266.656793][T13516] file_dirty 0
[ 3266.656793][T13516] file_writeback 0
[ 3266.656793][T13516] swapcached 0
[ 3266.656793][T13516] anon_thp 0
[ 3266.656793][T13516] file_thp 0
[ 3266.656793][T13516] shmem_thp 0
[ 3266.656793][T13516] inactive_anon 143360
[ 3266.656793][T13516] active_anon 299008
[ 3266.656793][T13516] inactive_file 0
[ 3266.656793][T13516] active_file 0
[ 3266.656793][T13516] unevictable 0
[ 3266.656793][T13516] slab_reclaimable 112984
[ 3266.656793][T13516] slab_unreclaimable 308388424
[ 3266.754801][T13516] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=13513,uid=0
[ 3266.770738][T13516] Memory cgroup out of memory: Killed process 13516 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3266.811934][T13517] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3266.822357][T13517] CPU: 0 PID: 13517 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3266.831065][T13517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3266.841172][T13517] Call Trace:
[ 3266.844451][T13517]  <TASK>
[ 3266.847376][T13517]  dump_stack_lvl+0xd1/0x138
[ 3266.851971][T13517]  dump_header+0x10b/0x85f
[ 3266.856391][T13517]  oom_kill_process.cold+0x10/0x15
[ 3266.861519][T13517]  out_of_memory+0x35c/0x14a0
[ 3266.866203][T13517]  ? find_held_lock+0x2d/0x110
[ 3266.870970][T13517]  ? oom_killer_disable+0x280/0x280
[ 3266.876190][T13517]  ? find_held_lock+0x2d/0x110
[ 3266.881000][T13517]  mem_cgroup_out_of_memory+0x206/0x270
[ 3266.886591][T13517]  ? mem_cgroup_margin+0x130/0x130
[ 3266.891739][T13517]  ? lock_downgrade+0x6e0/0x6e0
[ 3266.896634][T13517]  try_charge_memcg+0xefb/0x12f0
[ 3266.901599][T13517]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3266.907604][T13517]  ? lock_downgrade+0x6e0/0x6e0
[ 3266.912460][T13517]  charge_memcg+0x90/0x3b0
[ 3266.916889][T13517]  __mem_cgroup_charge+0x2b/0x90
[ 3266.922089][T13517]  do_wp_page+0x7ec/0x3370
[ 3266.926518][T13517]  ? lock_release+0x810/0x810
[ 3266.931206][T13517]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3266.936596][T13517]  ? do_raw_spin_lock+0x124/0x2b0
[ 3266.941720][T13517]  ? rwlock_bug.part.0+0x90/0x90
[ 3266.946669][T13517]  ? lock_chain_count+0x20/0x20
[ 3266.951532][T13517]  __handle_mm_fault+0x1f58/0x3c90
[ 3266.956666][T13517]  ? vm_iomap_memory+0x190/0x190
[ 3266.961648][T13517]  handle_mm_fault+0x1b6/0x850
[ 3266.966438][T13517]  do_user_addr_fault+0x475/0x1210
[ 3266.971571][T13517]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3266.977140][T13517]  exc_page_fault+0x98/0x170
[ 3266.981742][T13517]  asm_exc_page_fault+0x26/0x30
[ 3266.986602][T13517] RIP: 0033:0x7fbb9f039570
[ 3266.991022][T13517] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3267.010652][T13517] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3267.016747][T13517] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3267.024730][T13517] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3267.032730][T13517] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3267.040721][T13517] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3267.048701][T13517] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3267.056679][T13517]  ? security_socket_create+0x3f/0xc0
[ 3267.062108][T13517]  </TASK>
[ 3267.073049][T13517] memory: usage 307200kB, limit 307200kB, failcnt 160279
[ 3267.080478][T13517] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3267.087747][T13517] Memory cgroup stats for /syz4:
[ 3267.087958][T13517] anon 118784
[ 3267.087958][T13517] file 438272
[ 3267.087958][T13517] kernel 314011648
[ 3267.087958][T13517] kernel_stack 65536
[ 3267.087958][T13517] pagetables 73728
[ 3267.087958][T13517] sec_pagetables 0
[ 3267.087958][T13517] percpu 5617024
[ 3267.087958][T13517] sock 4096
[ 3267.087958][T13517] vmalloc 0
[ 3267.087958][T13517] shmem 438272
[ 3267.087958][T13517] zswap 0
[ 3267.087958][T13517] zswapped 0
[ 3267.087958][T13517] file_mapped 393216
[ 3267.087958][T13517] file_dirty 0
[ 3267.087958][T13517] file_writeback 0
[ 3267.087958][T13517] swapcached 0
[ 3267.087958][T13517] anon_thp 0
[ 3267.087958][T13517] file_thp 0
[ 3267.087958][T13517] shmem_thp 0
[ 3267.087958][T13517] inactive_anon 106496
[ 3267.087958][T13517] active_anon 425984
[ 3267.087958][T13517] inactive_file 0
[ 3267.087958][T13517] active_file 0
[ 3267.087958][T13517] unevictable 0
[ 3267.087958][T13517] slab_reclaimable 23024
[ 3267.087958][T13517] slab_unreclaimable 308202832
[ 3267.192236][T13517] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13517,uid=0
10:33:48 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x1f000000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:48 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x1027}}], 0x2, 0x0)

10:33:48 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x7ffffff7, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:48 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000070000000000000000000500010006"], 0x1c}}, 0x0)

10:33:48 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40361)

10:33:48 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x346)

[ 3267.208432][T13517] Memory cgroup out of memory: Killed process 13517 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:48 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000090000000000000000000500010006"], 0x1c}}, 0x0)

10:33:48 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0x8dffffff, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:48 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x1100}}], 0x2, 0x0)

10:33:48 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000e0000000000000000000500010006"], 0x1c}}, 0x0)

[ 3267.379362][T13535] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
10:33:48 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x2710}}], 0x2, 0x0)

[ 3267.430139][T13535] CPU: 1 PID: 13535 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3267.438876][T13535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3267.448955][T13535] Call Trace:
[ 3267.452258][T13535]  <TASK>
[ 3267.455216][T13535]  dump_stack_lvl+0xd1/0x138
[ 3267.459932][T13535]  dump_header+0x10b/0x85f
[ 3267.464397][T13535]  oom_kill_process.cold+0x10/0x15
[ 3267.469558][T13535]  out_of_memory+0x35c/0x14a0
[ 3267.474285][T13535]  ? find_held_lock+0x2d/0x110
10:33:48 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000000706030000000f0000000000000000000500010006"], 0x1c}}, 0x0)

[ 3267.479087][T13535]  ? oom_killer_disable+0x280/0x280
[ 3267.484332][T13535]  ? find_held_lock+0x2d/0x110
[ 3267.489143][T13535]  mem_cgroup_out_of_memory+0x206/0x270
[ 3267.494729][T13535]  ? mem_cgroup_margin+0x130/0x130
[ 3267.499889][T13535]  ? lock_downgrade+0x6e0/0x6e0
[ 3267.504796][T13535]  try_charge_memcg+0xefb/0x12f0
[ 3267.509782][T13535]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3267.515805][T13535]  ? lock_downgrade+0x6e0/0x6e0
[ 3267.520698][T13535]  charge_memcg+0x90/0x3b0
[ 3267.525146][T13535]  __mem_cgroup_charge+0x2b/0x90
[ 3267.530109][T13535]  ? copy_mc_to_kernel+0x3e/0x90
[ 3267.535082][T13535]  do_wp_page+0x7ec/0x3370
[ 3267.539547][T13535]  ? lock_release+0x810/0x810
[ 3267.544254][T13535]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3267.549665][T13535]  ? do_raw_spin_lock+0x124/0x2b0
[ 3267.554728][T13535]  ? rwlock_bug.part.0+0x90/0x90
[ 3267.559702][T13535]  ? lock_chain_count+0x20/0x20
[ 3267.564596][T13535]  __handle_mm_fault+0x1f58/0x3c90
[ 3267.569764][T13535]  ? vm_iomap_memory+0x190/0x190
[ 3267.574774][T13535]  handle_mm_fault+0x1b6/0x850
[ 3267.579583][T13535]  do_user_addr_fault+0x475/0x1210
[ 3267.584737][T13535]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3267.590333][T13535]  exc_page_fault+0x98/0x170
[ 3267.595047][T13535]  asm_exc_page_fault+0x26/0x30
[ 3267.599930][T13535] RIP: 0033:0x7f36ee036645
[ 3267.604364][T13535] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
[ 3267.623985][T13535] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
[ 3267.630060][T13535] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3267.638054][T13535] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3267.646045][T13535] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
[ 3267.654026][T13535] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 000000000031daea
[ 3267.662003][T13535] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3267.670018][T13535]  </TASK>
[ 3267.685035][T13535] memory: usage 307200kB, limit 307200kB, failcnt 36330
[ 3267.692101][T13535] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3267.699100][T13535] Memory cgroup stats for /syz5:
[ 3267.699297][T13535] anon 94208
[ 3267.699297][T13535] file 425984
[ 3267.699297][T13535] kernel 314052608
[ 3267.699297][T13535] kernel_stack 65536
[ 3267.699297][T13535] pagetables 77824
[ 3267.699297][T13535] sec_pagetables 0
[ 3267.699297][T13535] percpu 5429952
[ 3267.699297][T13535] sock 0
[ 3267.699297][T13535] vmalloc 8192
[ 3267.699297][T13535] shmem 425984
[ 3267.699297][T13535] zswap 0
[ 3267.699297][T13535] zswapped 0
[ 3267.699297][T13535] file_mapped 393216
[ 3267.699297][T13535] file_dirty 0
[ 3267.699297][T13535] file_writeback 0
[ 3267.699297][T13535] swapcached 0
[ 3267.699297][T13535] anon_thp 0
[ 3267.699297][T13535] file_thp 0
[ 3267.699297][T13535] shmem_thp 0
[ 3267.699297][T13535] inactive_anon 221184
[ 3267.699297][T13535] active_anon 299008
[ 3267.699297][T13535] inactive_file 0
[ 3267.699297][T13535] active_file 0
[ 3267.699297][T13535] unevictable 0
[ 3267.699297][T13535] slab_reclaimable 218328
[ 3267.699297][T13535] slab_unreclaimable 308218520
[ 3267.796536][T13535] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13535,uid=0
[ 3267.812380][T13535] Memory cgroup out of memory: Killed process 13535 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3267.830692][T13540] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3267.850626][T13540] CPU: 0 PID: 13540 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3267.859344][T13540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3267.869425][T13540] Call Trace:
[ 3267.872722][T13540]  <TASK>
[ 3267.875650][T13540]  dump_stack_lvl+0xd1/0x138
[ 3267.880241][T13540]  dump_header+0x10b/0x85f
[ 3267.884659][T13540]  oom_kill_process.cold+0x10/0x15
[ 3267.889790][T13540]  out_of_memory+0x35c/0x14a0
[ 3267.894486][T13540]  ? oom_killer_disable+0x280/0x280
[ 3267.899724][T13540]  ? find_held_lock+0x2d/0x110
[ 3267.904529][T13540]  mem_cgroup_out_of_memory+0x206/0x270
[ 3267.910113][T13540]  ? mem_cgroup_margin+0x130/0x130
[ 3267.915254][T13540]  ? lock_downgrade+0x6e0/0x6e0
[ 3267.920109][T13540]  try_charge_memcg+0xefb/0x12f0
[ 3267.925051][T13540]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3267.931022][T13540]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3267.936739][T13540]  ? lock_downgrade+0x6e0/0x6e0
[ 3267.941768][T13540]  obj_cgroup_charge+0x2af/0x5e0
[ 3267.946714][T13540]  ? __anon_vma_prepare+0x64/0x580
[ 3267.951846][T13540]  kmem_cache_alloc+0xb5/0x430
[ 3267.956623][T13540]  __anon_vma_prepare+0x64/0x580
[ 3267.961583][T13540]  ? __pmd_alloc+0x30c/0x5d0
[ 3267.966189][T13540]  __handle_mm_fault+0x392f/0x3c90
[ 3267.971326][T13540]  ? vm_iomap_memory+0x190/0x190
[ 3267.976301][T13540]  handle_mm_fault+0x1b6/0x850
[ 3267.981086][T13540]  do_user_addr_fault+0x475/0x1210
[ 3267.986219][T13540]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3267.991789][T13540]  exc_page_fault+0x98/0x170
[ 3267.996390][T13540]  asm_exc_page_fault+0x26/0x30
[ 3268.001252][T13540] RIP: 0033:0x7fde80a2bd49
[ 3268.005691][T13540] Code: 48 8b 04 24 48 85 c0 74 17 48 8b 54 24 18 48 0f ca 48 89 54 24 18 48 83 f8 01 0f 85 9b 02 00 00 48 8b 44 24 10 48 8b 54 24 18 <48> 89 10 e9 c2 fd ff ff 48 8b 44 24 10 0f b7 10 48 8b 04 24 48 85
[ 3268.025328][T13540] RSP: 002b:00007ffd6245dbb0 EFLAGS: 00010246
[ 3268.031400][T13540] RAX: 00000000200000c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 3268.039374][T13540] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c322e8
[ 3268.047352][T13540] RBP: 00007ffd6245dca8 R08: 0000000000000000 R09: 0000000000000000
[ 3268.055347][T13540] R10: 00007fde80600068 R11: 0000000000000246 R12: 000000000031db1b
[ 3268.063321][T13540] R13: 00007ffd6245dcd0 R14: 00007fde80babf80 R15: 0000000000000032
[ 3268.071313][T13540]  </TASK>
[ 3268.080589][T13540] memory: usage 307200kB, limit 307200kB, failcnt 43516
[ 3268.088306][T13540] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3268.095304][T13540] Memory cgroup stats for /syz2:
[ 3268.095507][T13540] anon 131072
[ 3268.095507][T13540] file 307200
[ 3268.095507][T13540] kernel 314134528
[ 3268.095507][T13540] kernel_stack 65536
[ 3268.095507][T13540] pagetables 86016
[ 3268.095507][T13540] sec_pagetables 0
[ 3268.095507][T13540] percpu 5433504
[ 3268.095507][T13540] sock 0
[ 3268.095507][T13540] vmalloc 16384
[ 3268.095507][T13540] shmem 307200
[ 3268.095507][T13540] zswap 0
[ 3268.095507][T13540] zswapped 0
[ 3268.095507][T13540] file_mapped 299008
[ 3268.095507][T13540] file_dirty 0
[ 3268.095507][T13540] file_writeback 0
[ 3268.095507][T13540] swapcached 0
[ 3268.095507][T13540] anon_thp 0
[ 3268.095507][T13540] file_thp 0
[ 3268.095507][T13540] shmem_thp 0
[ 3268.095507][T13540] inactive_anon 139264
[ 3268.095507][T13540] active_anon 299008
[ 3268.095507][T13540] inactive_file 0
[ 3268.095507][T13540] active_file 0
[ 3268.095507][T13540] unevictable 0
[ 3268.095507][T13540] slab_reclaimable 112984
[ 3268.095507][T13540] slab_unreclaimable 308388280
[ 3268.194609][T13540] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=13540,uid=0
[ 3268.210944][T13540] Memory cgroup out of memory: Killed process 13540 (syz-executor.2) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[ 3268.242574][T13542] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3268.262270][T13542] CPU: 0 PID: 13542 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3268.271028][T13542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3268.281108][T13542] Call Trace:
[ 3268.284402][T13542]  <TASK>
[ 3268.287360][T13542]  dump_stack_lvl+0xd1/0x138
[ 3268.291968][T13542]  dump_header+0x10b/0x85f
[ 3268.296387][T13542]  oom_kill_process.cold+0x10/0x15
[ 3268.301503][T13542]  out_of_memory+0x35c/0x14a0
[ 3268.306191][T13542]  ? find_held_lock+0x2d/0x110
[ 3268.310956][T13542]  ? oom_killer_disable+0x280/0x280
[ 3268.316181][T13542]  ? find_held_lock+0x2d/0x110
[ 3268.320983][T13542]  mem_cgroup_out_of_memory+0x206/0x270
[ 3268.326572][T13542]  ? mem_cgroup_margin+0x130/0x130
[ 3268.331722][T13542]  ? lock_downgrade+0x6e0/0x6e0
[ 3268.336604][T13542]  try_charge_memcg+0xefb/0x12f0
[ 3268.341544][T13542]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3268.347527][T13542]  ? lock_downgrade+0x6e0/0x6e0
[ 3268.352388][T13542]  charge_memcg+0x90/0x3b0
[ 3268.356831][T13542]  __mem_cgroup_charge+0x2b/0x90
[ 3268.361809][T13542]  do_wp_page+0x7ec/0x3370
[ 3268.366254][T13542]  ? lock_release+0x810/0x810
[ 3268.370960][T13542]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3268.376368][T13542]  ? do_raw_spin_lock+0x124/0x2b0
[ 3268.381418][T13542]  ? rwlock_bug.part.0+0x90/0x90
[ 3268.386369][T13542]  ? lock_chain_count+0x20/0x20
[ 3268.391244][T13542]  __handle_mm_fault+0x1f58/0x3c90
[ 3268.396357][T13542]  ? vm_iomap_memory+0x190/0x190
[ 3268.401309][T13542]  handle_mm_fault+0x1b6/0x850
[ 3268.406099][T13542]  do_user_addr_fault+0x475/0x1210
[ 3268.411213][T13542]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3268.416781][T13542]  exc_page_fault+0x98/0x170
[ 3268.421400][T13542]  asm_exc_page_fault+0x26/0x30
[ 3268.426279][T13542] RIP: 0033:0x7fbb9f039570
[ 3268.430715][T13542] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3268.450336][T13542] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3268.456401][T13542] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3268.464378][T13542] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3268.472423][T13542] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3268.480416][T13542] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3268.488399][T13542] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3268.496364][T13542]  ? security_socket_create+0x3f/0xc0
[ 3268.501751][T13542]  </TASK>
[ 3268.507372][T13542] memory: usage 307200kB, limit 307200kB, failcnt 160398
[ 3268.515043][T13542] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3268.521996][T13542] Memory cgroup stats for /syz4:
[ 3268.522197][T13542] anon 118784
[ 3268.522197][T13542] file 438272
[ 3268.522197][T13542] kernel 314011648
[ 3268.522197][T13542] kernel_stack 65536
[ 3268.522197][T13542] pagetables 73728
[ 3268.522197][T13542] sec_pagetables 0
[ 3268.522197][T13542] percpu 5617024
[ 3268.522197][T13542] sock 4096
[ 3268.522197][T13542] vmalloc 0
[ 3268.522197][T13542] shmem 438272
[ 3268.522197][T13542] zswap 0
[ 3268.522197][T13542] zswapped 0
[ 3268.522197][T13542] file_mapped 393216
[ 3268.522197][T13542] file_dirty 0
[ 3268.522197][T13542] file_writeback 0
[ 3268.522197][T13542] swapcached 0
[ 3268.522197][T13542] anon_thp 0
[ 3268.522197][T13542] file_thp 0
[ 3268.522197][T13542] shmem_thp 0
[ 3268.522197][T13542] inactive_anon 106496
[ 3268.522197][T13542] active_anon 425984
[ 3268.522197][T13542] inactive_file 0
[ 3268.522197][T13542] active_file 0
[ 3268.522197][T13542] unevictable 0
[ 3268.522197][T13542] slab_reclaimable 23024
[ 3268.522197][T13542] slab_unreclaimable 308202832
[ 3268.619331][T13542] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13542,uid=0
10:33:49 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xe00}}], 0x2, 0x0)

10:33:49 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x3400}}], 0x2, 0x0)

10:33:49 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000600000000000000000000500010006"], 0x1c}}, 0x0)

10:33:49 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xa4d95540, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:49 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40362)

10:33:49 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x352)

[ 3268.635099][T13542] Memory cgroup out of memory: Killed process 13542 (syz-executor.4) total-vm:56588kB, anon-rss:412kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:49 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000f00000000000000000000500010006"], 0x1c}}, 0x0)

10:33:49 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x3a64}}], 0x2, 0x0)

[ 3268.698651][T13561] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
10:33:49 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xaa050000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3268.757272][T13561] CPU: 1 PID: 13561 Comm: syz-executor.2 Not tainted 6.2.0-rc3-syzkaller #0
[ 3268.766010][T13561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3268.776103][T13561] Call Trace:
[ 3268.779409][T13561]  <TASK>
[ 3268.782362][T13561]  dump_stack_lvl+0xd1/0x138
[ 3268.786992][T13561]  dump_header+0x10b/0x85f
[ 3268.791458][T13561]  oom_kill_process.cold+0x10/0x15
[ 3268.796627][T13561]  out_of_memory+0x35c/0x14a0
[ 3268.801355][T13561]  ? find_held_lock+0x2d/0x110
[ 3268.806687][T13561]  ? oom_killer_disable+0x280/0x280
[ 3268.811934][T13561]  ? find_held_lock+0x2d/0x110
[ 3268.816752][T13561]  mem_cgroup_out_of_memory+0x206/0x270
[ 3268.822343][T13561]  ? mem_cgroup_margin+0x130/0x130
[ 3268.827493][T13561]  ? lock_downgrade+0x6e0/0x6e0
[ 3268.832396][T13561]  try_charge_memcg+0xefb/0x12f0
[ 3268.837369][T13561]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3268.843372][T13561]  ? lock_downgrade+0x6e0/0x6e0
[ 3268.848245][T13561]  charge_memcg+0x90/0x3b0
[ 3268.852674][T13561]  __mem_cgroup_charge+0x2b/0x90
[ 3268.857626][T13561]  ? copy_mc_to_kernel+0x3e/0x90
[ 3268.862571][T13561]  do_wp_page+0x7ec/0x3370
[ 3268.867013][T13561]  ? lock_release+0x810/0x810
[ 3268.871696][T13561]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3268.877085][T13561]  ? do_raw_spin_lock+0x124/0x2b0
[ 3268.882122][T13561]  ? rwlock_bug.part.0+0x90/0x90
[ 3268.887074][T13561]  ? lock_chain_count+0x20/0x20
[ 3268.891957][T13561]  __handle_mm_fault+0x1f58/0x3c90
[ 3268.897106][T13561]  ? vm_iomap_memory+0x190/0x190
[ 3268.902082][T13561]  handle_mm_fault+0x1b6/0x850
[ 3268.906868][T13561]  do_user_addr_fault+0x475/0x1210
[ 3268.911994][T13561]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3268.917585][T13561]  exc_page_fault+0x98/0x170
[ 3268.922191][T13561]  asm_exc_page_fault+0x26/0x30
[ 3268.927048][T13561] RIP: 0033:0x7fde80a89e44
[ 3268.931467][T13561] Code: 85 c0 74 04 48 83 00 04 49 8d 81 e0 02 00 00 48 83 3d 4f 81 0f 00 00 49 89 81 d8 02 00 00 49 89 81 e0 02 00 00 74 08 4c 89 cf <e8> f7 50 fb ff 85 ed 0f 85 7f 00 00 00 66 0f ef c0 44 89 e6 bf 01
[ 3268.951081][T13561] RSP: 002b:00007ffd6245ddb0 EFLAGS: 00010202
10:33:49 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xb80b0000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3268.957155][T13561] RAX: 0000555555c326e0 RBX: 0000000000000000 RCX: 00007fde80a89dfb
[ 3268.965136][T13561] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555555c32400
[ 3268.973115][T13561] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555555c32400
[ 3268.981096][T13561] R10: 0000555555c326d0 R11: 0000000000000246 R12: 0000000000000001
[ 3268.989078][T13561] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffd6245de90
[ 3268.997074][T13561]  </TASK>
10:33:49 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000800100000000000000000500010006"], 0x1c}}, 0x0)

10:33:49 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xe8030000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3269.154990][T13561] memory: usage 307060kB, limit 307200kB, failcnt 43558
[ 3269.164112][T13561] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3269.171620][T13561] Memory cgroup stats for /syz2:
[ 3269.171841][T13561] anon 65536
[ 3269.171841][T13561] file 307200
[ 3269.171841][T13561] kernel 314056704
[ 3269.171841][T13561] kernel_stack 32768
[ 3269.171841][T13561] pagetables 61440
[ 3269.171841][T13561] sec_pagetables 0
[ 3269.171841][T13561] percpu 5433504
[ 3269.171841][T13561] sock 0
[ 3269.171841][T13561] vmalloc 16384
[ 3269.171841][T13561] shmem 307200
[ 3269.171841][T13561] zswap 0
[ 3269.171841][T13561] zswapped 0
[ 3269.171841][T13561] file_mapped 299008
[ 3269.171841][T13561] file_dirty 0
[ 3269.171841][T13561] file_writeback 0
[ 3269.171841][T13561] swapcached 0
[ 3269.171841][T13561] anon_thp 0
[ 3269.171841][T13561] file_thp 0
[ 3269.171841][T13561] shmem_thp 0
[ 3269.171841][T13561] inactive_anon 73728
[ 3269.171841][T13561] active_anon 299008
[ 3269.171841][T13561] inactive_file 0
[ 3269.171841][T13561] active_file 0
[ 3269.171841][T13561] unevictable 0
[ 3269.171841][T13561] slab_reclaimable 107152
[ 3269.171841][T13561] slab_unreclaimable 308378808
[ 3269.268803][T13561] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=5116,uid=0
[ 3269.287262][T13561] Memory cgroup out of memory: Killed process 5116 (syz-executor.2) total-vm:50568kB, anon-rss:364kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 3269.312373][T13560] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3269.322755][T13560] CPU: 1 PID: 13560 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3269.331462][T13560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3269.341541][T13560] Call Trace:
[ 3269.344839][T13560]  <TASK>
[ 3269.347787][T13560]  dump_stack_lvl+0xd1/0x138
[ 3269.352405][T13560]  dump_header+0x10b/0x85f
[ 3269.356864][T13560]  oom_kill_process.cold+0x10/0x15
[ 3269.362014][T13560]  out_of_memory+0x35c/0x14a0
[ 3269.366769][T13560]  ? oom_killer_disable+0x280/0x280
[ 3269.372007][T13560]  ? find_held_lock+0x2d/0x110
[ 3269.376816][T13560]  mem_cgroup_out_of_memory+0x206/0x270
[ 3269.382397][T13560]  ? mem_cgroup_margin+0x130/0x130
[ 3269.387522][T13560]  ? lock_downgrade+0x6e0/0x6e0
[ 3269.392417][T13560]  try_charge_memcg+0xefb/0x12f0
[ 3269.397390][T13560]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3269.403386][T13560]  ? lock_downgrade+0x6e0/0x6e0
[ 3269.408257][T13560]  charge_memcg+0x90/0x3b0
[ 3269.412687][T13560]  __mem_cgroup_charge+0x2b/0x90
[ 3269.417634][T13560]  ? copy_mc_to_kernel+0x3e/0x90
[ 3269.422578][T13560]  do_wp_page+0x7ec/0x3370
[ 3269.427020][T13560]  ? lock_release+0x810/0x810
[ 3269.431703][T13560]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3269.437092][T13560]  ? do_raw_spin_lock+0x124/0x2b0
[ 3269.442124][T13560]  ? rwlock_bug.part.0+0x90/0x90
[ 3269.447067][T13560]  ? lock_chain_count+0x20/0x20
[ 3269.451930][T13560]  __handle_mm_fault+0x1f58/0x3c90
[ 3269.457061][T13560]  ? vm_iomap_memory+0x190/0x190
[ 3269.462035][T13560]  handle_mm_fault+0x1b6/0x850
[ 3269.466820][T13560]  do_user_addr_fault+0x475/0x1210
[ 3269.471949][T13560]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3269.477529][T13560]  exc_page_fault+0x98/0x170
[ 3269.482147][T13560]  asm_exc_page_fault+0x26/0x30
[ 3269.487007][T13560] RIP: 0033:0x7f36ee036645
[ 3269.491437][T13560] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 1a 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 73 17 00 48 8b 53 10 4c 8d 81 00
[ 3269.511049][T13560] RSP: 002b:00007ffc6b5fd880 EFLAGS: 00010206
[ 3269.517120][T13560] RAX: 0000000000000003 RBX: 00007f36ee1abf80 RCX: 00007f36ee1a80c0
[ 3269.525091][T13560] RDX: 00007f36ee1a80c0 RSI: 0000000000000080 RDI: 00007f36ee1abf80
[ 3269.533076][T13560] RBP: 00007f36ee1abf80 R08: 00007ffc6b6c3080 R09: 0000000000000000
[ 3269.541047][T13560] R10: 00007ffc6b5fd990 R11: 0000000000000246 R12: 000000000031e196
[ 3269.549024][T13560] R13: 00007ffc6b5fd990 R14: 00007f36ee1abf80 R15: 0000000000000032
[ 3269.557013][T13560]  </TASK>
[ 3269.568105][T13560] memory: usage 307200kB, limit 307200kB, failcnt 36420
[ 3269.575330][T13560] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3269.582356][T13560] Memory cgroup stats for /syz5:
[ 3269.582568][T13560] anon 94208
[ 3269.582568][T13560] file 425984
[ 3269.582568][T13560] kernel 314052608
[ 3269.582568][T13560] kernel_stack 65536
[ 3269.582568][T13560] pagetables 77824
[ 3269.582568][T13560] sec_pagetables 0
[ 3269.582568][T13560] percpu 5429952
[ 3269.582568][T13560] sock 0
[ 3269.582568][T13560] vmalloc 8192
[ 3269.582568][T13560] shmem 425984
[ 3269.582568][T13560] zswap 0
[ 3269.582568][T13560] zswapped 0
[ 3269.582568][T13560] file_mapped 393216
[ 3269.582568][T13560] file_dirty 0
[ 3269.582568][T13560] file_writeback 0
[ 3269.582568][T13560] swapcached 0
[ 3269.582568][T13560] anon_thp 0
[ 3269.582568][T13560] file_thp 0
[ 3269.582568][T13560] shmem_thp 0
[ 3269.582568][T13560] inactive_anon 221184
[ 3269.582568][T13560] active_anon 299008
[ 3269.582568][T13560] inactive_file 0
[ 3269.582568][T13560] active_file 0
[ 3269.582568][T13560] unevictable 0
[ 3269.582568][T13560] slab_reclaimable 218328
[ 3269.582568][T13560] slab_unreclaimable 308218520
[ 3269.710355][T13560] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13560,uid=0
[ 3269.726878][T13560] Memory cgroup out of memory: Killed process 13560 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3269.778911][T13564] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3269.791287][T13564] CPU: 1 PID: 13564 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3269.799999][T13564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3269.810078][T13564] Call Trace:
[ 3269.813373][T13564]  <TASK>
[ 3269.816319][T13564]  dump_stack_lvl+0xd1/0x138
[ 3269.820943][T13564]  dump_header+0x10b/0x85f
[ 3269.825406][T13564]  oom_kill_process.cold+0x10/0x15
[ 3269.830587][T13564]  out_of_memory+0x35c/0x14a0
[ 3269.835307][T13564]  ? find_held_lock+0x2d/0x110
[ 3269.840106][T13564]  ? oom_killer_disable+0x280/0x280
[ 3269.845345][T13564]  ? find_held_lock+0x2d/0x110
[ 3269.850153][T13564]  mem_cgroup_out_of_memory+0x206/0x270
[ 3269.855742][T13564]  ? mem_cgroup_margin+0x130/0x130
[ 3269.860891][T13564]  ? lock_downgrade+0x6e0/0x6e0
[ 3269.865785][T13564]  try_charge_memcg+0xefb/0x12f0
[ 3269.870757][T13564]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3269.876773][T13564]  ? lock_downgrade+0x6e0/0x6e0
[ 3269.881663][T13564]  charge_memcg+0x90/0x3b0
[ 3269.886111][T13564]  __mem_cgroup_charge+0x2b/0x90
[ 3269.891079][T13564]  do_wp_page+0x7ec/0x3370
[ 3269.895544][T13564]  ? lock_release+0x810/0x810
[ 3269.900247][T13564]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3269.905660][T13564]  ? do_raw_spin_lock+0x124/0x2b0
[ 3269.910712][T13564]  ? rwlock_bug.part.0+0x90/0x90
[ 3269.915680][T13564]  ? lock_chain_count+0x20/0x20
[ 3269.920565][T13564]  __handle_mm_fault+0x1f58/0x3c90
[ 3269.925719][T13564]  ? vm_iomap_memory+0x190/0x190
[ 3269.930719][T13564]  handle_mm_fault+0x1b6/0x850
[ 3269.935524][T13564]  do_user_addr_fault+0x475/0x1210
[ 3269.940678][T13564]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3269.946270][T13564]  exc_page_fault+0x98/0x170
[ 3269.950887][T13564]  asm_exc_page_fault+0x26/0x30
[ 3269.955759][T13564] RIP: 0033:0x7fbb9f039570
[ 3269.960191][T13564] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3269.979824][T13564] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3269.985917][T13564] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3269.993903][T13564] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3270.001874][T13564] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3270.009868][T13564] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3270.017858][T13564] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3270.025848][T13564]  ? security_socket_create+0x3f/0xc0
[ 3270.031277][T13564]  </TASK>
[ 3270.043815][T13564] memory: usage 307200kB, limit 307200kB, failcnt 160534
[ 3270.051010][T13564] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3270.058936][T13564] Memory cgroup stats for /syz4:
[ 3270.059108][T13564] anon 118784
[ 3270.059108][T13564] file 438272
[ 3270.059108][T13564] kernel 314011648
[ 3270.059108][T13564] kernel_stack 65536
[ 3270.059108][T13564] pagetables 73728
[ 3270.059108][T13564] sec_pagetables 0
[ 3270.059108][T13564] percpu 5617024
[ 3270.059108][T13564] sock 4096
[ 3270.059108][T13564] vmalloc 0
[ 3270.059108][T13564] shmem 438272
[ 3270.059108][T13564] zswap 0
[ 3270.059108][T13564] zswapped 0
[ 3270.059108][T13564] file_mapped 393216
[ 3270.059108][T13564] file_dirty 0
[ 3270.059108][T13564] file_writeback 0
[ 3270.059108][T13564] swapcached 0
[ 3270.059108][T13564] anon_thp 0
[ 3270.059108][T13564] file_thp 0
[ 3270.059108][T13564] shmem_thp 0
[ 3270.059108][T13564] inactive_anon 131072
[ 3270.059108][T13564] active_anon 425984
[ 3270.059108][T13564] inactive_file 0
[ 3270.059108][T13564] active_file 0
[ 3270.059108][T13564] unevictable 0
[ 3270.059108][T13564] slab_reclaimable 23024
[ 3270.059108][T13564] slab_unreclaimable 308202640
10:33:51 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xe00}}], 0x2, 0x0)

10:33:51 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x3a65}}], 0x2, 0x0)

10:33:51 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xeffdffff, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:51 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000300000000000000000500010006"], 0x1c}}, 0x0)

10:33:51 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40363)

10:33:51 executing program 2:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x35a)

[ 3270.166658][T13564] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13564,uid=0
[ 3270.183094][T13564] Memory cgroup out of memory: Killed process 13564 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:51 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000e80300000000000000000500010006"], 0x1c}}, 0x0)

10:33:51 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xf4010000, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3270.267591][  T541] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
10:33:51 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x3f00}}], 0x2, 0x0)

10:33:51 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000500000000000000000500010006"], 0x1c}}, 0x0)

[ 3270.399536][T13589] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3270.472736][T13589] CPU: 0 PID: 13589 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3270.481483][T13589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3270.491564][T13589] Call Trace:
[ 3270.494866][T13589]  <TASK>
[ 3270.497820][T13589]  dump_stack_lvl+0xd1/0x138
[ 3270.502453][T13589]  dump_header+0x10b/0x85f
[ 3270.506916][T13589]  oom_kill_process.cold+0x10/0x15
[ 3270.512079][T13589]  out_of_memory+0x35c/0x14a0
[ 3270.516811][T13589]  ? find_held_lock+0x2d/0x110
[ 3270.521619][T13589]  ? oom_killer_disable+0x280/0x280
[ 3270.526875][T13589]  ? find_held_lock+0x2d/0x110
[ 3270.531683][T13589]  mem_cgroup_out_of_memory+0x206/0x270
[ 3270.537267][T13589]  ? mem_cgroup_margin+0x130/0x130
[ 3270.542402][T13589]  ? lock_downgrade+0x6e0/0x6e0
[ 3270.547298][T13589]  try_charge_memcg+0xefb/0x12f0
[ 3270.552277][T13589]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3270.558284][T13589]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3270.564043][T13589]  ? lock_downgrade+0x6e0/0x6e0
[ 3270.568922][T13589]  ? lock_downgrade+0x6e0/0x6e0
[ 3270.573814][T13589]  obj_cgroup_charge+0x2af/0x5e0
[ 3270.578795][T13589]  kmem_cache_alloc_lru+0x145/0x760
[ 3270.584017][T13589]  ? sock_alloc_inode+0x27/0x1d0
[ 3270.589003][T13589]  sock_alloc_inode+0x27/0x1d0
[ 3270.593799][T13589]  ? sock_free_inode+0x30/0x30
[ 3270.598592][T13589]  alloc_inode+0x61/0x230
[ 3270.602967][T13589]  new_inode_pseudo+0x17/0x80
[ 3270.607693][T13589]  sock_alloc+0x40/0x260
[ 3270.612007][T13589]  __sock_create+0xbd/0x790
[ 3270.616554][T13589]  __sys_socket+0x133/0x250
10:33:51 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x4000}}], 0x2, 0x0)

[ 3270.621094][T13589]  ? __sys_socket_file+0x1f0/0x1f0
[ 3270.626263][T13589]  __x64_sys_socket+0x73/0xb0
[ 3270.630984][T13589]  do_syscall_64+0x39/0xb0
[ 3270.635444][T13589]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3270.641372][T13589] RIP: 0033:0x7f36ee08c0c9
[ 3270.645809][T13589] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3270.665446][T13589] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3270.673892][T13589] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3270.681886][T13589] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3270.689884][T13589] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3270.697876][T13589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3270.705871][T13589] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3270.713891][T13589]  </TASK>
10:33:51 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xf5ffffff, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

[ 3270.720631][  T541] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3270.738997][T13589] memory: usage 307200kB, limit 307200kB, failcnt 36523
[ 3270.755488][T13589] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3270.787336][T13589] Memory cgroup stats for /syz5:
[ 3270.787562][T13589] anon 94208
[ 3270.787562][T13589] file 425984
[ 3270.787562][T13589] kernel 314052608
[ 3270.787562][T13589] kernel_stack 65536
[ 3270.787562][T13589] pagetables 77824
[ 3270.787562][T13589] sec_pagetables 0
[ 3270.787562][T13589] percpu 5429952
[ 3270.787562][T13589] sock 0
[ 3270.787562][T13589] vmalloc 8192
[ 3270.787562][T13589] shmem 425984
[ 3270.787562][T13589] zswap 0
[ 3270.787562][T13589] zswapped 0
[ 3270.787562][T13589] file_mapped 393216
[ 3270.787562][T13589] file_dirty 0
[ 3270.787562][T13589] file_writeback 0
[ 3270.787562][T13589] swapcached 0
[ 3270.787562][T13589] anon_thp 0
[ 3270.787562][T13589] file_thp 0
[ 3270.787562][T13589] shmem_thp 0
[ 3270.787562][T13589] inactive_anon 221184
[ 3270.787562][T13589] active_anon 299008
[ 3270.787562][T13589] inactive_file 0
[ 3270.787562][T13589] active_file 0
[ 3270.787562][T13589] unevictable 0
[ 3270.787562][T13589] slab_reclaimable 216400
[ 3270.787562][T13589] slab_unreclaimable 308217872
[ 3270.909263][  T541] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3270.938661][T13589] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13585,uid=0
[ 3270.956834][T13589] Memory cgroup out of memory: Killed process 13585 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3271.019345][  T541] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3271.051530][T13591] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3271.088491][T13591] CPU: 0 PID: 13591 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3271.097213][T13591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3271.107304][T13591] Call Trace:
[ 3271.110606][T13591]  <TASK>
[ 3271.113562][T13591]  dump_stack_lvl+0xd1/0x138
[ 3271.118187][T13591]  dump_header+0x10b/0x85f
[ 3271.122643][T13591]  oom_kill_process.cold+0x10/0x15
[ 3271.127800][T13591]  out_of_memory+0x35c/0x14a0
[ 3271.132525][T13591]  ? find_held_lock+0x2d/0x110
[ 3271.137333][T13591]  ? oom_killer_disable+0x280/0x280
[ 3271.142571][T13591]  ? find_held_lock+0x2d/0x110
[ 3271.147381][T13591]  mem_cgroup_out_of_memory+0x206/0x270
[ 3271.152966][T13591]  ? mem_cgroup_margin+0x130/0x130
[ 3271.158121][T13591]  ? lock_downgrade+0x6e0/0x6e0
[ 3271.163021][T13591]  try_charge_memcg+0xefb/0x12f0
[ 3271.167997][T13591]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3271.174020][T13591]  ? lock_downgrade+0x6e0/0x6e0
[ 3271.178908][T13591]  charge_memcg+0x90/0x3b0
[ 3271.183355][T13591]  __mem_cgroup_charge+0x2b/0x90
[ 3271.188334][T13591]  do_wp_page+0x7ec/0x3370
[ 3271.192796][T13591]  ? lock_release+0x810/0x810
[ 3271.197500][T13591]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3271.202919][T13591]  ? do_raw_spin_lock+0x124/0x2b0
[ 3271.207975][T13591]  ? rwlock_bug.part.0+0x90/0x90
[ 3271.212943][T13591]  ? lock_chain_count+0x20/0x20
[ 3271.217830][T13591]  __handle_mm_fault+0x1f58/0x3c90
[ 3271.222993][T13591]  ? vm_iomap_memory+0x190/0x190
[ 3271.228000][T13591]  handle_mm_fault+0x1b6/0x850
[ 3271.232808][T13591]  do_user_addr_fault+0x475/0x1210
[ 3271.237960][T13591]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3271.243551][T13591]  exc_page_fault+0x98/0x170
[ 3271.248173][T13591]  asm_exc_page_fault+0x26/0x30
[ 3271.253049][T13591] RIP: 0033:0x7fbb9f039570
[ 3271.257485][T13591] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3271.277113][T13591] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3271.283186][T13591] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3271.291167][T13591] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3271.299162][T13591] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3271.307135][T13591] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3271.315109][T13591] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3271.323089][T13591]  ? security_socket_create+0x3f/0xc0
[ 3271.328502][T13591]  </TASK>
[ 3271.394588][T13591] memory: usage 307200kB, limit 307200kB, failcnt 160663
[ 3271.424344][T13591] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3271.431248][T13591] Memory cgroup stats for /syz4:
[ 3271.431418][T13591] anon 118784
[ 3271.431418][T13591] file 438272
[ 3271.431418][T13591] kernel 314011648
[ 3271.431418][T13591] kernel_stack 65536
[ 3271.431418][T13591] pagetables 73728
[ 3271.431418][T13591] sec_pagetables 0
[ 3271.431418][T13591] percpu 5617024
[ 3271.431418][T13591] sock 4096
[ 3271.431418][T13591] vmalloc 0
[ 3271.431418][T13591] shmem 438272
[ 3271.431418][T13591] zswap 0
[ 3271.431418][T13591] zswapped 0
[ 3271.431418][T13591] file_mapped 393216
[ 3271.431418][T13591] file_dirty 0
[ 3271.431418][T13591] file_writeback 0
[ 3271.431418][T13591] swapcached 0
[ 3271.431418][T13591] anon_thp 0
[ 3271.431418][T13591] file_thp 0
[ 3271.431418][T13591] shmem_thp 0
[ 3271.431418][T13591] inactive_anon 131072
[ 3271.431418][T13591] active_anon 425984
[ 3271.431418][T13591] inactive_file 0
[ 3271.431418][T13591] active_file 0
[ 3271.431418][T13591] unevictable 0
[ 3271.431418][T13591] slab_reclaimable 23024
[ 3271.431418][T13591] slab_unreclaimable 308202640
[ 3272.104532][T13591] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13591,uid=0
[ 3272.144439][T13591] Memory cgroup out of memory: Killed process 13591 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
10:33:53 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xe00}}], 0x2, 0x0)

10:33:53 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000070603000000000600000000000000000500010006"], 0x1c}}, 0x0)

10:33:53 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000001800)={0xa, 0x4e22, 0xf7ffff7f, @mcast1={0xff, 0x2}, 0x41}, 0x1c)

10:33:53 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f00000005c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x0, 0x0, @mcast2, 0xfff}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x4800}}], 0x2, 0x0)

10:33:53 executing program 5:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x40364)

[ 3272.614223][T13623] syz-executor.5 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3272.707480][T13623] CPU: 0 PID: 13623 Comm: syz-executor.5 Not tainted 6.2.0-rc3-syzkaller #0
[ 3272.716218][T13623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3272.726289][T13623] Call Trace:
[ 3272.729589][T13623]  <TASK>
[ 3272.732536][T13623]  dump_stack_lvl+0xd1/0x138
[ 3272.737165][T13623]  dump_header+0x10b/0x85f
[ 3272.741635][T13623]  oom_kill_process.cold+0x10/0x15
[ 3272.746796][T13623]  out_of_memory+0x35c/0x14a0
[ 3272.751521][T13623]  ? find_held_lock+0x2d/0x110
[ 3272.756321][T13623]  ? oom_killer_disable+0x280/0x280
[ 3272.761541][T13623]  ? find_held_lock+0x2d/0x110
[ 3272.766356][T13623]  mem_cgroup_out_of_memory+0x206/0x270
[ 3272.771962][T13623]  ? mem_cgroup_margin+0x130/0x130
[ 3272.777114][T13623]  ? lock_downgrade+0x6e0/0x6e0
[ 3272.782020][T13623]  try_charge_memcg+0xefb/0x12f0
[ 3272.787001][T13623]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3272.793011][T13623]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 3272.798782][T13623]  ? lock_downgrade+0x6e0/0x6e0
[ 3272.803664][T13623]  ? lock_downgrade+0x6e0/0x6e0
[ 3272.808565][T13623]  obj_cgroup_charge+0x2af/0x5e0
[ 3272.813541][T13623]  kmem_cache_alloc_lru+0x145/0x760
[ 3272.818762][T13623]  ? sock_alloc_inode+0x27/0x1d0
[ 3272.823743][T13623]  sock_alloc_inode+0x27/0x1d0
[ 3272.828538][T13623]  ? sock_free_inode+0x30/0x30
[ 3272.833334][T13623]  alloc_inode+0x61/0x230
[ 3272.837703][T13623]  new_inode_pseudo+0x17/0x80
[ 3272.842416][T13623]  sock_alloc+0x40/0x260
[ 3272.846691][T13623]  __sock_create+0xbd/0x790
[ 3272.851240][T13623]  __sys_socket+0x133/0x250
[ 3272.855781][T13623]  ? __sys_socket_file+0x1f0/0x1f0
[ 3272.860945][T13623]  __x64_sys_socket+0x73/0xb0
[ 3272.865668][T13623]  do_syscall_64+0x39/0xb0
[ 3272.870121][T13623]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3272.876044][T13623] RIP: 0033:0x7f36ee08c0c9
[ 3272.880485][T13623] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 3272.900121][T13623] RSP: 002b:00007f36ecbfe168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 3272.908650][T13623] RAX: ffffffffffffffda RBX: 00007f36ee1abf80 RCX: 00007f36ee08c0c9
[ 3272.916651][T13623] RDX: 0000000000000000 RSI: 0000000000000803 RDI: 0000000000000010
[ 3272.924641][T13623] RBP: 00007f36ee0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 3272.932633][T13623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3272.940627][T13623] R13: 00007ffc6b5fd82f R14: 00007f36ecbfe300 R15: 0000000000022000
[ 3272.948649][T13623]  </TASK>
[ 3272.968406][T13623] memory: usage 307200kB, limit 307200kB, failcnt 36642
[ 3272.977910][T13623] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3272.985664][T13623] Memory cgroup stats for /syz5:
[ 3272.985875][T13623] anon 94208
[ 3272.985875][T13623] file 425984
[ 3272.985875][T13623] kernel 314052608
[ 3272.985875][T13623] kernel_stack 65536
[ 3272.985875][T13623] pagetables 77824
[ 3272.985875][T13623] sec_pagetables 0
[ 3272.985875][T13623] percpu 5429952
[ 3272.985875][T13623] sock 0
[ 3272.985875][T13623] vmalloc 8192
[ 3272.985875][T13623] shmem 425984
[ 3272.985875][T13623] zswap 0
[ 3272.985875][T13623] zswapped 0
[ 3272.985875][T13623] file_mapped 393216
[ 3272.985875][T13623] file_dirty 0
[ 3272.985875][T13623] file_writeback 0
[ 3272.985875][T13623] swapcached 0
[ 3272.985875][T13623] anon_thp 0
[ 3272.985875][T13623] file_thp 0
[ 3272.985875][T13623] shmem_thp 0
[ 3272.985875][T13623] inactive_anon 221184
[ 3272.985875][T13623] active_anon 299008
[ 3272.985875][T13623] inactive_file 0
[ 3272.985875][T13623] active_file 0
[ 3272.985875][T13623] unevictable 0
[ 3272.985875][T13623] slab_reclaimable 216400
[ 3272.985875][T13623] slab_unreclaimable 308217872
[ 3273.086349][T13623] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz5,mems_allowed=0-1,oom_memcg=/syz5,task_memcg=/syz5,task=syz-executor.5,pid=13617,uid=0
[ 3273.110225][T13623] Memory cgroup out of memory: Killed process 13617 (syz-executor.5) total-vm:54540kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 3273.151298][T13623] socket: no more sockets
[ 3273.152431][T13614] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 3273.182630][T13614] CPU: 0 PID: 13614 Comm: syz-executor.4 Not tainted 6.2.0-rc3-syzkaller #0
[ 3273.191348][T13614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3273.201420][T13614] Call Trace:
[ 3273.204715][T13614]  <TASK>
[ 3273.207665][T13614]  dump_stack_lvl+0xd1/0x138
[ 3273.212294][T13614]  dump_header+0x10b/0x85f
[ 3273.216753][T13614]  oom_kill_process.cold+0x10/0x15
[ 3273.221907][T13614]  out_of_memory+0x35c/0x14a0
[ 3273.226638][T13614]  ? oom_killer_disable+0x280/0x280
[ 3273.231881][T13614]  ? find_held_lock+0x2d/0x110
[ 3273.236685][T13614]  mem_cgroup_out_of_memory+0x206/0x270
[ 3273.242280][T13614]  ? mem_cgroup_margin+0x130/0x130
[ 3273.247408][T13614]  ? lock_downgrade+0x6e0/0x6e0
[ 3273.252277][T13614]  try_charge_memcg+0xefb/0x12f0
[ 3273.257226][T13614]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 3273.263239][T13614]  ? lock_downgrade+0x6e0/0x6e0
[ 3273.268111][T13614]  charge_memcg+0x90/0x3b0
[ 3273.272574][T13614]  __mem_cgroup_charge+0x2b/0x90
[ 3273.277528][T13614]  do_wp_page+0x7ec/0x3370
[ 3273.281966][T13614]  ? lock_release+0x810/0x810
[ 3273.286652][T13614]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 3273.292037][T13614]  ? do_raw_spin_lock+0x124/0x2b0
[ 3273.297068][T13614]  ? rwlock_bug.part.0+0x90/0x90
[ 3273.302017][T13614]  ? lock_chain_count+0x20/0x20
[ 3273.306878][T13614]  __handle_mm_fault+0x1f58/0x3c90
[ 3273.312018][T13614]  ? vm_iomap_memory+0x190/0x190
[ 3273.317013][T13614]  handle_mm_fault+0x1b6/0x850
[ 3273.321798][T13614]  do_user_addr_fault+0x475/0x1210
[ 3273.326923][T13614]  ? rcu_read_lock_sched_held+0x3e/0x70
[ 3273.332494][T13614]  exc_page_fault+0x98/0x170
[ 3273.337109][T13614]  asm_exc_page_fault+0x26/0x30
[ 3273.341981][T13614] RIP: 0033:0x7fbb9f039570
[ 3273.346399][T13614] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 3273.366016][T13614] RSP: 002b:00007fff7101e7b0 EFLAGS: 00010246
[ 3273.372091][T13614] RAX: 00000000213ae1be RBX: 00007fbb9f1ac018 RCX: 0000001b32720000
[ 3273.380068][T13614] RDX: 0000000000000000 RSI: 0000001b32720018 RDI: 000000000a2028c9
[ 3273.388043][T13614] RBP: 00000000213ae1be R08: 00000000000001be R09: 00000000213ae1c2
[ 3273.396109][T13614] R10: 00007fff7101e970 R11: 0000000000000246 R12: 00007fbb9f1a0000
[ 3273.404103][T13614] R13: 0000000000000001 R14: 0000000000000008 R15: ffffffff83c7e71f
[ 3273.412082][T13614]  ? security_socket_create+0x3f/0xc0
[ 3273.417494][T13614]  </TASK>
[ 3273.463094][T13614] memory: usage 307200kB, limit 307200kB, failcnt 160721
[ 3273.472594][T13614] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 3273.481569][T13614] Memory cgroup stats for /syz4:
[ 3273.481747][T13614] anon 118784
[ 3273.481747][T13614] file 438272
[ 3273.481747][T13614] kernel 314011648
[ 3273.481747][T13614] kernel_stack 65536
[ 3273.481747][T13614] pagetables 73728
[ 3273.481747][T13614] sec_pagetables 0
[ 3273.481747][T13614] percpu 5617024
[ 3273.481747][T13614] sock 4096
[ 3273.481747][T13614] vmalloc 0
[ 3273.481747][T13614] shmem 438272
[ 3273.481747][T13614] zswap 0
[ 3273.481747][T13614] zswapped 0
[ 3273.481747][T13614] file_mapped 393216
[ 3273.481747][T13614] file_dirty 0
[ 3273.481747][T13614] file_writeback 0
[ 3273.481747][T13614] swapcached 0
[ 3273.481747][T13614] anon_thp 0
[ 3273.481747][T13614] file_thp 0
[ 3273.481747][T13614] shmem_thp 0
[ 3273.481747][T13614] inactive_anon 131072
[ 3273.481747][T13614] active_anon 425984
[ 3273.481747][T13614] inactive_file 0
[ 3273.481747][T13614] active_file 0
[ 3273.481747][T13614] unevictable 0
[ 3273.481747][T13614] slab_reclaimable 23024
[ 3273.481747][T13614] slab_unreclaimable 308202640
[ 3273.578952][T13614] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13614,uid=0
[ 3273.595558][T13614] Memory cgroup out of memory: Killed process 13614 (syz-executor.4) total-vm:56588kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[ 3273.736057][  T561] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3274.076357][ T5129] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 3274.085699][ T5129] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 3274.093429][ T5129] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 3274.101607][ T5129] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 3274.110237][ T5129] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 3274.117983][ T5129] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 3276.214733][ T5129] Bluetooth: hci3: command 0x0409 tx timeout
[ 3278.088511][  T541] device hsr_slave_0 left promiscuous mode
[ 3278.098118][  T541] device hsr_slave_1 left promiscuous mode
[ 3278.105731][  T541] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3278.115750][  T541] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3278.127782][  T541] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3278.137297][  T541] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3278.152552][  T541] device bridge_slave_1 left promiscuous mode
[ 3278.160394][  T541] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3278.170727][  T541] device bridge_slave_0 left promiscuous mode
[ 3278.177108][  T541] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3278.300049][  T541] device veth1_macvtap left promiscuous mode
[ 3278.302395][ T5129] Bluetooth: hci3: command 0x041b tx timeout
[ 3278.317075][  T541] device veth0_macvtap left promiscuous mode
[ 3278.324434][  T541] device veth1_vlan left promiscuous mode
[ 3280.374911][ T5129] Bluetooth: hci3: command 0x040f tx timeout
[ 3282.455377][ T5129] Bluetooth: hci3: command 0x0419 tx timeout
[ 3290.489193][  T558] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3298.055137][T13643] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3305.104542][T32549] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3321.413141][  T561] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3327.496870][ T1199] ieee802154 phy1 wpan1: encryption failed: -22
[ 3330.055457][  T561] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3337.094524][  T561] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3340.115564][ T5117] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 3340.124557][ T5117] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 3340.132304][ T5117] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 3340.144084][ T5117] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 3340.152960][ T5117] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 3340.160934][ T5117] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 3342.214641][ T5129] Bluetooth: hci6: command 0x0409 tx timeout
[ 3344.294592][ T5129] Bluetooth: hci6: command 0x041b tx timeout
[ 3346.374455][ T5129] Bluetooth: hci6: command 0x040f tx timeout
[ 3348.454488][ T5129] Bluetooth: hci6: command 0x0419 tx timeout
[ 3352.337588][  T558] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3362.054694][T32549] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3369.094916][  T558] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3383.262472][  T561] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3388.936007][ T1199] ieee802154 phy1 wpan1: encryption failed: -22
[ 3394.065795][  T558] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3401.094551][T13643] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3401.254458][ T5117] Bluetooth: hci3: command 0x0406 tx timeout
[ 3406.433997][ T5117] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 3406.442840][ T5117] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 3406.451531][ T5117] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 3406.462306][ T5117] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 3406.473254][ T5117] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 3408.545862][ T5117] Bluetooth: hci7: command 0x0409 tx timeout
[ 3410.614496][ T5117] Bluetooth: hci7: command 0x041b tx timeout
[ 3412.694464][ T5117] Bluetooth: hci7: command 0x040f tx timeout
[ 3414.187375][  T558] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3414.774452][ T5117] Bluetooth: hci7: command 0x0419 tx timeout
[ 3426.054564][  T547] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3433.095000][ T9895] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 3435.014728][   T28] INFO: task kworker/1:0:22 blocked for more than 143 seconds.
[ 3435.022330][   T28]       Not tainted 6.2.0-rc3-syzkaller #0
[ 3435.029057][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3435.038133][   T28] task:kworker/1:0     state:D stack:25480 pid:22    ppid:2      flags:0x00004000
[ 3435.047681][   T28] Workqueue: ipv6_addrconf addrconf_verify_work
[ 3435.053959][   T28] Call Trace:
[ 3435.057835][   T28]  <TASK>
[ 3435.060794][   T28]  __schedule+0xb8a/0x5450
[ 3435.065621][   T28]  ? wq_worker_sleeping+0x1e9/0x250
[ 3435.070863][   T28]  ? io_schedule_timeout+0x150/0x150
[ 3435.077217][   T28]  ? mark_held_locks+0x9f/0xe0
[ 3435.082024][   T28]  ? rwlock_bug.part.0+0x90/0x90
[ 3435.087462][   T28]  ? _raw_spin_unlock_irq+0x23/0x50
[ 3435.092701][   T28]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3435.098383][   T28]  schedule+0xde/0x1b0
[ 3435.102493][   T28]  schedule_preempt_disabled+0x13/0x20
[ 3435.111255][   T28]  __mutex_lock+0xa48/0x1360
[ 3435.117271][   T28]  ? addrconf_verify_work+0x12/0x30
[ 3435.122518][   T28]  ? mutex_lock_io_nested+0x11a0/0x11a0
[ 3435.128576][   T28]  ? lock_release+0x810/0x810
[ 3435.133305][   T28]  addrconf_verify_work+0x12/0x30
[ 3435.138850][   T28]  process_one_work+0x9bf/0x1710
[ 3435.143827][   T28]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 3435.149575][   T28]  ? rwlock_bug.part.0+0x90/0x90
[ 3435.154799][   T28]  ? _raw_spin_lock_irq+0x45/0x50
[ 3435.159869][   T28]  worker_thread+0x669/0x1090
[ 3435.165131][   T28]  ? process_one_work+0x1710/0x1710
[ 3435.170390][   T28]  kthread+0x2e8/0x3a0
[ 3435.175378][   T28]  ? kthread_complete_and_exit+0x40/0x40
[ 3435.181768][   T28]  ret_from_fork+0x1f/0x30
[ 3435.186621][   T28]  </TASK>
[ 3435.189751][   T28] INFO: task dhcpcd:4645 blocked for more than 143 seconds.
[ 3435.197546][   T28]       Not tainted 6.2.0-rc3-syzkaller #0
[ 3435.203359][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3435.212418][   T28] task:dhcpcd          state:D stack:22928 pid:4645  ppid:4644   flags:0x00000000
[ 3435.222495][   T28] Call Trace:
[ 3435.226082][   T28]  <TASK>
[ 3435.229053][   T28]  __schedule+0xb8a/0x5450
[ 3435.233501][   T28]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3435.239742][   T28]  ? io_schedule_timeout+0x150/0x150
[ 3435.245178][   T28]  ? __mutex_lock+0xa43/0x1360
[ 3435.249997][   T28]  schedule+0xde/0x1b0
[ 3435.254109][   T28]  schedule_preempt_disabled+0x13/0x20
[ 3435.259812][   T28]  __mutex_lock+0xa48/0x1360
[ 3435.264927][   T28]  ? rtnetlink_rcv_msg+0x3e9/0xca0
[ 3435.270086][   T28]  ? mutex_lock_io_nested+0x11a0/0x11a0
[ 3435.276839][   T28]  ? rtnetlink_rcv_msg+0x3b3/0xca0
[ 3435.282951][   T28]  rtnetlink_rcv_msg+0x3e9/0xca0
[ 3435.288073][   T28]  ? rtnl_getlink+0xae0/0xae0
[ 3435.292771][   T28]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3435.298852][   T28]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3435.304986][   T28]  ? kasan_save_stack+0x35/0x40
[ 3435.309868][   T28]  ? kasan_save_stack+0x22/0x40
[ 3435.314946][   T28]  netlink_rcv_skb+0x165/0x440
[ 3435.319767][   T28]  ? rtnl_getlink+0xae0/0xae0
[ 3435.324590][   T28]  ? netlink_ack+0x1370/0x1370
[ 3435.329394][   T28]  ? netlink_deliver_tap+0x1b1/0xc50
[ 3435.334850][   T28]  netlink_unicast+0x547/0x7f0
[ 3435.339876][   T28]  ? netlink_attachskb+0x890/0x890
[ 3435.345174][   T28]  ? __virt_addr_valid+0x61/0x2e0
[ 3435.350234][   T28]  ? __phys_addr_symbol+0x30/0x70
[ 3435.355363][   T28]  ? __check_object_size+0x2e2/0x5a0
[ 3435.360689][   T28]  netlink_sendmsg+0x91b/0xe10
[ 3435.365620][   T28]  ? netlink_unicast+0x7f0/0x7f0
[ 3435.370618][   T28]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3435.376024][   T28]  ? netlink_unicast+0x7f0/0x7f0
[ 3435.380990][   T28]  sock_sendmsg+0xd3/0x120
[ 3435.387044][   T28]  ____sys_sendmsg+0x712/0x8c0
[ 3435.391853][   T28]  ? copy_msghdr_from_user+0xfc/0x150
[ 3435.397381][   T28]  ? kernel_sendmsg+0x50/0x50
[ 3435.402087][   T28]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 3435.408051][   T28]  ___sys_sendmsg+0x110/0x1b0
[ 3435.412758][   T28]  ? do_recvmmsg+0x6e0/0x6e0
[ 3435.417533][   T28]  ? _raw_read_unlock_irqrestore+0x54/0x70
[ 3435.423381][   T28]  ? aa_af_perm+0x240/0x240
[ 3435.428123][   T28]  ? netlink_autobind.isra.0+0x580/0x580
[ 3435.433893][   T28]  ? __fget_light+0x20a/0x270
[ 3435.438706][   T28]  __sys_sendmsg+0xf7/0x1c0
[ 3435.443251][   T28]  ? __sys_sendmsg_sock+0x40/0x40
[ 3435.448494][   T28]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3435.454522][   T28]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3435.459749][   T28]  do_syscall_64+0x39/0xb0
[ 3435.464200][   T28]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3435.470215][   T28] RIP: 0033:0x7f0ef4d46163
[ 3435.474791][   T28] RSP: 002b:00007ffe335a9348 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 3435.483220][   T28] RAX: ffffffffffffffda RBX: 00007f0ef4c4e6c8 RCX: 00007f0ef4d46163
[ 3435.491958][   T28] RDX: 0000000000000000 RSI: 00007ffe335bd4f8 RDI: 0000000000000005
[ 3435.500942][   T28] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007ffe335bd4f8
[ 3435.509056][   T28] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff
[ 3435.517252][   T28] R13: 00007ffe335bd4f8 R14: 0000000000000048 R15: 0000000000000001
[ 3435.525413][   T28]  </TASK>
[ 3435.533881][   T28] INFO: task kworker/1:7:5206 blocked for more than 143 seconds.
[ 3435.541708][   T28]       Not tainted 6.2.0-rc3-syzkaller #0
[ 3435.547624][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3435.556382][   T28] task:kworker/1:7     state:D stack:25440 pid:5206  ppid:2      flags:0x00004000
[ 3435.565703][   T28] Workqueue: events linkwatch_event
[ 3435.570943][   T28] Call Trace:
[ 3435.574222][   T28]  <TASK>
[ 3435.577349][   T28]  __schedule+0xb8a/0x5450
[ 3435.581826][   T28]  ? wq_worker_sleeping+0x1e9/0x250
[ 3435.587151][   T28]  ? io_schedule_timeout+0x150/0x150
[ 3435.592927][   T28]  ? mark_held_locks+0x9f/0xe0
[ 3435.597839][   T28]  ? rwlock_bug.part.0+0x90/0x90
[ 3435.602810][   T28]  ? _raw_spin_unlock_irq+0x23/0x50
[ 3435.609025][   T28]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3435.614353][   T28]  schedule+0xde/0x1b0
[ 3435.618486][   T28]  schedule_preempt_disabled+0x13/0x20
[ 3435.623986][   T28]  __mutex_lock+0xa48/0x1360
[ 3435.628724][   T28]  ? linkwatch_event+0xf/0x70
[ 3435.633428][   T28]  ? mutex_lock_io_nested+0x11a0/0x11a0
[ 3435.639167][   T28]  ? lock_release+0x810/0x810
[ 3435.643889][   T28]  linkwatch_event+0xf/0x70
[ 3435.648571][   T28]  process_one_work+0x9bf/0x1710
[ 3435.653555][   T28]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 3435.659711][   T28]  ? rwlock_bug.part.0+0x90/0x90
[ 3435.664758][   T28]  ? _raw_spin_lock_irq+0x45/0x50
[ 3435.669824][   T28]  worker_thread+0x669/0x1090
[ 3435.674652][   T28]  ? process_one_work+0x1710/0x1710
[ 3435.679884][   T28]  kthread+0x2e8/0x3a0
[ 3435.683974][   T28]  ? kthread_complete_and_exit+0x40/0x40
[ 3435.689800][   T28]  ret_from_fork+0x1f/0x30
[ 3435.695031][   T28]  </TASK>
[ 3435.698139][   T28] INFO: task kworker/1:3:6266 blocked for more than 144 seconds.
[ 3435.706257][   T28]       Not tainted 6.2.0-rc3-syzkaller #0
[ 3435.712075][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3435.721168][   T28] task:kworker/1:3     state:D stack:25480 pid:6266  ppid:2      flags:0x00004000
[ 3435.734408][   T28] Workqueue: events switchdev_deferred_process_work
[ 3435.741103][   T28] Call Trace:
[ 3435.744913][   T28]  <TASK>
[ 3435.747873][   T28]  __schedule+0xb8a/0x5450
[ 3435.752347][   T28]  ? wq_worker_sleeping+0x1e9/0x250
[ 3435.758079][   T28]  ? io_schedule_timeout+0x150/0x150
[ 3435.763410][   T28]  ? mark_held_locks+0x9f/0xe0
[ 3435.768558][   T28]  ? rwlock_bug.part.0+0x90/0x90
[ 3435.773535][   T28]  ? _raw_spin_unlock_irq+0x23/0x50
[ 3435.778909][   T28]  ? lockdep_hardirqs_on+0x7d/0x100
[ 3435.784129][   T28]  schedule+0xde/0x1b0
[ 3435.788294][   T28]  schedule_preempt_disabled+0x13/0x20
[ 3435.794219][   T28]  __mutex_lock+0xa48/0x1360
[ 3435.798973][   T28]  ? switchdev_deferred_process_work+0xe/0x20
[ 3435.805160][   T28]  ? mutex_lock_io_nested+0x11a0/0x11a0
[ 3435.810896][   T28]  ? lock_downgrade+0x6e0/0x6e0
[ 3435.815934][   T28]  switchdev_deferred_process_work+0xe/0x20
[ 3435.821851][   T28]  process_one_work+0x9bf/0x1710
[ 3435.827905][   T28]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 3435.833326][   T28]  ? rwlock_bug.part.0+0x90/0x90
[ 3435.838387][   T28]  ? _raw_spin_lock_irq+0x45/0x50
[ 3435.843435][   T28]  worker_thread+0x669/0x1090
[ 3435.848253][   T28]  ? __kthread_parkme+0x163/0x220
[ 3435.853293][   T28]  ? process_one_work+0x1710/0x1710
[ 3435.858609][   T28]  kthread+0x2e8/0x3a0
[ 3435.862703][   T28]  ? kthread_complete_and_exit+0x40/0x40
[ 3435.868449][   T28]  ret_from_fork+0x1f/0x30
[ 3435.872900][   T28]  </TASK>
[ 3435.878707][   T28] INFO: task syz-executor.2:13638 blocked for more than 144 seconds.
[ 3435.894335][   T28]       Not tainted 6.2.0-rc3-syzkaller #0
[ 3435.900496][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3435.909995][   T28] task:syz-executor.2  state:D stack:27568 pid:13638 ppid:1      flags:0x00000004
[ 3435.922074][   T28] Call Trace:
[ 3435.926963][   T28]  <TASK>
[ 3435.929930][   T28]  __schedule+0xb8a/0x5450
[ 3435.934762][   T28]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3435.940799][   T28]  ? find_held_lock+0x20/0x110
[ 3435.946129][   T28]  ? io_schedule_timeout+0x150/0x150
[ 3435.951465][   T28]  ? __mutex_lock+0xa43/0x1360
[ 3435.956717][   T28]  schedule+0xde/0x1b0
[ 3435.960831][   T28]  schedule_preempt_disabled+0x13/0x20
[ 3435.966702][   T28]  __mutex_lock+0xa48/0x1360
[ 3435.971341][   T28]  ? rtnetlink_rcv_msg+0x3e9/0xca0
[ 3435.977129][   T28]  ? mutex_lock_io_nested+0x11a0/0x11a0
[ 3435.982727][   T28]  ? rtnetlink_rcv_msg+0x3b3/0xca0
[ 3435.988374][   T28]  rtnetlink_rcv_msg+0x3e9/0xca0
[ 3435.993379][   T28]  ? rtnl_getlink+0xae0/0xae0
[ 3435.998895][   T28]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3436.005208][   T28]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 3436.011219][   T28]  ? kasan_save_stack+0x35/0x40
[ 3436.016452][   T28]  ? kasan_save_stack+0x22/0x40
[ 3436.021345][   T28]  netlink_rcv_skb+0x165/0x440
[ 3436.029262][   T28]  ? rtnl_getlink+0xae0/0xae0
[ 3436.033978][   T28]  ? netlink_ack+0x1370/0x1370
[ 3436.039230][   T28]  ? netlink_deliver_tap+0x1b1/0xc50
[ 3436.044831][   T28]  netlink_unicast+0x547/0x7f0
[ 3436.050133][   T28]  ? netlink_attachskb+0x890/0x890
[ 3436.055906][   T28]  ? __virt_addr_valid+0x61/0x2e0
[ 3436.060986][   T28]  ? __phys_addr_symbol+0x30/0x70
[ 3436.066423][   T28]  ? __check_object_size+0x2e2/0x5a0
[ 3436.071761][   T28]  netlink_sendmsg+0x91b/0xe10
[ 3436.077036][   T28]  ? netlink_unicast+0x7f0/0x7f0
[ 3436.082035][   T28]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 3436.087741][   T28]  ? netlink_unicast+0x7f0/0x7f0
[ 3436.092725][   T28]  sock_sendmsg+0xd3/0x120
[ 3436.097570][   T28]  __sys_sendto+0x23a/0x340
[ 3436.102542][   T28]  ? __ia32_sys_getpeername+0xb0/0xb0
[ 3436.108333][   T28]  ? __up_read+0x192/0x720
[ 3436.112814][   T28]  ? up_write+0x520/0x520
[ 3436.117513][   T28]  ? handle_mm_fault+0x25b/0x850
[ 3436.122488][   T28]  __x64_sys_sendto+0xe1/0x1b0
[ 3436.127599][   T28]  ? syscall_enter_from_user_mode+0x26/0xb0
[ 3436.133534][   T28]  do_syscall_64+0x39/0xb0
[ 3436.140489][   T28]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 3436.148110][   T28] RIP: 0033:0x7f5fe723e0fc
[ 3436.152654][   T28] RSP: 002b:00007ffd7aabfdd0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 3436.161611][   T28] RAX: ffffffffffffffda RBX: 00007f5fe7ed4620 RCX: 00007f5fe723e0fc
[ 3436.169904][   T28] RDX: 0000000000000028 RSI: 00007f5fe7ed4670 RDI: 0000000000000003
[ 3436.178564][   T28] RBP: 0000000000000000 R08: 00007ffd7aabfe24 R09: 000000000000000c
[ 3436.186870][   T28] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 3436.195166][   T28] R13: 00007f5fe7ed4670 R14: 0000000000000003 R15: 0000000000000000
[ 3436.203616][   T28]  </TASK>
[ 3436.207265][   T28] 
[ 3436.207265][   T28] Showing all locks held in the system:
[ 3436.215644][   T28] 1 lock held by rcu_tasks_kthre/12:
[ 3436.220958][   T28]  #0: ffffffff8c790f30 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc70
[ 3436.231942][   T28] 1 lock held by rcu_tasks_trace/13:
[ 3436.237506][   T28]  #0: ffffffff8c790c30 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc70
[ 3436.251409][   T28] 3 locks held by kworker/1:0/22:
[ 3436.256727][   T28]  #0: ffff8880271cad38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x86d/0x1710
[ 3436.268142][   T28]  #1: ffffc900001c7da8 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x8a1/0x1710
[ 3436.281552][   T28]  #2: ffffffff8e0bdd68 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x12/0x30
[ 3436.291413][   T28] 1 lock held by khungtaskd/28:
[ 3436.304807][   T28]  #0: ffffffff8c791a80 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x57/0x264
[ 3436.316857][   T28] 1 lock held by dhcpcd/4645:
[ 3436.321552][   T28]  #0: ffffffff8e0bdd68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x3e9/0xca0
[ 3436.331469][   T28] 2 locks held by getty/4753:
[ 3436.336435][   T28]  #0: ffff888027c71098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x26/0x80
[ 3436.346599][   T28]  #1: ffffc900015a02f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xef4/0x13e0
[ 3436.359734][   T28] 3 locks held by kworker/1:7/5206:
[ 3436.365660][   T28]  #0: ffff888012470d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x86d/0x1710
[ 3436.376556][   T28]  #1: ffffc9000492fda8 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x8a1/0x1710
[ 3436.387280][   T28]  #2: ffffffff8e0bdd68 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xf/0x70
[ 3436.396592][   T28] 3 locks held by kworker/0:0/23720:
[ 3436.401899][   T28]  #0: ffff8880271cad38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x86d/0x1710
[ 3436.413522][   T28]  #1: ffffc90004effda8 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x8a1/0x1710
[ 3436.427023][   T28]  #2: ffffffff8e0bdd68 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x12/0x30
[ 3436.436881][   T28] 3 locks held by kworker/1:3/6266:
[ 3436.442098][   T28]  #0: ffff888012470d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x86d/0x1710
[ 3436.452833][   T28]  #1: ffffc9000423fda8 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x8a1/0x1710
[ 3436.463532][   T28]  #2: ffffffff8e0bdd68 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[ 3436.476956][   T28] 3 locks held by kworker/u4:6/9895:
[ 3436.482258][   T28]  #0: ffff8880b993b598 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2f/0x120
[ 3436.492662][   T28]  #1: ffffc9000b417da8 ((work_completion)(&(&bat_priv->nc.work)->work)){+.+.}-{0:0}, at: process_one_work+0x8a1/0x1710
[ 3436.505692][   T28]  #2: ffffffff8c791a80 (rcu_read_lock){....}-{1:2}, at: batadv_nc_worker+0xf7/0xfa0
[ 3436.516107][   T28] 5 locks held by kworker/u4:4/541:
[ 3436.521326][   T28]  #0: ffff8880125df938 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x86d/0x1710
[ 3436.532068][   T28]  #1: ffffc90016567da8 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x8a1/0x1710
[ 3436.542702][   T28]  #2: ffffffff8e0aa0d0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x9f/0xb10
[ 3436.552396][   T28]  #3: ffffffff8e0bdd68 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0x92/0x590
[ 3436.562633][   T28]  #4: ffffffff8c79c600 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x48/0x6d0
[ 3436.572871][   T28] 1 lock held by syz-executor.2/13638:
[ 3436.578615][   T28]  #0: ffffffff8e0bdd68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x3e9/0xca0
[ 3436.590997][   T28] 1 lock held by syz-executor.2/13645:
[ 3436.597581][   T28]  #0: ffffffff8e0bdd68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x3e9/0xca0
[ 3436.607408][   T28] 1 lock held by syz-executor.2/13650:
[ 3436.613312][   T28]  #0: ffffffff8e0bdd68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x3e9/0xca0
[ 3436.623224][   T28] 
[ 3436.625870][   T28] =============================================
[ 3436.625870][   T28] 
[ 3436.634731][   T28] NMI backtrace for cpu 0
[ 3436.639079][   T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.2.0-rc3-syzkaller #0
[ 3436.647149][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3436.657206][   T28] Call Trace:
[ 3436.660482][   T28]  <TASK>
[ 3436.663410][   T28]  dump_stack_lvl+0xd1/0x138
[ 3436.668013][   T28]  nmi_cpu_backtrace.cold+0x24/0x18a
[ 3436.673313][   T28]  nmi_trigger_cpumask_backtrace+0x333/0x3c0
[ 3436.679296][   T28]  ? lapic_can_unplug_cpu+0x80/0x80
[ 3436.684498][   T28]  watchdog+0xc75/0xfc0
[ 3436.688668][   T28]  ? proc_dohung_task_timeout_secs+0x80/0x80
[ 3436.694662][   T28]  kthread+0x2e8/0x3a0
[ 3436.698733][   T28]  ? kthread_complete_and_exit+0x40/0x40
[ 3436.704376][   T28]  ret_from_fork+0x1f/0x30
[ 3436.708823][   T28]  </TASK>
[ 3436.712548][   T28] Sending NMI from CPU 0 to CPUs 1:
[ 3436.718170][    C1] NMI backtrace for cpu 1
[ 3436.718180][    C1] CPU: 1 PID: 9895 Comm: kworker/u4:6 Not tainted 6.2.0-rc3-syzkaller #0
[ 3436.718199][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3436.718211][    C1] Workqueue: bat_events batadv_nc_worker
[ 3436.718242][    C1] RIP: 0010:__rcu_read_lock+0xb7/0xf0
[ 3436.718266][    C1] Code: 00 00 65 48 8b 1c 25 00 ac 03 00 48 8d bb 3c 04 00 00 48 89 fa 48 c1 ea 03 0f b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 04 <84> d2 75 15 8b 83 3c 04 00 00 3d ff ff ff 3f 7f 03 5b 5d c3 0f 0b
[ 3436.718283][    C1] RSP: 0018:ffffc9000b417c70 EFLAGS: 00000202
[ 3436.718297][    C1] RAX: 0000000000000007 RBX: ffff888165609d40 RCX: ffff88802663f300
[ 3436.718310][    C1] RDX: 0000000000000000 RSI: ffffffff8994d1f9 RDI: ffff88816560a17c
[ 3436.718322][    C1] RBP: ffff888165609d40 R08: 0000000000000004 R09: 0000000000000293
[ 3436.718333][    C1] R10: 0000000000000400 R11: 0000000000000000 R12: 0000000000000002
[ 3436.718344][    C1] R13: 0000000000000000 R14: dffffc0000000000 R15: 0000000000000293
[ 3436.718356][    C1] FS:  0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 3436.718381][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3436.718393][    C1] CR2: 000000c003406c88 CR3: 000000000c48e000 CR4: 00000000003506e0
[ 3436.718405][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 3436.718415][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 3436.718426][    C1] Call Trace:
[ 3436.718431][    C1]  <TASK>
[ 3436.718438][    C1]  batadv_nc_worker+0x10c/0xfa0
[ 3436.718473][    C1]  process_one_work+0x9bf/0x1710
[ 3436.718498][    C1]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 3436.718522][    C1]  ? rwlock_bug.part.0+0x90/0x90
[ 3436.718540][    C1]  ? _raw_spin_lock_irq+0x45/0x50
[ 3436.718565][    C1]  worker_thread+0x669/0x1090
[ 3436.718590][    C1]  ? __kthread_parkme+0x163/0x220
[ 3436.718607][    C1]  ? process_one_work+0x1710/0x1710
[ 3436.718630][    C1]  kthread+0x2e8/0x3a0
[ 3436.718646][    C1]  ? kthread_complete_and_exit+0x40/0x40
[ 3436.718666][    C1]  ret_from_fork+0x1f/0x30
[ 3436.718696][    C1]  </TASK>
[ 3436.741890][   T28] Kernel panic - not syncing: hung_task: blocked tasks
[ 3436.741903][   T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.2.0-rc3-syzkaller #0
[ 3436.741924][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 3436.741937][   T28] Call Trace:
[ 3436.741943][   T28]  <TASK>
[ 3436.741951][   T28]  dump_stack_lvl+0xd1/0x138
[ 3436.741984][   T28]  panic+0x2cc/0x626
[ 3436.742080][   T28]  ? panic_print_sys_info.part.0+0x110/0x110
[ 3436.742114][   T28]  ? preempt_schedule_thunk+0x1a/0x20
[ 3436.742151][   T28]  ? watchdog.cold+0x130/0x158
[ 3436.742183][   T28]  watchdog.cold+0x141/0x158
[ 3436.742212][   T28]  ? proc_dohung_task_timeout_secs+0x80/0x80
[ 3436.742249][   T28]  kthread+0x2e8/0x3a0
[ 3436.742270][   T28]  ? kthread_complete_and_exit+0x40/0x40
[ 3436.742296][   T28]  ret_from_fork+0x1f/0x30
[ 3436.742339][   T28]  </TASK>
[ 3436.747215][   T28] Kernel Offset: disabled
[ 3437.013188][   T28] Rebooting in 86400 seconds..