669.282800][ T7811] R10: 00000000020c1c10 R11: 0000000000000246 R12: 0000000000000001 [ 1669.291014][ T7811] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffcc9750ff0 [ 1669.310346][T32106] BPF:type_id=3113514752 index_type_id=6815744 nr_elems=0 [ 1669.329666][T32110] BPF:btf_header not found [ 1669.330343][T32106] BPF: [ 1669.344495][T32106] BPF:size != 0 [ 1669.353444][T32106] BPF: [ 1669.353444][T32106] [ 1669.379240][T32112] BPF:[1] ARRAY (anon) [ 1669.392064][T32112] BPF:type_id=3113514752 index_type_id=6815744 nr_elems=0 [ 1669.408512][T32112] BPF: [ 1669.411510][T32112] BPF:size != 0 [ 1669.415998][T32112] BPF: [ 1669.415998][T32112] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b900006c00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1669.468842][ T7811] memory: usage 307200kB, limit 307200kB, failcnt 4846 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_WAIT_VBLANK(r4, 0xc018643a, &(0x7f0000000080)={0x10000000, 0x7f, 0x7}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r5, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$KVM_GET_SREGS(r5, 0x8138ae83, &(0x7f0000000180)) ioctl$sock_rose_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x1ff, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={'rose', 0x0}, 0x1, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]}) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x6c00000000000000) [ 1669.516184][ T7811] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1669.590605][ T7811] Memory cgroup stats for /syz1: [ 1669.590774][ T7811] anon 228429824 [ 1669.590774][ T7811] file 0 [ 1669.590774][ T7811] kernel_stack 7925760 [ 1669.590774][ T7811] slab 13459456 [ 1669.590774][ T7811] sock 0 [ 1669.590774][ T7811] shmem 0 [ 1669.590774][ T7811] file_mapped 0 [ 1669.590774][ T7811] file_dirty 0 [ 1669.590774][ T7811] file_writeback 0 [ 1669.590774][ T7811] anon_thp 169869312 [ 1669.590774][ T7811] inactive_anon 0 [ 1669.590774][ T7811] active_anon 228433920 [ 1669.590774][ T7811] inactive_file 0 [ 1669.590774][ T7811] active_file 36864 [ 1669.590774][ T7811] unevictable 0 [ 1669.590774][ T7811] slab_reclaimable 1892352 [ 1669.590774][ T7811] slab_unreclaimable 11567104 [ 1669.590774][ T7811] pgfault 203280 [ 1669.590774][ T7811] pgmajfault 0 [ 1669.590774][ T7811] workingset_refault 231 [ 1669.590774][ T7811] workingset_activate 165 [ 1669.590774][ T7811] workingset_nodereclaim 0 [ 1669.590774][ T7811] pgrefill 24793 [ 1669.590774][ T7811] pgscan 25112 [ 1669.590774][ T7811] pgsteal 666 [ 1669.706505][T32128] BPF:[1] ARRAY (anon) [ 1669.723627][T32128] BPF:type_id=3113514752 index_type_id=7077888 nr_elems=0 [ 1669.751913][T32128] BPF: [ 1669.754863][T32128] BPF:size != 0 [ 1669.758447][T32128] BPF: [ 1669.758447][T32128] [ 1669.766516][ T7811] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=19498,uid=0 [ 1669.784548][T32132] BPF:[1] ARRAY (anon) [ 1669.798327][ T7811] Memory cgroup out of memory: Killed process 19498 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1669.817841][T32132] BPF:type_id=3113514752 index_type_id=7077888 nr_elems=0 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x7400000000000000) [ 1669.863629][T32132] BPF: [ 1669.866483][T32132] BPF:size != 0 [ 1669.869985][T32132] BPF: [ 1669.869985][T32132] [ 1669.943578][T32137] BPF:[1] Invalid kind:0 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b900007400"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) r1 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) ioctl$NBD_SET_SIZE(r1, 0xab02, 0x9) write(r1, &(0x7f0000000000)="b6", 0xfffffe7e) r2 = openat$cgroup_ro(r1, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000840)='/dev/sequencer\x00', 0x8001, 0x0) bind$xdp(r1, &(0x7f0000000880)={0x2c, 0x2, 0x0, 0xe, r3}, 0x10) r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/zero\x00', 0x408040, 0x0) r5 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000340)='SEG6\x00') r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r6, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r7, 0x5}}, 0x18) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r8, 0x407, 0x0) write(r8, &(0x7f0000000340), 0x41395527) setsockopt$RDS_RECVERR(r8, 0x114, 0x5, &(0x7f00000009c0)=0x1, 0x4) connect$rds(r4, &(0x7f00000008c0)={0x2, 0x4e24, @remote}, 0x10) sendmsg$SEG6_CMD_DUMPHMAC(r4, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="01a643d2", @ANYRES16=r5, @ANYPTR=&(0x7f0000000980)=ANY=[@ANYRES32, @ANYRESOCT=r6, @ANYRES32=r1, @ANYPTR64=&(0x7f0000000a00)=ANY=[@ANYRESHEX=r2, @ANYRESHEX, @ANYRESOCT, @ANYRESHEX, @ANYBLOB="b88d64c9a7a1740cae7fe8a7a8ec5680ef9d8e445537dbeb9a8bcafb3b2e8530bcc8e301970c9054bb09244a9400061227a515cb1e819839b0218b22811755c74a5817779a2cba7f5817e40c9ab2061dd513ebd2af9360d4c87a9613f5f6d2dbf7a8598dd2b553b501738ed687367734817ab825"], @ANYRESHEX=r1, @ANYRES16=r3]], 0x3}, 0x1, 0x0, 0x0, 0x4000}, 0x8000) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) r9 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x0, 0x200004) r10 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000200)='NET_DM\x00') readv(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000500)=""/248, 0xf8}, {&(0x7f0000000600)=""/180, 0xb4}, {&(0x7f00000006c0)=""/164, 0xa4}, {&(0x7f00000007c0)=""/85, 0x55}], 0x4) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r4, 0x6, 0x21, &(0x7f0000000480)="3a0593a0bb9e55bfcdece37d20434436", 0x10) sendmsg$NET_DM_CMD_START(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40100400}, 0xc, &(0x7f0000000240)={&(0x7f0000000780)={0xfe86, r10, 0x0, 0x70bd25, 0x25dfdbff, {}, [""]}, 0x14}}, 0x8000000) sendmsg$NET_DM_CMD_STOP(r9, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0xffffffbb, r10, 0x100, 0x70bd2a, 0x25dfdbfd, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x44}, 0x800) [ 1670.032590][T32139] BPF:[1] Invalid kind:0 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1670.152201][T32150] BPF:[1] ARRAY (anon) 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r8, 0x8982, &(0x7f0000000300)={0x2, 'syz_tun\x00', {0x800}, 0x37}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1670.185473][T32150] BPF:type_id=3113514752 index_type_id=7602176 nr_elems=0 [ 1670.217710][T32150] BPF: [ 1670.239665][T32150] BPF:size != 0 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x7a00000000000000) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1670.264459][T32159] BPF:[1] Invalid kind:0 [ 1670.264828][T32150] BPF: [ 1670.264828][T32150] [ 1670.290638][T32160] BPF:[1] Invalid kind:0 [ 1670.330924][T32165] BPF:btf_header not found [ 1670.348568][T32169] BPF:[1] ARRAY (anon) [ 1670.405124][T32173] BPF:[1] Invalid kind:0 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1670.435839][T32169] BPF:type_id=3113514752 index_type_id=7602176 nr_elems=0 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x8000000000000000) [ 1670.478413][T32169] BPF: [ 1670.489710][T32169] BPF:size != 0 [ 1670.505001][T32169] BPF: [ 1670.505001][T32169] [ 1670.619406][T32187] BPF:[1] Invalid kind:0 [ 1670.675484][T32189] BPF:[1] Invalid kind:0 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b900007a00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1670.818397][T32200] BPF:[1] ARRAY (anon) [ 1670.823013][T32200] BPF:type_id=3113514752 index_type_id=7995392 nr_elems=0 [ 1670.860248][T32200] BPF: [ 1670.867277][T32200] BPF:size != 0 [ 1670.877078][T32200] BPF: [ 1670.877078][T32200] 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_WAIT_VBLANK(r4, 0xc018643a, &(0x7f0000000080)={0x10000000, 0x7f, 0x7}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r5, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$KVM_GET_SREGS(r5, 0x8138ae83, &(0x7f0000000180)) ioctl$sock_rose_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000002c0)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x1ff, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={'rose', 0x0}, 0x1, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]}) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0xa87be81700c9ffff) [ 1670.900915][T32201] BPF:[1] ARRAY (anon) [ 1670.913325][T32201] BPF:type_id=3113514752 index_type_id=7995392 nr_elems=0 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000002580)=[{&(0x7f0000000080)=""/136, 0x88}, {&(0x7f0000000480)=""/4096, 0x1000}, {&(0x7f0000000180)=""/64, 0x40}, {&(0x7f00000001c0)=""/159, 0x9f}, {&(0x7f0000000280)=""/47, 0x2f}, {&(0x7f00000002c0)=""/201, 0xc9}, {&(0x7f00000003c0)=""/3, 0x3}, {&(0x7f0000002640)=""/4096, 0x1000}, {&(0x7f0000002480)=""/221, 0xdd}], 0x9) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) r1 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r1, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r1, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$KVM_SET_NR_MMU_PAGES(r1, 0xae44, 0x1) [ 1670.963345][T32201] BPF: [ 1670.977548][T32204] BPF:[1] Invalid kind:0 [ 1670.984247][T32201] BPF:size != 0 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1671.015606][T32201] BPF: [ 1671.015606][T32201] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000f800"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r8, 0x8982, &(0x7f0000000300)={0x2, 'syz_tun\x00', {0x800}, 0x37}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1671.272268][T32225] BPF:[1] ARRAY (anon) [ 1671.276917][T32225] BPF:type_id=3113514752 index_type_id=16252928 nr_elems=0 [ 1671.285094][T32225] BPF: [ 1671.291039][T32225] BPF:size != 0 [ 1671.294909][T32225] BPF: [ 1671.294909][T32225] [ 1671.302901][T32227] BPF:[1] ARRAY (anon) [ 1671.307446][T32227] BPF:type_id=3113514752 index_type_id=16252928 nr_elems=0 [ 1671.318171][T32227] BPF: 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0xfdfdffff00000000) [ 1671.321560][T32227] BPF:size != 0 [ 1671.346400][T32227] BPF: [ 1671.346400][T32227] [ 1671.360469][T32230] BPF:[1] Invalid kind:0 [ 1671.363678][T32229] BPF:btf_header not found 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000300"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) timerfd_settime(r0, 0x1, &(0x7f0000000080)={{0x0, 0x989680}}, &(0x7f00000000c0)) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r2, 0x5}}, 0x18) r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000480)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_DELETE(r3, &(0x7f00000004c0)={0x41, 0x6, 0x0, {0x2, 0x0, 0x18, 0x0, '/dev/infiniband/rdma_cm\x00'}}, 0x41) vmsplice(r1, &(0x7f00000003c0)=[{&(0x7f0000000100)="741404259074f039ffb48c4c7346b4292f2bfcc678b3d569b1aa67e03025d22ebc197d9c", 0x24}, {&(0x7f0000000180)="a9c5a6a8a48988a58bf6628c991db23d35a97e6c3b8d914754d3119aba7a7b0ab7c00f5cf8e13d2eaf929f4c2f44a03bc69324f6798d26606795931eb445116515de335c407fd471cc64b8b14dd6b140c84209dab749504c48d546c5274699e18da4673c2adfd3a976b848d1a1fbbd8f11069b795b6812d70ccb6e641e54ce7794850a183baf80b7d8a05fe070e6c019da689366b58b75a5a8188ca99e1e634170d2279deaa871c8c3ed3f83296faa7fd0b3c831470b45043d6c0bee278c8a63e7e16414a7971daa0c7b3ccdf19d5d42639c", 0xd2}, {&(0x7f0000000280)="93e2ea89ee6b5050245efa38bd186e8bca9a7efb73e2b25c0823b5e9af2216f85c8b323b9772ded166f5adff9a4c9e363879d2020e003bde5914a75c", 0x3c}, {&(0x7f00000002c0)="edaf3ea9087e34d93421fa2c28fe2d728ad11569ee592fda5785c0761b16471f790fbe9f2e501590f499e74531bf4d069067d88c98bcdb9298097ed830f2aad26f3b0fa77583acff6336672c4fcf1fe882515c52f8ca3fe395abcc477b1bde1c2ebfbe0598d1ae6b6249550c2fac293f0ba92ead36ee3ae1a66fa3637c2bf199578b0371656d012635c0ad666b44b096f3c1fb8980ac71dab6f9fa106e81b679784e5abbeb961d7c2313e607a9b9e91e38fb0a6ce7387c5c53f7c425f4c93cfa07dab4f0a08f843f42dd808a1c969124f3a29fcedfd6", 0xd6}], 0x4, 0xa) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) connect$inet6(r4, &(0x7f0000000400)={0xa, 0x4e22, 0xca25, @mcast1, 0x8}, 0x1c) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1671.672234][T32250] BPF:[1] Invalid kind:0 [ 1671.673512][T32252] BPF:[1] ARRAY (anon) [ 1671.726755][T32252] BPF:type_id=3113514752 index_type_id=50331648 nr_elems=0 [ 1671.761464][T32252] BPF: [ 1671.783731][T32252] BPF:size != 0 [ 1671.825568][T32252] BPF: [ 1671.825568][T32252] [ 1671.874027][T32266] BPF:[1] ARRAY (anon) [ 1671.883977][T32267] BPF:[1] Invalid kind:0 [ 1671.905646][T32266] BPF:type_id=3113514752 index_type_id=50331648 nr_elems=0 [ 1671.942337][T32266] BPF: [ 1671.950123][T32266] BPF:size != 0 [ 1671.959641][T32266] BPF: [ 1671.959641][T32266] 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_WAIT_VBLANK(r4, 0xc018643a, &(0x7f0000000080)={0x10000000, 0x7f, 0x7}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r5, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$KVM_GET_SREGS(r5, 0x8138ae83, &(0x7f0000000180)) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0xff00000000000000) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000002"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000500"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1672.168339][T32279] BPF:[1] ARRAY (anon) [ 1672.181629][T32279] BPF:type_id=3113514752 index_type_id=83886080 nr_elems=0 [ 1672.189339][T32279] BPF: [ 1672.226195][T32279] BPF:size != 0 [ 1672.235346][T32279] BPF: [ 1672.235346][T32279] [ 1672.258156][T32280] BPF:Invalid string section [ 1672.259284][T32287] BPF:[1] ARRAY (anon) 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000003"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0xffffc90017e87ba8) [ 1672.270444][T32287] BPF:type_id=3113514752 index_type_id=83886080 nr_elems=0 [ 1672.284196][T32287] BPF: [ 1672.289238][T32287] BPF:size != 0 [ 1672.296152][T32287] BPF: [ 1672.296152][T32287] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000600"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1672.466442][ T7811] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=0 [ 1672.497162][ T7811] CPU: 0 PID: 7811 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1672.505815][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1672.507388][T32301] BPF:[1] ARRAY (anon) [ 1672.516057][ T7811] Call Trace: [ 1672.516131][ T7811] dump_stack+0x11d/0x181 [ 1672.516152][ T7811] dump_header+0xaa/0x39c [ 1672.516174][ T7811] oom_kill_process.cold+0x10/0x15 [ 1672.516200][ T7811] out_of_memory+0x231/0xa60 [ 1672.541944][ T7811] mem_cgroup_out_of_memory+0x128/0x150 [ 1672.547534][ T7811] try_charge+0xb6c/0xbf0 [ 1672.552645][ T7811] ? __rcu_read_unlock+0x66/0x3d0 [ 1672.558353][ T7811] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1672.564004][ T7811] __memcg_kmem_charge+0xcf/0x1b0 [ 1672.569042][ T7811] __alloc_pages_nodemask+0x26c/0x310 [ 1672.574427][ T7811] alloc_pages_current+0xd1/0x170 [ 1672.579445][ T7811] pte_alloc_one+0x18/0x50 [ 1672.583992][ T7811] __pte_alloc+0x2d/0x220 [ 1672.588315][ T7811] copy_page_range+0x135a/0x19b0 [ 1672.593253][ T7811] ? __read_once_size.constprop.0+0x12/0x20 [ 1672.599150][ T7811] ? __vma_link_rb+0x3f4/0x440 [ 1672.603931][ T7811] dup_mm+0x74a/0xba0 [ 1672.607929][ T7811] copy_process+0x3138/0x3c40 [ 1672.612715][ T7811] ? do_wp_page+0x19f/0xeb0 [ 1672.617247][ T7811] _do_fork+0xfe/0x7a0 [ 1672.621349][ T7811] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1672.627288][ T7811] ? __read_once_size+0x5a/0xe0 [ 1672.632144][ T7811] __x64_sys_clone+0x130/0x170 [ 1672.637008][ T7811] do_syscall_64+0xcc/0x3a0 [ 1672.641590][ T7811] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1672.647685][ T7811] RIP: 0033:0x458eda [ 1672.651676][ T7811] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00 [ 1672.671564][ T7811] RSP: 002b:00007ffcc9750f60 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 1672.679975][ T7811] RAX: ffffffffffffffda RBX: 00007ffcc9750f60 RCX: 0000000000458eda [ 1672.688094][ T7811] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1672.696081][ T7811] RBP: 00007ffcc9750fa0 R08: 0000000000000001 R09: 00000000020c1940 [ 1672.704168][ T7811] R10: 00000000020c1c10 R11: 0000000000000246 R12: 0000000000000001 [ 1672.712135][ T7811] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffcc9750ff0 [ 1672.727045][T32302] BPF:btf_header not found [ 1672.736756][ T7811] memory: usage 307200kB, limit 307200kB, failcnt 4901 [ 1672.745113][ T7811] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1672.749841][T32301] BPF:type_id=3113514752 index_type_id=100663296 nr_elems=0 [ 1672.753600][ T7811] Memory cgroup stats for /syz1: [ 1672.753755][ T7811] anon 227192832 [ 1672.753755][ T7811] file 0 [ 1672.753755][ T7811] kernel_stack 7999488 [ 1672.753755][ T7811] slab 13594624 [ 1672.753755][ T7811] sock 0 [ 1672.753755][ T7811] shmem 0 [ 1672.753755][ T7811] file_mapped 0 [ 1672.753755][ T7811] file_dirty 0 [ 1672.753755][ T7811] file_writeback 0 [ 1672.753755][ T7811] anon_thp 167772160 [ 1672.753755][ T7811] inactive_anon 0 [ 1672.753755][ T7811] active_anon 227196928 [ 1672.753755][ T7811] inactive_file 0 [ 1672.753755][ T7811] active_file 36864 [ 1672.753755][ T7811] unevictable 0 [ 1672.753755][ T7811] slab_reclaimable 1892352 [ 1672.753755][ T7811] slab_unreclaimable 11702272 [ 1672.753755][ T7811] pgfault 203874 [ 1672.753755][ T7811] pgmajfault 0 [ 1672.753755][ T7811] workingset_refault 231 [ 1672.753755][ T7811] workingset_activate 165 [ 1672.753755][ T7811] workingset_nodereclaim 0 [ 1672.753755][ T7811] pgrefill 25854 [ 1672.753755][ T7811] pgscan 26140 [ 1672.753755][ T7811] pgsteal 666 [ 1672.760651][T32301] BPF: 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) socket$xdp(0x2c, 0x3, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x100, 0x0) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) [ 1672.765695][ T7811] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=18646,uid=0 [ 1672.869457][T32301] BPF:size != 0 [ 1672.900151][T32301] BPF: [ 1672.900151][T32301] [ 1672.912220][ T7811] Memory cgroup out of memory: Killed process 18646 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1672.938785][ T1067] oom_reaper: reaped process 18646 (syz-executor.1), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB [ 1672.947863][T32309] BPF:[1] ARRAY (anon) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000004"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1672.973337][T32313] BPF:Invalid string section [ 1672.976083][T32309] BPF:type_id=3113514752 index_type_id=100663296 nr_elems=0 [ 1672.999023][T32309] BPF: [ 1673.003016][T32309] BPF:size != 0 [ 1673.036454][T32309] BPF: [ 1673.036454][T32309] 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0xffffffff00000000) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000700"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_WAIT_VBLANK(r4, 0xc018643a, &(0x7f0000000080)={0x10000000, 0x7f, 0x7}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r5, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$KVM_GET_SREGS(r5, 0x8138ae83, &(0x7f0000000180)) 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000180)=""/73, 0x49}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) r1 = syz_open_dev$vcsu(&(0x7f0000000080)='/dev/vcsu#\x00', 0x97e, 0x1) write$FUSE_IOCTL(r1, &(0x7f00000000c0)={0x20, 0x0, 0x8, {0x67f, 0x0, 0x29, 0x4}}, 0x20) [ 1673.248300][T32326] BPF:Invalid string section 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000005"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1673.329192][T32335] BPF:[1] ARRAY (anon) [ 1673.353848][T32335] BPF:type_id=3113514752 index_type_id=117440512 nr_elems=0 [ 1673.372184][T32335] BPF: [ 1673.376612][T32335] BPF:size != 0 [ 1673.380392][T32335] BPF: [ 1673.380392][T32335] [ 1673.409386][T32344] BPF:[1] ARRAY (anon) [ 1673.422605][T32344] BPF:type_id=3113514752 index_type_id=117440512 nr_elems=0 [ 1673.443771][T32347] BPF:Invalid string section [ 1673.444166][T32344] BPF: 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1673.470709][T32348] BPF:Invalid string section [ 1673.496653][T32344] BPF:size != 0 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000006"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1673.529371][T32344] BPF: [ 1673.529371][T32344] 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) openat$nvram(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvram\x00', 0x400000, 0x0) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000a00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1673.783771][T32370] BPF:Invalid string section [ 1673.796732][T32373] BPF:[1] ARRAY (anon) [ 1673.805526][T32372] BPF:Invalid string section [ 1673.812946][T32373] BPF:type_id=3113514752 index_type_id=167772160 nr_elems=0 [ 1673.829665][T32374] BPF:btf_header not found 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000007"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/fib_triestat\x00') setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r3, 0x28, 0x6, &(0x7f0000000140), 0x10) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x80, 0x0, 0x0, 0x0, 0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1673.845863][T32373] BPF: [ 1673.860657][T32373] BPF:size != 0 [ 1673.870661][T32373] BPF: [ 1673.870661][T32373] [ 1673.884334][T32381] BPF:[1] ARRAY (anon) 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, &(0x7f0000000080)) timerfd_settime(r0, 0x3, &(0x7f0000000040), 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r2, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r3 = openat$cgroup_ro(r2, &(0x7f00000001c0)='io.stat\x00', 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(r3, 0x6, 0x2, &(0x7f0000000240)=@ccm_128={{0x487}, "ac8eb473c47ece56", "3d3374a95c075041c6e4da08dda2db8b", "acbb6b82", "7f01c70e36e1168f"}, 0x28) inotify_init1(0x800) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) [ 1673.899707][T32381] BPF:type_id=3113514752 index_type_id=167772160 nr_elems=0 [ 1673.925395][T32383] BPF:Invalid string section 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000008"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1673.971842][T32381] BPF: [ 1673.992803][T32381] BPF:size != 0 [ 1674.000631][T32381] BPF: [ 1674.000631][T32381] [ 1674.093814][T32390] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1674.245563][T32398] BPF:Invalid string section 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_WAIT_VBLANK(r4, 0xc018643a, &(0x7f0000000080)={0x10000000, 0x7f, 0x7}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r5, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000001c00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1674.332868][T32398] BPF:Invalid string section 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b9000000000000000000000000000a"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x0, 0x2) ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r3, 0xc2604111, &(0x7f0000000400)={0xfe, [[0x5, 0x6, 0x8001, 0x10001, 0xc0, 0x79747aaf, 0x471, 0x3], [0x1000, 0x7, 0xab7, 0x1ff, 0x0, 0x6, 0x9, 0x81], [0x5, 0x9, 0x0, 0x3ff, 0x7, 0x6e, 0x4, 0x2]], [], [{0x7, 0xe5, 0x7fffffff}, {0x3f, 0xfff, 0x1000}, {0x9, 0xfffffffa, 0x9}, {0x101, 0x400, 0x7}, {0x6, 0x5, 0xffffffc0}, {0x6f3b, 0x10001, 0x4}, {0x5, 0x82, 0x4}, {0x3, 0x273b88f3, 0x20}, {0x3f, 0x6, 0x400}, {0x7, 0x4, 0x5}, {0x7c, 0x3}, {0x800, 0x1f, 0x6}], [], 0x6}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x9, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x1, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1674.438024][T32410] BPF:[1] ARRAY (anon) [ 1674.464990][T32410] BPF:type_id=3113514752 index_type_id=469762048 nr_elems=0 [ 1674.498631][T32410] BPF: [ 1674.525654][T32410] BPF:size != 0 [ 1674.564252][T32410] BPF: [ 1674.564252][T32410] [ 1674.608297][T32421] BPF:[1] ARRAY (anon) 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) syz_init_net_socket$ax25(0x3, 0x2, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1674.633886][T32421] BPF:type_id=3113514752 index_type_id=469762048 nr_elems=0 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$SG_SET_KEEP_ORPHAN(0xffffffffffffffff, 0x2287, &(0x7f0000000000)=0x20) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1674.695829][T32427] BPF:Invalid string section [ 1674.704406][T32421] BPF: [ 1674.728079][T32421] BPF:size != 0 [ 1674.744815][T32421] BPF: [ 1674.744815][T32421] 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b9000000000000000000000000001c"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000001e00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1674.841333][T32433] BPF:btf_header not found [ 1674.962189][T32436] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1674.972933][T32441] BPF:[1] ARRAY (anon) [ 1675.007853][T32441] BPF:type_id=3113514752 index_type_id=503316480 nr_elems=0 [ 1675.057795][T32441] BPF: [ 1675.069053][T32441] BPF:size != 0 [ 1675.072757][T32441] BPF: [ 1675.072757][T32441] [ 1675.118513][T32451] BPF:[1] ARRAY (anon) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1675.140647][T32451] BPF:type_id=3113514752 index_type_id=503316480 nr_elems=0 [ 1675.154710][T32449] BPF:Invalid string section [ 1675.178030][T32451] BPF: 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r2, 0x5}}, 0x18) readv(r1, &(0x7f0000000080), 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r4, 0x5}}, 0x18) r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r5, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r6, 0x5}}, 0x18) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={0xffffffffffffffff}, 0x106, 0x6}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r3, &(0x7f0000000100)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e21, 0x7, @mcast1, 0x6}, r7}}, 0x30) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b9000000000000000000000000001e"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1675.195742][T32451] BPF:size != 0 [ 1675.199994][T32453] BPF:Invalid string section [ 1675.208994][T32451] BPF: [ 1675.208994][T32451] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000002000"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1675.421003][T32464] BPF:Invalid string section 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_WAIT_VBLANK(r4, 0xc018643a, &(0x7f0000000080)={0x10000000, 0x7f, 0x7}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1675.572930][T32484] BPF:[1] ARRAY (anon) 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) syz_init_net_socket$ax25(0x3, 0x2, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000048"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1675.605921][T32484] BPF:type_id=3113514752 index_type_id=536870912 nr_elems=0 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) ioctl$KDSETMODE(r1, 0x4b3a, 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) [ 1675.658449][T32484] BPF: [ 1675.664355][T32484] BPF:size != 0 [ 1675.689618][T32484] BPF: [ 1675.689618][T32484] [ 1675.728701][T32494] BPF:[1] ARRAY (anon) [ 1675.790816][T32494] BPF:type_id=3113514752 index_type_id=536870912 nr_elems=0 [ 1675.821148][T32494] BPF: 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r3, 0x80184132, &(0x7f0000000000)) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1675.847742][T32494] BPF:size != 0 [ 1675.859144][T32494] BPF: [ 1675.859144][T32494] [ 1675.866472][T32504] BPF:btf_header not found [ 1675.887704][T32502] BPF:Invalid string section 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000004800"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b9000000000000000000000000004c"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1676.080482][T32519] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1676.115178][T32521] BPF:[1] ARRAY (anon) [ 1676.134127][T32521] BPF:type_id=3113514752 index_type_id=1207959552 nr_elems=0 [ 1676.176203][T32521] BPF: [ 1676.196248][T32521] BPF:size != 0 [ 1676.218267][T32521] BPF: [ 1676.218267][T32521] [ 1676.223169][T32523] BPF:Invalid string section [ 1676.255818][T32524] BPF:Invalid string section [ 1676.257595][T32526] BPF:[1] ARRAY (anon) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000060"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1676.277948][T32526] BPF:type_id=3113514752 index_type_id=1207959552 nr_elems=0 [ 1676.299998][T32526] BPF: [ 1676.313731][T32526] BPF:size != 0 [ 1676.319161][T32526] BPF: [ 1676.319161][T32526] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000004c00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1676.433629][ T7811] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 1676.455323][ T7811] CPU: 0 PID: 7811 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1676.465677][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1676.477162][ T7811] Call Trace: [ 1676.477587][T32530] BPF:[1] ARRAY (anon) [ 1676.480659][ T7811] dump_stack+0x11d/0x181 [ 1676.480682][ T7811] dump_header+0xaa/0x39c [ 1676.480703][ T7811] oom_kill_process.cold+0x10/0x15 [ 1676.480722][ T7811] out_of_memory+0x231/0xa60 [ 1676.480753][ T7811] mem_cgroup_out_of_memory+0x128/0x150 [ 1676.488052][T32530] BPF:type_id=3113514752 index_type_id=1275068416 nr_elems=0 [ 1676.492633][ T7811] try_charge+0xb6c/0xbf0 [ 1676.492656][ T7811] ? setup_fault_attr+0x50/0x120 [ 1676.492677][ T7811] ? __rcu_read_unlock+0x66/0x3d0 [ 1676.492744][ T7811] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1676.492770][ T7811] __memcg_kmem_charge+0xcf/0x1b0 [ 1676.499546][T32530] BPF: [ 1676.507656][ T7811] copy_process+0x11d2/0x3c40 [ 1676.507672][ T7811] ? do_wp_page+0x19f/0xeb0 [ 1676.507700][ T7811] _do_fork+0xfe/0x7a0 [ 1676.507796][ T7811] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1676.507887][ T7811] ? __read_once_size+0x5a/0xe0 [ 1676.513615][T32530] BPF:size != 0 [ 1676.520484][ T7811] __x64_sys_clone+0x130/0x170 [ 1676.520558][ T7811] do_syscall_64+0xcc/0x3a0 [ 1676.531189][T32530] BPF: [ 1676.531189][T32530] [ 1676.536890][ T7811] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1676.536911][ T7811] RIP: 0033:0x458eda 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_WAIT_VBLANK(r4, 0xc018643a, &(0x7f0000000080)={0x10000000, 0x7f, 0x7}) write(0xffffffffffffffff, &(0x7f0000000000)="b6", 0xfffffe7e) [ 1676.581091][T32531] BPF:[1] ARRAY (anon) [ 1676.584878][ T7811] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00 [ 1676.584948][ T7811] RSP: 002b:00007ffcc9750f60 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 1676.610040][T32531] BPF:type_id=3113514752 index_type_id=1275068416 nr_elems=0 [ 1676.614077][ T7811] RAX: ffffffffffffffda RBX: 00007ffcc9750f60 RCX: 0000000000458eda [ 1676.614086][ T7811] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1676.614096][ T7811] RBP: 00007ffcc9750fa0 R08: 0000000000000001 R09: 00000000020c1940 [ 1676.614105][ T7811] R10: 00000000020c1c10 R11: 0000000000000246 R12: 0000000000000001 [ 1676.614113][ T7811] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffcc9750ff0 [ 1676.642370][ T7811] memory: usage 307200kB, limit 307200kB, failcnt 4953 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) syz_init_net_socket$ax25(0x3, 0x2, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1676.734113][T32531] BPF: [ 1676.734383][ T7811] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1676.762776][ T7811] Memory cgroup stats for /syz1: [ 1676.762982][ T7811] anon 225931264 [ 1676.762982][ T7811] file 0 [ 1676.762982][ T7811] kernel_stack 8183808 [ 1676.762982][ T7811] slab 13864960 [ 1676.762982][ T7811] sock 0 [ 1676.762982][ T7811] shmem 0 [ 1676.762982][ T7811] file_mapped 0 [ 1676.762982][ T7811] file_dirty 0 [ 1676.762982][ T7811] file_writeback 0 [ 1676.762982][ T7811] anon_thp 165675008 [ 1676.762982][ T7811] inactive_anon 0 [ 1676.762982][ T7811] active_anon 225935360 [ 1676.762982][ T7811] inactive_file 0 [ 1676.762982][ T7811] active_file 36864 [ 1676.762982][ T7811] unevictable 0 [ 1676.762982][ T7811] slab_reclaimable 1892352 [ 1676.762982][ T7811] slab_unreclaimable 11972608 [ 1676.762982][ T7811] pgfault 204732 [ 1676.762982][ T7811] pgmajfault 0 [ 1676.762982][ T7811] workingset_refault 231 [ 1676.762982][ T7811] workingset_activate 165 [ 1676.762982][ T7811] workingset_nodereclaim 0 [ 1676.762982][ T7811] pgrefill 27310 [ 1676.762982][ T7811] pgscan 27605 [ 1676.762982][ T7811] pgsteal 666 [ 1676.787929][T32531] BPF:size != 0 [ 1676.875012][ T7811] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=18553,uid=0 [ 1676.905256][ T7811] Memory cgroup out of memory: Killed process 18553 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1676.939540][ T1067] oom_reaper: reaped process 18553 (syz-executor.1), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) getsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000180), &(0x7f00000001c0)=0xb) setsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000100)={0x0, 0x101, 0x7fff, 0x5}, 0x10) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r3, 0x84, 0x6b, &(0x7f0000000240)=[@in={0x2, 0x4e23, @remote}, @in6={0xa, 0x4e23, 0x8000, @mcast2, 0x1}, @in={0x2, 0x4e23, @loopback}, @in={0x2, 0x4e21, @multicast1}, @in={0x2, 0x4e21, @remote}, @in6={0xa, 0x4e20, 0x8, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x5270}, @in6={0xa, 0x4e22, 0x9, @empty, 0x8c}, @in={0x2, 0x4e23, @multicast1}, @in={0x2, 0x4e20, @remote}], 0xb4) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r2, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$SIOCX25SFACILITIES(r2, 0x89e3, &(0x7f0000000000)={0x2a, 0xfffffffe, 0x9, 0x7, 0x3, 0x183}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1677.123768][T32548] BPF:Invalid string section [ 1677.145458][T32543] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 1677.152370][T32549] BPF:Invalid string section [ 1677.169617][T32531] BPF: [ 1677.169617][T32531] [ 1677.171421][T32543] CPU: 0 PID: 32543 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1677.187762][T32543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1677.200040][T32543] Call Trace: [ 1677.204750][T32543] dump_stack+0x11d/0x181 [ 1677.210488][T32543] dump_header+0xaa/0x39c [ 1677.215938][T32543] oom_kill_process.cold+0x10/0x15 [ 1677.221695][T32543] out_of_memory+0x231/0xa60 [ 1677.226810][T32543] mem_cgroup_out_of_memory+0x128/0x150 [ 1677.234299][T32543] try_charge+0xb6c/0xbf0 [ 1677.239357][T32543] ? rcu_note_context_switch+0x6d0/0x760 [ 1677.245917][T32543] mem_cgroup_try_charge+0xd2/0x260 [ 1677.253450][T32543] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1677.260735][T32543] wp_page_copy+0x322/0x1040 [ 1677.266584][T32543] ? __read_once_size+0x41/0xe0 [ 1677.273681][T32543] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1677.282622][T32543] do_wp_page+0x192/0xeb0 [ 1677.288599][T32543] ? record_times+0x16/0x90 [ 1677.294487][T32543] __handle_mm_fault+0x1d16/0x2e00 [ 1677.301236][T32543] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1677.308223][T32543] handle_mm_fault+0x21b/0x530 [ 1677.316843][T32543] __do_page_fault+0x456/0x8d0 [ 1677.323462][T32543] do_page_fault+0x38/0x194 [ 1677.329577][T32543] page_fault+0x34/0x40 [ 1677.336797][T32543] RIP: 0033:0x458f0e [ 1677.341596][T32543] Code: 00 00 85 c0 41 89 c5 0f 85 fc 00 00 00 64 8b 04 25 d0 02 00 00 41 39 c4 0f 84 12 02 00 00 48 8b 05 17 fa 61 00 48 85 c0 74 04 <48> 83 00 04 64 8b 04 25 d0 02 00 00 64 89 04 25 d4 02 00 00 0f 31 [ 1677.366126][T32543] RSP: 002b:00007fff9b1d30b0 EFLAGS: 00010206 [ 1677.373744][T32543] RAX: 0000000000a78428 RBX: 00007fff9b1d30b0 RCX: 0000000000458eda [ 1677.384116][T32543] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1677.393316][T32543] RBP: 00007fff9b1d30f0 R08: 0000000000000001 R09: 0000000000e4b940 [ 1677.402141][T32543] R10: 0000000000e4bc10 R11: 0000000000000246 R12: 0000000000000001 [ 1677.412538][T32543] R13: 0000000000000000 R14: 0000000000000000 R15: 00007fff9b1d3140 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000068"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1677.428447][T32543] memory: usage 307200kB, limit 307200kB, failcnt 11753 [ 1677.467448][T32543] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000006000"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1677.573277][T32558] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1677.613715][T32563] BPF:Invalid string section 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_WAIT_VBLANK(r4, 0xc018643a, &(0x7f0000000080)={0x10000000, 0x7f, 0x7}) write(0xffffffffffffffff, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b9000000000000000000000000006c"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1677.646639][T32564] BPF:Invalid string section [ 1677.657867][T32569] BPF:[1] ARRAY (anon) [ 1677.667498][T32569] BPF:type_id=3113514752 index_type_id=1610612736 nr_elems=0 [ 1677.715233][T32569] BPF: [ 1677.721607][T32569] BPF:size != 0 [ 1677.732462][T32569] BPF: [ 1677.732462][T32569] [ 1677.752251][T32575] BPF:Invalid string section 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000074"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1677.761738][T32577] BPF:[1] ARRAY (anon) [ 1677.772723][T32576] BPF:Invalid string section [ 1677.779376][T32577] BPF:type_id=3113514752 index_type_id=1610612736 nr_elems=0 [ 1677.790137][T32577] BPF: [ 1677.801212][T32577] BPF:size != 0 [ 1677.835468][T32577] BPF: [ 1677.835468][T32577] [ 1677.928093][T32584] BPF:Invalid string section [ 1677.931882][T32543] Memory cgroup stats for /syz0: [ 1677.932069][T32543] anon 246202368 [ 1677.932069][T32543] file 20480 [ 1677.932069][T32543] kernel_stack 6414336 [ 1677.932069][T32543] slab 9117696 [ 1677.932069][T32543] sock 0 [ 1677.932069][T32543] shmem 0 [ 1677.932069][T32543] file_mapped 0 [ 1677.932069][T32543] file_dirty 0 [ 1677.932069][T32543] file_writeback 0 [ 1677.932069][T32543] anon_thp 201326592 [ 1677.932069][T32543] inactive_anon 0 [ 1677.932069][T32543] active_anon 246210560 [ 1677.932069][T32543] inactive_file 12288 [ 1677.932069][T32543] active_file 24576 [ 1677.932069][T32543] unevictable 0 [ 1677.932069][T32543] slab_reclaimable 675840 [ 1677.932069][T32543] slab_unreclaimable 8441856 [ 1677.932069][T32543] pgfault 214038 [ 1677.932069][T32543] pgmajfault 0 [ 1677.932069][T32543] workingset_refault 264 [ 1677.932069][T32543] workingset_activate 132 [ 1677.932069][T32543] workingset_nodereclaim 0 [ 1677.932069][T32543] pgrefill 21781 [ 1677.932069][T32543] pgscan 43974 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x2000, 0x0) ioctl$USBDEVFS_GET_CAPABILITIES(r1, 0x8004551a, &(0x7f00000000c0)) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) open$dir(&(0x7f0000000100)='./file0\x00', 0x400000, 0x33) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000006800"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b9000000000000000000000000007a"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1677.932069][T32543] pgsteal 20906 [ 1677.974864][T32585] BPF:Invalid string section [ 1678.207703][T32595] BPF:[1] ARRAY (anon) [ 1678.219371][T32596] BPF:Invalid string section [ 1678.232732][T32595] BPF:type_id=3113514752 index_type_id=1744830464 nr_elems=0 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900000000000000000000000000f8"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1678.254319][T32597] BPF:Invalid string section [ 1678.294998][T32595] BPF: [ 1678.308363][T32595] BPF:size != 0 [ 1678.317733][T32598] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1678.338769][T32595] BPF: [ 1678.338769][T32595] [ 1678.375329][T32608] BPF:[1] ARRAY (anon) [ 1678.385523][T32607] BPF:Invalid string section [ 1678.392568][T32543] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14536,uid=0 [ 1678.394371][T32608] BPF:type_id=3113514752 index_type_id=1744830464 nr_elems=0 [ 1678.428431][T32609] BPF:Invalid string section [ 1678.461669][T32543] Memory cgroup out of memory: Killed process 14536 (syz-executor.0) total-vm:72584kB, anon-rss:2204kB, file-rss:35784kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1678.509006][T32608] BPF: [ 1678.515473][T32608] BPF:size != 0 [ 1678.526501][T32608] BPF: [ 1678.526501][T32608] [ 1678.659882][T32613] BPF:btf_header not found [ 1678.852952][T32543] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1678.865096][T32543] CPU: 0 PID: 32543 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1678.875077][T32543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1678.886845][T32543] Call Trace: [ 1678.890654][T32543] dump_stack+0x11d/0x181 [ 1678.895773][T32543] dump_header+0xaa/0x39c [ 1678.902490][T32543] oom_kill_process.cold+0x10/0x15 [ 1678.908966][T32543] out_of_memory+0x231/0xa60 [ 1678.913926][T32543] mem_cgroup_out_of_memory+0x128/0x150 [ 1678.919925][T32543] try_charge+0xb6c/0xbf0 [ 1678.924511][T32543] ? __rcu_read_unlock+0x66/0x3d0 [ 1678.929946][T32543] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1678.936321][T32543] __memcg_kmem_charge+0xcf/0x1b0 [ 1678.941899][T32543] copy_process+0x11d2/0x3c40 [ 1678.947450][T32543] ? lru_cache_add_active_or_unevictable+0xbb/0x1f0 [ 1678.954293][T32543] _do_fork+0xfe/0x7a0 [ 1678.959046][T32543] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1678.967107][T32543] ? handle_mm_fault+0x2c6/0x530 [ 1678.972639][T32543] __x64_sys_clone+0x130/0x170 [ 1678.979515][T32543] do_syscall_64+0xcc/0x3a0 [ 1678.984568][T32543] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1678.991529][T32543] RIP: 0033:0x45d2d9 [ 1678.995622][T32543] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75 [ 1679.018638][T32543] RSP: 002b:00007fff9b1d2e18 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 1679.027748][T32543] RAX: ffffffffffffffda RBX: 00007fde0f8fe700 RCX: 000000000045d2d9 [ 1679.036115][T32543] RDX: 00007fde0f8fe9d0 RSI: 00007fde0f8fddb0 RDI: 00000000003d0f00 [ 1679.044882][T32543] RBP: 00007fff9b1d3030 R08: 00007fde0f8fe700 R09: 00007fde0f8fe700 [ 1679.053983][T32543] R10: 00007fde0f8fe9d0 R11: 0000000000000202 R12: 0000000000000000 [ 1679.062836][T32543] R13: 00007fff9b1d2ecf R14: 00007fde0f8fe9c0 R15: 000000000075c124 [ 1679.074217][T32543] memory: usage 307200kB, limit 307200kB, failcnt 11764 [ 1679.082837][T32543] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1679.090800][T32543] Memory cgroup stats for /syz0: [ 1679.090969][T32543] anon 246243328 [ 1679.090969][T32543] file 20480 [ 1679.090969][T32543] kernel_stack 6414336 [ 1679.090969][T32543] slab 9117696 [ 1679.090969][T32543] sock 0 [ 1679.090969][T32543] shmem 0 [ 1679.090969][T32543] file_mapped 0 [ 1679.090969][T32543] file_dirty 0 [ 1679.090969][T32543] file_writeback 0 [ 1679.090969][T32543] anon_thp 201326592 [ 1679.090969][T32543] inactive_anon 0 [ 1679.090969][T32543] active_anon 246247424 [ 1679.090969][T32543] inactive_file 12288 [ 1679.090969][T32543] active_file 24576 [ 1679.090969][T32543] unevictable 0 [ 1679.090969][T32543] slab_reclaimable 675840 [ 1679.090969][T32543] slab_unreclaimable 8441856 [ 1679.090969][T32543] pgfault 214104 [ 1679.090969][T32543] pgmajfault 0 [ 1679.090969][T32543] workingset_refault 264 [ 1679.090969][T32543] workingset_activate 132 [ 1679.090969][T32543] workingset_nodereclaim 0 [ 1679.090969][T32543] pgrefill 21880 [ 1679.090969][T32543] pgscan 44073 [ 1679.090969][T32543] pgsteal 20906 [ 1679.202386][T32543] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14518,uid=0 [ 1679.222777][T32543] Memory cgroup out of memory: Killed process 14518 (syz-executor.0) total-vm:72584kB, anon-rss:2204kB, file-rss:35784kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1679.249045][ T1067] oom_reaper: reaped process 14518 (syz-executor.0), now anon-rss:0kB, file-rss:34824kB, shmem-rss:0kB 03:33:21 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:21 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:21 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) 03:33:21 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_WAIT_VBLANK(r4, 0xc018643a, &(0x7f0000000080)={0x10000000, 0x7f, 0x7}) write(0xffffffffffffffff, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:21 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000006c00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x100, 0x0) ioctl$VHOST_RESET_OWNER(r3, 0xaf02, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(0xffffffffffffffff, 0x28, 0x2, &(0x7f0000000000)=0x723f, 0x8) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x10000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x2], 0x0, 0xfffffffffffcefbb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1679.564000][T32632] BPF:[1] ARRAY (anon) [ 1679.580445][T32632] BPF:type_id=3113514752 index_type_id=1811939328 nr_elems=0 [ 1679.594571][T32634] BPF:[1] Invalid kind:0 [ 1679.605963][T32632] BPF: 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1679.623144][T32632] BPF:size != 0 [ 1679.631753][T32635] BPF:[1] Invalid kind:0 [ 1679.634628][T32640] BPF:btf_header not found [ 1679.637128][T32632] BPF: [ 1679.637128][T32632] [ 1679.664160][T32644] BPF:[1] ARRAY (anon) [ 1679.675518][T32644] BPF:type_id=3113514752 index_type_id=1811939328 nr_elems=0 [ 1679.707111][T32644] BPF: [ 1679.723192][T32644] BPF:size != 0 [ 1679.736043][T32644] BPF: [ 1679.736043][T32644] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000007400"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1679.805183][T32647] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1679.837096][T32647] CPU: 0 PID: 32647 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1679.846155][T32647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1679.856881][T32647] Call Trace: [ 1679.860711][T32647] dump_stack+0x11d/0x181 [ 1679.865297][T32647] dump_header+0xaa/0x39c [ 1679.869716][T32647] oom_kill_process.cold+0x10/0x15 [ 1679.871135][T32654] BPF:[1] ARRAY (anon) [ 1679.875143][T32647] out_of_memory+0x231/0xa60 [ 1679.875211][T32647] mem_cgroup_out_of_memory+0x128/0x150 [ 1679.881490][T32654] BPF:type_id=3113514752 index_type_id=1946157056 nr_elems=0 [ 1679.885044][T32647] try_charge+0xb6c/0xbf0 [ 1679.885078][T32647] ? rcu_note_context_switch+0x6d0/0x760 [ 1679.893448][T32654] BPF: [ 1679.898793][T32647] mem_cgroup_try_charge+0xd2/0x260 [ 1679.898889][T32647] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1679.898951][T32647] wp_page_copy+0x322/0x1040 [ 1679.904861][T32654] BPF:size != 0 [ 1679.910326][T32647] ? __read_once_size+0x41/0xe0 [ 1679.910388][T32647] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1679.914781][T32654] BPF: [ 1679.914781][T32654] [ 1679.918930][T32647] do_wp_page+0x192/0xeb0 [ 1679.919003][T32647] ? record_times+0x16/0x90 [ 1679.919047][T32647] __handle_mm_fault+0x1d16/0x2e00 [ 1679.936086][T32655] BPF:[1] ARRAY (anon) [ 1679.938342][T32647] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1679.938393][T32647] handle_mm_fault+0x21b/0x530 [ 1679.959107][T32655] BPF:type_id=3113514752 index_type_id=1946157056 nr_elems=0 [ 1679.963938][T32647] __do_page_fault+0x456/0x8d0 [ 1679.963959][T32647] do_page_fault+0x38/0x194 [ 1679.964097][T32647] page_fault+0x34/0x40 [ 1679.970038][T32655] BPF: [ 1679.974375][T32647] RIP: 0033:0x40d0c8 [ 1679.974395][T32647] Code: 00 00 49 8d be 88 00 00 00 48 89 ea 48 89 de 0f 85 dd 00 00 00 e8 d8 2c 00 00 8b 05 42 af 32 00 48 8b 15 b3 55 66 00 83 c0 01 <89> 05 32 af 32 00 89 02 48 83 c4 08 5b 5d 41 5c 41 5d 41 5e 41 5f [ 1679.974477][T32647] RSP: 002b:00007ffcc9750d90 EFLAGS: 00010202 [ 1679.984721][T32655] BPF:size != 0 [ 1679.987071][T32647] RAX: 0000000000000001 RBX: 0000001b2be20014 RCX: 0000001b2ce20000 [ 1679.987083][T32647] RDX: 0000001b2be20000 RSI: 0000000000000b7f RDI: ffffffff63b54b7f [ 1679.987093][T32647] RBP: 0000001b2be20018 R08: 0000000063b54b7f R09: 0000000063b54b83 [ 1679.987180][T32647] R10: 00007ffcc9750ed0 R11: 0000000000000246 R12: 0000001b2be2001c [ 1679.987198][T32647] R13: 000000000019a179 R14: 000000000075bf20 R15: 000000000075bf2c [ 1679.994559][T32655] BPF: [ 1679.994559][T32655] [ 1680.050475][T32647] memory: usage 307200kB, limit 307200kB, failcnt 4991 [ 1680.106216][T32647] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1680.115174][T32647] Memory cgroup stats for /syz1: [ 1680.115636][T32647] anon 224608256 [ 1680.115636][T32647] file 0 [ 1680.115636][T32647] kernel_stack 8257536 [ 1680.115636][T32647] slab 14135296 [ 1680.115636][T32647] sock 0 [ 1680.115636][T32647] shmem 0 [ 1680.115636][T32647] file_mapped 0 [ 1680.115636][T32647] file_dirty 0 [ 1680.115636][T32647] file_writeback 0 [ 1680.115636][T32647] anon_thp 163577856 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000007a00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1680.115636][T32647] inactive_anon 0 [ 1680.115636][T32647] active_anon 224612352 [ 1680.115636][T32647] inactive_file 0 [ 1680.115636][T32647] active_file 36864 [ 1680.115636][T32647] unevictable 0 [ 1680.115636][T32647] slab_reclaimable 2027520 [ 1680.115636][T32647] slab_unreclaimable 12107776 [ 1680.115636][T32647] pgfault 205293 [ 1680.115636][T32647] pgmajfault 0 [ 1680.115636][T32647] workingset_refault 231 [ 1680.115636][T32647] workingset_activate 165 [ 1680.115636][T32647] workingset_nodereclaim 0 [ 1680.115636][T32647] pgrefill 27908 [ 1680.115636][T32647] pgscan 28171 [ 1680.115636][T32647] pgsteal 666 [ 1680.229661][T32659] BPF:[1] ARRAY (anon) [ 1680.246133][T32659] BPF:type_id=3113514752 index_type_id=2046820352 nr_elems=0 [ 1680.258322][T32647] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=17506,uid=0 [ 1680.275265][T32659] BPF: [ 1680.278120][T32647] Memory cgroup out of memory: Killed process 17506 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1680.280911][ T1067] oom_reaper: reaped process 17506 (syz-executor.1), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB [ 1680.298146][T32659] BPF:size != 0 [ 1680.313641][T32659] BPF: [ 1680.313641][T32659] [ 1680.319624][T32649] BPF:[1] Invalid kind:0 [ 1680.321171][T32649] BPF:[1] Invalid kind:0 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1680.353032][T32663] BPF:[1] ARRAY (anon) [ 1680.364576][T32663] BPF:type_id=3113514752 index_type_id=2046820352 nr_elems=0 [ 1680.393181][T32663] BPF: [ 1680.399352][T32663] BPF:size != 0 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvram\x00', 0x10000, 0x0) ioctl$VIDIOC_G_SLICED_VBI_CAP(r3, 0xc0745645, &(0x7f0000000140)={0x7ff, [0x7ff, 0x5, 0x7ff, 0x2, 0x1dee, 0x101, 0x401, 0x2, 0xfffb, 0x7a5, 0x1f, 0x893e, 0x3, 0x400, 0x0, 0x1, 0x100, 0x400, 0x6, 0x0, 0x7e32, 0x5, 0x1, 0x1, 0x1, 0x6, 0x1, 0x2, 0x0, 0x1, 0xbd99, 0xfff, 0x8000, 0x4, 0x9f9, 0x1f, 0x7ff, 0x8000, 0x0, 0xffff, 0x3, 0x9, 0x8, 0x9, 0x62ee, 0xa951, 0x7a1, 0x7], 0x9}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) fcntl$dupfd(0xffffffffffffffff, 0x0, r2) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f0000000200)={0x1, 0x83, 0xee, 0x4, 0x3f, 0x8, 0x78, 0x8, 0x0, 0x40, 0x7f}, 0xb) ioctl$KVM_RUN(r2, 0xae80, 0x0) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r4, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$KVM_S390_VCPU_FAULT(r4, 0x4008ae52, &(0x7f0000000240)=0x80) 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1680.422682][T32663] BPF: [ 1680.422682][T32663] 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x4, &(0x7f0000000140)={0x77359400}) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b9000000f800"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1680.579012][T32673] BPF:[1] Invalid kind:0 [ 1680.597782][T32674] BPF:[1] Invalid kind:0 [ 1680.626815][T32681] BPF:btf_header not found 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1680.705747][T32691] BPF:[1] ARRAY (anon) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900000000000000000000000000c1"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1680.736536][T32691] BPF:type_id=3113514752 index_type_id=4160749568 nr_elems=0 [ 1680.746630][T32695] BPF:[1] Invalid kind:0 [ 1680.796662][T32691] BPF: [ 1680.808279][T32691] BPF:size != 0 [ 1680.824640][T32691] BPF: [ 1680.824640][T32691] [ 1680.862739][T32699] BPF:btf_header not found [ 1680.863567][T32702] BPF:[1] ARRAY (anon) 03:33:20 executing program 3: r0 = timerfd_create(0x4, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) timerfd_settime(r0, 0x0, &(0x7f0000000040)={{0x77359400}, {r1, r2+10000000}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) accept(r0, &(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000180)=0x80) r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r4, 0x84, 0x76, &(0x7f0000000000)={r5}, 0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f00000001c0)={r5, 0x1}, 0x8) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) openat$vsock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vsock\x00', 0x80601, 0x0) [ 1680.903842][T32704] BPF:Invalid string section 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000061"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1680.941221][T32702] BPF:type_id=3113514752 index_type_id=4160749568 nr_elems=0 [ 1680.975083][T32702] BPF: [ 1680.984997][T32702] BPF:size != 0 [ 1681.004847][T32702] BPF: [ 1681.004847][T32702] [ 1681.082397][T32715] BPF:Invalid string section 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000ffffff000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000062"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1681.144181][T32716] BPF:Invalid string section [ 1681.248354][T32723] BPF:[1] ARRAY (anon) [ 1681.261098][T32723] BPF:type_id=3113514752 index_type_id=4294901760 nr_elems=255 [ 1681.275428][T32723] BPF: [ 1681.285606][T32723] BPF:size != 0 [ 1681.290415][T32723] BPF: [ 1681.290415][T32723] [ 1681.315158][T32726] BPF:[1] ARRAY (anon) [ 1681.320221][T32726] BPF:type_id=3113514752 index_type_id=4294901760 nr_elems=255 [ 1681.352325][T32726] BPF: [ 1681.359638][T32726] BPF:size != 0 [ 1681.376029][T32726] BPF: [ 1681.376029][T32726] [ 1681.461590][T32728] BPF:Invalid string section [ 1681.495289][T32729] BPF:Invalid string section 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$PIO_FONTRESET(r3, 0x4b6d, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000010000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) ioctl$KVM_DEASSIGN_PCI_DEVICE(r2, 0x4040ae72, &(0x7f0000000300)={0x5, 0x5d4a, 0x1, 0x2, 0x8000}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) r3 = accept4$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f0000000080)=0x10, 0x0) sendmsg(r3, &(0x7f0000000380)={&(0x7f0000000180)=@alg={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(aes-fixed-time)\x00'}, 0x80, &(0x7f0000000340)}, 0x20000000) ioctl$VIDIOC_OVERLAY(r1, 0x4004560e, &(0x7f0000000100)=0x3) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) accept4$nfc_llcp(r4, &(0x7f0000000240), &(0x7f00000002c0)=0x60, 0x800) timerfd_settime(r0, 0x3, &(0x7f00000000c0)={{0x77359400}, {0x0, 0x1c9c380}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1681.764776][T32744] BPF:[1] ARRAY (anon) [ 1681.772562][T32744] BPF:type_id=3113514752 index_type_id=0 nr_elems=256 [ 1681.779591][T32744] BPF: [ 1681.789627][T32747] BPF:[1] Invalid kind:0 [ 1681.790162][T32744] BPF:size != 0 [ 1681.799371][T32749] BPF:btf_header not found [ 1681.804586][T32744] BPF: [ 1681.804586][T32744] 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1681.823445][T32754] BPF:[1] ARRAY (anon) [ 1681.828485][T32754] BPF:type_id=3113514752 index_type_id=0 nr_elems=256 [ 1681.831281][T32748] BPF:[1] Invalid kind:0 [ 1681.836154][T32754] BPF: [ 1681.843408][T32754] BPF:size != 0 [ 1681.847139][T32754] BPF: [ 1681.847139][T32754] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000020000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1682.023243][ T300] BPF:[1] ARRAY (anon) [ 1682.037496][ T300] BPF:type_id=3113514752 index_type_id=0 nr_elems=512 [ 1682.072509][ T300] BPF: [ 1682.083622][ T300] BPF:size != 0 [ 1682.094536][ T300] BPF: [ 1682.094536][ T300] [ 1682.109642][ T302] BPF:[1] Invalid kind:0 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1682.116770][ T306] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1682.130086][ T307] BPF:[1] ARRAY (anon) [ 1682.148480][ T307] BPF:type_id=3113514752 index_type_id=0 nr_elems=512 [ 1682.171888][ T307] BPF: [ 1682.191057][ T307] BPF:size != 0 [ 1682.211772][ T307] BPF: [ 1682.211772][ T307] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000030000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1682.333433][ T311] BPF:[1] ARRAY (anon) [ 1682.346131][ T311] BPF:type_id=3113514752 index_type_id=0 nr_elems=768 [ 1682.364937][ T311] BPF: [ 1682.373354][ T311] BPF:size != 0 [ 1682.385082][ T311] BPF: [ 1682.385082][ T311] [ 1682.411290][ T314] BPF:[1] ARRAY (anon) [ 1682.426178][ T314] BPF:type_id=3113514752 index_type_id=0 nr_elems=768 [ 1682.447970][ T314] BPF: [ 1682.464375][ T314] BPF:size != 0 [ 1682.474528][ T314] BPF: [ 1682.474528][ T314] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000040000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1682.597313][ T309] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1682.643776][ T309] CPU: 0 PID: 309 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1682.652321][ T309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1682.662500][ T309] Call Trace: [ 1682.665790][ T309] dump_stack+0x11d/0x181 [ 1682.670132][ T309] dump_header+0xaa/0x39c [ 1682.674652][ T309] oom_kill_process.cold+0x10/0x15 [ 1682.679791][ T309] out_of_memory+0x231/0xa60 [ 1682.681796][ T317] BPF:[1] ARRAY (anon) [ 1682.684397][ T309] mem_cgroup_out_of_memory+0x128/0x150 [ 1682.684421][ T309] try_charge+0xb6c/0xbf0 [ 1682.697755][ T317] BPF:type_id=3113514752 index_type_id=0 nr_elems=1024 [ 1682.698651][ T309] ? rcu_note_context_switch+0x6d0/0x760 [ 1682.711075][ T309] mem_cgroup_try_charge+0xd2/0x260 [ 1682.716350][ T309] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1682.722099][ T309] wp_page_copy+0x322/0x1040 [ 1682.725493][ T317] BPF: [ 1682.726856][ T309] ? _raw_spin_unlock_irqrestore+0x70/0x80 [ 1682.726881][ T309] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1682.726967][ T309] do_wp_page+0x192/0xeb0 [ 1682.733374][ T317] BPF:size != 0 [ 1682.735720][ T309] ? record_times+0x16/0x90 [ 1682.735761][ T309] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1682.758324][ T317] BPF: [ 1682.758324][ T317] [ 1682.760146][ T309] __handle_mm_fault+0x1d16/0x2e00 [ 1682.760201][ T309] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1682.767696][ T319] BPF:btf_header not found [ 1682.770182][ T309] handle_mm_fault+0x21b/0x530 [ 1682.770202][ T309] __do_page_fault+0x456/0x8d0 [ 1682.770236][ T309] do_page_fault+0x38/0x194 [ 1682.770261][ T309] page_fault+0x34/0x40 [ 1682.788122][ T321] BPF:[1] ARRAY (anon) [ 1682.790255][ T309] RIP: 0033:0x40f958 [ 1682.790285][ T309] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf fa 00 4c 00 31 c0 e8 53 25 ff ff 31 ff e8 9c 21 ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d ee 2c 66 00 [ 1682.802139][ T321] BPF:type_id=3113514752 index_type_id=0 nr_elems=1024 [ 1682.803084][ T309] RSP: 002b:00007ffcc9750d30 EFLAGS: 00010246 [ 1682.803099][ T309] RAX: 00000000ec917c70 RBX: 000000008ddd37ca RCX: 0000001b2ce20000 [ 1682.803144][ T309] RDX: 0000000000000000 RSI: 0000000000001c70 RDI: ffffffffec917c70 [ 1682.807405][ T321] BPF: [ 1682.827118][ T309] RBP: 0000000000000016 R08: 00000000ec917c70 R09: 00000000ec917c74 [ 1682.827129][ T309] R10: 00007ffcc9750ed0 R11: 0000000000000246 R12: 000000000075bfa8 [ 1682.827161][ T309] R13: 0000000080000000 R14: 00007fa146ced008 R15: 0000000000000016 [ 1682.880216][ T309] memory: usage 307200kB, limit 307200kB, failcnt 5038 [ 1682.897987][ T309] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1682.906906][ T309] Memory cgroup stats for /syz1: [ 1682.907172][ T309] anon 223354880 [ 1682.907172][ T309] file 0 [ 1682.907172][ T309] kernel_stack 8404992 [ 1682.907172][ T309] slab 14270464 [ 1682.907172][ T309] sock 0 [ 1682.907172][ T309] shmem 0 [ 1682.907172][ T309] file_mapped 0 [ 1682.907172][ T309] file_dirty 0 [ 1682.907172][ T309] file_writeback 0 [ 1682.907172][ T309] anon_thp 161480704 03:33:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x202840, 0x0) ioctl$VIDIOC_S_JPEGCOMP(r3, 0x408c563e, &(0x7f0000000200)={0x2, 0x1, 0x25, "69dd1ff18b802cf7c186cb29ee88e7896bfd4f05b58c1d343dbc206447bf5819cd41bba1a43675fe2b4b3a9dc81ccf3e572ce37df2539fd025c702e7", 0x35, "46449f434360994f60d7b139d96766b6f01ce8758f947ea4780376c413c04d0704097783bdc7b1b2d1cc750290125eaacd4a95e71fb9c9e4b8e754a7", 0x8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:33:21 executing program 3: r0 = timerfd_create(0x0, 0x0) r1 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0xac6db20368cb0e4d) write$FUSE_IOCTL(r1, &(0x7f00000000c0)={0x20, 0xfffffffffffffff5, 0x6, {0x5, 0x0, 0x1, 0x800}}, 0x20) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) 03:33:21 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) pipe(&(0x7f0000000200)) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) [ 1682.907172][ T309] inactive_anon 0 [ 1682.907172][ T309] active_anon 223358976 [ 1682.907172][ T309] inactive_file 0 [ 1682.907172][ T309] active_file 36864 [ 1682.907172][ T309] unevictable 0 [ 1682.907172][ T309] slab_reclaimable 2027520 [ 1682.907172][ T309] slab_unreclaimable 12242944 [ 1682.907172][ T309] pgfault 205854 [ 1682.907172][ T309] pgmajfault 0 [ 1682.907172][ T309] workingset_refault 231 [ 1682.907172][ T309] workingset_activate 165 [ 1682.907172][ T309] workingset_nodereclaim 0 [ 1682.907172][ T309] pgrefill 29200 [ 1682.907172][ T309] pgscan 29466 [ 1682.907172][ T309] pgsteal 666 [ 1682.988488][ T321] BPF:size != 0 [ 1683.038363][ T321] BPF: [ 1683.038363][ T321] [ 1683.094842][ T332] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000050000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) r1 = open(&(0x7f0000000040)='./bus\x00', 0x200000, 0x0) write(r1, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r1, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r2, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$DRM_IOCTL_ADD_CTX(r2, 0xc0086420, &(0x7f0000000080)={0x0}) ioctl$DRM_IOCTL_UNLOCK(r1, 0x4008642b, &(0x7f00000000c0)={r3, 0x38}) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x501443, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1683.300622][ T309] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=16632,uid=0 [ 1683.319367][ T344] BPF:[1] ARRAY (anon) [ 1683.353356][ T344] BPF:type_id=3113514752 index_type_id=0 nr_elems=1280 [ 1683.369547][ T309] Memory cgroup out of memory: Killed process 16632 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1683.388143][ T344] BPF: [ 1683.399911][ T344] BPF:size != 0 [ 1683.412004][ T344] BPF: [ 1683.412004][ T344] [ 1683.434608][ T352] BPF:[1] ARRAY (anon) [ 1683.463686][ T352] BPF:type_id=3113514752 index_type_id=0 nr_elems=1280 03:33:20 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r0, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1683.506631][ T352] BPF: [ 1683.518843][ T352] BPF:size != 0 [ 1683.533819][ T352] BPF: [ 1683.533819][ T352] [ 1683.621573][ T313] BPF:[1] Invalid kind:0 [ 1683.652545][ T313] BPF:[1] Invalid kind:0 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000060000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r3, 0x84, 0x21, &(0x7f0000000000), 0x4) [ 1683.777827][ T365] BPF:btf_header not found [ 1683.784427][ T367] BPF:[1] ARRAY (anon) [ 1683.808846][ T367] BPF:type_id=3113514752 index_type_id=0 nr_elems=1536 [ 1683.852349][ T367] BPF: [ 1683.870905][ T367] BPF:size != 0 [ 1683.881670][ T367] BPF: [ 1683.881670][ T367] [ 1683.923695][ T375] BPF:[1] ARRAY (anon) [ 1683.937568][ T375] BPF:type_id=3113514752 index_type_id=0 nr_elems=1536 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) [ 1683.970341][ T372] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1683.975825][ T375] BPF: [ 1683.995561][ T375] BPF:size != 0 [ 1684.013000][ T375] BPF: [ 1684.013000][ T375] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000070000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1684.123767][ T370] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1684.156685][ T370] CPU: 0 PID: 370 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1684.166007][ T370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1684.177037][ T370] Call Trace: [ 1684.181309][ T370] dump_stack+0x11d/0x181 [ 1684.185881][ T370] dump_header+0xaa/0x39c [ 1684.190227][ T370] oom_kill_process.cold+0x10/0x15 [ 1684.195359][ T370] out_of_memory+0x231/0xa60 [ 1684.200027][ T370] mem_cgroup_out_of_memory+0x128/0x150 [ 1684.205685][ T370] try_charge+0xb6c/0xbf0 [ 1684.210042][ T370] ? rcu_note_context_switch+0x6d0/0x760 [ 1684.215693][ T370] mem_cgroup_try_charge+0xd2/0x260 [ 1684.221018][ T370] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1684.226662][ T370] wp_page_copy+0x322/0x1040 [ 1684.231377][ T370] ? _raw_spin_unlock_irqrestore+0x70/0x80 [ 1684.232983][ T385] BPF:[1] ARRAY (anon) [ 1684.237240][ T370] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1684.237288][ T370] do_wp_page+0x192/0xeb0 [ 1684.251551][ T370] ? record_times+0x16/0x90 [ 1684.256071][ T370] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1684.261990][ T370] __handle_mm_fault+0x1d16/0x2e00 [ 1684.267219][ T370] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1684.273373][ T370] handle_mm_fault+0x21b/0x530 [ 1684.275683][ T385] BPF:type_id=3113514752 index_type_id=0 nr_elems=1792 [ 1684.278150][ T370] __do_page_fault+0x456/0x8d0 [ 1684.278168][ T370] do_page_fault+0x38/0x194 [ 1684.278228][ T370] page_fault+0x34/0x40 [ 1684.278242][ T370] RIP: 0033:0x40f958 [ 1684.278267][ T370] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf fa 00 4c 00 31 c0 e8 53 25 ff ff 31 ff e8 9c 21 ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d ee 2c 66 00 [ 1684.278274][ T370] RSP: 002b:00007ffcc9750d30 EFLAGS: 00010246 [ 1684.278289][ T370] RAX: 00000000ec917c70 RBX: 000000008ddd37ca RCX: 0000001b2ce20000 [ 1684.278300][ T370] RDX: 0000000000000000 RSI: 0000000000001c70 RDI: ffffffffec917c70 [ 1684.278368][ T370] RBP: 0000000000000016 R08: 00000000ec917c70 R09: 00000000ec917c74 [ 1684.278414][ T370] R10: 00007ffcc9750ed0 R11: 0000000000000246 R12: 000000000075bfa8 [ 1684.313842][ T385] BPF: [ 1684.322283][ T370] R13: 0000000080000000 R14: 00007fa146ced008 R15: 0000000000000016 [ 1684.348947][ T370] memory: usage 307200kB, limit 307200kB, failcnt 5073 03:33:20 executing program 3: r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r0, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) write$P9_RLERRORu(r0, &(0x7f0000000080)={0x11, 0x7, 0x2, {{0x4, '.em1'}, 0xff}}, 0x11) r1 = timerfd_create(0x0, 0x0) timerfd_settime(r1, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) [ 1684.435703][ T385] BPF:size != 0 [ 1684.456830][ T385] BPF: [ 1684.456830][ T385] [ 1684.470493][ T392] BPF:[1] ARRAY (anon) [ 1684.481442][ T392] BPF:type_id=3113514752 index_type_id=0 nr_elems=1792 [ 1684.487141][ T370] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1684.498295][ T392] BPF: [ 1684.505082][ T392] BPF:size != 0 [ 1684.510768][ T370] Memory cgroup stats for /syz1: [ 1684.510967][ T370] anon 223342592 [ 1684.510967][ T370] file 0 [ 1684.510967][ T370] kernel_stack 8368128 [ 1684.510967][ T370] slab 14270464 [ 1684.510967][ T370] sock 0 [ 1684.510967][ T370] shmem 0 [ 1684.510967][ T370] file_mapped 0 [ 1684.510967][ T370] file_dirty 0 [ 1684.510967][ T370] file_writeback 0 [ 1684.510967][ T370] anon_thp 161480704 [ 1684.510967][ T370] inactive_anon 0 [ 1684.510967][ T370] active_anon 223346688 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) write(0xffffffffffffffff, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1684.510967][ T370] inactive_file 0 [ 1684.510967][ T370] active_file 36864 [ 1684.510967][ T370] unevictable 0 [ 1684.510967][ T370] slab_reclaimable 2027520 [ 1684.510967][ T370] slab_unreclaimable 12242944 [ 1684.510967][ T370] pgfault 205920 [ 1684.510967][ T370] pgmajfault 0 [ 1684.510967][ T370] workingset_refault 231 [ 1684.510967][ T370] workingset_activate 165 [ 1684.510967][ T370] workingset_nodereclaim 0 [ 1684.510967][ T370] pgrefill 29662 [ 1684.510967][ T370] pgscan 29928 [ 1684.510967][ T370] pgsteal 666 [ 1684.629252][ T392] BPF: [ 1684.629252][ T392] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000080000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$bt_bnep(0x1f, 0x3, 0x4) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x6], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1684.835835][ T404] BPF:[1] ARRAY (anon) [ 1684.870932][ T370] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=360,uid=0 [ 1684.874224][ T404] BPF:type_id=3113514752 index_type_id=0 nr_elems=2048 [ 1684.928382][ T405] BPF:btf_header not found [ 1684.931237][ T370] Memory cgroup out of memory: Killed process 360 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35792kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1684.982292][ T404] BPF: [ 1684.986523][ T409] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1684.995779][ T404] BPF:size != 0 [ 1685.022153][ T404] BPF: [ 1685.022153][ T404] [ 1685.049309][ T415] BPF:[1] ARRAY (anon) [ 1685.064717][ T415] BPF:type_id=3113514752 index_type_id=0 nr_elems=2048 [ 1685.087816][ T415] BPF: 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg\x00', 0x14b302, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_FREE(r2, 0x4112, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$SG_SET_TIMEOUT(r2, 0x2201, &(0x7f0000000140)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1685.099632][ T415] BPF:size != 0 [ 1685.113113][ T415] BPF: [ 1685.113113][ T415] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b900000000000a0000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1685.286736][ T420] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1685.340391][ T429] BPF:[1] ARRAY (anon) [ 1685.352899][ T429] BPF:type_id=3113514752 index_type_id=0 nr_elems=2560 [ 1685.369481][ T429] BPF: [ 1685.372498][ T429] BPF:size != 0 [ 1685.376741][ T429] BPF: [ 1685.376741][ T429] [ 1685.387405][ T432] BPF:[1] ARRAY (anon) [ 1685.392818][ T432] BPF:type_id=3113514752 index_type_id=0 nr_elems=2560 [ 1685.400127][ T432] BPF: [ 1685.411597][ T378] BPF:[1] Invalid kind:0 [ 1685.419295][ T432] BPF:size != 0 [ 1685.434259][ T378] BPF:[1] Invalid kind:0 [ 1685.448622][ T432] BPF: [ 1685.448622][ T432] 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x58, r4, 0x1, 0x0, 0x2, {}, [@IPVS_CMD_ATTR_SERVICE={0x44, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, '\nip\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_NETMASK={0x8}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_FWMARK={0x8}]}]}, 0x58}}, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x5c, r4, 0x400, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8}, @IPVS_CMD_ATTR_SERVICE={0x40, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast1}, @IPVS_SVC_ATTR_PROTOCOL={0x8}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblc\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@dev={0xfe, 0x80, [], 0x13}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x4041) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b900000000001c0000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) write(0xffffffffffffffff, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) r1 = creat(&(0x7f0000000180)='./file0\x00', 0x10) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x298f05ea5db987b3}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=@getchain={0x38, 0x66, 0x0, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x2, 0xf}, {0xfff3, 0xc}, {0x9, 0x2}}, [{0x8, 0xb, 0x4}, {0x8, 0xb, 0xfffffffa}]}, 0x38}, 0x1, 0x0, 0x0, 0x44020}, 0x411) [ 1685.694595][ T445] BPF:[1] ARRAY (anon) [ 1685.707723][ T445] BPF:type_id=3113514752 index_type_id=0 nr_elems=7168 [ 1685.718573][ T446] netlink: 'syz-executor.5': attribute type 1 has an invalid length. 03:33:21 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1685.783987][ T449] BPF:[1] Invalid kind:0 [ 1685.786732][ T445] BPF: [ 1685.797744][ T452] BPF:btf_header not found [ 1685.803336][ T446] IPVS: persistence engine module ip_vs_pe_ [ 1685.803336][ T446] ip not found [ 1685.812808][ T445] BPF:size != 0 [ 1685.829044][ T445] BPF: [ 1685.829044][ T445] [ 1685.865072][ T456] BPF:[1] ARRAY (anon) [ 1685.893192][ T456] BPF:type_id=3113514752 index_type_id=0 nr_elems=7168 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x9]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) syz_open_dev$vivid(&(0x7f0000000140)='/dev/video#\x00', 0x3, 0x2) ioctl$CAPI_CLR_FLAGS(r3, 0x80044325, &(0x7f0000000000)) [ 1685.943164][ T456] BPF: [ 1685.958518][ T456] BPF:size != 0 [ 1685.975890][ T456] BPF: [ 1685.975890][ T456] 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1686.056647][ T468] BPF:[1] Invalid kind:0 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b900000000001e0000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) r1 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r1, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r1, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) syz_open_dev$media(&(0x7f0000000400)='/dev/media#\x00', 0x80000000, 0x50001) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000000380)={r3, 0x2a, "cd6c0054cbb5903db4d61972036093aae9d8d388593def7db8fccf7c53a53fc6ffcb81f66aa6dc5a2fb0"}, &(0x7f00000003c0)=0x32) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000080)={r4, @in6={{0xa, 0x4e24, 0xc7, @loopback, 0x3}}, 0x8001, 0x4}, &(0x7f0000000180)=0x90) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f00000001c0)={r5, @in6={{0xa, 0x4e20, 0x6, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x400}}, 0x0, 0x0, 0x9, 0x2, 0x4}, &(0x7f0000000280)=0x98) r6 = syz_open_dev$vcsu(&(0x7f0000000340)='/dev/vcsu#\x00', 0x2, 0x820480) ioctl$NBD_CLEAR_SOCK(r6, 0xab04) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) bind$unix(0xffffffffffffffff, &(0x7f00000002c0)=@abs={0x3, 0x0, 0x4e23}, 0x6e) [ 1686.338100][ T481] BPF:[1] ARRAY (anon) [ 1686.360364][ T481] BPF:type_id=3113514752 index_type_id=0 nr_elems=7680 [ 1686.388551][ T481] BPF: [ 1686.394551][ T481] BPF:size != 0 [ 1686.401362][ T481] BPF: [ 1686.401362][ T481] [ 1686.415650][ T489] BPF:[1] ARRAY (anon) [ 1686.424803][ T489] BPF:type_id=3113514752 index_type_id=0 nr_elems=7680 [ 1686.440991][ T475] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1686.458766][ T489] BPF: [ 1686.470794][ T489] BPF:size != 0 [ 1686.481441][ T489] BPF: [ 1686.481441][ T489] [ 1686.487682][ T475] CPU: 1 PID: 475 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1686.496313][ T475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1686.506405][ T475] Call Trace: [ 1686.509760][ T475] dump_stack+0x11d/0x181 [ 1686.514116][ T475] dump_header+0xaa/0x39c [ 1686.518613][ T475] oom_kill_process.cold+0x10/0x15 [ 1686.523825][ T475] out_of_memory+0x231/0xa60 [ 1686.528484][ T475] mem_cgroup_out_of_memory+0x128/0x150 [ 1686.534052][ T475] try_charge+0xb6c/0xbf0 [ 1686.538493][ T475] ? rcu_note_context_switch+0x6d0/0x760 [ 1686.544219][ T475] mem_cgroup_try_charge+0xd2/0x260 [ 1686.549540][ T475] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1686.555186][ T475] wp_page_copy+0x322/0x1040 [ 1686.559787][ T475] ? _raw_spin_unlock_irqrestore+0x70/0x80 [ 1686.565606][ T475] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1686.571460][ T475] do_wp_page+0x192/0xeb0 [ 1686.575791][ T475] ? record_times+0x16/0x90 [ 1686.580426][ T475] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1686.586348][ T475] __handle_mm_fault+0x1d16/0x2e00 [ 1686.591518][ T475] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1686.597701][ T475] handle_mm_fault+0x21b/0x530 [ 1686.602977][ T475] __do_page_fault+0x456/0x8d0 [ 1686.607753][ T475] do_page_fault+0x38/0x194 [ 1686.612260][ T475] page_fault+0x34/0x40 [ 1686.616426][ T475] RIP: 0033:0x40f958 [ 1686.620354][ T475] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf fa 00 4c 00 31 c0 e8 53 25 ff ff 31 ff e8 9c 21 ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d ee 2c 66 00 [ 1686.641025][ T475] RSP: 002b:00007ffcc9750d30 EFLAGS: 00010246 [ 1686.647125][ T475] RAX: 00000000dbdfc292 RBX: 000000003d65db6b RCX: 0000001b2ce20000 [ 1686.655096][ T475] RDX: 0000000000000000 RSI: 0000000000000292 RDI: ffffffffdbdfc292 [ 1686.663055][ T475] RBP: 000000000000000b R08: 00000000dbdfc292 R09: 00000000dbdfc296 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) write(0xffffffffffffffff, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1686.671092][ T475] R10: 00007ffcc9750ed0 R11: 0000000000000246 R12: 000000000075bfa8 [ 1686.679080][ T475] R13: 0000000080000000 R14: 00007fa146ced008 R15: 000000000000000b 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000200000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1686.718287][ T475] memory: usage 307200kB, limit 307200kB, failcnt 5110 [ 1686.742065][ T475] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1686.763617][ T475] Memory cgroup stats for /syz1: [ 1686.763917][ T475] anon 223404032 [ 1686.763917][ T475] file 0 [ 1686.763917][ T475] kernel_stack 8368128 [ 1686.763917][ T475] slab 14270464 [ 1686.763917][ T475] sock 0 [ 1686.763917][ T475] shmem 0 [ 1686.763917][ T475] file_mapped 0 [ 1686.763917][ T475] file_dirty 0 [ 1686.763917][ T475] file_writeback 0 [ 1686.763917][ T475] anon_thp 161480704 [ 1686.763917][ T475] inactive_anon 0 [ 1686.763917][ T475] active_anon 223408128 [ 1686.763917][ T475] inactive_file 0 [ 1686.763917][ T475] active_file 36864 [ 1686.763917][ T475] unevictable 0 [ 1686.763917][ T475] slab_reclaimable 2027520 [ 1686.763917][ T475] slab_unreclaimable 12242944 [ 1686.763917][ T475] pgfault 206151 [ 1686.763917][ T475] pgmajfault 0 [ 1686.763917][ T475] workingset_refault 231 [ 1686.763917][ T475] workingset_activate 165 [ 1686.763917][ T475] workingset_nodereclaim 0 [ 1686.763917][ T475] pgrefill 30292 [ 1686.763917][ T475] pgscan 30558 [ 1686.763917][ T475] pgsteal 699 [ 1686.813168][ T498] BPF:[1] ARRAY (anon) [ 1686.949390][ T500] BPF:btf_header not found [ 1686.963289][ T498] BPF:type_id=3113514752 index_type_id=0 nr_elems=8192 [ 1687.017051][ T498] BPF: [ 1687.023227][ T498] BPF:size != 0 [ 1687.031173][ T498] BPF: [ 1687.031173][ T498] [ 1687.047498][ T502] BPF:[1] ARRAY (anon) [ 1687.060153][ T475] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=469,uid=0 [ 1687.062737][ T502] BPF:type_id=3113514752 index_type_id=0 nr_elems=8192 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x20000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x100000) ioctl$KIOCSOUND(r3, 0x4b2f, 0x3ff) [ 1687.115074][ T475] Memory cgroup out of memory: Killed process 469 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1687.137280][ T502] BPF: [ 1687.150990][ T502] BPF:size != 0 [ 1687.163839][ T502] BPF: [ 1687.163839][ T502] [ 1687.186252][ T1067] oom_reaper: reaped process 469 (syz-executor.1), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000480000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1687.237641][ T509] BPF:[1] Invalid kind:0 [ 1687.284664][ T507] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 03:33:20 executing program 2: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000000)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r3}, &(0x7f0000000100)=0x10) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) [ 1687.370204][ T494] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) ioctl$TIOCSWINSZ(r1, 0x5414, &(0x7f0000000080)={0x101, 0x1, 0x7, 0x9}) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r2, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$sock_inet_tcp_SIOCATMARK(r2, 0x8905, &(0x7f00000000c0)) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x84000, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r3, 0x4c09, 0xfff) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x730a, 0x0, 0x0, 0x0, 0x7a734c10], 0x1000, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1687.415565][ T519] BPF:[1] ARRAY (anon) [ 1687.419899][ T519] BPF:type_id=3113514752 index_type_id=0 nr_elems=18432 [ 1687.436434][ T519] BPF: [ 1687.461868][ T519] BPF:size != 0 [ 1687.465448][ T519] BPF: [ 1687.465448][ T519] [ 1687.470405][ T494] CPU: 1 PID: 494 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1687.479012][ T494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1687.489069][ T494] Call Trace: [ 1687.492367][ T494] dump_stack+0x11d/0x181 [ 1687.496712][ T494] dump_header+0xaa/0x39c [ 1687.501127][ T494] oom_kill_process.cold+0x10/0x15 [ 1687.506257][ T494] out_of_memory+0x231/0xa60 [ 1687.510863][ T494] mem_cgroup_out_of_memory+0x128/0x150 [ 1687.516590][ T494] try_charge+0xb6c/0xbf0 [ 1687.520932][ T494] ? rcu_note_context_switch+0x6d0/0x760 [ 1687.526580][ T494] mem_cgroup_try_charge+0xd2/0x260 [ 1687.531893][ T494] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1687.537962][ T494] __handle_mm_fault+0x197f/0x2e00 [ 1687.543188][ T494] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1687.549301][ T494] handle_mm_fault+0x21b/0x530 [ 1687.554319][ T494] __do_page_fault+0x456/0x8d0 [ 1687.559076][ T494] do_page_fault+0x38/0x194 [ 1687.563643][ T494] page_fault+0x34/0x40 [ 1687.567790][ T494] RIP: 0033:0x400644 [ 1687.571732][ T494] Code: 06 e9 49 01 00 00 48 8b 44 24 10 48 0b 44 24 28 75 1f 48 8b 14 24 48 8b 7c 24 20 be 04 00 00 00 e8 11 55 00 00 48 8b 74 24 08 <89> 06 e9 1e 01 00 00 48 8b 44 24 08 48 8b 14 24 be 04 00 00 00 8b [ 1687.591518][ T494] RSP: 002b:00007fff9b1d2f10 EFLAGS: 00010202 [ 1687.597966][ T494] RAX: 0000000000000008 RBX: 000000000075c9a0 RCX: 0000000000000000 [ 1687.605990][ T494] RDX: 0000000000000000 RSI: 000000002095dffc RDI: 0000000000000008 [ 1687.615012][ T494] RBP: 0000000000761a28 R08: 0000000000000000 R09: 0000000000000000 [ 1687.622982][ T494] R10: 00007fff9b1d3020 R11: 0000000000000246 R12: 000000000075c1c0 [ 1687.631004][ T494] R13: 000000000019bee7 R14: 0000000000761a30 R15: 000000000075c1cc [ 1687.641534][ T494] memory: usage 307200kB, limit 307200kB, failcnt 13133 [ 1687.653544][ T526] BPF:[1] ARRAY (anon) [ 1687.657974][ T526] BPF:type_id=3113514752 index_type_id=0 nr_elems=18432 [ 1687.683726][ T494] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1687.695385][ T526] BPF: [ 1687.710367][ T526] BPF:size != 0 [ 1687.716675][ T494] Memory cgroup stats for /syz0: [ 1687.717108][ T494] anon 245018624 [ 1687.717108][ T494] file 0 [ 1687.717108][ T494] kernel_stack 6524928 [ 1687.717108][ T494] slab 9388032 [ 1687.717108][ T494] sock 0 [ 1687.717108][ T494] shmem 0 [ 1687.717108][ T494] file_mapped 0 [ 1687.717108][ T494] file_dirty 0 [ 1687.717108][ T494] file_writeback 0 [ 1687.717108][ T494] anon_thp 199229440 [ 1687.717108][ T494] inactive_anon 0 [ 1687.717108][ T494] active_anon 244940800 [ 1687.717108][ T494] inactive_file 0 [ 1687.717108][ T494] active_file 24576 [ 1687.717108][ T494] unevictable 0 [ 1687.717108][ T494] slab_reclaimable 675840 [ 1687.717108][ T494] slab_unreclaimable 8712192 [ 1687.717108][ T494] pgfault 217074 [ 1687.717108][ T494] pgmajfault 0 [ 1687.717108][ T494] workingset_refault 264 [ 1687.717108][ T494] workingset_activate 165 [ 1687.717108][ T494] workingset_nodereclaim 0 [ 1687.717108][ T494] pgrefill 23074 [ 1687.717108][ T494] pgscan 48688 [ 1687.717108][ T494] pgsteal 24352 [ 1687.821795][ T526] BPF: [ 1687.821795][ T526] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b900000000004c0000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000009"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1688.022014][ T538] BPF:[1] ARRAY (anon) [ 1688.036187][ T538] BPF:type_id=3113514752 index_type_id=0 nr_elems=19456 [ 1688.038981][ T494] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=32641,uid=0 [ 1688.047137][ T539] BPF:Invalid string section [ 1688.069317][ T538] BPF: 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000009"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1688.073924][ T538] BPF:size != 0 [ 1688.077778][ T538] BPF: [ 1688.077778][ T538] [ 1688.086260][ T542] BPF:[1] ARRAY (anon) [ 1688.092843][ T542] BPF:type_id=3113514752 index_type_id=0 nr_elems=19456 [ 1688.105850][ T540] BPF:Invalid string section [ 1688.111059][ T542] BPF: [ 1688.115782][ T542] BPF:size != 0 [ 1688.126760][ T542] BPF: [ 1688.126760][ T542] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000600000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1688.214110][ T494] Memory cgroup out of memory: Killed process 32641 (syz-executor.0) total-vm:73244kB, anon-rss:2248kB, file-rss:35820kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1688.224860][ T547] BPF:Invalid string section 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1688.273785][ T548] BPF:Invalid string section [ 1688.317518][ T553] BPF:[1] ARRAY (anon) [ 1688.323792][ T553] BPF:type_id=3113514752 index_type_id=0 nr_elems=24576 [ 1688.331407][ T553] BPF: [ 1688.334332][ T553] BPF:size != 0 [ 1688.337976][ T553] BPF: [ 1688.337976][ T553] [ 1688.365271][ T557] BPF:[1] ARRAY (anon) [ 1688.379996][ T557] BPF:type_id=3113514752 index_type_id=0 nr_elems=24576 [ 1688.395853][ T557] BPF: [ 1688.414246][ T557] BPF:size != 0 [ 1688.418069][ T557] BPF: [ 1688.418069][ T557] [ 1688.489261][ T560] BPF:[1] Invalid kind:0 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000000)=0x14) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:33:20 executing program 2: timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r0, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000000)={r2}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x800a, 0x3, 0x4, r2}, &(0x7f0000000100)=0x10) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000680000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/53, 0x6331027c}], 0x182) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x7, 0x4c2) setsockopt$inet6_icmp_ICMP_FILTER(r2, 0x1, 0x1, &(0x7f0000000100)={0x8}, 0x4) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000240)="2023891997adc272c0a3ec6f69680959699f3180e6c46b7eaad37f6c87b71c3ba067643a1cd0f8f7dae5e80000000000000001b647712ebca76d67ebff9fe4f23d1722bd1fbba0a586deb5756e9bb2752d482af67e1db96319a5a2e9da9c136c50a98a04000034086eb0442e0ab62c03dde87e86200db5e9a17f3cd738000a50a0737c0e1468728378084858283f4232b22a755d175295d83a8edba2a7df57e3081a54fc86b496f81d5ba198d965982b85ff6de512d3a9e0145c58882417e7622880c44c56095aaf809f567c00"/215, 0x465) setsockopt$inet_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000080)='tls\x00', 0x4) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) [ 1688.646755][ T571] BPF:[1] ARRAY (anon) [ 1688.661803][ T571] BPF:type_id=3113514752 index_type_id=0 nr_elems=26624 [ 1688.699043][ T571] BPF: [ 1688.708672][ T571] BPF:size != 0 [ 1688.720354][ T576] BPF:[1] Invalid kind:0 [ 1688.733254][ T571] BPF: [ 1688.733254][ T571] [ 1688.745775][ T581] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1688.765610][ T583] BPF:btf_header not found [ 1688.779976][ T588] BPF:[1] ARRAY (anon) [ 1688.785780][ T588] BPF:type_id=3113514752 index_type_id=0 nr_elems=26624 [ 1688.790372][ T580] BPF:[1] Invalid kind:0 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b900000000006c0000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1688.793257][ T588] BPF: [ 1688.800302][ T588] BPF:size != 0 [ 1688.804760][ T588] BPF: [ 1688.804760][ T588] 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) r1 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=0xe, 0x800) getsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f0000000100), 0x2) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) [ 1688.944355][ T597] BPF:[1] ARRAY (anon) [ 1688.972366][ T597] BPF:type_id=3113514752 index_type_id=0 nr_elems=27648 [ 1688.972789][ T598] BPF:[1] Invalid kind:0 [ 1688.996394][ T597] BPF: [ 1689.009733][ T597] BPF:size != 0 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1689.028047][ T597] BPF: [ 1689.028047][ T597] [ 1689.062983][ T605] BPF:[1] ARRAY (anon) [ 1689.079027][ T605] BPF:type_id=3113514752 index_type_id=0 nr_elems=27648 [ 1689.128360][ T605] BPF: [ 1689.138576][ T605] BPF:size != 0 [ 1689.164319][ T605] BPF: [ 1689.164319][ T605] 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) fchdir(0xffffffffffffffff) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x3, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x5, 0x0, 0x4, 0x3f, 0x2}}) getsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f0000000000), 0x2) readv(r0, &(0x7f00000000c0), 0x0) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000740000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1689.361908][ T617] BPF:[1] ARRAY (anon) [ 1689.366517][ T617] BPF:type_id=3113514752 index_type_id=0 nr_elems=29696 [ 1689.374459][ T617] BPF: [ 1689.377511][ T617] BPF:size != 0 [ 1689.381561][ T617] BPF: [ 1689.381561][ T617] [ 1689.393013][ T611] BPF:[1] Invalid kind:0 [ 1689.402355][ T619] BPF:[1] ARRAY (anon) [ 1689.408491][ T619] BPF:type_id=3113514752 index_type_id=0 nr_elems=29696 [ 1689.422015][ T618] BPF:[1] Invalid kind:0 [ 1689.426624][ T619] BPF: [ 1689.432963][ T619] BPF:size != 0 [ 1689.476670][ T619] BPF: [ 1689.476670][ T619] 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000000140)={0x90001, 0x0, [0xfffffffffffffffe, 0xfff, 0x4, 0x180000000000, 0x7, 0x80, 0x200000000, 0x7]}) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r5, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r6, 0x5}}, 0x18) r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r7, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r8, 0x5}}, 0x18) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r5, &(0x7f0000000200)={0x4, 0x8, 0xfa00, {r8, 0x5}}, 0x10) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r9, 0x5}}, 0x18) fchmod(r4, 0x80) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:33:20 executing program 2: timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r0, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000000)={r2}, 0x8) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000007"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b900000000007a0000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1689.741679][ T636] BPF:Invalid string section [ 1689.786028][ T631] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1689.806453][ T642] BPF:[1] ARRAY (anon) [ 1689.818812][ T642] BPF:type_id=3113514752 index_type_id=0 nr_elems=31232 [ 1689.828521][ T637] BPF:Invalid string section 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1689.844266][ T647] BPF:btf_header not found [ 1689.925496][ T642] BPF: [ 1689.935705][ T642] BPF:size != 0 [ 1689.940065][ T642] BPF: [ 1689.940065][ T642] [ 1689.953501][ T656] BPF:[1] ARRAY (anon) [ 1689.967139][ T656] BPF:type_id=3113514752 index_type_id=0 nr_elems=31232 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900000000000000000000000000b4"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1689.970901][ T657] BPF:[1] Invalid kind:0 [ 1690.050901][ T656] BPF: [ 1690.061074][ T656] BPF:size != 0 [ 1690.083286][ T656] BPF: [ 1690.083286][ T656] 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r2, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000000)={r4}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f0000000400)={r4, 0x1}, 0x8) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) r6 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x5bbb326168088b4f, 0x0) sendmsg$tipc(r6, &(0x7f0000000300)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x4}}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000200)="9ffe8a72eee248424b4006554a67a1b64337dcdd31a93266fcf3e743c9080a17e6670f6eee132e4317a2a9433d65160818d51cb9e1192388c6f34bfe98a423fc45e2af6a47458e584dac7314a7624dabbdbcf4d08dade9f47587080be292c8806e11735e83902f67228ba29e3fc7ba6ad13840f67bbfc35959df2c7e145a", 0x7e}], 0x1, &(0x7f0000000280)="b1ec1a1211fae0e684321db25d5020c515140027af4df523d8937c57e9a61057102306d5aed78308dc65e3532d0ec292bdf6f46d0222b66ef105da802b842a6f64f269b7ac80a3830044a3766dd7f4d53c1ef7a7aee11171dd048cb060562f0800b40e675cb594", 0x67, 0x4000000}, 0x2000854) ioctl$KVM_RUN(r5, 0xae80, 0x0) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000f80000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) ioctl$VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000080)={0x9, 0x9, 0x4}) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) [ 1690.351112][ T674] BPF:[1] ARRAY (anon) [ 1690.362427][ T674] BPF:type_id=3113514752 index_type_id=0 nr_elems=63488 [ 1690.372227][ T664] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1690.391886][ T674] BPF: [ 1690.395947][ T674] BPF:size != 0 [ 1690.400353][ T664] CPU: 1 PID: 664 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1690.408873][ T664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1690.418945][ T664] Call Trace: [ 1690.422689][ T664] dump_stack+0x11d/0x181 [ 1690.427366][ T664] dump_header+0xaa/0x39c [ 1690.431987][ T664] oom_kill_process.cold+0x10/0x15 [ 1690.437297][ T664] out_of_memory+0x231/0xa60 [ 1690.442085][ T664] mem_cgroup_out_of_memory+0x128/0x150 [ 1690.447770][ T664] try_charge+0xb6c/0xbf0 [ 1690.452681][ T664] ? rcu_note_context_switch+0x6d0/0x760 [ 1690.459379][ T664] mem_cgroup_try_charge+0xd2/0x260 [ 1690.465074][ T664] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1690.470729][ T664] wp_page_copy+0x322/0x1040 [ 1690.475354][ T664] ? _raw_spin_unlock_irqrestore+0x70/0x80 [ 1690.481290][ T664] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1690.487154][ T664] do_wp_page+0x192/0xeb0 [ 1690.491574][ T664] ? record_times+0x16/0x90 [ 1690.496156][ T664] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1690.502143][ T664] __handle_mm_fault+0x1d16/0x2e00 [ 1690.507352][ T664] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1690.513592][ T664] handle_mm_fault+0x21b/0x530 [ 1690.518462][ T664] __do_page_fault+0x456/0x8d0 [ 1690.523319][ T664] do_page_fault+0x38/0x194 [ 1690.527819][ T664] page_fault+0x34/0x40 [ 1690.532127][ T664] RIP: 0033:0x40f958 [ 1690.536108][ T664] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf fa 00 4c 00 31 c0 e8 53 25 ff ff 31 ff e8 9c 21 ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d ee 2c 66 00 [ 1690.557205][ T664] RSP: 002b:00007ffcc9750d30 EFLAGS: 00010246 [ 1690.563369][ T664] RAX: 000000007f5711dd RBX: 0000000020860d16 RCX: 0000001b2ce20000 [ 1690.571333][ T664] RDX: 0000000000000000 RSI: 00000000000011dd RDI: ffffffff7f5711dd [ 1690.579523][ T664] RBP: 0000000000000001 R08: 000000007f5711dd R09: 000000007f5711e1 [ 1690.587716][ T664] R10: 00007ffcc9750ed0 R11: 0000000000000246 R12: 000000000075bfa8 [ 1690.595977][ T664] R13: 0000000080000000 R14: 00007fa146ced008 R15: 0000000000000001 [ 1690.605581][ T678] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1690.618611][ T664] memory: usage 307200kB, limit 307200kB, failcnt 5143 [ 1690.624950][ T674] BPF: [ 1690.624950][ T674] 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1690.650896][ T664] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1690.654314][ T680] BPF:[1] ARRAY (anon) [ 1690.674231][ T664] Memory cgroup stats for /syz1: [ 1690.674526][ T664] anon 222203904 [ 1690.674526][ T664] file 0 [ 1690.674526][ T664] kernel_stack 8478720 [ 1690.674526][ T664] slab 14405632 [ 1690.674526][ T664] sock 0 [ 1690.674526][ T664] shmem 0 [ 1690.674526][ T664] file_mapped 0 [ 1690.674526][ T664] file_dirty 0 [ 1690.674526][ T664] file_writeback 0 [ 1690.674526][ T664] anon_thp 159383552 [ 1690.674526][ T664] inactive_anon 0 [ 1690.674526][ T664] active_anon 222208000 [ 1690.674526][ T664] inactive_file 0 [ 1690.674526][ T664] active_file 36864 [ 1690.674526][ T664] unevictable 0 [ 1690.674526][ T664] slab_reclaimable 2027520 [ 1690.674526][ T664] slab_unreclaimable 12378112 [ 1690.674526][ T664] pgfault 206811 [ 1690.674526][ T664] pgmajfault 0 [ 1690.674526][ T664] workingset_refault 231 [ 1690.674526][ T664] workingset_activate 165 [ 1690.674526][ T664] workingset_nodereclaim 0 [ 1690.674526][ T664] pgrefill 31417 [ 1690.674526][ T664] pgscan 31651 [ 1690.674526][ T664] pgsteal 699 [ 1690.781801][ T680] BPF:type_id=3113514752 index_type_id=0 nr_elems=63488 [ 1690.798128][ T680] BPF: 03:33:20 executing program 2: timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r0, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) r2 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r2, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:20 executing program 3: r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r0, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r2, 0x5}}, 0x18) r3 = epoll_create(0x81) epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r1, &(0x7f0000000100)) r4 = timerfd_create(0x1, 0xc1800) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) timerfd_settime(r4, 0x3, &(0x7f0000000040)={{0x77359400}, {r5, r6+10000000}}, 0x0) readv(r4, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) socket$kcm(0x29, 0x2, 0x0) [ 1690.801294][ T680] BPF:size != 0 [ 1690.806648][ T680] BPF: [ 1690.806648][ T680] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b9000000ffffff0000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1690.909268][ T682] BPF:btf_header not found [ 1691.030725][ T664] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=15897,uid=0 [ 1691.053356][ T664] Memory cgroup out of memory: Killed process 15897 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1691.068543][ T696] BPF:[1] ARRAY (anon) [ 1691.086359][ T696] BPF:type_id=3113514752 index_type_id=4278190080 nr_elems=65535 [ 1691.119381][ T696] BPF: [ 1691.132246][ T696] BPF:size != 0 [ 1691.148259][ T696] BPF: [ 1691.148259][ T696] [ 1691.194341][ T700] BPF:[1] ARRAY (anon) [ 1691.236027][ T700] BPF:type_id=3113514752 index_type_id=4278190080 nr_elems=65535 [ 1691.261349][ T681] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1691.284761][ T668] BPF:Invalid string section [ 1691.293571][ T700] BPF: [ 1691.297172][ T681] CPU: 0 PID: 681 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1691.297223][ T681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1691.315810][ T681] Call Trace: [ 1691.319129][ T681] dump_stack+0x11d/0x181 [ 1691.323564][ T681] dump_header+0xaa/0x39c [ 1691.329706][ T700] BPF:size != 0 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1691.329872][ T681] oom_kill_process.cold+0x10/0x15 [ 1691.338433][ T681] out_of_memory+0x231/0xa60 [ 1691.339207][ T700] BPF: [ 1691.339207][ T700] [ 1691.343132][ T681] mem_cgroup_out_of_memory+0x128/0x150 [ 1691.343152][ T681] try_charge+0xb6c/0xbf0 [ 1691.343216][ T681] ? __rcu_read_unlock+0x66/0x3d0 [ 1691.362974][ T681] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1691.368506][ T681] __memcg_kmem_charge+0xcf/0x1b0 [ 1691.373566][ T681] copy_process+0x11d2/0x3c40 [ 1691.378270][ T681] ? record_times+0x16/0x90 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000100000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1691.382908][ T681] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1691.388983][ T681] _do_fork+0xfe/0x7a0 [ 1691.393195][ T681] ? cgroup_file_notify+0xff/0x130 [ 1691.398383][ T681] ? blkcg_maybe_throttle_current+0x23d/0x580 [ 1691.404580][ T681] __x64_sys_clone+0x130/0x170 [ 1691.409535][ T681] do_syscall_64+0xcc/0x3a0 [ 1691.414145][ T681] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1691.420159][ T681] RIP: 0033:0x45d2d9 [ 1691.424160][ T681] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75 [ 1691.444304][ T681] RSP: 002b:00007fff9b1d2e18 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 1691.452729][ T681] RAX: ffffffffffffffda RBX: 00007fde0f91f700 RCX: 000000000045d2d9 [ 1691.460984][ T681] RDX: 00007fde0f91f9d0 RSI: 00007fde0f91edb0 RDI: 00000000003d0f00 [ 1691.469125][ T681] RBP: 00007fff9b1d3030 R08: 00007fde0f91f700 R09: 00007fde0f91f700 [ 1691.477424][ T681] R10: 00007fde0f91f9d0 R11: 0000000000000202 R12: 0000000000000000 [ 1691.485411][ T681] R13: 00007fff9b1d2ecf R14: 00007fde0f91f9c0 R15: 000000000075c07c [ 1691.547145][ T706] BPF:[1] ARRAY (anon) [ 1691.553366][ T681] memory: usage 307184kB, limit 307200kB, failcnt 13614 [ 1691.569841][ T706] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1691.588922][ T706] BPF: [ 1691.589111][ T681] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1691.605139][ T681] Memory cgroup stats for /syz0: [ 1691.605344][ T681] anon 245092352 [ 1691.605344][ T681] file 0 [ 1691.605344][ T681] kernel_stack 6524928 [ 1691.605344][ T681] slab 9388032 [ 1691.605344][ T681] sock 0 [ 1691.605344][ T681] shmem 0 [ 1691.605344][ T681] file_mapped 0 [ 1691.605344][ T681] file_dirty 0 [ 1691.605344][ T681] file_writeback 0 [ 1691.605344][ T681] anon_thp 199229440 [ 1691.605344][ T681] inactive_anon 0 [ 1691.605344][ T681] active_anon 245149696 [ 1691.605344][ T681] inactive_file 0 [ 1691.605344][ T681] active_file 159744 [ 1691.605344][ T681] unevictable 0 [ 1691.605344][ T681] slab_reclaimable 675840 [ 1691.605344][ T681] slab_unreclaimable 8712192 [ 1691.605344][ T681] pgfault 217404 [ 1691.605344][ T681] pgmajfault 0 [ 1691.605344][ T681] workingset_refault 264 [ 1691.605344][ T681] workingset_activate 165 [ 1691.605344][ T681] workingset_nodereclaim 0 [ 1691.605344][ T681] pgrefill 23835 [ 1691.605344][ T681] pgscan 50726 [ 1691.605344][ T681] pgsteal 25548 [ 1691.608583][ T706] BPF:size != 0 [ 1691.635833][ T681] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=648,uid=0 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x1f, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x3073, 0x0, 0xfffffffffffffffc], 0x0, 0x40}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1691.762259][ T681] Memory cgroup out of memory: Killed process 648 (syz-executor.0) total-vm:73112kB, anon-rss:2240kB, file-rss:35828kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000 03:33:20 executing program 2: timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r0, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) socket$inet6_sctp(0xa, 0x10000000005, 0x84) r1 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r1, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:20 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20\x00', 0x2, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x1, 0x0) r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r4, 0x5}}, 0x18) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40286608, &(0x7f0000000180)={0x7, 0x2a6a, 0x4, 0xfffffffffffffffd, 0x837, 0x7}) write(r2, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000480)={"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"}) setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f00000000c0)=0x5, 0x4) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) clock_settime(0x0, &(0x7f0000000140)={r5, r6+30000000}) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1692.027189][ T730] BPF:[1] Invalid kind:0 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000180)='/proc/capi/capi20\x00', 0x400, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @ioapic={0x6000, 0x5, 0x9, 0x5, 0x0, [{0x7, 0x5, 0x81, [], 0x7}, {0x6, 0x1, 0x3, [], 0x8d}, {0x1, 0xff, 0x6, [], 0x6}, {0x1, 0xd, 0x5f, [], 0x7}, {0x3, 0x4, 0xd5, [], 0x7}, {0x79, 0x40, 0x7f, [], 0x1f}, {0x1, 0x5, 0x2e, [], 0x1}, {0x81, 0x6, 0x1f, [], 0x7c}, {0x6, 0x6, 0x9, [], 0x81}, {0x2, 0x68, 0xf8, [], 0x1f}, {0x7, 0x0, 0xff, [], 0x9e}, {0x3, 0x28, 0x6, [], 0x9}, {0xef, 0x6, 0x3f, [], 0x9}, {0x3, 0x3f, 0x1f, [], 0x64}, {0x8, 0x4, 0x7, [], 0x1}, {0x7f, 0x5, 0x81, [], 0x81}, {0x4, 0x40, 0x4, [], 0x4}, {0x0, 0x3f, 0x20, [], 0x1}, {0x1c, 0x1, 0x7, [], 0x9}, {0xff, 0xc, 0x5f, [], 0x1}, {0x4, 0x95, 0xb6, [], 0x81}, {0x5, 0x75, 0x5e, [], 0x8}, {0x6, 0x3e, 0xd4, [], 0x4}, {0x7f, 0x40, 0xf8, [], 0xee}]}}) r4 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r4, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r4, 0x8982, &(0x7f0000000400)={0x3, 'gre0\x00', {0xeb65}, 0x3f}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r5, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r6 = openat(r5, &(0x7f0000000000)='./file0\x00', 0x8000, 0x40) ioctl$VIDIOC_G_PARM(r6, 0xc0cc5615, &(0x7f0000000200)={0x5, @capture={0x0, 0x0, {0x0, 0xc9c}, 0x3ff, 0x1}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r7, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r7, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) write$FUSE_NOTIFY_DELETE(r7, &(0x7f0000000140)={0x2a, 0x6, 0x0, {0x0, 0x5, 0x1, 0x0, '&'}}, 0x2a) [ 1692.158829][ T706] BPF: [ 1692.158829][ T706] [ 1692.217178][ T747] BPF:[1] ARRAY (anon) [ 1692.235798][ T747] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1692.268561][ T749] BPF:[1] Invalid kind:0 [ 1692.302147][ T747] BPF: [ 1692.306999][ T747] BPF:size != 0 [ 1692.307191][ T753] BPF:[1] Invalid kind:0 [ 1692.330049][ T747] BPF: [ 1692.330049][ T747] [ 1692.396567][ T760] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 03:33:20 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 3: r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r0, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r2, 0x5}}, 0x18) r3 = epoll_create(0x81) epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r1, &(0x7f0000000100)) r4 = timerfd_create(0x1, 0xc1800) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) timerfd_settime(r4, 0x3, &(0x7f0000000040)={{0x77359400}, {r5, r6+10000000}}, 0x0) readv(r4, &(0x7f0000000440)=[{&(0x7f0000000000)=""/59, 0xffffff60}], 0x1) clock_settime(0x0, &(0x7f0000000140)={0x77359400}) socket$kcm(0x29, 0x2, 0x0) 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000200000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1692.519644][ T767] BPF:[1] Invalid kind:0 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1692.590321][ T774] BPF:[1] ARRAY (anon) [ 1692.616074][ T774] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1692.630611][ T775] BPF:btf_header not found [ 1692.648950][ T774] BPF: [ 1692.660866][ T774] BPF:size != 0 [ 1692.677469][ T774] BPF: [ 1692.677469][ T774] 03:33:20 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1692.708635][ T779] BPF:[1] ARRAY (anon) [ 1692.745008][ T779] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1692.751460][ T780] BPF:[1] Invalid kind:0 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1692.800600][ T782] BPF:[1] Invalid kind:0 [ 1692.805257][ T779] BPF: [ 1692.816125][ T779] BPF:size != 0 [ 1692.830181][ T788] BPF:btf_header not found [ 1692.879442][ T779] BPF: [ 1692.879442][ T779] 03:33:20 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000300000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1692.997421][ T795] BPF:[1] Invalid kind:0 03:33:20 executing program 2: timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r0, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r1 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r1, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1693.037210][ T796] BPF:[1] Invalid kind:0 [ 1693.072687][ T802] BPF:[1] ARRAY (anon) [ 1693.093192][ T802] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1693.102745][ T802] BPF: [ 1693.106342][ T802] BPF:size != 0 [ 1693.145477][ T802] BPF: [ 1693.145477][ T802] [ 1693.169671][ T809] BPF:[1] ARRAY (anon) [ 1693.192720][ T809] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1693.218932][ T809] BPF: [ 1693.224255][ T809] BPF:size != 0 [ 1693.227957][ T809] BPF: [ 1693.227957][ T809] [ 1693.254461][ T810] BPF:[1] Invalid kind:0 03:33:20 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x800, 0x0) setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r1, 0x114, 0xa, &(0x7f0000000140)={0x2, "f7cc"}, 0x3) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$SG_SET_DEBUG(0xffffffffffffffff, 0x227e, &(0x7f0000000180)=0x1) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1693.483008][ T817] BPF:[1] Invalid kind:0 03:33:21 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:21 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000400000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:21 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1693.667969][ T827] BPF:[1] ARRAY (anon) [ 1693.695827][ T827] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1693.735117][ T827] BPF: 03:33:21 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1693.744763][ T827] BPF:size != 0 [ 1693.757406][ T827] BPF: [ 1693.757406][ T827] 03:33:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) unshare(0x6c060000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x8031, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket$inet6(0xa, 0x80001, 0x0) setsockopt$inet6_group_source_req(r2, 0x29, 0x200000002b, &(0x7f0000000140)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @dev}}}, 0x108) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x840, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffffffffffe, 0x2], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1693.787867][ T833] BPF:[1] ARRAY (anon) [ 1693.801942][ T833] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1693.830246][ T835] BPF:btf_header not found [ 1693.864796][ T833] BPF: [ 1693.867654][ T833] BPF:size != 0 [ 1693.876862][ T830] BPF:[1] Invalid kind:0 [ 1693.901767][ T833] BPF: [ 1693.901767][ T833] [ 1693.933314][ T830] BPF:[1] Invalid kind:0 03:33:21 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1693.972428][ T846] BPF:btf_header not found 03:33:21 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000500000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1693.997561][ T840] IPVS: ftp: loaded support on port[0] = 21 03:33:21 executing program 2: timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r1, &(0x7f0000000000)="b6", 0xfffffe7e) [ 1694.201094][ T859] BPF:[1] ARRAY (anon) [ 1694.204827][ T858] BPF:[1] Invalid kind:0 [ 1694.209171][ T859] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1694.243201][ T859] BPF: [ 1694.246049][ T859] BPF:size != 0 [ 1694.257245][ T859] BPF: [ 1694.257245][ T859] [ 1694.267705][ T858] BPF:[1] Invalid kind:0 [ 1694.286018][ T864] BPF:[1] ARRAY (anon) 03:33:21 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1694.310096][ T864] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1694.338530][ T864] BPF: [ 1694.384137][ T864] BPF:size != 0 [ 1694.387721][ T864] BPF: [ 1694.387721][ T864] 03:33:21 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000600000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:22 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1694.628858][ T873] BPF:[1] ARRAY (anon) [ 1694.656664][ T873] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1694.685913][ T873] BPF: [ 1694.691645][ T873] BPF:size != 0 [ 1694.703685][ T873] BPF: [ 1694.703685][ T873] [ 1694.723980][ T875] BPF:[1] ARRAY (anon) [ 1694.747754][ T875] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1694.778006][ T875] BPF: [ 1694.789759][ T875] BPF:size != 0 [ 1694.803591][ T875] BPF: [ 1694.803591][ T875] 03:33:22 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000700000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1694.871747][ T874] BPF:[1] Invalid kind:0 03:33:22 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1694.923653][ T879] BPF:btf_header not found [ 1694.956385][ T874] BPF:[1] Invalid kind:0 03:33:22 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1695.010348][ T851] IPVS: ftp: loaded support on port[0] = 21 [ 1695.032570][ T886] BPF:[1] ARRAY (anon) [ 1695.049464][ T886] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1695.083904][ T886] BPF: [ 1695.086891][ T886] BPF:size != 0 [ 1695.091520][ T889] BPF:btf_header not found [ 1695.116037][ T886] BPF: [ 1695.116037][ T886] [ 1695.159005][ T895] BPF:[1] ARRAY (anon) [ 1695.170773][ T895] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1695.191238][ T895] BPF: [ 1695.209749][ T895] BPF:size != 0 [ 1695.221829][ T895] BPF: [ 1695.221829][ T895] 03:33:22 executing program 2: timerfd_create(0x0, 0x0) pipe(&(0x7f0000000200)) r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:22 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000800000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1695.360320][T19032] tipc: TX() has been purged, node left! [ 1695.382861][ T892] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1695.457117][ T904] BPF:[1] ARRAY (anon) [ 1695.474687][ T904] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1695.487458][ T892] CPU: 0 PID: 892 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1695.496025][ T892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1695.506193][ T892] Call Trace: [ 1695.509561][ T892] dump_stack+0x11d/0x181 [ 1695.509755][ T904] BPF: [ 1695.513906][ T892] dump_header+0xaa/0x39c [ 1695.513986][ T892] oom_kill_process.cold+0x10/0x15 [ 1695.514068][ T892] out_of_memory+0x231/0xa60 [ 1695.525216][ T904] BPF:size != 0 [ 1695.526304][ T892] ? __rcu_read_unlock+0x66/0x3d0 [ 1695.526341][ T892] mem_cgroup_out_of_memory+0x128/0x150 [ 1695.545077][ T892] try_charge+0xb6c/0xbf0 [ 1695.546507][ T904] BPF: [ 1695.546507][ T904] [ 1695.549552][ T892] ? rcu_note_context_switch+0x6d0/0x760 [ 1695.549580][ T892] mem_cgroup_try_charge+0xd2/0x260 [ 1695.566269][ T892] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1695.572005][ T892] __handle_mm_fault+0x197f/0x2e00 [ 1695.577137][ T892] handle_mm_fault+0x21b/0x530 [ 1695.581940][ T892] __do_page_fault+0x456/0x8d0 [ 1695.586722][ T892] do_page_fault+0x38/0x194 [ 1695.591380][ T892] page_fault+0x34/0x40 [ 1695.595802][ T892] RIP: 0033:0x45d2bd [ 1695.599734][ T892] Code: 5b 5d f3 c3 66 0f 1f 84 00 00 00 00 00 48 c7 c0 ea ff ff ff 48 85 ff 0f 84 e0 8c fb ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 <48> 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 [ 1695.604782][ T909] BPF:[1] ARRAY (anon) [ 1695.619543][ T892] RSP: 002b:00007ffcc9750cc8 EFLAGS: 00010202 [ 1695.619556][ T892] RAX: ffffffffffffffea RBX: 00007fa144cec700 RCX: 00007fa144cec700 [ 1695.619565][ T892] RDX: 00000000003d0f00 RSI: 00007fa144cebdb0 RDI: 00000000004114f0 [ 1695.619574][ T892] RBP: 00007ffcc9750ee0 R08: 00007fa144cec9d0 R09: 00007fa144cec700 [ 1695.619583][ T892] R10: 00007fa144cebdc0 R11: 0000000000000246 R12: 0000000000000000 [ 1695.619592][ T892] R13: 00007ffcc9750d7f R14: 00007fa144cec9c0 R15: 000000000075bf2c [ 1695.642720][ T892] memory: usage 307200kB, limit 307200kB, failcnt 5181 [ 1695.682559][ T892] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1695.696341][ T892] Memory cgroup stats for /syz1: [ 1695.696493][ T892] anon 220971008 [ 1695.696493][ T892] file 0 [ 1695.696493][ T892] kernel_stack 8589312 [ 1695.696493][ T892] slab 14540800 [ 1695.696493][ T892] sock 0 [ 1695.696493][ T892] shmem 0 [ 1695.696493][ T892] file_mapped 0 [ 1695.696493][ T892] file_dirty 0 [ 1695.696493][ T892] file_writeback 0 [ 1695.696493][ T892] anon_thp 157286400 [ 1695.696493][ T892] inactive_anon 0 [ 1695.696493][ T892] active_anon 220880896 [ 1695.696493][ T892] inactive_file 0 [ 1695.696493][ T892] active_file 36864 [ 1695.696493][ T892] unevictable 0 [ 1695.696493][ T892] slab_reclaimable 2027520 [ 1695.696493][ T892] slab_unreclaimable 12513280 [ 1695.696493][ T892] pgfault 207603 [ 1695.696493][ T892] pgmajfault 0 [ 1695.696493][ T892] workingset_refault 231 [ 1695.696493][ T892] workingset_activate 165 [ 1695.696493][ T892] workingset_nodereclaim 0 [ 1695.696493][ T892] pgrefill 33371 [ 1695.696493][ T892] pgscan 33610 [ 1695.696493][ T892] pgsteal 699 [ 1695.794446][ T892] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=15794,uid=0 [ 1695.801086][ T909] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1695.815429][ T892] Memory cgroup out of memory: Killed process 15794 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1695.843421][ T1067] oom_reaper: reaped process 15794 (syz-executor.1), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB [ 1695.884387][ T909] BPF: [ 1695.887296][ T909] BPF:size != 0 [ 1695.905444][ T909] BPF: [ 1695.905444][ T909] [ 1695.918258][ T910] BPF:[1] Invalid kind:0 03:33:24 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x200000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x20], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:33:24 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:24 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:24 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000a00000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:24 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:24 executing program 2: timerfd_create(0x0, 0x0) r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, &(0x7f0000000000)="b6", 0xfffffe7e) [ 1697.112364][ T925] BPF:[1] ARRAY (anon) [ 1697.146824][ T925] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1697.155320][ T927] BPF:btf_header not found [ 1697.182467][ T925] BPF: [ 1697.182976][ T919] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 1697.191735][ T925] BPF:size != 0 [ 1697.206428][ T925] BPF: [ 1697.206428][ T925] [ 1697.218842][ T919] CPU: 0 PID: 919 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1697.227393][ T919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1697.237503][ T919] Call Trace: [ 1697.240926][ T919] dump_stack+0x11d/0x181 [ 1697.245272][ T919] dump_header+0xaa/0x39c [ 1697.249645][ T919] oom_kill_process.cold+0x10/0x15 [ 1697.254768][ T919] out_of_memory+0x231/0xa60 [ 1697.259416][ T919] mem_cgroup_out_of_memory+0x128/0x150 [ 1697.265102][ T919] try_charge+0xb6c/0xbf0 [ 1697.269501][ T919] ? rcu_note_context_switch+0x6d0/0x760 [ 1697.275377][ T919] mem_cgroup_try_charge+0xd2/0x260 [ 1697.280770][ T919] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1697.286516][ T919] wp_page_copy+0x322/0x1040 [ 1697.291124][ T919] ? __read_once_size+0x41/0xe0 [ 1697.296030][ T919] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1697.301934][ T919] do_wp_page+0x192/0xeb0 [ 1697.306275][ T919] __handle_mm_fault+0x1d16/0x2e00 [ 1697.311400][ T919] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1697.317482][ T919] handle_mm_fault+0x21b/0x530 [ 1697.322291][ T919] __do_page_fault+0x456/0x8d0 [ 1697.327087][ T919] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1697.333409][ T919] do_page_fault+0x38/0x194 [ 1697.337925][ T919] page_fault+0x34/0x40 [ 1697.342137][ T919] RIP: 0033:0x410918 [ 1697.346169][ T919] Code: 48 8b 05 a3 95 30 00 48 89 08 48 8b 15 a1 95 30 00 48 89 42 08 48 8b 05 86 95 30 00 48 89 05 8f 95 30 00 49 8d 81 c0 02 00 00 <48> 89 05 71 1d 66 00 49 8b 89 c8 02 00 00 49 8b 91 c0 02 00 00 48 [ 1697.365948][ T919] RSP: 002b:00007fff9b1d30a8 EFLAGS: 00010246 [ 1697.372022][ T919] RAX: 0000000000e4bc00 RBX: 00007fff9b1d30b0 RCX: 0000000000719ea0 [ 1697.380160][ T919] RDX: 0000000000410750 RSI: 0000000000719e90 RDI: 0000000000e4bc20 [ 1697.388142][ T919] RBP: 00007fff9b1d30f0 R08: 0000000000000001 R09: 0000000000e4b940 [ 1697.396116][ T919] R10: 0000000000e4bc10 R11: 0000000000000202 R12: 0000000000000001 [ 1697.404156][ T919] R13: 0000000000000000 R14: 0000000000000000 R15: 00007fff9b1d3140 [ 1697.418933][ T932] BPF:[1] ARRAY (anon) [ 1697.424376][ T932] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1697.445455][ T932] BPF: [ 1697.455193][ T932] BPF:size != 0 03:33:24 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x7f9d, 0x40000) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x2e9e, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000, 0x0, 0x3, 0x0, 0x1000000009, 0x0, 0x81, 0x0, 0xfffefffffffffffd], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1697.486049][ T932] BPF: [ 1697.486049][ T932] [ 1697.522012][ T919] memory: usage 307164kB, limit 307200kB, failcnt 14324 [ 1697.560613][ T919] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1697.586657][ T919] Memory cgroup stats for /syz0: [ 1697.586815][ T919] anon 245039104 [ 1697.586815][ T919] file 0 [ 1697.586815][ T919] kernel_stack 6451200 [ 1697.586815][ T919] slab 9388032 [ 1697.586815][ T919] sock 0 [ 1697.586815][ T919] shmem 0 [ 1697.586815][ T919] file_mapped 0 [ 1697.586815][ T919] file_dirty 0 [ 1697.586815][ T919] file_writeback 0 [ 1697.586815][ T919] anon_thp 199229440 [ 1697.586815][ T919] inactive_anon 0 [ 1697.586815][ T919] active_anon 245096448 [ 1697.586815][ T919] inactive_file 32768 03:33:25 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000001c00000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1697.586815][ T919] active_file 24576 [ 1697.586815][ T919] unevictable 0 [ 1697.586815][ T919] slab_reclaimable 675840 [ 1697.586815][ T919] slab_unreclaimable 8712192 [ 1697.586815][ T919] pgfault 218163 [ 1697.586815][ T919] pgmajfault 0 [ 1697.586815][ T919] workingset_refault 264 [ 1697.586815][ T919] workingset_activate 165 [ 1697.586815][ T919] workingset_nodereclaim 0 [ 1697.586815][ T919] pgrefill 24954 [ 1697.586815][ T919] pgscan 53692 [ 1697.586815][ T919] pgsteal 27175 [ 1697.806080][ T943] BPF:[1] ARRAY (anon) [ 1697.823118][ T943] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1697.842487][ T943] BPF: [ 1697.851768][ T943] BPF:size != 0 [ 1697.862844][ T943] BPF: [ 1697.862844][ T943] [ 1697.884909][ T947] BPF:[1] ARRAY (anon) [ 1697.906942][ T947] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1697.925469][ T947] BPF: [ 1697.946042][ T947] BPF:size != 0 [ 1697.949592][ T947] BPF: [ 1697.949592][ T947] 03:33:25 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000001e00000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:25 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) 03:33:25 executing program 2: r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:25 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x7}], 0x1, 0x0) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm_plock\x00', 0x148301, 0x0) ioctl$TIOCSSERIAL(r4, 0x541f, &(0x7f00000002c0)={0x7fff, 0x100, 0xb2, 0x8000, 0xec, 0x0, 0x9, 0x2, 0x4000000, 0x40, 0x40, 0x1, 0x5b1, 0x0, &(0x7f0000000280)=""/55, 0x8, 0xee9, 0x4}) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x4, 0x1, 0x1, 0x0, 0x5, 0x43, 0x2}}) syz_open_dev$loop(&(0x7f0000000400)='/dev/loop#\x00', 0x2b12, 0x24200) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) getsockopt$TIPC_SRC_DROPPABLE(r6, 0x10f, 0x80, &(0x7f0000007f40), &(0x7f0000007f80)=0x4) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r5, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r5, 0xc008551c, &(0x7f0000000480)=ANY=[@ANYBLOB="050000000c020000000000000000000003000000c239ba9fc38f25dc1d6d8518a8c64bb980cb3d166edc6ebbd9026d88cdbaf1d22bf888294066c304ee2e78c98fd52a38948b9d49138c4d9f66db02063bbe0a27d3f2f1593331f4915349b791a8e564b4c3ecfae557827f624acb65"]) r7 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/btrfs-control\x00', 0x200000, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x3, r7}) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x3000) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0xff, 0x0, 0x1, 0x1}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) sendmmsg$alg(r4, &(0x7f0000007e00)=[{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000500)="4f84cbbe059062f95ff81cb144b67140e8cba3dfc52dbaca2947ae4b7e85e706a1fa296fc3e147b98a1003c1556fe7de5d03aa1183fc74b1994afdb6d2d877d1734cec6a9875d60035be36c4f69306c1608cd7e48afe5cc7fc27729a73ce56000714d611205824eb2018", 0x6a}, {&(0x7f0000000580)="58a0d3a9b8b99328aec4282631bad3a143e5b167d51c9461b25f22a5ce364c5b81b6dcb8593e7d2ccf0492a7d56afa6b13c97523ee0f39a6abf32b0676779809ee945e109768c2233c91cdb7bc5fef330c9af20a91db388ff8694f2787042307ac7ce42233524cd9298a9450d2e980390157880a7f945b23d7b3f93ea6cc6da307deb70872fbe88de5365a", 0x8b}, {&(0x7f0000000780)="1b974f54aa62035cf13a6aaf906d81569deed384c41df7c0aedf74812183711c8740971bf11401edd1e9fff9cf4ef2e1c5201c8161ad3855f07f4ce4517d200ca772bdaab162695725ae18297c428594ee22b41338a0e7", 0x57}, {&(0x7f0000000800)="9fa437b434c92edc9c7edb7bb3cee5057702ddbbd24782167a910ca6fc8fd9b1b022e4796571db3f696696c63227a525daf5c979231cdbd3e3289e29a9b88ebb8c1fd7693dd6adf35581781572f8010d51ac21002c7e3046249495", 0x5b}, {&(0x7f0000000880)="eca76184f6988e43328adb1a8ce639d8cf86282bbf46804b35196ca1268f53a568862f5fc5522ec3c32e2e806fd67b6784406a7cd44be17bcee4edc54383f0d716db86217f5eeb88e13ca18c5e122097106c10dd47d05484bd626fb965", 0x5d}, {&(0x7f0000000900)="47f00b6c4ade4133f407e954f8c53e357a05e9ddb0c3344e81ecfb35df9254e25467d9e4e9d1a228bf2370e1146372082a8010c28fb277e645a44eae2b93226bd9979673e91787aea889821e62bc6ba6c35cbe98042fd0e60ee54edc67a71f929312bf422c256a1ec507fe813206cf6b53bbf86aacf57d27c64b2647c49a7044aba19a8b8f", 0x85}], 0x6, &(0x7f0000007fc0)=ANY=[@ANYBLOB="600000000000000017010000020000004b000000b59bea16135103928d55969f01cd41f9170406ec5782006a18a94872c7f1ff9d249baa894b7d45cc4da50f522dcf8b2aafc445a0cd007d4a5051f10153ec69ff1e09fbace7061ae6510494001800000000000000170100000400000005000000000000001800000000000000170100000400000005000000000000001800000000000000170100000300000001000000000000000ddc47db56672f23f2138e9026a578d47b9987f2fe875d7c801116bd88bbdc0db0d613cb8a6f524f40"], 0xa8, 0x80}, {0x0, 0x0, &(0x7f0000001fc0)=[{&(0x7f0000000440)="7dc1cfb128f5d58491d0d1ff9cf67be3bb4dfdde95043043b8c9fc62c3f6fad61540595b93d1e3643b", 0x29}, {&(0x7f0000000b00)="762c188a0fa4907d2d83acb488824384405f26af062b1ad2228f9e10cbc70227e9875e5b9510b66a7d3909937d95f9f9102ff014a5444626e16b6e249d7c0e473b5a7d1a8538dde01c754c5826a5003ff16894f07b920c8f901e07303fe1895f2e6b5cbfeb9f9f4ae7cc02249984f6d7a92df295f2c3ca16cd14a765fda3c7835683a9e26ff0a8c941895fcedd69c0d59294d3d15cf90348d47c8ff4de6c90a9cb973a62fd2e67b0c60b802d6c38f1c175f76d45f3da7313ca750ddc27d0a09d47b2b33aa3923abebb416a366e", 0xcd}, {&(0x7f0000000c00)="20abc11606e40065fd5127e6220a764316238e7ed1df46c54ab738080f6deb5ee6d6ce4b69e378bc24154f655d246b22f1179b625d449f1fadc194a7926a22f4a4f2939dcb7a2064c80efe7b997648870730363d8b8c4d9a300e187f4d", 0x5d}, {&(0x7f0000000c80)="3a0a1f6fc7a5edfe3bd1bdc7f5ed4e5e17afb53704b0b09005229f622b86d0060c7a90f7206e158ea350c4cd4522dadfd2454be8585576f6613346c654b0c29dc3a073873ffb622ffc5fb247c8e732216bcc99cb2d8937b42e54c350ef7fc12a40", 0x61}, {&(0x7f0000000d00)="3e2d88acf9126f6db32c46277cb12766e41c3c2f6d3e9a55fcdcedc3af9a038d1df59813a6433247799380b65be63b19e78d660227414ffc9173863c885dc6043e361f8f545b433778688aa7620c02431671fda9ae701819e6bf2f12ed9f6f0cc39d2cecd49ce40893391dafa3", 0x6d}, {&(0x7f0000000d80)="c9b434c9ad26693cde5c42741e9dffa27d4396a4b3363bb3ec77755bbdb8eb27f10f77450d7eeae45d47d931b99a5ab3ff5a3e768f0693aa4f1e6df057b6eddbbcc48482026c157591f14f12551285cb785e0c4462e987da04af54473325059f9bb0ec42124f044d5089a61a3ef9f5511473279985ff44128d56d7ac2522fc0997f666e06806f230ddc2e143515be03e0f73b0181f9c7961ccfdc6fd84bddcafa51c0da522456a9612b36b378f11a2a3f9f1abcd4d746ed936853b1b2e0c59ee2dbd3f80e0a868cbcb6f6b29e34d7b", 0xcf}, {&(0x7f0000000e80)="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", 0x1000}, {&(0x7f0000001e80)="9008629f518f12423235bcebd6d63e3046b6409cb7dba66b6428222942bebf368af55ab881174411967b116f5727ebda6440d464375ff6c7f7afe99abf8b74de556e20b657a044ebf7323592ae0d66758305f3a42cf63dca3632cbcd1cfe73c1c2872f76e11e5927692d9a211655bd49d123d841", 0x74}, {&(0x7f0000000640)="578b54381226b12223e374b83af022f7cf467d3afb90fb79b8333e31059bf066336d0c806165d23f59a954cc2f30", 0x2e}, {&(0x7f0000001f00)="7b92ec5dfeae67a0b391ef16b4f4d22280adf3a1faa402263b778d56490ecdd5fbd4f80ee5b6211d2f72e4af42ece26f0328b5cfb461d38f0a4c85b82f66c02d31e971cf63b6bbc84a9475e291c56f243e93e267dab78bf83420257bbf3f5b4fd31fc35039fd3494fb24d1475a3fbffd471a091a840b1479d01f499d94ab71305e54c1796c46fe6edab8171881bb1369a24893", 0x93}], 0xa, &(0x7f0000002080)=[@assoc={0x18, 0x117, 0x4, 0x8001}, @op={0x18}, @iv={0xa0, 0x117, 0x2, 0x8a, "c52821e0e540016cd95ffc2e84b034cd566e5038cd586c550311605df85a7c5a5f0346fb38d0a9bc2de8054dfac3a44bdb8a41468a6edd93622e0541c7accef82353bf50934f775fbd6f8b4e91907855398700d0b96dd056e6152e0eb3a171883c192bc9a2ccd20ce4742803f8bdd127c86921c7280643125448fe296a55b0ef8608e6c4f66aedf393e6"}], 0xd0, 0x36bfc1d60f256062}, {0x0, 0x0, &(0x7f0000002440)=[{&(0x7f0000002180)="44d8529e0134ca5731cefe1c020b65cb4d5233e8823b0b87b62dd36515911a8b8137f52802d2a15e7babc2537042cd5782bdf3926ed7415b70905366ae84f8e30616c8acf50675b5e1bd2a6f800c3b85c47f4a6be39289404b3f4c379403e6b7b354f21966c00e9f9caec9c9e46b6fbbca06f1a94f79f199bdf3f9213ab929428592907f1c9231eb6f870b0b87b50779691048fc6f7589", 0x97}, {&(0x7f0000002240)="3a19958e3c55f151c1003f7f815f691bcb36b5ee821aefa53d892a25b42a626c5a6c01a92e7049a718a4a967bd83233e85bbae0a06c45e9ac794b04b60d981be6ffbfddbb2f919adf0650cdd559d19d326e4123a45a069747440acd352617c7b6212a9eb5b7d305a10eb632d524c56e5d19208615a269ce0c8b9d26f414ab897a13d76ac5f31fa7db3c37bfecdf8e4b4db3b06c92309a2352cc84b82", 0x9c}, {&(0x7f0000002300)}, {&(0x7f0000002340)="7aacb95aaecbcbc0686aac396a56477584ddf6dc934803aa1cf82e2a84961ffdfe8b58c03df3e60a99147cfa10aff507ffde985c99451a613da553f006766655c1188b953689454df92398b4e9f6f02eb536ddfa8adfd1507d63ad3b06f3931f8558d55116fdbbb92cceca4af98ee239886f46536e720dd569e1c715470f96bcb43bca8497e7ca8a4b397c5352ed32838ee28f6f71b68078a0d8eb6eb7f194f40ce7d75e30b39ed8f40e43bb56dc1d7342f91483a3d5dbd96b5ad8194165aeb12658c5b37d", 0xc5}], 0x4, &(0x7f0000002480)=[@iv={0xb0, 0x117, 0x2, 0x9b, "ff30749fb6d1f97eabf48f188076b1bee2c4ab1f5893d91ac8f7f3c7dde8e023e2bb41d3bb68404f2b03066128ec7ff68aca0c7c445ccdf1294db58a74c674edd445effc57ab3ea22448a15fb2947ac6010f83a6749179753bb4e5e705dfe65060f983b321086456a51371db6946a49c3228e4150b991a6a19948f6d1c33df03ce9bc9cad6978e700e522a1cb4243a7f09443d5d9eb2ad19e31153"}, @iv={0x1018, 0x117, 0x2, 0x1000, "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"}, @iv={0x1018, 0x117, 0x2, 0x1000, "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"}, @assoc={0x18, 0x117, 0x4, 0x5}, @iv={0x1018, 0x117, 0x2, 0x1000, "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"}, @assoc={0x18, 0x117, 0x4, 0x7}, @assoc={0x18, 0x117, 0x4, 0x6}], 0x3140, 0x80}, {0x0, 0x0, &(0x7f0000007740)=[{&(0x7f00000055c0)="a028526b3cf9070ba46e04a56cdfffb1e7f1de9e5f963a5589f370f89a352462f09a3e4d1fc795c716b2d7c581dfbe49671c215fb8ee31ff3201d84a9358f43b3a22db65149d428860e4aaf5a9e9ce19e05d771d0523d561599791bb09e6a4fbaca288b7bae4", 0x66}, {&(0x7f0000005640)="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", 0x1000}, {&(0x7f0000006640)="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", 0x1000}, {&(0x7f0000007640)="164eb204d07f10debadf05788af4134c54f1025c09256183cceac1f874178fc57bf811a46504e2d2969d1ad43ca29cdde03d9bd12b963cba0f59e92256823c65ffbae3f3de4718c4aadc2585270035509d75453b21059d4ae2e0523a22df2ffb0cd4c17495be4b91a637de694421b6873e492753fc7619c1ed4497f1e2735f6ddbc2a5144b54a121b1df2dd91b3f4493b97406132dc2280bdb4a2fd36d3f173ea8236b33", 0xa4}, {&(0x7f0000007700)="fdf79400470efc979115e66070a22459", 0x10}], 0x5, 0x0, 0x0, 0x10}, {0x0, 0x0, &(0x7f0000007b40)=[{&(0x7f00000077c0)="71ff622f6cbb572c96ed8211df0be0fc186d0b45cbb1d33c91b8d269ed1ee2e2210fd99280c71cbd8119f4ea02df352189a6473ef9451c1113f75cf83b79336d915c46675ef46748f4d264a8bf3819d193fea2c58fc69d61dc8ab46ab35128e9cbe2b1c34d5f6541de4c6e5cf4d4f7c58f1628ffe045935e07b7b0e9d5d97bb99d812a87731f289697", 0x89}, {&(0x7f0000007880)="07fd8b2a397cdbcd6e027f5909a7439572b69123ef9f760e0544d66f4c54f6bc0f6950b438f6602b6645bd3569813c50a976c65749606b06f2d47e86acc91cb57a5fe836466c37c085fae075793ac4c2365040ff4eb5a2f986cfae8fe624b304207c", 0x62}, {&(0x7f0000007900)="6c89c67e290dfa3d1e5768e9229da62d13f09d9a8bf5dbda8c67bd8331c39417a49eb0816710f53366edeccea144010ff53ef516e280a5ace2de2074a525ca48f6e6a01c8b9d8fdab4d351de1930ec77e874633569e8a73a2fa3059befd34c04d1f3a93e7803acbed52155", 0x6b}, {&(0x7f0000007980)="7ed2b6fea43602e3f3a50944692f9b44f70b97d545120fc2b3035eff6a00", 0x1e}, {&(0x7f00000079c0)="5981a8cc8b727da7dfee6a01b623a29280cbf2cfa7c371ff504cd633e4ac13dadd3d4c5bdd4cbd5f5e823238a8be0a83254ca99c6f8810c13144c80e4cd5e449c6dc5b640e39dc5a503ebedfed875704f21a8b0242ade3d86fcf209ef1df5fa319394a7fd94aa5bd9a", 0x69}, {&(0x7f0000007a40)="f887edb64489d7a897d1b18fe2214793341c8961d8df01471110d044d9a663791f7061e7ce810f66b75c783973cc6eda1cf00c86392ceff352a319ef220d812c30615ab8072323011d22bdcad57f501d38b24e48357b4cb1b11983328f22c2d0e9702f164ce88b98bcfb5e088f4aa99facdd79454b67015f6596a4999940e70161e95337ecdefbca550a3f74ac78733287117d6507e429560c2ecd43ccf848014a3503f310a0c0a212a884919e3ce6a57be99034efc63251c30e0b65d1b4f5956cfd7ea7d9", 0xc5}], 0x6, &(0x7f0000007bc0)=[@iv={0xc8, 0x117, 0x2, 0xae, "99ea13ede68ad1a8d665d70ff6fcd5caef0da0a1bde3439a7460efdc3ba9a197e312012793b86840f5861da2fe216a437b22b131289b7d0a981ff506b88259a3af64de94d47b89aadc55bb98dcec6d41fee3d9dd56fc84d1c157380b688dce4539c615f70cf0e6c8aa473987023b35e325038f81e93a052653f271ed75ee3218922ae7d0b87d7161a96eaa1caad1ccb1a4ef8884719ac4cabab5bf42cadbbe14c150e78bacf386165c2a3c852623"}, @assoc={0x18, 0x117, 0x4, 0x3}, @iv={0xe8, 0x117, 0x2, 0xd0, "707190eaea1783c7758bd800862cb6a2a5ea632c2bd311acd6b0eb568b98e8d8addcc65ced8546e2aabda7f7a04a271b7a217bdc8404f60bfa50bec0424282944e369506e27071c9c7bbc93bf30afeec8a7c515dd72339df046e54a32f7c1c81cec9b36e3b1c2105be88ce4d0c0ba29f4dadf4f608bb68ad274977d27c02ddb65bfbc1c079ec49c2926993c8f8e415d4af58e7d66c50e4053fb9023197173c92860cd029fe580765fd2e7243abe7292be1ce979eb39d19a16a29967884f4e49447eabbc5d33bc9af1f0d52f5242e73c9"}, @iv={0x58, 0x117, 0x2, 0x40, "8d3df0c6bf93efb3908bacc83f6a28a6334552b47b825b94c5361bb98d2426a299b60753daab03ed67b361aa1d546ee5dd3aa33d839ceb4a0503d1241dddf6aa"}], 0x220, 0x24008400}], 0x5, 0x4000891) prctl$PR_MCE_KILL_GET(0x22) ioctl$KVM_RUN(r2, 0xae80, 0x0) write$vhci(r5, &(0x7f0000002300)=@HCI_VENDOR_PKT, 0x2) [ 1698.100601][ T919] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=836,uid=0 [ 1698.148496][ T919] Memory cgroup out of memory: Killed process 836 (syz-executor.0) total-vm:72980kB, anon-rss:2232kB, file-rss:35828kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1698.164297][ T954] BPF:[1] ARRAY (anon) [ 1698.178007][ T954] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1698.190362][ T954] BPF: [ 1698.195467][ T954] BPF:size != 0 [ 1698.215429][ T921] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1698.221781][ T1067] oom_reaper: reaped process 836 (syz-executor.0), now anon-rss:0kB, file-rss:34868kB, shmem-rss:0kB [ 1698.230628][ T921] CPU: 0 PID: 921 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1698.244954][ T921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1698.255040][ T921] Call Trace: [ 1698.258343][ T921] dump_stack+0x11d/0x181 [ 1698.262774][ T921] dump_header+0xaa/0x39c [ 1698.267203][ T921] oom_kill_process.cold+0x10/0x15 [ 1698.272325][ T921] out_of_memory+0x231/0xa60 [ 1698.276973][ T921] mem_cgroup_out_of_memory+0x128/0x150 [ 1698.282552][ T921] try_charge+0xb6c/0xbf0 [ 1698.287094][ T921] ? rcu_note_context_switch+0x6d0/0x760 [ 1698.292722][ T921] mem_cgroup_try_charge+0xd2/0x260 [ 1698.297913][ T921] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1698.303545][ T921] wp_page_copy+0x322/0x1040 [ 1698.308208][ T921] ? preempt_schedule+0x30/0x40 [ 1698.313127][ T921] ? ___preempt_schedule+0x16/0x18 [ 1698.318307][ T921] do_wp_page+0x192/0xeb0 [ 1698.322662][ T921] __handle_mm_fault+0x1d16/0x2e00 [ 1698.327967][ T921] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1698.334092][ T921] handle_mm_fault+0x21b/0x530 [ 1698.338936][ T921] __do_page_fault+0x456/0x8d0 [ 1698.344236][ T921] do_page_fault+0x38/0x194 [ 1698.350143][ T921] page_fault+0x34/0x40 [ 1698.354292][ T921] RIP: 0033:0x4319e6 [ 1698.358206][ T921] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 a6 71 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 5c 57 64 00 85 c0 0f 84 [ 1698.377812][ T921] RSP: 002b:00007ffcc9750bf0 EFLAGS: 00010206 [ 1698.383866][ T921] RAX: 00000000000205b1 RBX: 000000000071a640 RCX: 0000000000000121 [ 1698.391826][ T921] RDX: 00000000020c2930 RSI: 00000000020c2a50 RDI: 0000000000000000 [ 1698.399794][ T921] RBP: 0000000000000121 R08: ffffffffffffffff R09: 0000000000000000 [ 1698.407852][ T921] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000071a698 [ 1698.416508][ T921] R13: 000000000071a698 R14: 0000000000000000 R15: 0000000000002710 [ 1698.426106][ T954] BPF: [ 1698.426106][ T954] [ 1698.435798][ T958] BPF:btf_header not found [ 1698.444109][ T964] BPF:[1] ARRAY (anon) [ 1698.456710][ T964] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 03:33:25 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000002000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1698.465146][ T964] BPF: [ 1698.472906][ T964] BPF:size != 0 [ 1698.477058][ T964] BPF: [ 1698.477058][ T964] [ 1698.477624][ T962] BPF:btf_header not found [ 1698.531039][ T921] memory: usage 307200kB, limit 307200kB, failcnt 5224 [ 1698.550244][ T921] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1698.578268][ T921] Memory cgroup stats for /syz1: [ 1698.578412][ T921] anon 220971008 [ 1698.578412][ T921] file 0 [ 1698.578412][ T921] kernel_stack 8589312 [ 1698.578412][ T921] slab 14540800 [ 1698.578412][ T921] sock 0 [ 1698.578412][ T921] shmem 0 [ 1698.578412][ T921] file_mapped 0 [ 1698.578412][ T921] file_dirty 0 [ 1698.578412][ T921] file_writeback 0 [ 1698.578412][ T921] anon_thp 157286400 [ 1698.578412][ T921] inactive_anon 0 [ 1698.578412][ T921] active_anon 220975104 [ 1698.578412][ T921] inactive_file 0 [ 1698.578412][ T921] active_file 36864 [ 1698.578412][ T921] unevictable 0 [ 1698.578412][ T921] slab_reclaimable 2027520 [ 1698.578412][ T921] slab_unreclaimable 12513280 [ 1698.578412][ T921] pgfault 207669 [ 1698.578412][ T921] pgmajfault 0 [ 1698.578412][ T921] workingset_refault 231 [ 1698.578412][ T921] workingset_activate 165 [ 1698.578412][ T921] workingset_nodereclaim 0 [ 1698.578412][ T921] pgrefill 33668 [ 1698.578412][ T921] pgscan 33907 [ 1698.578412][ T921] pgsteal 732 [ 1698.692511][ T921] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=911,uid=0 [ 1698.719075][ T974] BPF:[1] ARRAY (anon) [ 1698.728906][ T921] Memory cgroup out of memory: Killed process 911 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35792kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1698.748807][ T974] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1698.773599][ T974] BPF: [ 1698.782777][ T974] BPF:size != 0 [ 1698.801816][ T974] BPF: [ 1698.801816][ T974] [ 1698.820397][ T978] BPF:[1] ARRAY (anon) [ 1698.825971][ T978] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1698.838018][ T1067] oom_reaper: reaped process 911 (syz-executor.1), now anon-rss:0kB, file-rss:34832kB, shmem-rss:0kB [ 1698.838966][ T978] BPF: [ 1698.858045][ T981] BPF:[1] Invalid kind:0 [ 1698.863736][ T978] BPF:size != 0 [ 1698.879839][ T982] BPF:[1] Invalid kind:0 [ 1698.892979][ T979] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1698.900616][ T978] BPF: [ 1698.900616][ T978] 03:33:26 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1699.239516][ T989] BPF:[1] Invalid kind:0 03:33:26 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:26 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000004800000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:26 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) 03:33:26 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1699.433323][ T999] BPF:[1] ARRAY (anon) [ 1699.445080][ T999] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1699.455285][ T1000] BPF:btf_header not found [ 1699.463302][ T999] BPF: [ 1699.466134][ T999] BPF:size != 0 [ 1699.471417][ T999] BPF: [ 1699.471417][ T999] [ 1699.478942][ T1003] BPF:[1] ARRAY (anon) 03:33:26 executing program 2: r0 = open(0x0, 0x8001141042, 0x0) write(r0, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:26 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1699.493083][ T1003] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1699.511805][ T1003] BPF: [ 1699.513097][ T1006] BPF:[1] Invalid kind:0 [ 1699.515460][ T1004] BPF:btf_header not found [ 1699.538823][ T1003] BPF:size != 0 03:33:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x20, 0x400) ioctl$DRM_IOCTL_GET_STATS(r2, 0x80f86406, &(0x7f0000000140)=""/123) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x3f, 0x0, 0x92, 0x4, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x4, 0x4, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0xffffffffffff1a2b, 0x0, 0x9, 0x8], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1699.551665][ T1003] BPF: [ 1699.551665][ T1003] [ 1699.643201][ T1016] BPF:[1] Invalid kind:0 03:33:27 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000004c00000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1699.691523][ T1018] BPF:[1] Invalid kind:0 03:33:27 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:27 executing program 2: r0 = open(0x0, 0x8001141042, 0x0) write(r0, &(0x7f0000000000)="b6", 0xfffffe7e) [ 1699.902495][ T1036] BPF:[1] ARRAY (anon) [ 1699.929532][ T1036] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1699.954919][ T1034] BPF:[1] Invalid kind:0 [ 1699.968224][ T1036] BPF: 03:33:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x28000, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r2 = dup2(0xffffffffffffffff, r0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) pipe(&(0x7f0000000180)) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 03:33:27 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1699.983641][ T1036] BPF:size != 0 [ 1699.996665][ T1036] BPF: [ 1699.996665][ T1036] [ 1699.999222][ T1040] BPF:[1] Invalid kind:0 [ 1700.018683][ T1045] BPF:[1] ARRAY (anon) [ 1700.033887][ T1045] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1700.051645][ T1045] BPF: [ 1700.085174][ T1045] BPF:size != 0 [ 1700.098599][ T1045] BPF: [ 1700.098599][ T1045] [ 1700.233232][ T1053] BPF:[1] Invalid kind:0 03:33:27 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:27 executing program 2: r0 = open(0x0, 0x8001141042, 0x0) write(r0, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:27 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000006000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:27 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:27 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1700.419875][ T1065] BPF:[1] ARRAY (anon) [ 1700.439340][ T1065] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1700.454847][ T1065] BPF: [ 1700.461489][ T1065] BPF:size != 0 [ 1700.462342][ T1075] BPF:btf_header not found 03:33:27 executing program 2: r0 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) write(r0, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:27 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1700.468712][ T1065] BPF: [ 1700.468712][ T1065] [ 1700.483047][ T1077] BPF:btf_header not found [ 1700.499591][ T1080] BPF:[1] ARRAY (anon) [ 1700.503750][ T1079] BPF:[1] Invalid kind:0 [ 1700.506477][ T1080] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1700.540319][ T1080] BPF: [ 1700.560609][ T1080] BPF:size != 0 [ 1700.569253][ T1080] BPF: [ 1700.569253][ T1080] 03:33:28 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000006800000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1700.680896][ T1094] BPF:[1] Invalid kind:0 03:33:28 executing program 2: r0 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) write(r0, &(0x7f0000000000)="b6", 0xfffffe7e) 03:33:28 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1700.741067][ T1095] BPF:[1] Invalid kind:0 [ 1700.827985][ T1101] BPF:[1] ARRAY (anon) [ 1700.866431][ T1101] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1700.906192][ T1101] BPF: [ 1700.915118][ T1101] BPF:size != 0 [ 1700.927843][ T1101] BPF: [ 1700.927843][ T1101] [ 1700.947419][ T1110] BPF:[1] ARRAY (anon) [ 1700.969210][ T1110] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1700.982630][ T1109] BPF:[1] Invalid kind:0 [ 1700.992153][ T1110] BPF: [ 1701.009808][ T1110] BPF:size != 0 03:33:28 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x40000, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snapshot\x00', 0x5a040, 0x0) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f0000000240)=0x3, 0x4) getsockopt$SO_J1939_ERRQUEUE(r1, 0x6b, 0x4, &(0x7f0000000140), &(0x7f0000000180)=0x4) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$sock_inet_SIOCGIFDSTADDR(r1, 0x8917, &(0x7f0000000280)={'tunl0\x00', {0x2, 0x4e20, @multicast1}}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1701.033431][ T1110] BPF: [ 1701.033431][ T1110] 03:33:28 executing program 2: r0 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) write(r0, &(0x7f0000000000)="b6", 0xfffffe7e) [ 1701.058093][ T1108] BPF:[1] Invalid kind:0 03:33:28 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:28 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:28 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000006c00000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:28 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) socket$inet6_sctp(0xa, 0x10000000005, 0x84) [ 1701.293130][ T1118] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 03:33:28 executing program 2: open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="b6", 0xfffffe7e) [ 1701.430033][ T1130] BPF:[1] ARRAY (anon) [ 1701.435873][ T1132] BPF:btf_header not found [ 1701.456916][ T1130] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1701.457342][ T1122] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 03:33:28 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r2, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000140)) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) getegid() r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1701.477824][ T1130] BPF: [ 1701.499548][ T1130] BPF:size != 0 [ 1701.508885][ T1130] BPF: [ 1701.508885][ T1130] [ 1701.543981][ T1144] BPF:[1] ARRAY (anon) [ 1701.553817][ T1122] CPU: 1 PID: 1122 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1701.562579][ T1122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1701.572786][ T1122] Call Trace: [ 1701.576082][ T1122] dump_stack+0x11d/0x181 [ 1701.580420][ T1122] dump_header+0xaa/0x39c [ 1701.584772][ T1122] oom_kill_process.cold+0x10/0x15 [ 1701.590071][ T1122] out_of_memory+0x231/0xa60 [ 1701.594714][ T1122] ? __rcu_read_unlock+0x66/0x3d0 [ 1701.599759][ T1122] mem_cgroup_out_of_memory+0x128/0x150 [ 1701.605342][ T1122] try_charge+0xb6c/0xbf0 [ 1701.609690][ T1122] ? rcu_note_context_switch+0x6d0/0x760 [ 1701.615334][ T1122] mem_cgroup_try_charge+0xd2/0x260 [ 1701.620622][ T1122] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1701.626426][ T1122] wp_page_copy+0x322/0x1040 [ 1701.631103][ T1122] ? __read_once_size+0x41/0xe0 [ 1701.636097][ T1122] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1701.642007][ T1122] do_wp_page+0x192/0xeb0 [ 1701.646402][ T1122] ? record_times+0x16/0x90 [ 1701.650948][ T1122] __handle_mm_fault+0x1d16/0x2e00 [ 1701.656070][ T1122] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1701.662156][ T1122] handle_mm_fault+0x21b/0x530 [ 1701.667072][ T1122] __do_page_fault+0x456/0x8d0 [ 1701.671866][ T1122] do_page_fault+0x38/0x194 [ 1701.676373][ T1122] page_fault+0x34/0x40 [ 1701.680550][ T1122] RIP: 0033:0x410918 [ 1701.684501][ T1122] Code: 48 8b 05 a3 95 30 00 48 89 08 48 8b 15 a1 95 30 00 48 89 42 08 48 8b 05 86 95 30 00 48 89 05 8f 95 30 00 49 8d 81 c0 02 00 00 <48> 89 05 71 1d 66 00 49 8b 89 c8 02 00 00 49 8b 91 c0 02 00 00 48 [ 1701.706273][ T1122] RSP: 002b:00007ffcc9750f58 EFLAGS: 00010246 [ 1701.712342][ T1122] RAX: 00000000020c1c00 RBX: 00007ffcc9750f60 RCX: 0000000000719ea0 [ 1701.720340][ T1122] RDX: 0000000000410750 RSI: 0000000000719e90 RDI: 00000000020c1c20 [ 1701.728766][ T1122] RBP: 00007ffcc9750fa0 R08: 0000000000000001 R09: 00000000020c1940 [ 1701.736860][ T1122] R10: 00000000020c1c10 R11: 0000000000000202 R12: 0000000000000001 03:33:29 executing program 2: open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="b6", 0xfffffe7e) [ 1701.745030][ T1122] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffcc9750ff0 [ 1701.779593][ T1144] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1701.797301][ T1144] BPF: [ 1701.803458][ T1144] BPF:size != 0 [ 1701.813814][ T1144] BPF: [ 1701.813814][ T1144] 03:33:29 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000007400000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1701.863616][ T1137] BPF:btf_header not found 03:33:29 executing program 2: open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="b6", 0xfffffe7e) [ 1701.898674][ T1154] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1701.940918][ T1122] memory: usage 307200kB, limit 307200kB, failcnt 5273 [ 1701.947809][ T1157] BPF:[1] ARRAY (anon) [ 1701.952151][ T1122] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1701.958791][ T1157] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1701.968861][ T1157] BPF: [ 1701.976907][ T1157] BPF:size != 0 [ 1701.983390][ T1157] BPF: [ 1701.983390][ T1157] [ 1701.990357][ T1122] Memory cgroup stats for /syz1: [ 1701.993972][ T1122] anon 219656192 [ 1701.993972][ T1122] file 0 [ 1701.993972][ T1122] kernel_stack 8699904 [ 1701.993972][ T1122] slab 14811136 [ 1701.993972][ T1122] sock 0 [ 1701.993972][ T1122] shmem 0 [ 1701.993972][ T1122] file_mapped 0 [ 1701.993972][ T1122] file_dirty 0 [ 1701.993972][ T1122] file_writeback 0 [ 1701.993972][ T1122] anon_thp 155189248 [ 1701.993972][ T1122] inactive_anon 0 [ 1701.993972][ T1122] active_anon 219660288 [ 1701.993972][ T1122] inactive_file 0 [ 1701.993972][ T1122] active_file 36864 [ 1701.993972][ T1122] unevictable 0 [ 1701.993972][ T1122] slab_reclaimable 2027520 [ 1701.993972][ T1122] slab_unreclaimable 12783616 [ 1701.993972][ T1122] pgfault 208329 [ 1701.993972][ T1122] pgmajfault 0 [ 1701.993972][ T1122] workingset_refault 231 [ 1701.993972][ T1122] workingset_activate 165 [ 1701.993972][ T1122] workingset_nodereclaim 0 [ 1701.993972][ T1122] pgrefill 34397 [ 1701.993972][ T1122] pgscan 34640 [ 1701.993972][ T1122] pgsteal 732 [ 1701.997358][ T1158] BPF:[1] ARRAY (anon) [ 1702.009902][ T1122] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=15709,uid=0 03:33:29 executing program 2: r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, 0x0, 0x0) [ 1702.166666][ T1158] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1702.181805][ T1158] BPF: [ 1702.183172][ T1122] Memory cgroup out of memory: Killed process 15709 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1702.187649][ T1158] BPF:size != 0 [ 1702.216632][ T1158] BPF: [ 1702.216632][ T1158] 03:33:29 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000007a00000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:29 executing program 2: r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, 0x0, 0x0) [ 1702.357272][ T1131] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1702.377918][ T1167] BPF:[1] ARRAY (anon) [ 1702.386019][ T1131] CPU: 0 PID: 1131 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1702.390467][ T1167] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1702.394832][ T1131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1702.394837][ T1131] Call Trace: [ 1702.394881][ T1131] dump_stack+0x11d/0x181 [ 1702.419205][ T1131] dump_header+0xaa/0x39c [ 1702.419953][ T1167] BPF: [ 1702.423644][ T1131] oom_kill_process.cold+0x10/0x15 [ 1702.423667][ T1131] out_of_memory+0x231/0xa60 [ 1702.423699][ T1131] mem_cgroup_out_of_memory+0x128/0x150 [ 1702.441695][ T1131] try_charge+0xb6c/0xbf0 [ 1702.446110][ T1131] ? rcu_note_context_switch+0x6d0/0x760 [ 1702.451768][ T1131] mem_cgroup_try_charge+0xd2/0x260 [ 1702.457013][ T1131] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1702.462676][ T1131] __handle_mm_fault+0x197f/0x2e00 [ 1702.462681][ T1167] BPF:size != 0 [ 1702.462749][ T1167] BPF: [ 1702.462749][ T1167] [ 1702.467821][ T1131] handle_mm_fault+0x21b/0x530 [ 1702.467841][ T1131] __do_page_fault+0x456/0x8d0 [ 1702.467864][ T1131] do_page_fault+0x38/0x194 [ 1702.489507][ T1169] BPF:[1] Invalid kind:0 [ 1702.490371][ T1131] page_fault+0x34/0x40 [ 1702.490476][ T1131] RIP: 0033:0x4120ff [ 1702.503129][ T1131] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41 [ 1702.522746][ T1131] RSP: 002b:00007fff9b1d2e60 EFLAGS: 00010206 [ 1702.528902][ T1131] RAX: 00007fde0f8bd000 RBX: 0000000000020000 RCX: 000000000045a95a [ 1702.536934][ T1131] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000 [ 1702.538117][ T1171] BPF:[1] ARRAY (anon) [ 1702.544910][ T1131] RBP: 00007fff9b1d2f40 R08: ffffffffffffffff R09: 0000000000000000 [ 1702.544994][ T1131] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff9b1d3030 [ 1702.545014][ T1131] R13: 00007fde0f8dd700 R14: 0000000000000004 R15: 000000000075c1cc [ 1702.587307][ T1171] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1702.627042][ T1171] BPF: [ 1702.640288][ T1171] BPF:size != 0 [ 1702.666862][ T1171] BPF: [ 1702.666862][ T1171] [ 1702.878739][ T1131] memory: usage 307200kB, limit 307200kB, failcnt 14928 [ 1702.886019][ T1131] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1702.893102][ T1131] Memory cgroup stats for /syz0: [ 1702.893248][ T1131] anon 245108736 [ 1702.893248][ T1131] file 0 [ 1702.893248][ T1131] kernel_stack 6524928 [ 1702.893248][ T1131] slab 9388032 [ 1702.893248][ T1131] sock 0 [ 1702.893248][ T1131] shmem 0 [ 1702.893248][ T1131] file_mapped 0 [ 1702.893248][ T1131] file_dirty 0 [ 1702.893248][ T1131] file_writeback 0 [ 1702.893248][ T1131] anon_thp 199229440 [ 1702.893248][ T1131] inactive_anon 0 [ 1702.893248][ T1131] active_anon 245166080 [ 1702.893248][ T1131] inactive_file 0 [ 1702.893248][ T1131] active_file 159744 [ 1702.893248][ T1131] unevictable 0 [ 1702.893248][ T1131] slab_reclaimable 675840 [ 1702.893248][ T1131] slab_unreclaimable 8712192 [ 1702.893248][ T1131] pgfault 218592 [ 1702.893248][ T1131] pgmajfault 0 [ 1702.893248][ T1131] workingset_refault 264 [ 1702.893248][ T1131] workingset_activate 165 [ 1702.893248][ T1131] workingset_nodereclaim 0 [ 1702.893248][ T1131] pgrefill 26711 [ 1702.893248][ T1131] pgscan 56169 [ 1702.893248][ T1131] pgsteal 27599 [ 1702.990184][ T1131] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1134,uid=0 [ 1703.010865][ T1131] Memory cgroup out of memory: Killed process 1134 (syz-executor.0) total-vm:73112kB, anon-rss:2228kB, file-rss:35784kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1703.035578][ T1067] oom_reaper: reaped process 1134 (syz-executor.0), now anon-rss:0kB, file-rss:34824kB, shmem-rss:0kB [ 1703.047908][ T1125] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1703.058818][ T1125] CPU: 1 PID: 1125 Comm: syz-executor.3 Not tainted 5.5.0-rc1-syzkaller #0 [ 1703.067593][ T1125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1703.077631][ T1125] Call Trace: [ 1703.080965][ T1125] dump_stack+0x11d/0x181 [ 1703.085507][ T1125] dump_header+0xaa/0x39c [ 1703.089876][ T1125] oom_kill_process.cold+0x10/0x15 [ 1703.094980][ T1125] out_of_memory+0x231/0xa60 [ 1703.099611][ T1125] mem_cgroup_out_of_memory+0x128/0x150 [ 1703.105177][ T1125] try_charge+0xb6c/0xbf0 [ 1703.109526][ T1125] ? rcu_note_context_switch+0x6d0/0x760 [ 1703.115153][ T1125] mem_cgroup_try_charge+0xd2/0x260 [ 1703.120375][ T1125] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1703.126040][ T1125] wp_page_copy+0x322/0x1040 [ 1703.130638][ T1125] ? __read_once_size+0x41/0xe0 [ 1703.135480][ T1125] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1703.141388][ T1125] do_wp_page+0x192/0xeb0 [ 1703.145862][ T1125] __handle_mm_fault+0x1d16/0x2e00 [ 1703.151053][ T1125] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1703.157111][ T1125] handle_mm_fault+0x21b/0x530 [ 1703.161865][ T1125] __do_page_fault+0x456/0x8d0 [ 1703.166615][ T1125] do_page_fault+0x38/0x194 [ 1703.171102][ T1125] page_fault+0x34/0x40 [ 1703.175283][ T1125] RIP: 0033:0x40d308 [ 1703.179250][ T1125] Code: d9 48 8b 47 78 48 83 f8 ff 0f 84 0b 01 00 00 48 8b 73 18 48 83 fe ff 74 29 48 81 fe e7 03 00 00 0f 87 67 01 00 00 48 c1 e6 04 86 80 80 75 00 01 48 89 86 88 80 75 00 66 2e 0f 1f 84 00 00 00 [ 1703.198921][ T1125] RSP: 002b:00007fffc021fbc0 EFLAGS: 00010246 [ 1703.205017][ T1125] RAX: 0000000000000003 RBX: 000000000075bf20 RCX: 0000000000000001 [ 1703.212994][ T1125] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 000000000075bf20 [ 1703.221054][ T1125] RBP: 000000000000002d R08: ffffffffffffffff R09: ffffffffffffffff 03:33:30 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:30 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1703.229141][ T1125] R10: 00007fffc021fcc0 R11: 0000000000000246 R12: 000000000075bf20 [ 1703.237123][ T1125] R13: 000000000019f7e0 R14: 000000000019f80d R15: 000000000075bf2c [ 1703.246304][ T1125] memory: usage 307200kB, limit 307200kB, failcnt 2426410 [ 1703.253678][ T1125] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1703.260723][ T1125] Memory cgroup stats for /syz3: [ 1703.260942][ T1125] anon 285986816 [ 1703.260942][ T1125] file 0 [ 1703.260942][ T1125] kernel_stack 2691072 [ 1703.260942][ T1125] slab 4595712 [ 1703.260942][ T1125] sock 20480 [ 1703.260942][ T1125] shmem 65536 [ 1703.260942][ T1125] file_mapped 0 [ 1703.260942][ T1125] file_dirty 135168 [ 1703.260942][ T1125] file_writeback 0 [ 1703.260942][ T1125] anon_thp 268435456 [ 1703.260942][ T1125] inactive_anon 135168 [ 1703.260942][ T1125] active_anon 285990912 [ 1703.260942][ T1125] inactive_file 53248 [ 1703.260942][ T1125] active_file 73728 [ 1703.260942][ T1125] unevictable 0 [ 1703.260942][ T1125] slab_reclaimable 675840 [ 1703.260942][ T1125] slab_unreclaimable 3919872 [ 1703.260942][ T1125] pgfault 175758 [ 1703.260942][ T1125] pgmajfault 0 [ 1703.260942][ T1125] workingset_refault 297 [ 1703.260942][ T1125] workingset_activate 66 [ 1703.260942][ T1125] workingset_nodereclaim 0 [ 1703.260942][ T1125] pgrefill 7866 [ 1703.260942][ T1125] pgscan 31945 [ 1703.260942][ T1125] pgsteal 21953 [ 1703.317395][ T1184] BPF:btf_header not found [ 1703.373855][ T1125] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=18446,uid=0 [ 1703.390401][ T1125] Memory cgroup out of memory: Killed process 18446 (syz-executor.3) total-vm:72848kB, anon-rss:4272kB, file-rss:35804kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1703.424854][ T1187] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 1703.438746][ T1187] CPU: 0 PID: 1187 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1703.447688][ T1187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1703.458093][ T1187] Call Trace: [ 1703.461467][ T1187] dump_stack+0x11d/0x181 [ 1703.465949][ T1187] dump_header+0xaa/0x39c [ 1703.470304][ T1187] oom_kill_process.cold+0x10/0x15 [ 1703.475415][ T1187] out_of_memory+0x231/0xa60 [ 1703.480010][ T1187] mem_cgroup_out_of_memory+0x128/0x150 [ 1703.485552][ T1187] try_charge+0xb6c/0xbf0 [ 1703.489881][ T1187] ? rcu_note_context_switch+0x6d0/0x760 [ 1703.495523][ T1187] mem_cgroup_try_charge+0xd2/0x260 [ 1703.500990][ T1187] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1703.506752][ T1187] wp_page_copy+0x322/0x1040 [ 1703.511342][ T1187] ? __read_once_size+0x41/0xe0 [ 1703.516208][ T1187] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1703.522422][ T1187] do_wp_page+0x192/0xeb0 [ 1703.526743][ T1187] __handle_mm_fault+0x1d16/0x2e00 [ 1703.531859][ T1187] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1703.538043][ T1187] handle_mm_fault+0x21b/0x530 [ 1703.543002][ T1187] __do_page_fault+0x456/0x8d0 [ 1703.547764][ T1187] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1703.554018][ T1187] do_page_fault+0x38/0x194 [ 1703.558568][ T1187] page_fault+0x34/0x40 [ 1703.562742][ T1187] RIP: 0033:0x458f5b [ 1703.566809][ T1187] Code: 25 20 06 00 00 b8 80 52 41 00 48 89 15 4e fa 61 00 48 85 c0 74 08 4c 89 cf e8 31 c3 fb ff 45 85 f6 0f 85 58 01 00 00 48 85 db <48> c7 05 2a 20 2c 00 00 00 00 00 48 c7 05 0f 20 2c 00 00 00 00 00 [ 1703.586480][ T1187] RSP: 002b:00007ffcc9750f60 EFLAGS: 00010206 [ 1703.592703][ T1187] RAX: 0000000000000000 RBX: 00007ffcc9750f60 RCX: 0000000000415293 [ 1703.600681][ T1187] RDX: 00000391c380b103 RSI: 0000000000000018 RDI: 00000000020c1c20 [ 1703.608917][ T1187] RBP: 00007ffcc9750fa0 R08: 0000000000000001 R09: 00000000020c1940 [ 1703.616997][ T1187] R10: 00000000020c1c10 R11: 0000000000000202 R12: 0000000000000001 [ 1703.624978][ T1187] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffcc9750ff0 [ 1703.642156][ T1187] memory: usage 307200kB, limit 307200kB, failcnt 5287 [ 1703.650057][ T1187] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1703.658079][ T1187] Memory cgroup stats for /syz1: [ 1703.658242][ T1187] anon 219693056 [ 1703.658242][ T1187] file 0 [ 1703.658242][ T1187] kernel_stack 8736768 [ 1703.658242][ T1187] slab 14811136 [ 1703.658242][ T1187] sock 0 [ 1703.658242][ T1187] shmem 0 [ 1703.658242][ T1187] file_mapped 0 [ 1703.658242][ T1187] file_dirty 0 [ 1703.658242][ T1187] file_writeback 0 [ 1703.658242][ T1187] anon_thp 155189248 [ 1703.658242][ T1187] inactive_anon 0 [ 1703.658242][ T1187] active_anon 219697152 [ 1703.658242][ T1187] inactive_file 0 [ 1703.658242][ T1187] active_file 36864 [ 1703.658242][ T1187] unevictable 0 [ 1703.658242][ T1187] slab_reclaimable 2027520 [ 1703.658242][ T1187] slab_unreclaimable 12783616 [ 1703.658242][ T1187] pgfault 208395 [ 1703.658242][ T1187] pgmajfault 0 [ 1703.658242][ T1187] workingset_refault 231 [ 1703.658242][ T1187] workingset_activate 165 [ 1703.658242][ T1187] workingset_nodereclaim 0 [ 1703.658242][ T1187] pgrefill 34463 [ 1703.658242][ T1187] pgscan 34706 [ 1703.658242][ T1187] pgsteal 732 03:33:31 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) socket$inet6_sctp(0xa, 0x10000000005, 0x84) 03:33:31 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b9000000000000000000f800000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:31 executing program 2: r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, 0x0, 0x0) 03:33:31 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) r1 = add_key$user(0x0, &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000280)='f', 0x1, 0xfffffffffffffffd) keyctl$read(0xb, r1, &(0x7f0000000580)=""/171, 0xab) r2 = request_key(&(0x7f0000000140)='user\x00', &(0x7f0000000180)={'\x01\x00', 0x0}, &(0x7f00000001c0)='%em1trusted\x00', 0xfffffffffffffff8) keyctl$instantiate(0xc, r1, 0x0, 0x0, r2) r3 = add_key$user(0x0, &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000280)='f', 0x1, 0xfffffffffffffffd) keyctl$read(0xb, r3, &(0x7f0000000580)=""/171, 0xab) r4 = request_key(&(0x7f0000000140)='user\x00', &(0x7f0000000180)={'\x01\x00', 0x0}, &(0x7f00000001c0)='%em1trusted\x00', 0xfffffffffffffff8) keyctl$instantiate(0xc, r3, 0x0, 0x0, r4) keyctl$get_keyring_id(0x0, r3, 0x6) keyctl$assume_authority(0x10, r2) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r0, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1, 0x3}}) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r6, 0xae80, 0x0) [ 1703.840480][ T1187] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=1170,uid=0 [ 1703.898439][ T1200] BPF:[1] ARRAY (anon) [ 1703.911197][ T1200] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1703.922754][ T1200] BPF: [ 1703.928775][ T1200] BPF:size != 0 03:33:31 executing program 2: r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, &(0x7f0000000000), 0x0) [ 1703.931231][ T1187] Memory cgroup out of memory: Killed process 1170 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1703.954073][ T1200] BPF: [ 1703.954073][ T1200] [ 1703.969565][ T1203] BPF:[1] ARRAY (anon) [ 1703.979838][ T1203] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1703.989641][ T1205] BPF:btf_header not found [ 1703.994257][ T1203] BPF: 03:33:31 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b900000000000000ffffff00000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1703.999440][ T1203] BPF:size != 0 [ 1704.003578][ T1203] BPF: [ 1704.003578][ T1203] [ 1704.014973][ T1067] oom_reaper: reaped process 1170 (syz-executor.1), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB [ 1704.029979][ T1193] syz-executor.0 invoked oom-killer: gfp_mask=0x101cca(GFP_HIGHUSER_MOVABLE|__GFP_WRITE), order=0, oom_score_adj=1000 [ 1704.098700][ T1193] CPU: 0 PID: 1193 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1704.107363][ T1193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1704.109618][ T1211] BPF:[1] ARRAY (anon) [ 1704.117556][ T1193] Call Trace: [ 1704.117584][ T1193] dump_stack+0x11d/0x181 [ 1704.117650][ T1193] dump_header+0xaa/0x39c [ 1704.117674][ T1193] oom_kill_process.cold+0x10/0x15 [ 1704.117700][ T1193] out_of_memory+0x231/0xa60 [ 1704.143763][ T1193] mem_cgroup_out_of_memory+0x128/0x150 [ 1704.149813][ T1193] try_charge+0xb6c/0xbf0 [ 1704.154159][ T1193] ? rcu_note_context_switch+0x6d0/0x760 [ 1704.159816][ T1193] mem_cgroup_try_charge+0xd2/0x260 [ 1704.165105][ T1193] __add_to_page_cache_locked+0x163/0x780 [ 1704.168214][ T1211] BPF:type_id=3113514752 index_type_id=0 nr_elems=4278190080 [ 1704.170850][ T1193] ? __read_once_size.constprop.0+0x20/0x20 [ 1704.170887][ T1193] add_to_page_cache_lru+0xc4/0x260 [ 1704.170908][ T1193] pagecache_get_page+0x2ac/0x6f0 [ 1704.170922][ T1193] ? radix_tree_load_root+0xba/0x100 [ 1704.171023][ T1193] grab_cache_page_write_begin+0x5d/0x90 [ 1704.188964][ T1211] BPF: [ 1704.190395][ T1193] ext4_da_write_begin+0x1a3/0x840 [ 1704.190461][ T1193] ? iov_iter_fault_in_readable+0x15c/0x2b0 [ 1704.214153][ T1211] BPF:size != 0 [ 1704.214657][ T1193] generic_perform_write+0x136/0x320 [ 1704.214747][ T1193] ext4_buffered_write_iter+0x143/0x290 [ 1704.233244][ T1211] BPF: [ 1704.233244][ T1211] [ 1704.235009][ T1193] ext4_file_write_iter+0xf4/0xd40 [ 1704.235038][ T1193] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1704.251225][ T1193] ? iov_iter_init+0xe2/0x120 [ 1704.255962][ T1193] new_sync_write+0x388/0x4a0 [ 1704.260745][ T1193] ? __rcu_read_unlock+0x66/0x3d0 [ 1704.263785][ T1216] BPF:[1] ARRAY (anon) [ 1704.265807][ T1193] __vfs_write+0xb1/0xc0 [ 1704.265912][ T1193] vfs_write+0x18a/0x390 [ 1704.272317][ T1216] BPF:type_id=3113514752 index_type_id=0 nr_elems=4278190080 [ 1704.274421][ T1193] ksys_write+0xd5/0x1b0 [ 1704.274447][ T1193] __x64_sys_write+0x4c/0x60 [ 1704.279825][ T1216] BPF: [ 1704.286231][ T1193] do_syscall_64+0xcc/0x3a0 [ 1704.286262][ T1193] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1704.308116][ T1216] BPF:size != 0 [ 1704.308248][ T1193] RIP: 0033:0x45a909 [ 1704.315314][ T1216] BPF: [ 1704.315314][ T1216] [ 1704.315589][ T1193] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1704.340176][ T1193] RSP: 002b:00007fde0f8fdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1704.348635][ T1193] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a909 [ 1704.356613][ T1193] RDX: 00000000fffffe7e RSI: 0000000020000000 RDI: 000000000000000a [ 1704.364659][ T1193] RBP: 000000000075c118 R08: 0000000000000000 R09: 0000000000000000 [ 1704.372634][ T1193] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fde0f8fe6d4 [ 1704.380630][ T1193] R13: 00000000004c7ca0 R14: 00000000004e4d08 R15: 00000000ffffffff 03:33:31 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:31 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000200"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1704.397116][ T1213] BPF:[1] Invalid kind:0 [ 1704.449725][ T1193] memory: usage 307120kB, limit 307200kB, failcnt 15084 [ 1704.474067][ T1193] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1704.497614][ T1193] Memory cgroup stats for /syz0: [ 1704.497811][ T1193] anon 245141504 [ 1704.497811][ T1193] file 0 [ 1704.497811][ T1193] kernel_stack 6488064 [ 1704.497811][ T1193] slab 9388032 [ 1704.497811][ T1193] sock 0 [ 1704.497811][ T1193] shmem 0 [ 1704.497811][ T1193] file_mapped 0 [ 1704.497811][ T1193] file_dirty 0 [ 1704.497811][ T1193] file_writeback 0 [ 1704.497811][ T1193] anon_thp 199229440 [ 1704.497811][ T1193] inactive_anon 0 [ 1704.497811][ T1193] active_anon 245145600 [ 1704.497811][ T1193] inactive_file 0 [ 1704.497811][ T1193] active_file 159744 03:33:31 executing program 2: r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, &(0x7f0000000000), 0x0) [ 1704.497811][ T1193] unevictable 0 [ 1704.497811][ T1193] slab_reclaimable 675840 [ 1704.497811][ T1193] slab_unreclaimable 8712192 [ 1704.497811][ T1193] pgfault 218691 [ 1704.497811][ T1193] pgmajfault 0 [ 1704.497811][ T1193] workingset_refault 264 [ 1704.497811][ T1193] workingset_activate 165 [ 1704.497811][ T1193] workingset_nodereclaim 0 [ 1704.497811][ T1193] pgrefill 27618 [ 1704.497811][ T1193] pgscan 57441 [ 1704.497811][ T1193] pgsteal 27675 [ 1704.527885][ T1224] BPF:[1] ARRAY (anon) 03:33:32 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1704.649466][ T1226] BPF:[1] Invalid kind:0 [ 1704.689715][ T1224] BPF:type_id=3113514752 index_type_id=33554432 nr_elems=0 [ 1704.697871][ T1224] BPF: [ 1704.704813][ T1224] BPF:size != 0 [ 1704.708848][ T1224] BPF: [ 1704.708848][ T1224] [ 1704.785114][ T1232] BPF:[1] ARRAY (anon) [ 1704.795927][ T1232] BPF:type_id=3113514752 index_type_id=33554432 nr_elems=0 [ 1704.842357][ T1193] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1185,uid=0 [ 1704.849690][ T1232] BPF: [ 1704.877383][ T1232] BPF:size != 0 [ 1704.885072][ T1193] Memory cgroup out of memory: Killed process 1185 (syz-executor.0) total-vm:73112kB, anon-rss:2240kB, file-rss:35820kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000 [ 1704.908531][ T1232] BPF: [ 1704.908531][ T1232] [ 1704.926160][ T1067] oom_reaper: reaped process 1185 (syz-executor.0), now anon-rss:0kB, file-rss:34860kB, shmem-rss:0kB [ 1704.939567][ T7811] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=0 [ 1704.965739][ T7811] CPU: 1 PID: 7811 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1704.974373][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1704.984578][ T7811] Call Trace: [ 1704.988076][ T7811] dump_stack+0x11d/0x181 [ 1704.992416][ T7811] dump_header+0xaa/0x39c [ 1704.996759][ T7811] oom_kill_process.cold+0x10/0x15 [ 1705.001947][ T7811] out_of_memory+0x231/0xa60 [ 1705.006581][ T7811] mem_cgroup_out_of_memory+0x128/0x150 [ 1705.012167][ T7811] try_charge+0xb6c/0xbf0 [ 1705.016501][ T7811] ? __rcu_read_unlock+0x66/0x3d0 [ 1705.021609][ T7811] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1705.027219][ T7811] __memcg_kmem_charge+0xcf/0x1b0 [ 1705.032238][ T7811] __alloc_pages_nodemask+0x26c/0x310 [ 1705.037610][ T7811] alloc_pages_current+0xd1/0x170 [ 1705.042720][ T7811] pte_alloc_one+0x18/0x50 [ 1705.047134][ T7811] __pte_alloc+0x2d/0x220 [ 1705.051459][ T7811] copy_page_range+0x135a/0x19b0 [ 1705.056412][ T7811] ? __read_once_size.constprop.0+0x12/0x20 [ 1705.062370][ T7811] ? __rcu_read_unlock+0x66/0x3d0 [ 1705.067407][ T7811] ? vma_gap_callbacks_rotate+0x126/0x190 [ 1705.073236][ T7811] dup_mm+0x74a/0xba0 [ 1705.077287][ T7811] copy_process+0x3138/0x3c40 [ 1705.082069][ T7811] ? do_wp_page+0x19f/0xeb0 [ 1705.086574][ T7811] _do_fork+0xfe/0x7a0 [ 1705.090716][ T7811] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1705.096602][ T7811] ? __read_once_size+0x5a/0xe0 [ 1705.101450][ T7811] __x64_sys_clone+0x130/0x170 [ 1705.106264][ T7811] do_syscall_64+0xcc/0x3a0 [ 1705.110789][ T7811] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1705.116662][ T7811] RIP: 0033:0x458eda [ 1705.120562][ T7811] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00 03:33:32 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:32 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) socket$inet6_sctp(0xa, 0x10000000005, 0x84) 03:33:32 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snapshot\x00', 0x410040, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r2, 0xc0045516, &(0x7f0000000180)=0x9) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0xfe, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:33:32 executing program 2: r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, &(0x7f0000000000), 0x0) 03:33:32 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000300"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1705.140526][ T7811] RSP: 002b:00007ffcc9750f60 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 1705.149044][ T7811] RAX: ffffffffffffffda RBX: 00007ffcc9750f60 RCX: 0000000000458eda [ 1705.157028][ T7811] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1705.165077][ T7811] RBP: 00007ffcc9750fa0 R08: 0000000000000001 R09: 00000000020c1940 [ 1705.173127][ T7811] R10: 00000000020c1c10 R11: 0000000000000246 R12: 0000000000000001 [ 1705.181093][ T7811] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffcc9750ff0 [ 1705.218666][ T1238] BPF:btf_header not found [ 1705.235467][ T1242] BPF:[1] ARRAY (anon) [ 1705.244895][ T1242] BPF:type_id=3113514752 index_type_id=50331648 nr_elems=0 [ 1705.252708][ T1242] BPF: [ 1705.255629][ T1242] BPF:size != 0 [ 1705.259355][ T1242] BPF: [ 1705.259355][ T1242] [ 1705.267584][ T1244] BPF:[1] ARRAY (anon) [ 1705.273631][ T1244] BPF:type_id=3113514752 index_type_id=50331648 nr_elems=0 [ 1705.290804][ T1244] BPF: [ 1705.311666][ T1244] BPF:size != 0 [ 1705.337775][ T1244] BPF: [ 1705.337775][ T1244] [ 1705.352751][ T1250] BPF:btf_header not found 03:33:32 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000400"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:32 executing program 2: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) socket$inet6_sctp(0xa, 0x10000000005, 0x84) [ 1705.378888][ T1253] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1705.504652][ T1260] BPF:[1] ARRAY (anon) [ 1705.510880][ T1262] BPF:btf_header not found [ 1705.519495][ T7811] memory: usage 307200kB, limit 307200kB, failcnt 5313 [ 1705.527845][ T1260] BPF:type_id=3113514752 index_type_id=67108864 nr_elems=0 [ 1705.532044][ T7811] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1705.536522][ T1260] BPF: [ 1705.547580][ T7811] Memory cgroup stats for /syz1: [ 1705.547841][ T7811] anon 219697152 [ 1705.547841][ T7811] file 0 [ 1705.547841][ T7811] kernel_stack 8736768 [ 1705.547841][ T7811] slab 14811136 [ 1705.547841][ T7811] sock 0 [ 1705.547841][ T7811] shmem 0 [ 1705.547841][ T7811] file_mapped 0 [ 1705.547841][ T7811] file_dirty 0 [ 1705.547841][ T7811] file_writeback 0 [ 1705.547841][ T7811] anon_thp 155189248 [ 1705.547841][ T7811] inactive_anon 0 [ 1705.547841][ T7811] active_anon 219701248 [ 1705.547841][ T7811] inactive_file 0 [ 1705.547841][ T7811] active_file 36864 [ 1705.547841][ T7811] unevictable 0 [ 1705.547841][ T7811] slab_reclaimable 2027520 [ 1705.547841][ T7811] slab_unreclaimable 12783616 [ 1705.547841][ T7811] pgfault 208560 [ 1705.547841][ T7811] pgmajfault 0 [ 1705.547841][ T7811] workingset_refault 231 [ 1705.547841][ T7811] workingset_activate 165 [ 1705.547841][ T7811] workingset_nodereclaim 0 [ 1705.547841][ T7811] pgrefill 34695 [ 1705.547841][ T7811] pgscan 34904 [ 1705.547841][ T7811] pgsteal 732 [ 1705.554345][ T1260] BPF:size != 0 [ 1705.646607][ T7811] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=15224,uid=0 [ 1705.663830][ T1260] BPF: [ 1705.663830][ T1260] [ 1705.672133][ T7811] Memory cgroup out of memory: Killed process 15224 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1705.696934][ T1266] BPF:[1] ARRAY (anon) [ 1705.708654][ T1266] BPF:type_id=3113514752 index_type_id=67108864 nr_elems=0 [ 1705.720463][ T1067] oom_reaper: reaped process 15224 (syz-executor.1), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB [ 1705.768206][ T1266] BPF: [ 1705.783166][ T1266] BPF:size != 0 [ 1705.792565][ T1269] BPF:[1] Invalid kind:0 [ 1705.802280][ T1266] BPF: [ 1705.802280][ T1266] [ 1705.848978][ T1270] BPF:[1] Invalid kind:0 03:33:33 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:33 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000500"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:33 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1706.061185][ T1279] BPF:[1] ARRAY (anon) [ 1706.102178][ T1279] BPF:type_id=3113514752 index_type_id=83886080 nr_elems=0 [ 1706.118507][ T1280] BPF:[1] Invalid kind:0 03:33:33 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1706.163059][ T1286] BPF:[1] Invalid kind:0 [ 1706.169223][ T1279] BPF: [ 1706.176935][ T1279] BPF:size != 0 [ 1706.184697][ T1279] BPF: [ 1706.184697][ T1279] 03:33:33 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1706.220309][ T1292] BPF:[1] ARRAY (anon) [ 1706.239797][ T1292] BPF:type_id=3113514752 index_type_id=83886080 nr_elems=0 03:33:33 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) [ 1706.283108][ T1295] BPF:btf_header not found [ 1706.311447][ T1292] BPF: [ 1706.322280][ T1292] BPF:size != 0 [ 1706.329262][ T1292] BPF: [ 1706.329262][ T1292] [ 1706.338840][ T1297] BPF:[1] Invalid kind:0 03:33:33 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1706.390450][ T1298] BPF:[1] Invalid kind:0 03:33:33 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000600"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:33 executing program 2: r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, 0x0, 0x0) [ 1706.459499][ T1306] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1706.583393][ T1313] BPF:[1] Invalid kind:0 03:33:34 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1706.606447][ T1306] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1706.637498][ T1319] BPF:[1] ARRAY (anon) [ 1706.657254][ T1319] BPF:type_id=3113514752 index_type_id=100663296 nr_elems=0 [ 1706.666511][ T1300] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000 [ 1706.720890][ T1300] CPU: 0 PID: 1300 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1706.729619][ T1300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1706.730670][ T1319] BPF: [ 1706.740600][ T1300] Call Trace: [ 1706.740629][ T1300] dump_stack+0x11d/0x181 [ 1706.740707][ T1300] dump_header+0xaa/0x39c [ 1706.740732][ T1300] oom_kill_process.cold+0x10/0x15 [ 1706.740765][ T1300] out_of_memory+0x231/0xa60 [ 1706.740843][ T1300] ? __rcu_read_unlock+0x66/0x3d0 [ 1706.759005][ T1319] BPF:size != 0 [ 1706.760686][ T1300] mem_cgroup_out_of_memory+0x128/0x150 [ 1706.760784][ T1300] try_charge+0xb6c/0xbf0 [ 1706.760884][ T1300] ? __rcu_read_unlock+0x66/0x3d0 [ 1706.774338][ T1319] BPF: [ 1706.774338][ T1319] [ 1706.779557][ T1300] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1706.779582][ T1300] __memcg_kmem_charge+0xcf/0x1b0 [ 1706.805191][ T1300] __alloc_pages_nodemask+0x26c/0x310 [ 1706.809067][ T1323] BPF:[1] ARRAY (anon) [ 1706.810579][ T1300] alloc_pages_current+0xd1/0x170 [ 1706.810599][ T1300] __pmd_alloc+0x4b/0x2b0 [ 1706.810673][ T1300] __handle_mm_fault+0x9b6/0x2e00 [ 1706.824424][ T1323] BPF:type_id=3113514752 index_type_id=100663296 nr_elems=0 [ 1706.830514][ T1300] handle_mm_fault+0x21b/0x530 [ 1706.830554][ T1300] __do_page_fault+0x456/0x8d0 [ 1706.847909][ T1300] ? __close_fd+0xfc/0x140 [ 1706.852493][ T1300] do_page_fault+0x38/0x194 [ 1706.857133][ T1300] page_fault+0x34/0x40 [ 1706.861296][ T1300] RIP: 0033:0x401c27 [ 1706.866454][ T1300] Code: 00 00 00 48 83 ec 08 48 8b 15 6d 0a 67 00 48 8b 05 5e 0a 67 00 48 39 d0 48 8d 8a 00 00 00 01 72 17 48 39 c8 73 12 48 8d 50 04 <89> 38 48 89 15 40 0a 67 00 48 83 c4 08 c3 48 89 c6 bf 98 c1 4c 00 [ 1706.886065][ T1300] RSP: 002b:00007fff9b1d2f40 EFLAGS: 00010287 [ 1706.892158][ T1300] RAX: 0000001b33b20000 RBX: 0000000000000000 RCX: 0000001b34b20000 [ 1706.900142][ T1300] RDX: 0000001b33b20004 RSI: 00007fff9b1d2d00 RDI: 0000000000000000 [ 1706.908351][ T1300] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000004 03:33:34 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9, 0xffffffffffffffff], 0x0, 0xffffffffffdce6bb}) r3 = syz_open_dev$ttys(0xc, 0x2, 0x1) r4 = socket(0x10, 0x2, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCBRDELBR(r5, 0x89a1, &(0x7f0000000180)='vlan0\x00') getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) r7 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0x1b1) setresuid(0xee00, r6, r8) lchown(&(0x7f0000000140)='./file0\x00', r6, 0x0) socket$alg(0x26, 0x5, 0x0) ioctl$VT_WAITACTIVE(r3, 0x5607) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1706.916522][ T1300] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000000 [ 1706.924506][ T1300] R13: 00007fff9b1d3130 R14: 0000000000000000 R15: 00007fff9b1d3140 [ 1706.937935][ T1323] BPF: 03:33:34 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:34 executing program 2: r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r0, 0x0, 0x0) [ 1706.964150][ T1323] BPF:size != 0 [ 1706.977290][ T1323] BPF: [ 1706.977290][ T1323] [ 1706.979233][ T1326] BPF:[1] Invalid kind:0 03:33:34 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:33:34 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000700"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:34 executing program 2: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1707.157141][ T1329] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1707.215356][ T1300] memory: usage 307204kB, limit 307200kB, failcnt 15345 [ 1707.223941][ T1338] BPF:[1] Invalid kind:0 [ 1707.289703][ T1342] BPF:[1] ARRAY (anon) [ 1707.297944][ T1300] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1707.318091][ T1350] BPF:btf_header not found [ 1707.325974][ T1342] BPF:type_id=3113514752 index_type_id=117440512 nr_elems=0 [ 1707.344637][ T1300] Memory cgroup stats for /syz0: [ 1707.344829][ T1300] anon 245153792 [ 1707.344829][ T1300] file 0 [ 1707.344829][ T1300] kernel_stack 6488064 [ 1707.344829][ T1300] slab 9388032 [ 1707.344829][ T1300] sock 0 [ 1707.344829][ T1300] shmem 0 [ 1707.344829][ T1300] file_mapped 0 [ 1707.344829][ T1300] file_dirty 0 [ 1707.344829][ T1300] file_writeback 0 [ 1707.344829][ T1300] anon_thp 199229440 [ 1707.344829][ T1300] inactive_anon 0 [ 1707.344829][ T1300] active_anon 245157888 [ 1707.344829][ T1300] inactive_file 28672 [ 1707.344829][ T1300] active_file 159744 [ 1707.344829][ T1300] unevictable 0 [ 1707.344829][ T1300] slab_reclaimable 675840 [ 1707.344829][ T1300] slab_unreclaimable 8712192 [ 1707.344829][ T1300] pgfault 218823 [ 1707.344829][ T1300] pgmajfault 0 [ 1707.344829][ T1300] workingset_refault 264 [ 1707.344829][ T1300] workingset_activate 198 [ 1707.344829][ T1300] workingset_nodereclaim 0 [ 1707.344829][ T1300] pgrefill 28030 [ 1707.344829][ T1300] pgscan 58077 [ 1707.344829][ T1300] pgsteal 27883 [ 1707.358820][ T1342] BPF: [ 1707.448221][ T1354] BPF:btf_header not found [ 1707.468628][ T1300] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1252,uid=0 [ 1707.485674][ T1300] Memory cgroup out of memory: Killed process 1252 (syz-executor.0) total-vm:73112kB, anon-rss:2240kB, file-rss:35828kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000 [ 1707.583941][ T1342] BPF:size != 0 [ 1707.588054][ T1342] BPF: [ 1707.588054][ T1342] [ 1707.597402][ T1361] BPF:btf_header not found [ 1707.605818][ T1363] BPF:[1] ARRAY (anon) [ 1707.619920][ T1363] BPF:type_id=3113514752 index_type_id=117440512 nr_elems=0 [ 1707.633709][ T1363] BPF: [ 1707.637346][ T1363] BPF:size != 0 [ 1707.645581][ T1363] BPF: [ 1707.645581][ T1363] [ 1708.280077][ T1369] syz-executor.0 invoked oom-killer: gfp_mask=0x101cca(GFP_HIGHUSER_MOVABLE|__GFP_WRITE), order=0, oom_score_adj=1000 [ 1708.292926][ T1369] CPU: 0 PID: 1369 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1708.302118][ T1369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1708.313172][ T1369] Call Trace: [ 1708.316466][ T1369] dump_stack+0x11d/0x181 [ 1708.320884][ T1369] dump_header+0xaa/0x39c [ 1708.327398][ T1369] oom_kill_process.cold+0x10/0x15 [ 1708.332523][ T1369] out_of_memory+0x231/0xa60 [ 1708.337380][ T1369] ? __rcu_read_unlock+0x66/0x3d0 [ 1708.342566][ T1369] mem_cgroup_out_of_memory+0x128/0x150 [ 1708.348520][ T1369] try_charge+0xb6c/0xbf0 [ 1708.352899][ T1369] ? rcu_note_context_switch+0x6d0/0x760 [ 1708.358782][ T1369] mem_cgroup_try_charge+0xd2/0x260 [ 1708.363997][ T1369] __add_to_page_cache_locked+0x163/0x780 [ 1708.369942][ T1369] ? __read_once_size.constprop.0+0x20/0x20 [ 1708.375947][ T1369] add_to_page_cache_lru+0xc4/0x260 [ 1708.381285][ T1369] pagecache_get_page+0x2ac/0x6f0 [ 1708.386505][ T1369] grab_cache_page_write_begin+0x5d/0x90 [ 1708.392182][ T1369] ext4_da_write_begin+0x1a3/0x840 [ 1708.397310][ T1369] ? iov_iter_fault_in_readable+0x15c/0x2b0 [ 1708.403230][ T1369] generic_perform_write+0x136/0x320 [ 1708.408755][ T1369] ext4_buffered_write_iter+0x143/0x290 [ 1708.414345][ T1369] ext4_file_write_iter+0xf4/0xd40 [ 1708.419728][ T1369] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1708.425958][ T1369] ? iov_iter_init+0xe2/0x120 [ 1708.430624][ T1369] new_sync_write+0x388/0x4a0 [ 1708.435389][ T1369] ? __rcu_read_unlock+0x66/0x3d0 [ 1708.440402][ T1369] __vfs_write+0xb1/0xc0 [ 1708.444639][ T1369] vfs_write+0x18a/0x390 [ 1708.448878][ T1369] ksys_write+0xd5/0x1b0 [ 1708.453115][ T1369] __x64_sys_write+0x4c/0x60 [ 1708.460143][ T1369] do_syscall_64+0xcc/0x3a0 [ 1708.464763][ T1369] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1708.470636][ T1369] RIP: 0033:0x45a909 [ 1708.474600][ T1369] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1708.495219][ T1369] RSP: 002b:00007fde0f8fdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1708.503623][ T1369] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a909 [ 1708.512119][ T1369] RDX: 00000000fffffe7e RSI: 0000000020000000 RDI: 000000000000000e [ 1708.520117][ T1369] RBP: 000000000075c118 R08: 0000000000000000 R09: 0000000000000000 [ 1708.530028][ T1369] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fde0f8fe6d4 [ 1708.538046][ T1369] R13: 00000000004c7ca0 R14: 00000000004e4d08 R15: 00000000ffffffff [ 1708.547434][ T1369] memory: usage 307056kB, limit 307200kB, failcnt 16077 [ 1708.554426][ T1369] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1708.561373][ T1369] Memory cgroup stats for /syz0: [ 1708.561572][ T1369] anon 245055488 [ 1708.561572][ T1369] file 0 [ 1708.561572][ T1369] kernel_stack 6451200 [ 1708.561572][ T1369] slab 9388032 [ 1708.561572][ T1369] sock 0 [ 1708.561572][ T1369] shmem 0 [ 1708.561572][ T1369] file_mapped 0 [ 1708.561572][ T1369] file_dirty 0 [ 1708.561572][ T1369] file_writeback 0 [ 1708.561572][ T1369] anon_thp 199229440 [ 1708.561572][ T1369] inactive_anon 0 [ 1708.561572][ T1369] active_anon 245059584 [ 1708.561572][ T1369] inactive_file 28672 [ 1708.561572][ T1369] active_file 159744 [ 1708.561572][ T1369] unevictable 0 [ 1708.561572][ T1369] slab_reclaimable 675840 [ 1708.561572][ T1369] slab_unreclaimable 8712192 [ 1708.561572][ T1369] pgfault 218889 [ 1708.561572][ T1369] pgmajfault 0 [ 1708.561572][ T1369] workingset_refault 264 [ 1708.561572][ T1369] workingset_activate 198 [ 1708.561572][ T1369] workingset_nodereclaim 0 [ 1708.561572][ T1369] pgrefill 30164 [ 1708.561572][ T1369] pgscan 61397 [ 1708.561572][ T1369] pgsteal 28455 [ 1708.660608][ T1369] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1300,uid=0 03:33:36 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:36 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x8000, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='oom_score_adj\x00') ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x1, 0xffffffffffffffff, 0x2}) prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000180)) 03:33:36 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:36 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000800"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:36 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:33:36 executing program 2: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1708.676273][ T1369] Memory cgroup out of memory: Killed process 1369 (syz-executor.0) total-vm:73112kB, anon-rss:2240kB, file-rss:35836kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1708.696926][ T1067] oom_reaper: reaped process 1369 (syz-executor.0), now anon-rss:0kB, file-rss:34876kB, shmem-rss:0kB [ 1708.798140][ T1380] BPF:[1] ARRAY (anon) [ 1708.830210][ T1379] BPF:btf_header not found [ 1708.836184][ T1380] BPF:type_id=3113514752 index_type_id=134217728 nr_elems=0 [ 1708.840265][ T1381] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1708.864888][ T1380] BPF: [ 1708.873054][ T1380] BPF:size != 0 03:33:36 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1708.876163][ T1385] BPF:btf_header not found [ 1708.883825][ T1380] BPF: [ 1708.883825][ T1380] [ 1708.890117][ T1388] BPF:[1] Invalid kind:0 [ 1708.912911][ T1395] BPF:[1] ARRAY (anon) [ 1708.919289][ T1387] BPF:btf_header not found [ 1708.925884][ T1395] BPF:type_id=3113514752 index_type_id=134217728 nr_elems=0 [ 1708.933736][ T1395] BPF: [ 1708.936678][ T1395] BPF:size != 0 [ 1708.940344][ T1395] BPF: [ 1708.940344][ T1395] 03:33:36 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1709.042998][ T1404] BPF:[1] Invalid kind:0 03:33:36 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000a00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1709.248667][ T1416] BPF:[1] ARRAY (anon) [ 1709.265587][ T1416] BPF:type_id=3113514752 index_type_id=167772160 nr_elems=0 [ 1709.299735][ T1416] BPF: [ 1709.319184][ T1416] BPF:size != 0 [ 1709.335756][ T1416] BPF: [ 1709.335756][ T1416] [ 1709.370152][ T1419] BPF:[1] ARRAY (anon) [ 1709.387916][ T1419] BPF:type_id=3113514752 index_type_id=167772160 nr_elems=0 [ 1709.406886][ T1420] BPF:[1] Invalid kind:0 03:33:36 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1709.435487][ T1419] BPF: [ 1709.446839][ T1419] BPF:size != 0 [ 1709.461726][ T1419] BPF: [ 1709.461726][ T1419] 03:33:36 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000001c00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:36 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1709.722038][ T1429] BPF:[1] Invalid kind:0 [ 1709.796147][ T1433] BPF:[1] ARRAY (anon) [ 1709.824602][ T1433] BPF:type_id=3113514752 index_type_id=469762048 nr_elems=0 [ 1709.850667][ T1433] BPF: [ 1709.866360][ T1433] BPF:size != 0 03:33:37 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:37 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @ioapic={0x1000, 0x7f, 0x2, 0x8000, 0x0, [{0x40, 0x7f, 0x20, [], 0x3f}, {0x81, 0x7, 0x0, [], 0x3f}, {0x19, 0x8, 0x0, [], 0x7}, {0x6, 0x3, 0x5b, [], 0x1}, {0x9, 0x7, 0x7, [], 0x4}, {0x9, 0x80, 0x80, [], 0x5}, {0x9, 0x40, 0x8, [], 0x7f}, {0xff, 0x85, 0x1b, [], 0x80}, {0x1, 0xf6, 0x71, [], 0x7f}, {0x40, 0x6, 0x17, [], 0x2}, {0x8, 0x7f, 0x1, [], 0x3f}, {0x5, 0x4, 0x6, [], 0xd}, {0x2, 0x1, 0xbb, [], 0xff}, {0xff, 0x1f, 0x1, [], 0x3}, {0x0, 0x20, 0x4, [], 0x74}, {0x4, 0x7f, 0x3e, [], 0x8}, {0x9, 0x3, 0x6, [], 0x1}, {0x0, 0xff, 0x0, [], 0xc7}, {0x5, 0x40, 0x7, [], 0x2}, {0x0, 0x2, 0x0, [], 0x7}, {0x5, 0x81, 0x6}, {0x7, 0x5, 0x4, [], 0x9}, {0x1, 0x5, 0x2, [], 0x6}, {0x0, 0x1, 0x3, [], 0x6e}]}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0xea363e02c0f5773a, 0x0) setsockopt$inet6_tcp_buf(r3, 0x6, 0x1f, &(0x7f0000000400)="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", 0x1000) getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000000000)=0x1, &(0x7f0000000140)=0x4) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:33:37 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1709.888613][ T1437] BPF:btf_header not found [ 1709.893742][ T1433] BPF: [ 1709.893742][ T1433] [ 1709.914104][ T1441] BPF:[1] ARRAY (anon) 03:33:37 executing program 2: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1709.943234][ T1441] BPF:type_id=3113514752 index_type_id=469762048 nr_elems=0 [ 1709.970844][ T1441] BPF: [ 1709.983659][ T1441] BPF:size != 0 [ 1709.996273][ T1441] BPF: [ 1709.996273][ T1441] [ 1710.009596][ T1443] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1710.030032][ T1447] BPF:btf_header not found 03:33:37 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000001e00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1710.115238][ T1450] BPF:[1] Invalid kind:0 03:33:37 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) pipe(&(0x7f0000000280)={0xffffffffffffffff}) ioctl$KVM_GET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f00000002c0)={0x5, 0x0, [{}, {}, {}, {}, {}]}) write$P9_RREADDIR(r2, &(0x7f0000000400)={0xa6, 0x29, 0x1, {0xfff, [{{0x8, 0x3, 0x8}, 0x30295302, 0x0, 0x7, './file0'}, {{0x8, 0x4, 0x4}, 0x0, 0x9, 0x7, './file0'}, {{0x12, 0x4, 0x4}, 0x2, 0x5, 0x7, './file0'}, {{0x52, 0x2, 0x4}, 0x3, 0x7, 0x7, './file0'}, {{0x145, 0x0, 0x3}, 0x100000001, 0x3, 0x7, './file0'}]}}, 0xa6) getresgid(&(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000240)=0x0) setgid(r3) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) r4 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x423c, 0x210200) ioctl$TIOCGLCKTRMIOS(r4, 0x5456, &(0x7f0000000140)={0x4, 0x4f, 0x6, 0x7, 0x18, 0x80, 0x38, 0x3, 0x9, 0x1ff, 0x5, 0xfc78}) r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r5, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r6, 0x5}}, 0x18) read(r5, &(0x7f00000004c0)=""/241, 0xf1) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 03:33:37 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1710.292072][ T1465] BPF:[1] ARRAY (anon) [ 1710.325101][ T1465] BPF:type_id=3113514752 index_type_id=503316480 nr_elems=0 03:33:37 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1710.366519][ T1472] BPF:btf_header not found [ 1710.369712][ T1471] BPF:[1] Invalid kind:0 [ 1710.377369][ T1465] BPF: [ 1710.380443][ T1465] BPF:size != 0 [ 1710.417402][ T1465] BPF: [ 1710.417402][ T1465] [ 1710.465045][ T1483] BPF:[1] ARRAY (anon) [ 1710.485619][ T1483] BPF:type_id=3113514752 index_type_id=503316480 nr_elems=0 [ 1710.541207][ T1483] BPF: [ 1710.557415][ T1483] BPF:size != 0 [ 1710.573755][ T1483] BPF: [ 1710.573755][ T1483] 03:33:38 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000004800"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1710.726624][ T1490] BPF:[1] Invalid kind:0 03:33:38 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:38 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:38 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1710.860141][ T1496] BPF:[1] ARRAY (anon) [ 1710.878764][ T1496] BPF:type_id=3113514752 index_type_id=1207959552 nr_elems=0 [ 1710.941003][ T1496] BPF: [ 1710.943868][ T1496] BPF:size != 0 [ 1710.974124][ T1496] BPF: [ 1710.974124][ T1496] [ 1711.014722][ T1504] BPF:[1] ARRAY (anon) [ 1711.026232][ T1502] BPF:btf_header not found [ 1711.026484][ T1504] BPF:type_id=3113514752 index_type_id=1207959552 nr_elems=0 [ 1711.045315][ T1504] BPF: [ 1711.047774][ T1497] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 1711.052530][ T1504] BPF:size != 0 [ 1711.083480][ T1504] BPF: [ 1711.083480][ T1504] [ 1711.090653][ T1497] CPU: 1 PID: 1497 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1711.099264][ T1497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1711.104199][ T1505] BPF:[1] Invalid kind:0 [ 1711.109507][ T1497] Call Trace: [ 1711.109580][ T1497] dump_stack+0x11d/0x181 [ 1711.109610][ T1497] dump_header+0xaa/0x39c [ 1711.125822][ T1497] oom_kill_process.cold+0x10/0x15 [ 1711.131002][ T1497] out_of_memory+0x231/0xa60 [ 1711.135610][ T1497] ? __rcu_read_unlock+0x66/0x3d0 [ 1711.140705][ T1497] mem_cgroup_out_of_memory+0x128/0x150 [ 1711.146352][ T1497] try_charge+0xb6c/0xbf0 [ 1711.150780][ T1497] ? rcu_note_context_switch+0x6d0/0x760 [ 1711.156530][ T1497] mem_cgroup_try_charge+0xd2/0x260 [ 1711.161751][ T1497] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1711.167566][ T1497] wp_page_copy+0x322/0x1040 [ 1711.172208][ T1497] ? __read_once_size+0x41/0xe0 [ 1711.177163][ T1497] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1711.183333][ T1497] do_wp_page+0x192/0xeb0 [ 1711.187811][ T1497] ? record_times+0x16/0x90 [ 1711.192374][ T1497] __handle_mm_fault+0x1d16/0x2e00 [ 1711.197533][ T1497] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1711.203688][ T1497] handle_mm_fault+0x21b/0x530 [ 1711.208477][ T1497] __do_page_fault+0x456/0x8d0 [ 1711.213280][ T1497] do_page_fault+0x38/0x194 [ 1711.217810][ T1497] page_fault+0x34/0x40 [ 1711.221968][ T1497] RIP: 0033:0x458f0e [ 1711.225877][ T1497] Code: 00 00 85 c0 41 89 c5 0f 85 fc 00 00 00 64 8b 04 25 d0 02 00 00 41 39 c4 0f 84 12 02 00 00 48 8b 05 17 fa 61 00 48 85 c0 74 04 <48> 83 00 04 64 8b 04 25 d0 02 00 00 64 89 04 25 d4 02 00 00 0f 31 [ 1711.245608][ T1497] RSP: 002b:00007fff9b1d30b0 EFLAGS: 00010206 [ 1711.251819][ T1497] RAX: 0000000000a78428 RBX: 00007fff9b1d30b0 RCX: 0000000000458eda [ 1711.259884][ T1497] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1711.267888][ T1497] RBP: 00007fff9b1d30f0 R08: 0000000000000001 R09: 0000000000e4b940 [ 1711.276055][ T1497] R10: 0000000000e4bc10 R11: 0000000000000246 R12: 0000000000000001 [ 1711.284057][ T1497] R13: 0000000000000000 R14: 0000000000000000 R15: 00007fff9b1d3140 [ 1711.311001][ T1497] memory: usage 307200kB, limit 307200kB, failcnt 16382 03:33:38 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:38 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000004c00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1711.366021][ T1497] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1711.384435][ T1497] Memory cgroup stats for /syz0: [ 1711.384619][ T1497] anon 245055488 [ 1711.384619][ T1497] file 0 [ 1711.384619][ T1497] kernel_stack 6488064 [ 1711.384619][ T1497] slab 9388032 [ 1711.384619][ T1497] sock 0 [ 1711.384619][ T1497] shmem 0 [ 1711.384619][ T1497] file_mapped 0 [ 1711.384619][ T1497] file_dirty 135168 [ 1711.384619][ T1497] file_writeback 0 [ 1711.384619][ T1497] anon_thp 199229440 [ 1711.384619][ T1497] inactive_anon 0 [ 1711.384619][ T1497] active_anon 245059584 [ 1711.384619][ T1497] inactive_file 0 [ 1711.384619][ T1497] active_file 24576 [ 1711.384619][ T1497] unevictable 0 [ 1711.384619][ T1497] slab_reclaimable 675840 [ 1711.384619][ T1497] slab_unreclaimable 8712192 [ 1711.384619][ T1497] pgfault 219153 [ 1711.384619][ T1497] pgmajfault 0 [ 1711.384619][ T1497] workingset_refault 264 [ 1711.384619][ T1497] workingset_activate 198 [ 1711.384619][ T1497] workingset_nodereclaim 0 [ 1711.384619][ T1497] pgrefill 31136 [ 1711.384619][ T1497] pgscan 62772 [ 1711.384619][ T1497] pgsteal 28591 03:33:38 executing program 2: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1711.616385][ T1497] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1448,uid=0 [ 1711.625342][ T1517] BPF:[1] ARRAY (anon) [ 1711.670467][ T1517] BPF:type_id=3113514752 index_type_id=1275068416 nr_elems=0 [ 1711.678775][ T1497] Memory cgroup out of memory: Killed process 1448 (syz-executor.0) total-vm:72980kB, anon-rss:2232kB, file-rss:35808kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000 [ 1711.704565][ T1517] BPF: [ 1711.711505][ T1517] BPF:size != 0 [ 1711.712494][ T1519] BPF:btf_header not found [ 1711.729170][ T1517] BPF: [ 1711.729170][ T1517] [ 1711.764066][ T1521] BPF:[1] ARRAY (anon) [ 1711.787640][ T1521] BPF:type_id=3113514752 index_type_id=1275068416 nr_elems=0 [ 1711.815147][ T7811] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=0 [ 1711.818789][ T1521] BPF: [ 1711.851912][ T7811] CPU: 0 PID: 7811 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1711.860687][ T1521] BPF:size != 0 [ 1711.860823][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1711.874293][ T1521] BPF: [ 1711.874293][ T1521] [ 1711.874410][ T7811] Call Trace: [ 1711.882812][ T7811] dump_stack+0x11d/0x181 [ 1711.887297][ T7811] dump_header+0xaa/0x39c [ 1711.891727][ T7811] oom_kill_process.cold+0x10/0x15 [ 1711.896851][ T7811] out_of_memory+0x231/0xa60 [ 1711.901532][ T7811] mem_cgroup_out_of_memory+0x128/0x150 [ 1711.907214][ T7811] try_charge+0xb6c/0xbf0 [ 1711.911710][ T7811] ? __rcu_read_unlock+0x66/0x3d0 [ 1711.916890][ T7811] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1711.922638][ T7811] __memcg_kmem_charge+0xcf/0x1b0 [ 1711.927688][ T7811] __alloc_pages_nodemask+0x26c/0x310 [ 1711.933155][ T7811] alloc_pages_current+0xd1/0x170 [ 1711.938197][ T7811] pte_alloc_one+0x18/0x50 [ 1711.942635][ T7811] __pte_alloc+0x2d/0x220 [ 1711.946979][ T7811] copy_page_range+0x135a/0x19b0 [ 1711.951933][ T7811] ? __read_once_size.constprop.0+0x12/0x20 [ 1711.957930][ T7811] ? __vma_link_rb+0x3f4/0x440 [ 1711.962700][ T7811] dup_mm+0x74a/0xba0 [ 1711.966712][ T7811] copy_process+0x3138/0x3c40 [ 1711.971418][ T7811] ? do_wp_page+0x19f/0xeb0 [ 1711.976016][ T7811] _do_fork+0xfe/0x7a0 [ 1711.980087][ T7811] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1711.986128][ T7811] ? __read_once_size+0x5a/0xe0 [ 1711.991361][ T7811] __x64_sys_clone+0x130/0x170 [ 1711.996146][ T7811] do_syscall_64+0xcc/0x3a0 [ 1712.000659][ T7811] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1712.006543][ T7811] RIP: 0033:0x458eda [ 1712.010441][ T7811] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00 [ 1712.031734][ T7811] RSP: 002b:00007ffcc9750f60 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 1712.040235][ T7811] RAX: ffffffffffffffda RBX: 00007ffcc9750f60 RCX: 0000000000458eda 03:33:39 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000006000"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:39 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1712.048670][ T7811] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1712.056640][ T7811] RBP: 00007ffcc9750fa0 R08: 0000000000000001 R09: 00000000020c1940 [ 1712.064628][ T7811] R10: 00000000020c1c10 R11: 0000000000000246 R12: 0000000000000001 [ 1712.073217][ T7811] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffcc9750ff0 [ 1712.163877][ T1539] BPF:[1] ARRAY (anon) [ 1712.183042][ T1526] BPF:btf_header not found [ 1712.194457][ T1539] BPF:type_id=3113514752 index_type_id=1610612736 nr_elems=0 [ 1712.224172][ T1540] BPF:btf_header not found [ 1712.260362][ T1539] BPF: [ 1712.266539][ T1539] BPF:size != 0 [ 1712.291365][ T1539] BPF: [ 1712.291365][ T1539] [ 1712.310894][ T1543] BPF:[1] ARRAY (anon) [ 1712.324739][ T1543] BPF:type_id=3113514752 index_type_id=1610612736 nr_elems=0 [ 1712.362063][ T1543] BPF: [ 1712.369995][ T1543] BPF:size != 0 [ 1712.394437][ T1543] BPF: [ 1712.394437][ T1543] 03:33:39 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000006800"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1712.642514][ T1551] BPF:[1] ARRAY (anon) [ 1712.653889][ T1551] BPF:type_id=3113514752 index_type_id=1744830464 nr_elems=0 [ 1712.679471][ T7811] memory: usage 307200kB, limit 307200kB, failcnt 5347 [ 1712.686838][ T1551] BPF: [ 1712.689685][ T1551] BPF:size != 0 [ 1712.699017][ T7811] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1712.709317][ T1551] BPF: [ 1712.709317][ T1551] [ 1712.727797][ T7811] Memory cgroup stats for /syz1: [ 1712.727935][ T7811] anon 218443776 [ 1712.727935][ T7811] file 0 [ 1712.727935][ T7811] kernel_stack 8810496 [ 1712.727935][ T7811] slab 14946304 [ 1712.727935][ T7811] sock 0 [ 1712.727935][ T7811] shmem 0 [ 1712.727935][ T7811] file_mapped 0 [ 1712.727935][ T7811] file_dirty 0 [ 1712.727935][ T7811] file_writeback 0 [ 1712.727935][ T7811] anon_thp 153092096 [ 1712.727935][ T7811] inactive_anon 0 [ 1712.727935][ T7811] active_anon 218464256 [ 1712.727935][ T7811] inactive_file 0 [ 1712.727935][ T7811] active_file 36864 [ 1712.727935][ T7811] unevictable 0 [ 1712.727935][ T7811] slab_reclaimable 2027520 [ 1712.727935][ T7811] slab_unreclaimable 12918784 [ 1712.727935][ T7811] pgfault 209550 [ 1712.727935][ T7811] pgmajfault 0 [ 1712.727935][ T7811] workingset_refault 231 [ 1712.727935][ T7811] workingset_activate 165 [ 1712.727935][ T7811] workingset_nodereclaim 0 [ 1712.727935][ T7811] pgrefill 36055 [ 1712.727935][ T7811] pgscan 36267 [ 1712.727935][ T7811] pgsteal 732 [ 1712.732899][ T1552] BPF:[1] ARRAY (anon) [ 1712.748743][ T7811] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=14957,uid=0 03:33:40 executing program 2: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1712.923381][ T7811] Memory cgroup out of memory: Killed process 14957 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1712.995877][ T1067] oom_reaper: reaped process 14957 (syz-executor.1), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB [ 1713.013394][ T1545] syz-executor.0 invoked oom-killer: gfp_mask=0x500cc2(GFP_HIGHUSER|__GFP_ACCOUNT), order=0, oom_score_adj=1000 [ 1713.041028][ T1555] BPF:[1] Invalid kind:0 [ 1713.056543][ T1545] CPU: 0 PID: 1545 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1713.065478][ T1545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1713.076041][ T1545] Call Trace: [ 1713.079337][ T1545] dump_stack+0x11d/0x181 [ 1713.083759][ T1545] dump_header+0xaa/0x39c [ 1713.088131][ T1545] oom_kill_process.cold+0x10/0x15 [ 1713.093250][ T1545] out_of_memory+0x231/0xa60 [ 1713.097858][ T1545] mem_cgroup_out_of_memory+0x128/0x150 [ 1713.103733][ T1545] try_charge+0xb6c/0xbf0 [ 1713.108127][ T1545] ? __rcu_read_unlock+0x66/0x3d0 [ 1713.113179][ T1545] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1713.118653][ T1545] __memcg_kmem_charge+0xcf/0x1b0 [ 1713.123690][ T1545] __alloc_pages_nodemask+0x26c/0x310 [ 1713.130130][ T1545] alloc_pages_current+0xd1/0x170 [ 1713.135169][ T1545] pipe_write+0x72d/0xca0 [ 1713.139533][ T1545] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1713.143889][ T1552] BPF:type_id=3113514752 index_type_id=1744830464 nr_elems=0 [ 1713.145844][ T1545] ? iov_iter_init+0xe2/0x120 [ 1713.146033][ T1545] new_sync_write+0x388/0x4a0 [ 1713.163913][ T1545] __vfs_write+0xb1/0xc0 [ 1713.168290][ T1545] vfs_write+0x18a/0x390 [ 1713.172569][ T1545] ksys_write+0x17b/0x1b0 [ 1713.176927][ T1545] __x64_sys_write+0x4c/0x60 [ 1713.181630][ T1545] do_syscall_64+0xcc/0x3a0 [ 1713.184284][ T1552] BPF: [ 1713.186197][ T1545] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1713.186216][ T1545] RIP: 0033:0x45a909 [ 1713.188986][ T1552] BPF:size != 0 [ 1713.194908][ T1545] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1713.194977][ T1545] RSP: 002b:00007fde0f91ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1713.206985][ T1552] BPF: [ 1713.206985][ T1552] [ 1713.222036][ T1545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a909 [ 1713.222047][ T1545] RDX: 0000000041395527 RSI: 0000000020000340 RDI: 000000000000000a 03:33:40 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1713.222056][ T1545] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 1713.222066][ T1545] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fde0f91f6d4 [ 1713.222076][ T1545] R13: 00000000004c7ca0 R14: 00000000004e4d08 R15: 00000000ffffffff [ 1713.277066][ T1545] memory: usage 307200kB, limit 307200kB, failcnt 16410 [ 1713.300721][ T1545] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1713.307636][ T1545] Memory cgroup stats for /syz0: [ 1713.307841][ T1545] anon 245055488 [ 1713.307841][ T1545] file 0 [ 1713.307841][ T1545] kernel_stack 6488064 [ 1713.307841][ T1545] slab 9388032 [ 1713.307841][ T1545] sock 0 [ 1713.307841][ T1545] shmem 0 [ 1713.307841][ T1545] file_mapped 0 [ 1713.307841][ T1545] file_dirty 135168 [ 1713.307841][ T1545] file_writeback 0 [ 1713.307841][ T1545] anon_thp 199229440 [ 1713.307841][ T1545] inactive_anon 0 [ 1713.307841][ T1545] active_anon 245059584 03:33:40 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1713.307841][ T1545] inactive_file 0 [ 1713.307841][ T1545] active_file 24576 [ 1713.307841][ T1545] unevictable 0 [ 1713.307841][ T1545] slab_reclaimable 675840 [ 1713.307841][ T1545] slab_unreclaimable 8712192 [ 1713.307841][ T1545] pgfault 219219 [ 1713.307841][ T1545] pgmajfault 0 [ 1713.307841][ T1545] workingset_refault 264 [ 1713.307841][ T1545] workingset_activate 198 [ 1713.307841][ T1545] workingset_nodereclaim 0 [ 1713.307841][ T1545] pgrefill 31334 [ 1713.307841][ T1545] pgscan 62970 [ 1713.307841][ T1545] pgsteal 28591 [ 1713.436217][ T1567] BPF:btf_header not found [ 1713.441313][ T1565] BPF:[1] Invalid kind:0 [ 1713.471048][ T1566] BPF:[1] Invalid kind:0 [ 1713.708218][ T1545] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1497,uid=0 [ 1713.734222][ T1545] Memory cgroup out of memory: Killed process 1497 (syz-executor.0) total-vm:72980kB, anon-rss:2212kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1713.769360][ T1067] oom_reaper: reaped process 1497 (syz-executor.0), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB 03:33:41 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:41 executing program 2: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:41 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000006c00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:41 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1713.908840][ T1579] BPF:[1] Invalid kind:0 03:33:41 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1713.933650][ T1583] BPF:[1] ARRAY (anon) [ 1713.938037][ T1583] BPF:type_id=3113514752 index_type_id=1811939328 nr_elems=0 [ 1713.951246][ T1582] BPF:[1] Invalid kind:0 [ 1713.991389][ T1581] BPF:btf_header not found [ 1713.999264][ T1583] BPF: [ 1714.004568][ T1587] BPF:btf_header not found [ 1714.015185][ T1583] BPF:size != 0 [ 1714.027147][ T1583] BPF: [ 1714.027147][ T1583] [ 1714.053608][ T1589] BPF:[1] ARRAY (anon) [ 1714.071776][ T1589] BPF:type_id=3113514752 index_type_id=1811939328 nr_elems=0 [ 1714.116134][ T1578] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1714.131764][ T1589] BPF: [ 1714.155794][ T1589] BPF:size != 0 [ 1714.166871][ T1578] CPU: 0 PID: 1578 Comm: syz-executor.2 Not tainted 5.5.0-rc1-syzkaller #0 [ 1714.171605][ T1589] BPF: [ 1714.171605][ T1589] [ 1714.175510][ T1578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1714.175514][ T1578] Call Trace: [ 1714.175539][ T1578] dump_stack+0x11d/0x181 [ 1714.175591][ T1578] dump_header+0xaa/0x39c [ 1714.202474][ T1578] oom_kill_process.cold+0x10/0x15 [ 1714.207676][ T1578] out_of_memory+0x231/0xa60 [ 1714.212284][ T1578] mem_cgroup_out_of_memory+0x128/0x150 [ 1714.217844][ T1578] try_charge+0xb6c/0xbf0 [ 1714.222203][ T1578] ? rcu_note_context_switch+0x6d0/0x760 [ 1714.227851][ T1578] mem_cgroup_try_charge+0xd2/0x260 [ 1714.233120][ T1578] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1714.238771][ T1578] __handle_mm_fault+0x197f/0x2e00 [ 1714.243921][ T1578] handle_mm_fault+0x21b/0x530 [ 1714.248747][ T1578] __do_page_fault+0x456/0x8d0 [ 1714.253529][ T1578] do_page_fault+0x38/0x194 [ 1714.258039][ T1578] page_fault+0x34/0x40 [ 1714.262312][ T1578] RIP: 0033:0x45d2bd [ 1714.266254][ T1578] Code: 5b 5d f3 c3 66 0f 1f 84 00 00 00 00 00 48 c7 c0 ea ff ff ff 48 85 ff 0f 84 e0 8c fb ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 <48> 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 [ 1714.285954][ T1578] RSP: 002b:00007ffee6cfbfc8 EFLAGS: 00010202 [ 1714.292067][ T1578] RAX: ffffffffffffffea RBX: 00007f60b1036700 RCX: 00007f60b1036700 [ 1714.300081][ T1578] RDX: 00000000003d0f00 RSI: 00007f60b1035db0 RDI: 00000000004114f0 [ 1714.308318][ T1578] RBP: 00007ffee6cfc1e0 R08: 00007f60b10369d0 R09: 00007f60b1036700 03:33:41 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:33:41 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000007400"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1714.316314][ T1578] R10: 00007f60b1035dc0 R11: 0000000000000246 R12: 0000000000000000 [ 1714.324287][ T1578] R13: 00007ffee6cfc07f R14: 00007f60b10369c0 R15: 000000000075bfd4 [ 1714.355023][ T1594] BPF:[1] Invalid kind:0 [ 1714.358701][ T1578] memory: usage 307200kB, limit 307200kB, failcnt 26449 [ 1714.368321][ T1578] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1714.376401][ T1578] Memory cgroup stats for /syz2: [ 1714.376662][ T1578] anon 242130944 [ 1714.376662][ T1578] file 57344 [ 1714.376662][ T1578] kernel_stack 6488064 [ 1714.376662][ T1578] slab 9564160 [ 1714.376662][ T1578] sock 0 [ 1714.376662][ T1578] shmem 0 [ 1714.376662][ T1578] file_mapped 0 [ 1714.376662][ T1578] file_dirty 135168 [ 1714.376662][ T1578] file_writeback 0 [ 1714.376662][ T1578] anon_thp 197132288 [ 1714.376662][ T1578] inactive_anon 0 [ 1714.376662][ T1578] active_anon 242180096 [ 1714.376662][ T1578] inactive_file 155648 [ 1714.376662][ T1578] active_file 163840 [ 1714.376662][ T1578] unevictable 0 [ 1714.376662][ T1578] slab_reclaimable 811008 [ 1714.376662][ T1578] slab_unreclaimable 8753152 [ 1714.376662][ T1578] pgfault 220605 [ 1714.376662][ T1578] pgmajfault 0 [ 1714.376662][ T1578] workingset_refault 297 [ 1714.376662][ T1578] workingset_activate 165 [ 1714.376662][ T1578] workingset_nodereclaim 0 [ 1714.376662][ T1578] pgrefill 31691 03:33:41 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1714.376662][ T1578] pgscan 80337 [ 1714.376662][ T1578] pgsteal 46411 [ 1714.429838][ T1600] BPF:[1] ARRAY (anon) [ 1714.567161][ T1605] BPF:btf_header not found [ 1714.574238][ T1600] BPF:type_id=3113514752 index_type_id=1946157056 nr_elems=0 [ 1714.586644][ T1600] BPF: [ 1714.590257][ T1600] BPF:size != 0 [ 1714.594832][ T1600] BPF: [ 1714.594832][ T1600] [ 1714.600438][ T1578] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=31273,uid=0 [ 1714.624150][ T1607] BPF:[1] ARRAY (anon) [ 1714.641479][ T1578] Memory cgroup out of memory: Killed process 31273 (syz-executor.2) total-vm:72584kB, anon-rss:2212kB, file-rss:35792kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1714.661666][ T1607] BPF:type_id=3113514752 index_type_id=1946157056 nr_elems=0 [ 1714.672965][ T1610] BPF:[1] Invalid kind:0 [ 1714.678390][ T1607] BPF: [ 1714.681933][ T1607] BPF:size != 0 [ 1714.686789][ T1607] BPF: [ 1714.686789][ T1607] [ 1714.694365][ T1611] BPF:[1] Invalid kind:0 [ 1714.694606][ T1067] oom_reaper: reaped process 31273 (syz-executor.2), now anon-rss:0kB, file-rss:34832kB, shmem-rss:0kB 03:33:42 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1714.715000][ T1580] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1714.741851][ T1580] CPU: 0 PID: 1580 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1714.750610][ T1580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1714.760996][ T1580] Call Trace: [ 1714.764296][ T1580] dump_stack+0x11d/0x181 [ 1714.768642][ T1580] dump_header+0xaa/0x39c [ 1714.772987][ T1580] oom_kill_process.cold+0x10/0x15 [ 1714.778114][ T1580] out_of_memory+0x231/0xa60 [ 1714.782741][ T1580] mem_cgroup_out_of_memory+0x128/0x150 [ 1714.788377][ T1580] try_charge+0xb6c/0xbf0 [ 1714.792725][ T1580] ? rcu_note_context_switch+0x6d0/0x760 [ 1714.798397][ T1580] mem_cgroup_try_charge+0xd2/0x260 [ 1714.803606][ T1580] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1714.809290][ T1580] __handle_mm_fault+0x197f/0x2e00 [ 1714.814482][ T1580] handle_mm_fault+0x21b/0x530 [ 1714.819283][ T1580] __do_page_fault+0x456/0x8d0 [ 1714.824200][ T1580] do_page_fault+0x38/0x194 [ 1714.828720][ T1580] page_fault+0x34/0x40 [ 1714.832927][ T1580] RIP: 0033:0x45d2bd [ 1714.836858][ T1580] Code: 5b 5d f3 c3 66 0f 1f 84 00 00 00 00 00 48 c7 c0 ea ff ff ff 48 85 ff 0f 84 e0 8c fb ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 <48> 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 [ 1714.856752][ T1580] RSP: 002b:00007fff9b1d2e18 EFLAGS: 00010202 [ 1714.862848][ T1580] RAX: ffffffffffffffea RBX: 00007fde0f8dd700 RCX: 00007fde0f8dd700 03:33:42 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000007a00"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1714.870846][ T1580] RDX: 00000000003d0f00 RSI: 00007fde0f8dcdb0 RDI: 00000000004114f0 [ 1714.879008][ T1580] RBP: 00007fff9b1d3030 R08: 00007fde0f8dd9d0 R09: 00007fde0f8dd700 [ 1714.887020][ T1580] R10: 00007fde0f8dcdc0 R11: 0000000000000246 R12: 0000000000000000 [ 1714.895104][ T1580] R13: 00007fff9b1d2ecf R14: 00007fde0f8dd9c0 R15: 000000000075c1cc [ 1714.955453][ T1623] BPF:[1] ARRAY (anon) [ 1714.973752][ T1623] BPF:type_id=3113514752 index_type_id=2046820352 nr_elems=0 [ 1714.999760][ T1623] BPF: [ 1715.010381][ T1623] BPF:size != 0 [ 1715.023276][ T1623] BPF: [ 1715.023276][ T1623] [ 1715.046192][ T1626] BPF:[1] ARRAY (anon) [ 1715.063485][ T1626] BPF:type_id=3113514752 index_type_id=2046820352 nr_elems=0 [ 1715.080825][ T1624] BPF:[1] Invalid kind:0 [ 1715.089982][ T1626] BPF: [ 1715.108400][ T1626] BPF:size != 0 03:33:42 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1715.119707][ T1626] BPF: [ 1715.119707][ T1626] 03:33:42 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b9000000f800"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1715.173425][ T1580] memory: usage 307200kB, limit 307200kB, failcnt 16448 [ 1715.210897][ T1580] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1715.230855][ T1580] Memory cgroup stats for /syz0: [ 1715.231110][ T1580] anon 245100544 [ 1715.231110][ T1580] file 0 [ 1715.231110][ T1580] kernel_stack 6488064 [ 1715.231110][ T1580] slab 9388032 [ 1715.231110][ T1580] sock 0 [ 1715.231110][ T1580] shmem 0 [ 1715.231110][ T1580] file_mapped 0 [ 1715.231110][ T1580] file_dirty 135168 [ 1715.231110][ T1580] file_writeback 0 [ 1715.231110][ T1580] anon_thp 199229440 [ 1715.231110][ T1580] inactive_anon 0 [ 1715.231110][ T1580] active_anon 245104640 [ 1715.231110][ T1580] inactive_file 0 [ 1715.231110][ T1580] active_file 24576 [ 1715.231110][ T1580] unevictable 0 [ 1715.231110][ T1580] slab_reclaimable 675840 [ 1715.231110][ T1580] slab_unreclaimable 8712192 [ 1715.231110][ T1580] pgfault 219318 [ 1715.231110][ T1580] pgmajfault 0 [ 1715.231110][ T1580] workingset_refault 264 [ 1715.231110][ T1580] workingset_activate 198 [ 1715.231110][ T1580] workingset_nodereclaim 0 [ 1715.231110][ T1580] pgrefill 31400 [ 1715.231110][ T1580] pgscan 63069 [ 1715.231110][ T1580] pgsteal 28591 [ 1715.368233][ T1633] BPF:[1] ARRAY (anon) [ 1715.384111][ T1633] BPF:type_id=3113514752 index_type_id=4160749568 nr_elems=0 [ 1715.424046][ T1633] BPF: [ 1715.429130][ T1634] BPF:[1] Invalid kind:0 [ 1715.434185][ T1633] BPF:size != 0 [ 1715.443974][ T1633] BPF: [ 1715.443974][ T1633] [ 1715.464494][ T1635] BPF:[1] Invalid kind:0 [ 1715.472246][ T1639] BPF:[1] ARRAY (anon) [ 1715.488093][ T1639] BPF:type_id=3113514752 index_type_id=4160749568 nr_elems=0 [ 1715.491045][ T1580] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1580,uid=0 [ 1715.505459][ T1639] BPF: [ 1715.539277][ T1639] BPF:size != 0 [ 1715.543386][ T1580] Memory cgroup out of memory: Killed process 1580 (syz-executor.0) total-vm:73112kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1715.547645][ T1639] BPF: [ 1715.547645][ T1639] [ 1715.593812][ T1067] oom_reaper: reaped process 1580 (syz-executor.0), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB [ 1715.605675][ T1615] syz-executor.3 invoked oom-killer: gfp_mask=0x101cca(GFP_HIGHUSER_MOVABLE|__GFP_WRITE), order=0, oom_score_adj=1000 [ 1715.628570][ T1615] CPU: 1 PID: 1615 Comm: syz-executor.3 Not tainted 5.5.0-rc1-syzkaller #0 [ 1715.637322][ T1615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1715.647452][ T1615] Call Trace: [ 1715.650759][ T1615] dump_stack+0x11d/0x181 [ 1715.655096][ T1615] dump_header+0xaa/0x39c [ 1715.659434][ T1615] oom_kill_process.cold+0x10/0x15 [ 1715.664966][ T1615] out_of_memory+0x231/0xa60 [ 1715.669644][ T1615] mem_cgroup_out_of_memory+0x128/0x150 [ 1715.675246][ T1615] try_charge+0xb6c/0xbf0 [ 1715.679626][ T1615] ? rcu_note_context_switch+0x6d0/0x760 [ 1715.685284][ T1615] mem_cgroup_try_charge+0xd2/0x260 [ 1715.690578][ T1615] __add_to_page_cache_locked+0x163/0x780 [ 1715.696533][ T1615] ? __read_once_size.constprop.0+0x20/0x20 [ 1715.702453][ T1615] add_to_page_cache_lru+0xc4/0x260 [ 1715.707689][ T1615] pagecache_get_page+0x2ac/0x6f0 [ 1715.712734][ T1615] ? __local_bh_enable_ip+0x32/0x80 [ 1715.718075][ T1615] ? _raw_spin_unlock_bh+0x44/0x50 [ 1715.723209][ T1615] grab_cache_page_write_begin+0x5d/0x90 [ 1715.728895][ T1615] ext4_da_write_begin+0x1a3/0x840 [ 1715.734092][ T1615] ? generic_update_time+0xc0/0x270 [ 1715.739338][ T1615] ? iov_iter_fault_in_readable+0x15c/0x2b0 [ 1715.745423][ T1615] generic_perform_write+0x136/0x320 [ 1715.750745][ T1615] ext4_buffered_write_iter+0x143/0x290 [ 1715.756341][ T1615] ext4_file_write_iter+0xf4/0xd40 [ 1715.761488][ T1615] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1715.767752][ T1615] ? iov_iter_init+0xe2/0x120 [ 1715.772529][ T1615] new_sync_write+0x388/0x4a0 [ 1715.777331][ T1615] ? __rcu_read_unlock+0x66/0x3d0 [ 1715.782392][ T1615] __vfs_write+0xb1/0xc0 [ 1715.786763][ T1615] vfs_write+0x18a/0x390 [ 1715.791139][ T1615] ksys_write+0xd5/0x1b0 [ 1715.795456][ T1615] __x64_sys_write+0x4c/0x60 [ 1715.800590][ T1615] do_syscall_64+0xcc/0x3a0 [ 1715.805220][ T1615] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1715.811197][ T1615] RIP: 0033:0x45a909 [ 1715.815221][ T1615] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1715.834862][ T1615] RSP: 002b:00007f8accf04c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 03:33:43 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r8, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r9 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r9, 0x84, 0x76, &(0x7f0000000000)={r10, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:43 executing program 2: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000001c0)={0xa927, 0x2d, 0x0, 0xffffffffffffff9c}) r2 = dup(r1) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) mmap(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x0, 0x30051, r2, 0x2000) 03:33:43 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:43 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000003000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1715.843289][ T1615] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a909 [ 1715.851283][ T1615] RDX: 00000000fffffe7e RSI: 0000000020000000 RDI: 000000000000000a [ 1715.859704][ T1615] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 1715.867697][ T1615] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8accf056d4 [ 1715.875683][ T1615] R13: 00000000004c7ca0 R14: 00000000004e4d08 R15: 00000000ffffffff [ 1715.953905][ T1644] x86/PAT: syz-executor.2:1644 map pfn RAM range req write-combining for [mem 0x579c0000-0x579c0fff], got write-back [ 1715.986229][ T1647] BPF:[1] ARRAY (anon) [ 1715.992119][ T1647] BPF:type_id=3113514752 index_type_id=0 nr_elems=3 [ 1715.997768][ T1648] BPF:[1] Invalid kind:0 [ 1715.999093][ T1647] BPF: [ 1716.012751][ T1647] BPF:size != 0 [ 1716.020937][ T1647] BPF: [ 1716.020937][ T1647] [ 1716.029138][ T1652] x86/PAT: syz-executor.2:1652 map pfn RAM range req write-combining for [mem 0x579f7000-0x579f7fff], got write-back [ 1716.047940][ T1653] BPF:[1] ARRAY (anon) 03:33:43 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1716.057304][ T1653] BPF:type_id=3113514752 index_type_id=0 nr_elems=3 [ 1716.058284][ T1650] BPF:btf_header not found [ 1716.070606][ T1653] BPF: [ 1716.078328][ T1653] BPF:size != 0 [ 1716.084417][ T1653] BPF: [ 1716.084417][ T1653] [ 1716.200746][ T1657] BPF:[1] Invalid kind:0 [ 1716.234505][ T1658] BPF:[1] Invalid kind:0 [ 1716.239560][ T1615] memory: usage 307200kB, limit 307200kB, failcnt 2429336 [ 1716.250140][ T1615] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1716.257735][ T1615] Memory cgroup stats for /syz3: [ 1716.258004][ T1615] anon 284827648 [ 1716.258004][ T1615] file 0 [ 1716.258004][ T1615] kernel_stack 2801664 [ 1716.258004][ T1615] slab 4866048 [ 1716.258004][ T1615] sock 20480 [ 1716.258004][ T1615] shmem 65536 [ 1716.258004][ T1615] file_mapped 0 [ 1716.258004][ T1615] file_dirty 135168 [ 1716.258004][ T1615] file_writeback 0 [ 1716.258004][ T1615] anon_thp 266338304 [ 1716.258004][ T1615] inactive_anon 135168 [ 1716.258004][ T1615] active_anon 284831744 [ 1716.258004][ T1615] inactive_file 90112 [ 1716.258004][ T1615] active_file 73728 [ 1716.258004][ T1615] unevictable 0 [ 1716.258004][ T1615] slab_reclaimable 811008 [ 1716.258004][ T1615] slab_unreclaimable 4055040 [ 1716.258004][ T1615] pgfault 180972 [ 1716.258004][ T1615] pgmajfault 0 [ 1716.258004][ T1615] workingset_refault 297 [ 1716.258004][ T1615] workingset_activate 99 [ 1716.258004][ T1615] workingset_nodereclaim 0 [ 1716.258004][ T1615] pgrefill 8858 [ 1716.258004][ T1615] pgscan 40686 [ 1716.258004][ T1615] pgsteal 29063 [ 1716.372827][ T1615] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=10367,uid=0 [ 1716.392701][ T1615] Memory cgroup out of memory: Killed process 10367 (syz-executor.3) total-vm:72716kB, anon-rss:4268kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:122880kB oom_score_adj:1000 [ 1716.423438][ T1603] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1716.442471][ T1603] CPU: 1 PID: 1603 Comm: syz-executor.3 Not tainted 5.5.0-rc1-syzkaller #0 [ 1716.451104][ T1603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1716.461191][ T1603] Call Trace: [ 1716.464489][ T1603] dump_stack+0x11d/0x181 [ 1716.468836][ T1603] dump_header+0xaa/0x39c [ 1716.473330][ T1603] oom_kill_process.cold+0x10/0x15 [ 1716.478521][ T1603] out_of_memory+0x231/0xa60 [ 1716.483159][ T1603] mem_cgroup_out_of_memory+0x128/0x150 [ 1716.488726][ T1603] try_charge+0x800/0xbf0 [ 1716.493077][ T1603] ? rcu_note_context_switch+0x6d0/0x760 [ 1716.498897][ T1603] mem_cgroup_try_charge+0xd2/0x260 [ 1716.504120][ T1603] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1716.509845][ T1603] __handle_mm_fault+0x197f/0x2e00 [ 1716.515008][ T1603] handle_mm_fault+0x21b/0x530 [ 1716.519878][ T1603] __do_page_fault+0x456/0x8d0 [ 1716.524688][ T1603] do_page_fault+0x38/0x194 [ 1716.529210][ T1603] page_fault+0x34/0x40 [ 1716.533494][ T1603] RIP: 0033:0x4120ff [ 1716.537405][ T1603] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41 [ 1716.557144][ T1603] RSP: 002b:00007fffc021fb00 EFLAGS: 00010206 [ 1716.563217][ T1603] RAX: 00007f8accec4000 RBX: 0000000000020000 RCX: 000000000045a95a [ 1716.571520][ T1603] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000 [ 1716.579529][ T1603] RBP: 00007fffc021fbe0 R08: ffffffffffffffff R09: 0000000000000000 [ 1716.588269][ T1603] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffc021fcd0 [ 1716.596410][ T1603] R13: 00007f8accee4700 R14: 0000000000000003 R15: 000000000075c124 [ 1716.956763][ T1603] memory: usage 307080kB, limit 307200kB, failcnt 2429915 [ 1716.995660][ T1603] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1717.033001][ T1603] Memory cgroup stats for /syz3: [ 1717.033224][ T1603] anon 280637440 [ 1717.033224][ T1603] file 4096000 [ 1717.033224][ T1603] kernel_stack 2801664 [ 1717.033224][ T1603] slab 4866048 [ 1717.033224][ T1603] sock 20480 [ 1717.033224][ T1603] shmem 65536 [ 1717.033224][ T1603] file_mapped 0 [ 1717.033224][ T1603] file_dirty 540672 [ 1717.033224][ T1603] file_writeback 0 [ 1717.033224][ T1603] anon_thp 262144000 [ 1717.033224][ T1603] inactive_anon 135168 [ 1717.033224][ T1603] active_anon 280641536 [ 1717.033224][ T1603] inactive_file 4202496 [ 1717.033224][ T1603] active_file 73728 [ 1717.033224][ T1603] unevictable 0 [ 1717.033224][ T1603] slab_reclaimable 811008 [ 1717.033224][ T1603] slab_unreclaimable 4055040 [ 1717.033224][ T1603] pgfault 181500 [ 1717.033224][ T1603] pgmajfault 0 [ 1717.033224][ T1603] workingset_refault 297 [ 1717.033224][ T1603] workingset_activate 99 [ 1717.033224][ T1603] workingset_nodereclaim 0 [ 1717.033224][ T1603] pgrefill 8858 [ 1717.033224][ T1603] pgscan 42032 [ 1717.033224][ T1603] pgsteal 30388 [ 1717.300895][ T1603] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=27998,uid=0 [ 1717.378612][ T1603] Memory cgroup out of memory: Killed process 27998 (syz-executor.3) total-vm:73112kB, anon-rss:2240kB, file-rss:35852kB, shmem-rss:0kB, UID:0 pgtables:126976kB oom_score_adj:1000 [ 1717.465900][ T1645] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1717.497388][ T1645] CPU: 1 PID: 1645 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1717.506155][ T1645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1717.516215][ T1645] Call Trace: [ 1717.519542][ T1645] dump_stack+0x11d/0x181 [ 1717.523945][ T1645] dump_header+0xaa/0x39c [ 1717.528288][ T1645] oom_kill_process.cold+0x10/0x15 [ 1717.533434][ T1645] out_of_memory+0x231/0xa60 [ 1717.538126][ T1645] mem_cgroup_out_of_memory+0x128/0x150 [ 1717.543749][ T1645] try_charge+0xb6c/0xbf0 [ 1717.548139][ T1645] ? __mod_lruvec_state+0x70/0x1e0 [ 1717.553371][ T1645] ? __rcu_read_unlock+0x66/0x3d0 [ 1717.558444][ T1645] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1717.563917][ T1645] __memcg_kmem_charge+0xcf/0x1b0 [ 1717.569941][ T1645] copy_process+0x11d2/0x3c40 [ 1717.574656][ T1645] ? record_times+0x16/0x90 [ 1717.579264][ T1645] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1717.585351][ T1645] _do_fork+0xfe/0x7a0 [ 1717.589488][ T1645] ? cgroup_file_notify+0xff/0x130 [ 1717.594616][ T1645] ? blkcg_maybe_throttle_current+0x23d/0x580 [ 1717.600701][ T1645] __x64_sys_clone+0x130/0x170 [ 1717.605493][ T1645] do_syscall_64+0xcc/0x3a0 [ 1717.610016][ T1645] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1717.615918][ T1645] RIP: 0033:0x45d2d9 [ 1717.619830][ T1645] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75 [ 1717.639898][ T1645] RSP: 002b:00007fff9b1d2e18 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 1717.648529][ T1645] RAX: ffffffffffffffda RBX: 00007fde0f8fe700 RCX: 000000000045d2d9 [ 1717.656510][ T1645] RDX: 00007fde0f8fe9d0 RSI: 00007fde0f8fddb0 RDI: 00000000003d0f00 03:33:45 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:33:45 executing program 2: recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)=[{0x0}, {&(0x7f0000000200)=""/226, 0xe2}], 0x2}, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0xc0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0xffffffffffffff0a) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8946, &(0x7f0000000140)='sit0\x00') 03:33:45 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000005000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:45 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1717.664517][ T1645] RBP: 00007fff9b1d3030 R08: 00007fde0f8fe700 R09: 00007fde0f8fe700 [ 1717.672504][ T1645] R10: 00007fde0f8fe9d0 R11: 0000000000000202 R12: 0000000000000000 [ 1717.680571][ T1645] R13: 00007fff9b1d2ecf R14: 00007fde0f8fe9c0 R15: 000000000075c124 03:33:45 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1717.760613][ T1670] BPF:[1] Invalid kind:0 [ 1717.762956][ T1669] BPF:[1] ARRAY (anon) [ 1717.770240][ T1669] BPF:type_id=3113514752 index_type_id=0 nr_elems=5 [ 1717.790582][ T1645] memory: usage 307200kB, limit 307200kB, failcnt 16482 [ 1717.798425][ T1645] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1717.800726][ T1669] BPF: [ 1717.827536][ T1669] BPF:size != 0 [ 1717.838891][ T1669] BPF: [ 1717.838891][ T1669] [ 1717.850978][ T1645] Memory cgroup stats for /syz0: [ 1717.851253][ T1645] anon 245141504 [ 1717.851253][ T1645] file 0 [ 1717.851253][ T1645] kernel_stack 6488064 [ 1717.851253][ T1645] slab 9388032 [ 1717.851253][ T1645] sock 0 [ 1717.851253][ T1645] shmem 0 [ 1717.851253][ T1645] file_mapped 0 [ 1717.851253][ T1645] file_dirty 135168 [ 1717.851253][ T1645] file_writeback 0 [ 1717.851253][ T1645] anon_thp 199229440 [ 1717.851253][ T1645] inactive_anon 0 [ 1717.851253][ T1645] active_anon 245145600 [ 1717.851253][ T1645] inactive_file 0 [ 1717.851253][ T1645] active_file 24576 [ 1717.851253][ T1645] unevictable 0 [ 1717.851253][ T1645] slab_reclaimable 675840 [ 1717.851253][ T1645] slab_unreclaimable 8712192 [ 1717.851253][ T1645] pgfault 219384 [ 1717.851253][ T1645] pgmajfault 0 [ 1717.851253][ T1645] workingset_refault 297 03:33:45 executing program 2: r0 = socket$inet6(0xa, 0x2, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x8001, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @local}, 0x1c) r1 = dup2(r0, r0) write$FUSE_IOCTL(r1, &(0x7f0000000040)={0x20}, 0x20) [ 1717.851253][ T1645] workingset_activate 198 [ 1717.851253][ T1645] workingset_nodereclaim 0 [ 1717.851253][ T1645] pgrefill 31565 [ 1717.851253][ T1645] pgscan 63267 [ 1717.851253][ T1645] pgsteal 28591 [ 1717.893246][ T1676] BPF:[1] ARRAY (anon) [ 1718.032833][ T1682] BPF:btf_header not found [ 1718.084348][ T1684] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 1718.088736][ T1676] BPF:type_id=3113514752 index_type_id=0 nr_elems=5 [ 1718.115562][ T1676] BPF: [ 1718.118863][ T1676] BPF:size != 0 [ 1718.123647][ T1676] BPF: [ 1718.123647][ T1676] 03:33:45 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000006000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1718.141314][ T1645] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1645,uid=0 [ 1718.181117][ T1645] Memory cgroup out of memory: Killed process 1645 (syz-executor.0) total-vm:72980kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1718.243883][ T1067] oom_reaper: reaped process 1645 (syz-executor.0), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB [ 1718.278102][ T1691] BPF:[1] ARRAY (anon) [ 1718.299864][ T1691] BPF:type_id=3113514752 index_type_id=0 nr_elems=6 [ 1718.320930][ T1691] BPF: [ 1718.330746][ T1691] BPF:size != 0 [ 1718.335758][ T1691] BPF: [ 1718.335758][ T1691] [ 1718.341293][ T7811] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=0 [ 1718.362369][ T1694] BPF:[1] ARRAY (anon) [ 1718.370599][ T7811] CPU: 0 PID: 7811 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1718.379255][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1718.382527][ T1694] BPF:type_id=3113514752 index_type_id=0 nr_elems=6 [ 1718.389325][ T7811] Call Trace: [ 1718.389349][ T7811] dump_stack+0x11d/0x181 [ 1718.389371][ T7811] dump_header+0xaa/0x39c [ 1718.389400][ T7811] oom_kill_process.cold+0x10/0x15 [ 1718.413293][ T7811] out_of_memory+0x231/0xa60 [ 1718.416761][ T1694] BPF: [ 1718.417909][ T7811] mem_cgroup_out_of_memory+0x128/0x150 [ 1718.417933][ T7811] try_charge+0xb6c/0xbf0 [ 1718.426415][ T1694] BPF:size != 0 [ 1718.426677][ T7811] ? __rcu_read_unlock+0x66/0x3d0 [ 1718.435724][ T1694] BPF: [ 1718.435724][ T1694] [ 1718.439396][ T7811] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1718.439482][ T7811] __memcg_kmem_charge+0xcf/0x1b0 [ 1718.439511][ T7811] __alloc_pages_nodemask+0x26c/0x310 [ 1718.460280][ T7811] alloc_pages_current+0xd1/0x170 [ 1718.465411][ T7811] pte_alloc_one+0x18/0x50 [ 1718.469846][ T7811] __pte_alloc+0x2d/0x220 [ 1718.474199][ T7811] copy_page_range+0x135a/0x19b0 [ 1718.479164][ T7811] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1718.485438][ T7811] ? __vma_link_rb+0x3f4/0x440 [ 1718.490333][ T7811] dup_mm+0x74a/0xba0 [ 1718.494433][ T7811] copy_process+0x3138/0x3c40 [ 1718.499157][ T7811] ? do_wp_page+0x19f/0xeb0 [ 1718.503808][ T7811] _do_fork+0xfe/0x7a0 [ 1718.507908][ T7811] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1718.513809][ T7811] ? __read_once_size+0x5a/0xe0 [ 1718.518673][ T7811] __x64_sys_clone+0x130/0x170 [ 1718.523455][ T7811] do_syscall_64+0xcc/0x3a0 [ 1718.528028][ T7811] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1718.533944][ T7811] RIP: 0033:0x458eda [ 1718.537928][ T7811] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00 [ 1718.557529][ T7811] RSP: 002b:00007ffcc9750f60 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 1718.566105][ T7811] RAX: ffffffffffffffda RBX: 00007ffcc9750f60 RCX: 0000000000458eda [ 1718.574082][ T7811] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1718.582098][ T7811] RBP: 00007ffcc9750fa0 R08: 0000000000000001 R09: 00000000020c1940 [ 1718.590143][ T7811] R10: 00000000020c1c10 R11: 0000000000000246 R12: 0000000000000001 [ 1718.598155][ T7811] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffcc9750ff0 03:33:46 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:46 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) recvmsg(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000380)=""/165, 0xa5}, {0x0}, {0x0}], 0x6}, 0x2) r1 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r1, 0x0, 0xfe72, 0x0, 0x0, 0x800e00516) shutdown(r0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = socket$inet_udp(0x2, 0x2, 0x0) r4 = dup2(r3, r2) setsockopt$sock_timeval(r2, 0xffff, 0x1006, &(0x7f0000000040)={0xcce5}, 0x10) recvfrom$inet(r4, 0x0, 0xffffff27, 0x0, 0x0, 0x800e0050e) shutdown(r1, 0x0) shutdown(r2, 0x0) 03:33:46 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000007000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1718.621639][ T7811] memory: usage 307200kB, limit 307200kB, failcnt 5389 [ 1718.640629][ T7811] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1718.647594][ T7811] Memory cgroup stats for /syz1: [ 1718.647752][ T7811] anon 217067520 [ 1718.647752][ T7811] file 0 [ 1718.647752][ T7811] kernel_stack 8957952 [ 1718.647752][ T7811] slab 15216640 [ 1718.647752][ T7811] sock 0 [ 1718.647752][ T7811] shmem 0 [ 1718.647752][ T7811] file_mapped 0 [ 1718.647752][ T7811] file_dirty 0 [ 1718.647752][ T7811] file_writeback 0 [ 1718.647752][ T7811] anon_thp 150994944 [ 1718.647752][ T7811] inactive_anon 0 [ 1718.647752][ T7811] active_anon 217088000 [ 1718.647752][ T7811] inactive_file 0 [ 1718.647752][ T7811] active_file 36864 [ 1718.647752][ T7811] unevictable 0 [ 1718.647752][ T7811] slab_reclaimable 2162688 [ 1718.647752][ T7811] slab_unreclaimable 13053952 [ 1718.647752][ T7811] pgfault 210309 [ 1718.647752][ T7811] pgmajfault 0 [ 1718.647752][ T7811] workingset_refault 231 [ 1718.647752][ T7811] workingset_activate 165 [ 1718.647752][ T7811] workingset_nodereclaim 0 [ 1718.647752][ T7811] pgrefill 36923 [ 1718.647752][ T7811] pgscan 37136 [ 1718.647752][ T7811] pgsteal 732 [ 1718.683112][ T1698] BPF:[1] ARRAY (anon) [ 1718.767988][ T1701] BPF:btf_header not found [ 1718.774799][ T7811] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=14886,uid=0 [ 1718.791516][ T7811] Memory cgroup out of memory: Killed process 14886 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 03:33:46 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1718.881411][ T1706] BPF:[1] Invalid kind:0 03:33:46 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x7, 0xf9, 0x8}, 0x20) [ 1718.940447][ T1698] BPF:type_id=3113514752 index_type_id=0 nr_elems=7 [ 1718.977148][ T1698] BPF: [ 1718.997224][ T1698] BPF:size != 0 03:33:46 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000180)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x10) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0) io_setup(0x20000000001005, &(0x7f0000000880)=0x0) io_submit(r2, 0x1, &(0x7f0000001440)=[&(0x7f0000000200)={0x5000000, 0x0, 0x700000000000000, 0x0, 0x0, r1, &(0x7f0000000100)="d7014f2edfaa3635f0a1562ed81e52ab35fa3b69569c11810900e7f045968627a89f2b2091aa831815ee4c4c9fef53900c89a303f491f2db49d4717fa93f96e58a35bf33da9f1ac300"/86, 0xfffffef4}]) [ 1719.024362][ T1698] BPF: [ 1719.024362][ T1698] [ 1719.042545][ T1715] BPF:btf_header not found [ 1719.082119][ T1718] BPF:[1] ARRAY (anon) [ 1719.104243][ T1718] BPF:type_id=3113514752 index_type_id=0 nr_elems=7 [ 1719.156083][ T1718] BPF: [ 1719.164220][ T1718] BPF:size != 0 [ 1719.172838][ T1718] BPF: [ 1719.172838][ T1718] [ 1719.196211][ T1720] BPF:hdr_len not found 03:33:46 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0xa, 0xf9, 0x8}, 0x20) 03:33:46 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b9000000000a000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1719.448909][ T1732] BPF:[1] ARRAY (anon) [ 1719.472966][ T1723] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1719.483824][ T1732] BPF:type_id=3113514752 index_type_id=0 nr_elems=10 [ 1719.503669][ T1732] BPF: [ 1719.506831][ T1732] BPF:size != 0 [ 1719.517400][ T1734] BPF:btf_header not found [ 1719.528487][ T1732] BPF: [ 1719.528487][ T1732] [ 1719.548345][ T1738] BPF:[1] ARRAY (anon) [ 1719.554035][ T1735] BPF:btf_header not found [ 1719.565372][ T1738] BPF:type_id=3113514752 index_type_id=0 nr_elems=10 03:33:46 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1719.577592][ T1723] CPU: 1 PID: 1723 Comm: syz-executor.2 Not tainted 5.5.0-rc1-syzkaller #0 [ 1719.586304][ T1723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1719.596556][ T1723] Call Trace: [ 1719.599906][ T1723] dump_stack+0x11d/0x181 [ 1719.604271][ T1723] dump_header+0xaa/0x39c [ 1719.609657][ T1723] oom_kill_process.cold+0x10/0x15 [ 1719.615081][ T1723] out_of_memory+0x231/0xa60 [ 1719.619802][ T1723] ? __rcu_read_unlock+0x66/0x3d0 [ 1719.625005][ T1723] mem_cgroup_out_of_memory+0x128/0x150 [ 1719.630713][ T1723] try_charge+0xb6c/0xbf0 [ 1719.635119][ T1723] ? rcu_note_context_switch+0x6d0/0x760 [ 1719.641233][ T1723] mem_cgroup_try_charge+0xd2/0x260 [ 1719.646684][ T1723] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1719.652349][ T1723] __handle_mm_fault+0x197f/0x2e00 [ 1719.657600][ T1723] handle_mm_fault+0x21b/0x530 [ 1719.662382][ T1723] __do_page_fault+0x456/0x8d0 [ 1719.667257][ T1723] do_page_fault+0x38/0x194 [ 1719.671837][ T1723] page_fault+0x34/0x40 [ 1719.676063][ T1723] RIP: 0033:0x4120ff [ 1719.679978][ T1723] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41 [ 1719.699611][ T1723] RSP: 002b:00007ffee6cfc010 EFLAGS: 00010206 [ 1719.706182][ T1723] RAX: 00007f60b1016000 RBX: 0000000000020000 RCX: 000000000045a95a [ 1719.714158][ T1723] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000 03:33:47 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x18, 0xf9, 0x8}, 0x20) [ 1719.722222][ T1723] RBP: 00007ffee6cfc0f0 R08: ffffffffffffffff R09: 0000000000000000 [ 1719.730299][ T1723] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffee6cfc1e0 [ 1719.738935][ T1723] R13: 00007f60b1036700 R14: 0000000000000001 R15: 000000000075bfd4 03:33:47 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1719.799610][ T1738] BPF: [ 1719.809712][ T1738] BPF:size != 0 [ 1719.828952][ T1738] BPF: [ 1719.828952][ T1738] 03:33:47 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x23, 0xf9, 0x8}, 0x20) [ 1719.864826][ T1742] BPF:No data [ 1719.865150][ T1723] memory: usage 307200kB, limit 307200kB, failcnt 26473 [ 1719.904842][ T1723] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1719.939016][ T1723] Memory cgroup stats for /syz2: [ 1719.939469][ T1723] anon 242102272 [ 1719.939469][ T1723] file 204800 [ 1719.939469][ T1723] kernel_stack 6451200 [ 1719.939469][ T1723] slab 9564160 [ 1719.939469][ T1723] sock 0 [ 1719.939469][ T1723] shmem 0 [ 1719.939469][ T1723] file_mapped 0 [ 1719.939469][ T1723] file_dirty 0 [ 1719.939469][ T1723] file_writeback 0 [ 1719.939469][ T1723] anon_thp 197132288 [ 1719.939469][ T1723] inactive_anon 0 [ 1719.939469][ T1723] active_anon 242020352 [ 1719.939469][ T1723] inactive_file 4096 03:33:47 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b9000000001c000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1719.939469][ T1723] active_file 163840 [ 1719.939469][ T1723] unevictable 0 [ 1719.939469][ T1723] slab_reclaimable 811008 [ 1719.939469][ T1723] slab_unreclaimable 8753152 [ 1719.939469][ T1723] pgfault 221430 [ 1719.939469][ T1723] pgmajfault 0 [ 1719.939469][ T1723] workingset_refault 297 [ 1719.939469][ T1723] workingset_activate 165 [ 1719.939469][ T1723] workingset_nodereclaim 0 [ 1719.939469][ T1723] pgrefill 31691 [ 1719.939469][ T1723] pgscan 81856 [ 1719.939469][ T1723] pgsteal 46411 [ 1720.012533][ T1749] BPF:btf_header not found [ 1720.113961][ T1754] BPF:[1] ARRAY (anon) [ 1720.134065][ T1754] BPF:type_id=3113514752 index_type_id=0 nr_elems=28 [ 1720.153205][ T1754] BPF: [ 1720.156691][ T1754] BPF:size != 0 03:33:47 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x2b, 0xf9, 0x8}, 0x20) [ 1720.161860][ T1755] BPF:Total section length too long [ 1720.162546][ T1754] BPF: [ 1720.162546][ T1754] [ 1720.200406][ T1761] BPF:[1] ARRAY (anon) 03:33:47 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @ioapic={0x1, 0x5, 0xfff, 0x4, 0x0, [{0x7, 0x40, 0x6}, {0x1, 0x3, 0x3, [], 0x6}, {0x4, 0x7, 0x7, [], 0x6}, {0x8, 0x9, 0x0, [], 0x80}, {0xfb, 0x0, 0x5, [], 0x40}, {0x0, 0x3f, 0x41, [], 0x1}, {0x9, 0x4, 0x5, [], 0x3}, {0x1, 0x0, 0x5, [], 0x3}, {0x80, 0x1, 0x28, [], 0x9}, {0x1, 0x5, 0x3, [], 0x80}, {0xfc, 0xff, 0x5, [], 0x7f}, {0x3, 0x1f, 0x2, [], 0xf6}, {0x40, 0x6, 0x20, [], 0x8}, {0xed, 0x27, 0x80, [], 0x8}, {0x4, 0x69, 0xdc, [], 0x9}, {0x9, 0x1f, 0x3, [], 0x7}, {0x1, 0x1, 0x1, [], 0xaf}, {0x6, 0xff, 0xfb, [], 0x6}, {0x7f, 0x0, 0xb, [], 0x7f}, {0x80, 0x9, 0x5, [], 0x1}, {0xb8, 0x1, 0x5, [], 0x5}, {0x4, 0x3, 0x1, [], 0xff}, {0x5, 0x8, 0x14, [], 0x8}, {0xcc, 0x8, 0x80, [], 0x98}]}}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$VHOST_GET_VRING_BASE(r3, 0xc008af12, &(0x7f0000000180)) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup\x00', 0x200002, 0x0) fchdir(r4) r5 = openat$cgroup_ro(r4, &(0x7f0000000000)='cgroup.stat\x00', 0x0, 0x0) io_uring_register$IORING_REGISTER_EVENTFD(r2, 0x4, &(0x7f0000000140)=r5, 0x1) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r6, 0x407, 0x0) write(r6, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffffff, 0xc008640a, &(0x7f0000000240)={0x0, 0x0}) ioctl$DRM_IOCTL_GEM_FLINK(r6, 0xc008640a, &(0x7f0000000280)={0x0, r7}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1720.213306][ T1761] BPF:type_id=3113514752 index_type_id=0 nr_elems=28 [ 1720.230337][ T1761] BPF: [ 1720.236992][ T1761] BPF:size != 0 [ 1720.241843][ T1761] BPF: [ 1720.241843][ T1761] 03:33:47 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b9000000001e000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1720.419306][ T1723] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=14007,uid=0 [ 1720.443712][ T1773] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1720.485953][ T1774] BPF:Total section length too long [ 1720.504857][ T1723] Memory cgroup out of memory: Killed process 14007 (syz-executor.2) total-vm:72584kB, anon-rss:2212kB, file-rss:35784kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1720.528494][ T1779] BPF:[1] ARRAY (anon) 03:33:47 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x2d, 0xf9, 0x8}, 0x20) [ 1720.536618][ T1776] BPF:Total section length too long [ 1720.556102][ T1779] BPF:type_id=3113514752 index_type_id=0 nr_elems=30 [ 1720.610753][ T1779] BPF: [ 1720.613615][ T1779] BPF:size != 0 [ 1720.641877][ T1779] BPF: [ 1720.641877][ T1779] [ 1720.652337][ T1793] BPF:Total section length too long [ 1720.680432][ T1795] BPF:[1] ARRAY (anon) [ 1720.683431][ T1794] BPF:Total section length too long [ 1720.694436][ T1795] BPF:type_id=3113514752 index_type_id=0 nr_elems=30 [ 1720.741755][ T1795] BPF: [ 1720.742061][ T1739] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1720.755738][ T1795] BPF:size != 0 [ 1720.775296][ T1795] BPF: [ 1720.775296][ T1795] [ 1720.776757][ T1739] CPU: 0 PID: 1739 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1720.788883][ T1739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1720.798939][ T1739] Call Trace: [ 1720.802255][ T1739] dump_stack+0x11d/0x181 [ 1720.806607][ T1739] dump_header+0xaa/0x39c [ 1720.811095][ T1739] oom_kill_process.cold+0x10/0x15 [ 1720.816249][ T1739] out_of_memory+0x231/0xa60 [ 1720.821054][ T1739] mem_cgroup_out_of_memory+0x128/0x150 [ 1720.828353][ T1739] try_charge+0xb6c/0xbf0 [ 1720.833406][ T1739] ? rcu_note_context_switch+0x6d0/0x760 [ 1720.839328][ T1739] mem_cgroup_try_charge+0xd2/0x260 [ 1720.844686][ T1739] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1720.850741][ T1739] wp_page_copy+0x322/0x1040 [ 1720.855403][ T1739] ? __read_once_size+0x41/0xe0 [ 1720.860599][ T1739] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1720.866993][ T1739] do_wp_page+0x192/0xeb0 [ 1720.871695][ T1739] __handle_mm_fault+0x1d16/0x2e00 [ 1720.877379][ T1739] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1720.883769][ T1739] handle_mm_fault+0x21b/0x530 [ 1720.888674][ T1739] __do_page_fault+0x456/0x8d0 [ 1720.893908][ T1739] do_page_fault+0x38/0x194 [ 1720.898664][ T1739] page_fault+0x34/0x40 [ 1720.902906][ T1739] RIP: 0033:0x4319e6 [ 1720.906904][ T1739] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 a6 71 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 5c 57 64 00 85 c0 0f 84 [ 1720.929144][ T1739] RSP: 002b:00007fff9b1d2d40 EFLAGS: 00010206 [ 1720.935989][ T1739] RAX: 00000000000205b1 RBX: 000000000071a640 RCX: 0000000000000121 [ 1720.944456][ T1739] RDX: 0000000000e4c930 RSI: 0000000000e4ca50 RDI: 0000000000000000 [ 1720.953561][ T1739] RBP: 0000000000000121 R08: ffffffffffffffff R09: 0000000000000000 [ 1720.962321][ T1739] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000071a698 [ 1720.971009][ T1739] R13: 000000000071a698 R14: 0000000000000000 R15: 0000000000002710 [ 1721.201027][ T1739] memory: usage 307200kB, limit 307200kB, failcnt 16979 [ 1721.210867][ T1739] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1721.228843][ T1739] Memory cgroup stats for /syz0: [ 1721.229068][ T1739] anon 245112832 [ 1721.229068][ T1739] file 0 [ 1721.229068][ T1739] kernel_stack 6451200 [ 1721.229068][ T1739] slab 9388032 [ 1721.229068][ T1739] sock 0 [ 1721.229068][ T1739] shmem 0 [ 1721.229068][ T1739] file_mapped 0 [ 1721.229068][ T1739] file_dirty 135168 [ 1721.229068][ T1739] file_writeback 0 [ 1721.229068][ T1739] anon_thp 199229440 [ 1721.229068][ T1739] inactive_anon 0 [ 1721.229068][ T1739] active_anon 245116928 [ 1721.229068][ T1739] inactive_file 0 [ 1721.229068][ T1739] active_file 159744 [ 1721.229068][ T1739] unevictable 0 [ 1721.229068][ T1739] slab_reclaimable 675840 [ 1721.229068][ T1739] slab_unreclaimable 8712192 [ 1721.229068][ T1739] pgfault 219516 [ 1721.229068][ T1739] pgmajfault 0 [ 1721.229068][ T1739] workingset_refault 297 [ 1721.229068][ T1739] workingset_activate 198 [ 1721.229068][ T1739] workingset_nodereclaim 0 [ 1721.229068][ T1739] pgrefill 32251 [ 1721.229068][ T1739] pgscan 65034 [ 1721.229068][ T1739] pgsteal 28993 [ 1721.383569][ T1739] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1702,uid=0 [ 1721.399536][ T1739] Memory cgroup out of memory: Killed process 1702 (syz-executor.0) total-vm:72980kB, anon-rss:2232kB, file-rss:35828kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000 [ 1721.421001][ T1067] oom_reaper: reaped process 1702 (syz-executor.0), now anon-rss:0kB, file-rss:34868kB, shmem-rss:0kB [ 1721.425877][ T1806] BPF:btf_header not found [ 1721.455178][ T1807] syz-executor.0 invoked oom-killer: gfp_mask=0x500cc2(GFP_HIGHUSER|__GFP_ACCOUNT), order=0, oom_score_adj=1000 [ 1721.468006][ T1807] CPU: 1 PID: 1807 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1721.476612][ T1807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1721.486689][ T1807] Call Trace: [ 1721.490011][ T1807] dump_stack+0x11d/0x181 [ 1721.494366][ T1807] dump_header+0xaa/0x39c [ 1721.498799][ T1807] oom_kill_process.cold+0x10/0x15 [ 1721.503929][ T1807] out_of_memory+0x231/0xa60 [ 1721.508617][ T1807] mem_cgroup_out_of_memory+0x128/0x150 [ 1721.514190][ T1807] try_charge+0xb6c/0xbf0 [ 1721.518546][ T1807] ? __rcu_read_unlock+0x66/0x3d0 [ 1721.523636][ T1807] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1721.529156][ T1807] __memcg_kmem_charge+0xcf/0x1b0 [ 1721.534284][ T1807] __alloc_pages_nodemask+0x26c/0x310 [ 1721.540353][ T1807] alloc_pages_current+0xd1/0x170 [ 1721.545390][ T1807] pipe_write+0x72d/0xca0 [ 1721.549767][ T1807] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1721.556014][ T1807] ? iov_iter_init+0xe2/0x120 [ 1721.560738][ T1807] new_sync_write+0x388/0x4a0 [ 1721.565647][ T1807] __vfs_write+0xb1/0xc0 [ 1721.569931][ T1807] vfs_write+0x18a/0x390 [ 1721.574326][ T1807] ksys_write+0x17b/0x1b0 [ 1721.578677][ T1807] __x64_sys_write+0x4c/0x60 [ 1721.583266][ T1807] do_syscall_64+0xcc/0x3a0 [ 1721.587768][ T1807] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1721.593719][ T1807] RIP: 0033:0x45a909 [ 1721.597607][ T1807] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1721.617203][ T1807] RSP: 002b:00007fde0f960c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1721.627445][ T1807] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a909 [ 1721.635552][ T1807] RDX: 0000000041395527 RSI: 0000000020000340 RDI: 0000000000000006 [ 1721.643669][ T1807] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 03:33:49 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) write(0xffffffffffffffff, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:33:49 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0xc, 0x28001) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000000c0)={0x0, 0x0, 0x0, {0x0, 0x100000000000001}, {0x47, 0x2}, @period={0x0, 0x0, 0x0, 0x0, 0x0, {}, 0xfffffffffffffe8e, 0x0}}) write$evdev(r0, &(0x7f0000000040), 0x1b3) 03:33:49 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x30, 0xf9, 0x8}, 0x20) [ 1721.651639][ T1807] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fde0f9616d4 [ 1721.659601][ T1807] R13: 00000000004c7ca0 R14: 00000000004e4d08 R15: 00000000ffffffff [ 1721.685316][ T1811] BPF:btf_header not found [ 1721.693346][ T1807] memory: usage 307184kB, limit 307200kB, failcnt 16991 [ 1721.702174][ T1807] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1721.709810][ T1807] Memory cgroup stats for /syz0: [ 1721.710032][ T1807] anon 245149696 [ 1721.710032][ T1807] file 0 [ 1721.710032][ T1807] kernel_stack 6488064 [ 1721.710032][ T1807] slab 9388032 [ 1721.710032][ T1807] sock 0 [ 1721.710032][ T1807] shmem 0 [ 1721.710032][ T1807] file_mapped 0 [ 1721.710032][ T1807] file_dirty 135168 [ 1721.710032][ T1807] file_writeback 0 [ 1721.710032][ T1807] anon_thp 199229440 [ 1721.710032][ T1807] inactive_anon 0 [ 1721.710032][ T1807] active_anon 245153792 [ 1721.710032][ T1807] inactive_file 0 [ 1721.710032][ T1807] active_file 159744 [ 1721.710032][ T1807] unevictable 0 [ 1721.710032][ T1807] slab_reclaimable 675840 [ 1721.710032][ T1807] slab_unreclaimable 8712192 [ 1721.710032][ T1807] pgfault 219549 [ 1721.710032][ T1807] pgmajfault 0 [ 1721.710032][ T1807] workingset_refault 297 [ 1721.710032][ T1807] workingset_activate 198 [ 1721.710032][ T1807] workingset_nodereclaim 0 [ 1721.710032][ T1807] pgrefill 32251 [ 1721.710032][ T1807] pgscan 65034 [ 1721.710032][ T1807] pgsteal 28993 [ 1721.814586][ T1807] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14503,uid=0 [ 1721.846013][ T1818] BPF:Total section length too long [ 1721.874610][ T1819] BPF:Total section length too long [ 1721.885343][ T1807] Memory cgroup out of memory: Killed process 14503 (syz-executor.0) total-vm:72584kB, anon-rss:2204kB, file-rss:35784kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 03:33:49 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x41395527) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x100001, 0xffffffffffdce7bb}) r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r4, 0x5}}, 0x18) r5 = fcntl$dupfd(r1, 0x406, r3) ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r5, 0xc008551b, &(0x7f0000000000)={0x1000, 0x14, [0x83, 0x4, 0x925f, 0x4, 0x0]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:33:49 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000020000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:49 executing program 2: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = signalfd(0xffffffffffffffff, 0x0, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) 03:33:49 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x1000000, 0xf9, 0x8}, 0x20) [ 1722.062450][ T1833] BPF:[1] ARRAY (anon) [ 1722.077951][ T1833] BPF:type_id=3113514752 index_type_id=0 nr_elems=32 [ 1722.097217][ T1832] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1722.105726][ T1833] BPF: [ 1722.118888][ T1833] BPF:size != 0 [ 1722.135229][ T1833] BPF: [ 1722.135229][ T1833] [ 1722.163015][ T1846] BPF:[1] ARRAY (anon) [ 1722.178973][ T1846] BPF:type_id=3113514752 index_type_id=0 nr_elems=32 03:33:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$VIDIOC_S_INPUT(0xffffffffffffffff, 0xc0045627, &(0x7f0000000000)=0x7) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1722.208351][ T1845] BPF:btf_header not found [ 1722.222333][ T1846] BPF: [ 1722.235048][ T1846] BPF:size != 0 [ 1722.255501][ T1846] BPF: 03:33:49 executing program 2: [ 1722.255501][ T1846] 03:33:49 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000048000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1722.375580][ T1851] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 03:33:49 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) write(0xffffffffffffffff, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:33:49 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x20000236, 0xf9, 0x8}, 0x20) [ 1722.514030][ T1862] BPF:[1] ARRAY (anon) 03:33:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_dev$sndpcmc(&(0x7f0000000240)='/dev/snd/pcmC#D#c\x00', 0x6, 0x8840) ioctl$SNDRV_PCM_IOCTL_DRAIN(r2, 0x4144, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_RUN(r3, 0xae80, 0x0) select(0x40, &(0x7f0000000000)={0x9, 0x4, 0x2dd8, 0x2, 0x3c5, 0x2, 0x80000000}, &(0x7f0000000140)={0x7, 0x2, 0x4, 0x200, 0x3f, 0x1, 0x0, 0x5}, &(0x7f0000000180)={0x1ff, 0x5, 0x4, 0x4, 0x3f, 0x3, 0x3, 0x2}, &(0x7f0000000200)={0x77359400}) 03:33:49 executing program 2: [ 1722.552427][ T1862] BPF:type_id=3113514752 index_type_id=0 nr_elems=72 [ 1722.572152][ T1850] syz-executor.0 invoked oom-killer: gfp_mask=0x500cc2(GFP_HIGHUSER|__GFP_ACCOUNT), order=0, oom_score_adj=1000 [ 1722.604546][ T1862] BPF: [ 1722.607424][ T1862] BPF:size != 0 [ 1722.614366][ T1866] BPF:btf_header not found [ 1722.630600][ T1862] BPF: [ 1722.630600][ T1862] [ 1722.641335][ T1868] BPF:[1] ARRAY (anon) [ 1722.648141][ T1850] CPU: 1 PID: 1850 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1722.656911][ T1850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1722.666991][ T1850] Call Trace: [ 1722.670434][ T1850] dump_stack+0x11d/0x181 [ 1722.674954][ T1850] dump_header+0xaa/0x39c [ 1722.679430][ T1850] oom_kill_process.cold+0x10/0x15 [ 1722.684555][ T1850] out_of_memory+0x231/0xa60 [ 1722.689350][ T1850] mem_cgroup_out_of_memory+0x128/0x150 [ 1722.695011][ T1850] try_charge+0xb6c/0xbf0 [ 1722.699429][ T1850] ? __rcu_read_unlock+0x66/0x3d0 [ 1722.704468][ T1850] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1722.709940][ T1850] __memcg_kmem_charge+0xcf/0x1b0 [ 1722.714976][ T1850] __alloc_pages_nodemask+0x26c/0x310 [ 1722.720428][ T1850] alloc_pages_current+0xd1/0x170 [ 1722.725505][ T1850] pipe_write+0x72d/0xca0 [ 1722.730056][ T1850] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1722.736322][ T1850] ? iov_iter_init+0xe2/0x120 [ 1722.741000][ T1850] new_sync_write+0x388/0x4a0 [ 1722.745704][ T1850] __vfs_write+0xb1/0xc0 [ 1722.749957][ T1850] vfs_write+0x18a/0x390 [ 1722.754362][ T1850] ksys_write+0x17b/0x1b0 [ 1722.758801][ T1850] __x64_sys_write+0x4c/0x60 [ 1722.764205][ T1850] do_syscall_64+0xcc/0x3a0 [ 1722.768741][ T1850] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1722.774998][ T1850] RIP: 0033:0x45a909 [ 1722.778970][ T1850] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1722.798800][ T1850] RSP: 002b:00007fde0f93fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1722.807264][ T1850] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a909 [ 1722.815225][ T1850] RDX: 0000000041395527 RSI: 0000000020000340 RDI: 0000000000000008 [ 1722.823447][ T1850] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 1722.831506][ T1850] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fde0f9406d4 [ 1722.839709][ T1850] R13: 00000000004c7ca0 R14: 00000000004e4d08 R15: 00000000ffffffff [ 1722.861093][ T1868] BPF:type_id=3113514752 index_type_id=0 nr_elems=72 [ 1722.873149][ T1868] BPF: [ 1722.878480][ T1868] BPF:size != 0 [ 1722.883246][ T1868] BPF: [ 1722.883246][ T1868] [ 1722.923535][ T1850] memory: usage 307200kB, limit 307200kB, failcnt 17386 [ 1722.959499][ T1850] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1723.076334][ T1850] Memory cgroup stats for /syz0: [ 1723.076574][ T1850] anon 245153792 [ 1723.076574][ T1850] file 40960 [ 1723.076574][ T1850] kernel_stack 6488064 [ 1723.076574][ T1850] slab 9388032 [ 1723.076574][ T1850] sock 0 [ 1723.076574][ T1850] shmem 0 [ 1723.076574][ T1850] file_mapped 0 [ 1723.076574][ T1850] file_dirty 135168 [ 1723.076574][ T1850] file_writeback 0 [ 1723.076574][ T1850] anon_thp 199229440 [ 1723.076574][ T1850] inactive_anon 0 [ 1723.076574][ T1850] active_anon 245157888 [ 1723.076574][ T1850] inactive_file 28672 [ 1723.076574][ T1850] active_file 159744 [ 1723.076574][ T1850] unevictable 0 [ 1723.076574][ T1850] slab_reclaimable 675840 [ 1723.076574][ T1850] slab_unreclaimable 8712192 [ 1723.076574][ T1850] pgfault 219648 [ 1723.076574][ T1850] pgmajfault 0 [ 1723.076574][ T1850] workingset_refault 297 [ 1723.076574][ T1850] workingset_activate 198 [ 1723.076574][ T1850] workingset_nodereclaim 0 [ 1723.076574][ T1850] pgrefill 32842 [ 1723.076574][ T1850] pgscan 65933 [ 1723.076574][ T1850] pgsteal 29275 [ 1723.176268][ T1850] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1807,uid=0 [ 1723.206924][ T1850] Memory cgroup out of memory: Killed process 1807 (syz-executor.0) total-vm:72980kB, anon-rss:2232kB, file-rss:35828kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000 [ 1723.263205][ T1839] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1723.273745][ T1839] CPU: 0 PID: 1839 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1723.282317][ T1839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1723.292651][ T1839] Call Trace: [ 1723.295933][ T1839] dump_stack+0x11d/0x181 [ 1723.300274][ T1839] dump_header+0xaa/0x39c [ 1723.305308][ T1839] oom_kill_process.cold+0x10/0x15 [ 1723.310418][ T1839] out_of_memory+0x231/0xa60 [ 1723.315089][ T1839] mem_cgroup_out_of_memory+0x128/0x150 [ 1723.320658][ T1839] try_charge+0x800/0xbf0 [ 1723.325155][ T1839] ? __rcu_read_unlock+0x66/0x3d0 [ 1723.330203][ T1839] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1723.335729][ T1839] __memcg_kmem_charge+0xcf/0x1b0 [ 1723.340846][ T1839] copy_process+0x11d2/0x3c40 [ 1723.345601][ T1839] ? record_times+0x16/0x90 [ 1723.350180][ T1839] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1723.356357][ T1839] _do_fork+0xfe/0x7a0 [ 1723.360591][ T1839] ? cgroup_file_notify+0xff/0x130 [ 1723.365753][ T1839] ? blkcg_maybe_throttle_current+0x23d/0x580 [ 1723.371818][ T1839] __x64_sys_clone+0x130/0x170 [ 1723.376614][ T1839] do_syscall_64+0xcc/0x3a0 [ 1723.381179][ T1839] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1723.387069][ T1839] RIP: 0033:0x45d2d9 [ 1723.391136][ T1839] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75 [ 1723.410746][ T1839] RSP: 002b:00007fff9b1d2e18 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 1723.419178][ T1839] RAX: ffffffffffffffda RBX: 00007fde0f91f700 RCX: 000000000045d2d9 [ 1723.427149][ T1839] RDX: 00007fde0f91f9d0 RSI: 00007fde0f91edb0 RDI: 00000000003d0f00 [ 1723.435301][ T1839] RBP: 00007fff9b1d3030 R08: 00007fde0f91f700 R09: 00007fde0f91f700 [ 1723.443379][ T1839] R10: 00007fde0f91f9d0 R11: 0000000000000202 R12: 0000000000000000 [ 1723.451700][ T1839] R13: 00007fff9b1d2ecf R14: 00007fde0f91f9c0 R15: 000000000075c07c [ 1723.462318][ T1839] memory: usage 304904kB, limit 307200kB, failcnt 17386 [ 1723.469269][ T1839] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1723.476643][ T1839] Memory cgroup stats for /syz0: [ 1723.476802][ T1839] anon 242987008 [ 1723.476802][ T1839] file 40960 [ 1723.476802][ T1839] kernel_stack 6488064 [ 1723.476802][ T1839] slab 9388032 [ 1723.476802][ T1839] sock 0 [ 1723.476802][ T1839] shmem 0 [ 1723.476802][ T1839] file_mapped 0 [ 1723.476802][ T1839] file_dirty 135168 [ 1723.476802][ T1839] file_writeback 0 [ 1723.476802][ T1839] anon_thp 197132288 [ 1723.476802][ T1839] inactive_anon 0 [ 1723.476802][ T1839] active_anon 242991104 [ 1723.476802][ T1839] inactive_file 28672 [ 1723.476802][ T1839] active_file 159744 [ 1723.476802][ T1839] unevictable 0 [ 1723.476802][ T1839] slab_reclaimable 675840 [ 1723.476802][ T1839] slab_unreclaimable 8712192 [ 1723.476802][ T1839] pgfault 219648 [ 1723.476802][ T1839] pgmajfault 0 [ 1723.476802][ T1839] workingset_refault 297 [ 1723.476802][ T1839] workingset_activate 198 [ 1723.476802][ T1839] workingset_nodereclaim 0 [ 1723.476802][ T1839] pgrefill 32842 [ 1723.476802][ T1839] pgscan 65933 [ 1723.476802][ T1839] pgsteal 29275 [ 1723.573455][ T1839] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14483,uid=0 [ 1723.589265][ T1839] Memory cgroup out of memory: Killed process 14483 (syz-executor.0) total-vm:72584kB, anon-rss:2204kB, file-rss:35784kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1723.610061][ T1067] oom_reaper: reaped process 14483 (syz-executor.0), now anon-rss:0kB, file-rss:34824kB, shmem-rss:0kB 03:33:51 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:51 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)={0x8, 'ip6tnl0\x00', {'tunl0\x00'}, 0x200}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:33:51 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) write(0xffffffffffffffff, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:33:51 executing program 2: 03:33:51 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b9000000004c000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:51 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x2}, 0x20) [ 1723.900659][ T1897] BPF:[1] ARRAY (anon) [ 1723.907302][ T1899] BPF:btf_header not found 03:33:51 executing program 2: [ 1723.945155][ T1897] BPF:type_id=3113514752 index_type_id=0 nr_elems=76 [ 1723.965390][ T1901] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1723.976609][ T1897] BPF: [ 1723.979555][ T1897] BPF:size != 0 [ 1723.991897][ T1897] BPF: [ 1723.991897][ T1897] [ 1724.027014][ T1909] BPF:btf_header not found [ 1724.034159][ T1911] BPF:[1] ARRAY (anon) [ 1724.044262][ T1911] BPF:type_id=3113514752 index_type_id=0 nr_elems=76 03:33:51 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x4}, 0x20) [ 1724.091273][ T1911] BPF: [ 1724.103976][ T1911] BPF:size != 0 [ 1724.124354][ T1911] BPF: [ 1724.124354][ T1911] 03:33:51 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) r3 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x503) ioctl$KDSKBLED(r3, 0x4b65, 0xffffffffffff0e95) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:33:51 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000060000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:51 executing program 2: [ 1724.364305][ T1933] BPF:[1] ARRAY (anon) [ 1724.369130][ T1931] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1724.407567][ T1933] BPF:type_id=3113514752 index_type_id=0 nr_elems=96 03:33:51 executing program 2: [ 1724.450099][ T1933] BPF: [ 1724.464389][ T1933] BPF:size != 0 [ 1724.484155][ T1933] BPF: [ 1724.484155][ T1933] [ 1724.533931][ T1938] BPF:[1] ARRAY (anon) [ 1724.549567][ T1938] BPF:type_id=3113514752 index_type_id=0 nr_elems=96 [ 1724.578104][ T1938] BPF: [ 1724.591929][ T1938] BPF:size != 0 [ 1724.597323][ T1938] BPF: [ 1724.597323][ T1938] 03:33:52 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:52 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x10}, 0x20) 03:33:52 executing program 2: 03:33:52 executing program 5: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x20802, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f0000000100)={0x0, 0xf0ffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x40, r2, 0x42b, 0x0, 0x0, {{}, 0x0, 0x4101, 0x0, {0x24, 0x17, {0x0, 0x0, @l2={'X\xd8\xd8\xb7\xa5\xc2\x03\xdfJ\x95j\xb9\xaceth', 0x3a, 'caif0\x00'}}}}}, 0x40}}, 0x0) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000400}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, r2, 0x100, 0x70bd29, 0x25dfdbfc, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r5, 0xae80, 0x0) 03:33:52 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:33:52 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000068000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1724.898241][ T1952] BPF:[1] ARRAY (anon) [ 1724.905218][ T1952] BPF:type_id=3113514752 index_type_id=0 nr_elems=104 [ 1724.909370][ T1951] tipc: Enabling of bearer rejected, illegal name [ 1724.928589][ T1955] BPF:btf_header not found [ 1724.933275][ T1952] BPF: [ 1724.940891][ T1952] BPF:size != 0 03:33:52 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x2e}, 0x20) [ 1724.951151][ T1952] BPF: [ 1724.951151][ T1952] [ 1724.961592][ T1957] BPF:btf_header not found [ 1724.970971][ T1962] BPF:[1] ARRAY (anon) [ 1724.977929][ T1962] BPF:type_id=3113514752 index_type_id=0 nr_elems=104 [ 1724.990500][ T1962] BPF: [ 1724.996254][ T1962] BPF:size != 0 [ 1725.008872][ T1962] BPF: [ 1725.008872][ T1962] 03:33:52 executing program 2: [ 1725.089863][ T1951] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 03:33:52 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b9000000006c000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1725.192802][ T1951] tipc: Enabling of bearer rejected, illegal name 03:33:52 executing program 2: 03:33:52 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x2f}, 0x20) [ 1725.338282][ T1981] BPF:[1] ARRAY (anon) [ 1725.355802][ T1981] BPF:type_id=3113514752 index_type_id=0 nr_elems=108 03:33:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000440)={0x0, @adiantum}) r4 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000300)='/proc/capi/capi20\x00', 0x80, 0x0) setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000400)=r4, 0x4) openat$cgroup_ro(r3, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r5 = openat$cgroup_ro(r3, &(0x7f0000000000)='cpuacct.stat\x00', 0x0, 0x0) r6 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000180)='SEG6\x00') sendmsg$SEG6_CMD_SETHMAC(r5, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x14}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x78, r6, 0x20, 0x70bd27, 0x25dfdbff, {}, [@SEG6_ATTR_DSTLEN={0x8, 0x2, 0x8}, @SEG6_ATTR_SECRET={0x8, 0x4, [0x100]}, @SEG6_ATTR_ALGID={0x8, 0x6, 0x4}, @SEG6_ATTR_SECRET={0x18, 0x4, [0x7, 0xf0, 0x783, 0x5, 0x0]}, @SEG6_ATTR_SECRET={0x18, 0x4, [0xf7df, 0x100, 0x8d9, 0x2, 0x8]}, @SEG6_ATTR_SECRET={0x4}, @SEG6_ATTR_ALGID={0x8, 0x6, 0x1}, @SEG6_ATTR_SECRETLEN={0x8, 0x5, 0x5}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x5}]}, 0x78}, 0x1, 0x0, 0x0, 0x8000}, 0x2000800) [ 1725.382693][ T1981] BPF: [ 1725.394486][ T1981] BPF:size != 0 [ 1725.421318][ T1981] BPF: [ 1725.421318][ T1981] [ 1725.446613][ T1985] BPF:[1] ARRAY (anon) [ 1725.503225][ T1985] BPF:type_id=3113514752 index_type_id=0 nr_elems=108 [ 1725.546665][ T1985] BPF: [ 1725.565235][ T1985] BPF:size != 0 [ 1725.573320][ T1985] BPF: [ 1725.573320][ T1985] [ 1725.629100][ T1990] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 03:33:53 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r6, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r8, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:53 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000074000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:53 executing program 2: 03:33:53 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0xa) 03:33:53 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1725.858546][ T2002] BPF:[1] ARRAY (anon) 03:33:53 executing program 2: [ 1725.924833][ T2002] BPF:type_id=3113514752 index_type_id=0 nr_elems=116 [ 1725.949557][ T2002] BPF: [ 1725.968202][ T2002] BPF:size != 0 [ 1725.975670][ T2002] BPF: [ 1725.975670][ T2002] [ 1726.003963][ T2009] BPF:btf_header not found [ 1726.017045][ T2015] BPF:[1] ARRAY (anon) [ 1726.035647][ T2015] BPF:type_id=3113514752 index_type_id=0 nr_elems=116 03:33:53 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x25) [ 1726.070186][ T2015] BPF: [ 1726.080256][ T2015] BPF:size != 0 [ 1726.088685][ T2015] BPF: [ 1726.088685][ T2015] [ 1726.088743][ T2011] BPF:btf_header not found 03:33:53 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b9000000007a000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:53 executing program 2: [ 1726.343320][ T2029] BPF:[1] ARRAY (anon) [ 1726.363856][ T2029] BPF:type_id=3113514752 index_type_id=0 nr_elems=122 [ 1726.388718][ T2029] BPF: [ 1726.393226][ T2027] BPF:[1] Invalid kind:0 [ 1726.394920][ T2029] BPF:size != 0 03:33:53 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffffd}) ioctl$TIOCPKT(r0, 0x5420, &(0x7f00000002c0)=0x3) read(r0, &(0x7f0000000040)=""/11, 0xb) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)) syz_open_dev$vcsn(0x0, 0x0, 0x0) dup3(r1, r0, 0x0) socketpair$unix(0x1, 0x5, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000b55000)={0x2, 0x0, @multicast1}, 0x10) ioctl$int_in(0xffffffffffffffff, 0x0, 0x0) dup(0xffffffffffffffff) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000100)) 03:33:53 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x2e) [ 1726.437207][ T2027] BPF:[1] Invalid kind:0 [ 1726.455050][ T2029] BPF: [ 1726.455050][ T2029] [ 1726.504410][ T2041] BPF:[1] ARRAY (anon) [ 1726.509095][ T2041] BPF:type_id=3113514752 index_type_id=0 nr_elems=122 [ 1726.529855][ T2041] BPF: [ 1726.546769][ T2041] BPF:size != 0 [ 1726.556729][ T2041] BPF: [ 1726.556729][ T2041] [ 1726.631094][ T2039] syz-executor.0 invoked oom-killer: gfp_mask=0x101cca(GFP_HIGHUSER_MOVABLE|__GFP_WRITE), order=0, oom_score_adj=1000 03:33:54 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000700)='/proc/capi/capi20\x00', 0x2000, 0x0) setsockopt$RDS_RECVERR(r1, 0x114, 0x5, &(0x7f0000000740)=0x1, 0x4) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1726.710211][ T2039] CPU: 0 PID: 2039 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1726.719228][ T2039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1726.729311][ T2039] Call Trace: [ 1726.732680][ T2039] dump_stack+0x11d/0x181 [ 1726.737034][ T2039] dump_header+0xaa/0x39c [ 1726.741471][ T2039] oom_kill_process.cold+0x10/0x15 [ 1726.746660][ T2039] out_of_memory+0x231/0xa60 [ 1726.751317][ T2039] ? __rcu_read_unlock+0x66/0x3d0 [ 1726.761451][ T2039] mem_cgroup_out_of_memory+0x128/0x150 [ 1726.767548][ T2039] try_charge+0xb6c/0xbf0 [ 1726.772115][ T2039] ? rcu_note_context_switch+0x6d0/0x760 [ 1726.778247][ T2039] mem_cgroup_try_charge+0xd2/0x260 [ 1726.783462][ T2039] __add_to_page_cache_locked+0x163/0x780 [ 1726.789290][ T2039] ? __read_once_size.constprop.0+0x20/0x20 [ 1726.795206][ T2039] add_to_page_cache_lru+0xc4/0x260 [ 1726.800494][ T2039] pagecache_get_page+0x2ac/0x6f0 [ 1726.806277][ T2039] ? do_page_fault+0x38/0x194 [ 1726.811052][ T2039] grab_cache_page_write_begin+0x5d/0x90 [ 1726.816751][ T2039] ext4_da_write_begin+0x1a3/0x840 [ 1726.821999][ T2039] ? iov_iter_fault_in_readable+0x15c/0x2b0 [ 1726.827937][ T2039] generic_perform_write+0x136/0x320 [ 1726.833386][ T2039] ext4_buffered_write_iter+0x143/0x290 [ 1726.838949][ T2039] ext4_file_write_iter+0xf4/0xd40 [ 1726.844163][ T2039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1726.850505][ T2039] ? iov_iter_init+0xe2/0x120 [ 1726.855236][ T2039] new_sync_write+0x388/0x4a0 [ 1726.860145][ T2039] ? __rcu_read_unlock+0x66/0x3d0 [ 1726.865195][ T2039] __vfs_write+0xb1/0xc0 [ 1726.869669][ T2039] vfs_write+0x18a/0x390 [ 1726.873932][ T2039] ksys_write+0xd5/0x1b0 [ 1726.878187][ T2039] __x64_sys_write+0x4c/0x60 [ 1726.882818][ T2039] do_syscall_64+0xcc/0x3a0 [ 1726.887605][ T2039] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1726.893506][ T2039] RIP: 0033:0x45a909 [ 1726.897505][ T2039] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1726.917507][ T2039] RSP: 002b:00007fde0f8fdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1726.925942][ T2039] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a909 [ 1726.934007][ T2039] RDX: 00000000fffffe7e RSI: 0000000020000000 RDI: 000000000000000c [ 1726.942030][ T2039] RBP: 000000000075c118 R08: 0000000000000000 R09: 0000000000000000 [ 1726.950010][ T2039] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fde0f8fe6d4 [ 1726.957991][ T2039] R13: 00000000004c7ca0 R14: 00000000004e4d08 R15: 00000000ffffffff [ 1727.033174][ T2039] memory: usage 307200kB, limit 307200kB, failcnt 18106 [ 1727.040365][ T2039] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1727.055854][ T2048] BPF:[1] Invalid kind:0 [ 1727.060178][ T2039] Memory cgroup stats for /syz0: [ 1727.060373][ T2039] anon 245153792 [ 1727.060373][ T2039] file 0 [ 1727.060373][ T2039] kernel_stack 6524928 [ 1727.060373][ T2039] slab 9388032 [ 1727.060373][ T2039] sock 0 [ 1727.060373][ T2039] shmem 0 [ 1727.060373][ T2039] file_mapped 0 [ 1727.060373][ T2039] file_dirty 0 [ 1727.060373][ T2039] file_writeback 0 [ 1727.060373][ T2039] anon_thp 199229440 [ 1727.060373][ T2039] inactive_anon 0 [ 1727.060373][ T2039] active_anon 245071872 [ 1727.060373][ T2039] inactive_file 0 [ 1727.060373][ T2039] active_file 24576 [ 1727.060373][ T2039] unevictable 0 [ 1727.060373][ T2039] slab_reclaimable 675840 [ 1727.060373][ T2039] slab_unreclaimable 8712192 [ 1727.060373][ T2039] pgfault 220011 [ 1727.060373][ T2039] pgmajfault 0 [ 1727.060373][ T2039] workingset_refault 297 [ 1727.060373][ T2039] workingset_activate 198 [ 1727.060373][ T2039] workingset_nodereclaim 0 [ 1727.060373][ T2039] pgrefill 33307 [ 1727.060373][ T2039] pgscan 68298 [ 1727.060373][ T2039] pgsteal 30960 [ 1727.235243][ T2039] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1910,uid=0 [ 1727.253558][ T2039] Memory cgroup out of memory: Killed process 1910 (syz-executor.0) total-vm:72980kB, anon-rss:4276kB, file-rss:35824kB, shmem-rss:0kB, UID:0 pgtables:143360kB oom_score_adj:1000 [ 1727.314471][ T2006] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1727.351649][ T2006] CPU: 0 PID: 2006 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1727.360397][ T2006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1727.370451][ T2006] Call Trace: [ 1727.373746][ T2006] dump_stack+0x11d/0x181 [ 1727.378083][ T2006] dump_header+0xaa/0x39c [ 1727.382480][ T2006] oom_kill_process.cold+0x10/0x15 [ 1727.387595][ T2006] out_of_memory+0x231/0xa60 [ 1727.392253][ T2006] mem_cgroup_out_of_memory+0x128/0x150 [ 1727.397918][ T2006] try_charge+0x800/0xbf0 [ 1727.402369][ T2006] ? rcu_note_context_switch+0x6d0/0x760 [ 1727.408240][ T2006] mem_cgroup_try_charge+0xd2/0x260 [ 1727.413429][ T2006] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1727.419068][ T2006] __handle_mm_fault+0x197f/0x2e00 [ 1727.424260][ T2006] handle_mm_fault+0x21b/0x530 [ 1727.430014][ T2006] __do_page_fault+0x456/0x8d0 [ 1727.434823][ T2006] do_page_fault+0x38/0x194 [ 1727.439307][ T2006] page_fault+0x34/0x40 [ 1727.443439][ T2006] RIP: 0033:0x45d2bd [ 1727.447875][ T2006] Code: 5b 5d f3 c3 66 0f 1f 84 00 00 00 00 00 48 c7 c0 ea ff ff ff 48 85 ff 0f 84 e0 8c fb ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 <48> 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 [ 1727.467470][ T2006] RSP: 002b:00007fff9b1d2e18 EFLAGS: 00010202 [ 1727.473551][ T2006] RAX: ffffffffffffffea RBX: 00007fde0f8dd700 RCX: 00007fde0f8dd700 [ 1727.482012][ T2006] RDX: 00000000003d0f00 RSI: 00007fde0f8dcdb0 RDI: 00000000004114f0 [ 1727.489967][ T2006] RBP: 00007fff9b1d3030 R08: 00007fde0f8dd9d0 R09: 00007fde0f8dd700 [ 1727.497988][ T2006] R10: 00007fde0f8dcdc0 R11: 0000000000000246 R12: 0000000000000000 [ 1727.506389][ T2006] R13: 00007fff9b1d2ecf R14: 00007fde0f8dd9c0 R15: 000000000075c1cc [ 1727.516673][ T2006] memory: usage 304096kB, limit 307200kB, failcnt 18106 [ 1727.523832][ T2006] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1727.530990][ T2006] Memory cgroup stats for /syz0: [ 1727.531179][ T2006] anon 240910336 [ 1727.531179][ T2006] file 1658880 [ 1727.531179][ T2006] kernel_stack 6524928 [ 1727.531179][ T2006] slab 9388032 [ 1727.531179][ T2006] sock 0 [ 1727.531179][ T2006] shmem 0 [ 1727.531179][ T2006] file_mapped 0 [ 1727.531179][ T2006] file_dirty 540672 [ 1727.531179][ T2006] file_writeback 0 [ 1727.531179][ T2006] anon_thp 195035136 [ 1727.531179][ T2006] inactive_anon 0 [ 1727.531179][ T2006] active_anon 240828416 [ 1727.531179][ T2006] inactive_file 1662976 [ 1727.531179][ T2006] active_file 24576 [ 1727.531179][ T2006] unevictable 0 [ 1727.531179][ T2006] slab_reclaimable 675840 [ 1727.531179][ T2006] slab_unreclaimable 8712192 [ 1727.531179][ T2006] pgfault 220440 [ 1727.531179][ T2006] pgmajfault 0 [ 1727.531179][ T2006] workingset_refault 297 [ 1727.531179][ T2006] workingset_activate 198 [ 1727.531179][ T2006] workingset_nodereclaim 0 [ 1727.531179][ T2006] pgrefill 33307 [ 1727.531179][ T2006] pgscan 68298 [ 1727.531179][ T2006] pgsteal 30960 [ 1727.627571][ T2006] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=1958,uid=0 [ 1727.643455][ T2006] Memory cgroup out of memory: Killed process 1958 (syz-executor.0) total-vm:72980kB, anon-rss:2232kB, file-rss:35828kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1727.664904][ T1067] oom_reaper: reaped process 1958 (syz-executor.0), now anon-rss:0kB, file-rss:34868kB, shmem-rss:0kB 03:33:55 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r6, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r8, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:55 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) setsockopt$RDS_GET_MR(0xffffffffffffffff, 0x114, 0x2, &(0x7f0000000140)={{&(0x7f0000000200)=""/173, 0xad}, &(0x7f0000000000), 0x20}, 0x20) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:33:55 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b900000000f8000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:55 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:33:55 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x2f) 03:33:55 executing program 2: accept4(0xffffffffffffffff, 0x0, &(0x7f0000000080), 0x0) ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8982, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]}) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8983, 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) [ 1727.879686][ T2073] BPF:[1] ARRAY (anon) [ 1727.897378][ T2073] BPF:type_id=3113514752 index_type_id=0 nr_elems=248 [ 1727.918820][ T2075] BPF:btf_header not found [ 1727.928342][ T2073] BPF: 03:33:55 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x60) [ 1727.952180][ T2082] BPF:btf_header not found [ 1727.955867][ T2079] BPF:[1] Invalid kind:0 [ 1727.977109][ T2073] BPF:size != 0 [ 1727.990048][ T2073] BPF: [ 1727.990048][ T2073] [ 1728.014035][ T2086] BPF:[1] ARRAY (anon) 03:33:55 executing program 5: r0 = shmget(0x2, 0x12000, 0x78000000, &(0x7f0000fec000/0x12000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000280)=0x0) setpriority(0x1, r5, 0xffffffff) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) io_setup(0x0, &(0x7f0000000000)=0x0) io_pgetevents(r6, 0x7, 0x2, &(0x7f0000000140)=[{}, {}], &(0x7f0000000180)={0x77359400}, &(0x7f0000000240)={&(0x7f0000000200)={0x6}, 0x8}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1728.034267][ T2086] BPF:type_id=3113514752 index_type_id=0 nr_elems=248 [ 1728.071867][ T2086] BPF: [ 1728.085546][ T2086] BPF:size != 0 [ 1728.094593][ T2086] BPF: [ 1728.094593][ T2086] 03:33:55 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b9000000ffffff0000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1728.269536][ T2101] BPF:[1] Invalid kind:0 03:33:55 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x78) [ 1728.336361][ T2103] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1728.395737][ T2107] BPF:[1] ARRAY (anon) [ 1728.423996][ T2107] BPF:type_id=3113514752 index_type_id=4278190080 nr_elems=65535 [ 1728.466899][ T2107] BPF: [ 1728.479126][ T2107] BPF:size != 0 [ 1728.498676][ T7811] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=0 [ 1728.514103][ T2107] BPF: 03:33:55 executing program 2: perf_event_open(&(0x7f0000000600)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00') r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10) sendfile(r1, r0, 0x0, 0x7ffff000) connect$inet(0xffffffffffffffff, 0x0, 0x0) [ 1728.514103][ T2107] [ 1728.536087][ T2109] BPF:[1] ARRAY (anon) [ 1728.563677][ T2109] BPF:type_id=3113514752 index_type_id=4278190080 nr_elems=65535 [ 1728.587742][ T7811] CPU: 1 PID: 7811 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1728.596365][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1728.606484][ T7811] Call Trace: [ 1728.609793][ T7811] dump_stack+0x11d/0x181 [ 1728.614162][ T7811] dump_header+0xaa/0x39c [ 1728.618686][ T7811] oom_kill_process.cold+0x10/0x15 [ 1728.623880][ T7811] out_of_memory+0x231/0xa60 [ 1728.628478][ T7811] ? __rcu_read_unlock+0x66/0x3d0 [ 1728.633527][ T7811] mem_cgroup_out_of_memory+0x128/0x150 [ 1728.639086][ T7811] try_charge+0xb6c/0xbf0 [ 1728.644792][ T7811] ? __rcu_read_unlock+0x66/0x3d0 [ 1728.649831][ T7811] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1728.655424][ T7811] __memcg_kmem_charge+0xcf/0x1b0 [ 1728.660476][ T7811] __alloc_pages_nodemask+0x26c/0x310 [ 1728.665857][ T7811] alloc_pages_current+0xd1/0x170 [ 1728.670901][ T7811] get_zeroed_page+0x14/0x50 [ 1728.675580][ T7811] __pud_alloc+0x48/0x250 [ 1728.679988][ T7811] ? preempt_count_add+0x6f/0xb0 [ 1728.684937][ T7811] pud_alloc+0xc3/0x100 [ 1728.689125][ T7811] copy_page_range+0x270/0x19b0 [ 1728.693989][ T7811] ? __read_once_size.constprop.0+0x12/0x20 [ 1728.699902][ T7811] ? __read_once_size.constprop.0+0x12/0x20 [ 1728.705807][ T7811] ? __rcu_read_unlock+0x66/0x3d0 [ 1728.710903][ T7811] ? __rcu_read_unlock+0x66/0x3d0 [ 1728.716027][ T7811] ? __rb_rotate_set_parents+0x9a/0xf0 [ 1728.721848][ T7811] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1728.727615][ T7811] ? vma_gap_callbacks_rotate+0x126/0x190 [ 1728.733369][ T7811] ? __rb_insert_augmented+0x11a/0x370 [ 1728.738919][ T7811] ? vm_get_page_prot+0x90/0x90 [ 1728.743818][ T7811] ? __vma_link_rb+0x3f4/0x440 [ 1728.748626][ T7811] dup_mm+0x74a/0xba0 [ 1728.752662][ T7811] copy_process+0x3138/0x3c40 [ 1728.757440][ T7811] ? do_wp_page+0x19f/0xeb0 03:33:56 executing program 2: perf_event_open(&(0x7f0000000600)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00') r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10) sendfile(r1, r0, 0x0, 0x7ffff000) connect$inet(0xffffffffffffffff, 0x0, 0x0) [ 1728.762018][ T7811] _do_fork+0xfe/0x7a0 [ 1728.766089][ T7811] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1728.772009][ T7811] ? __read_once_size+0x5a/0xe0 [ 1728.776862][ T7811] __x64_sys_clone+0x130/0x170 [ 1728.781667][ T7811] do_syscall_64+0xcc/0x3a0 [ 1728.786627][ T7811] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1728.792617][ T7811] RIP: 0033:0x458eda [ 1728.796519][ T7811] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00 [ 1728.816267][ T7811] RSP: 002b:00007ffcc9750f60 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 1728.828851][ T7811] RAX: ffffffffffffffda RBX: 00007ffcc9750f60 RCX: 0000000000458eda [ 1728.836922][ T7811] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1728.844898][ T7811] RBP: 00007ffcc9750fa0 R08: 0000000000000001 R09: 00000000020c1940 [ 1728.853059][ T7811] R10: 00000000020c1c10 R11: 0000000000000246 R12: 0000000000000001 [ 1728.861031][ T7811] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffcc9750ff0 [ 1728.869939][ T7811] memory: usage 307200kB, limit 307200kB, failcnt 5447 [ 1728.880471][ T7811] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1728.900990][ T2109] BPF: [ 1728.906395][ T7811] Memory cgroup stats for /syz1: [ 1728.906713][ T7811] anon 215859200 [ 1728.906713][ T7811] file 0 [ 1728.906713][ T7811] kernel_stack 9031680 [ 1728.906713][ T7811] slab 15351808 [ 1728.906713][ T7811] sock 0 [ 1728.906713][ T7811] shmem 0 [ 1728.906713][ T7811] file_mapped 0 [ 1728.906713][ T7811] file_dirty 0 [ 1728.906713][ T7811] file_writeback 0 [ 1728.906713][ T7811] anon_thp 148897792 [ 1728.906713][ T7811] inactive_anon 0 [ 1728.906713][ T7811] active_anon 215920640 [ 1728.906713][ T7811] inactive_file 0 [ 1728.906713][ T7811] active_file 36864 [ 1728.906713][ T7811] unevictable 0 [ 1728.906713][ T7811] slab_reclaimable 2162688 [ 1728.906713][ T7811] slab_unreclaimable 13189120 [ 1728.906713][ T7811] pgfault 212256 [ 1728.906713][ T7811] pgmajfault 0 [ 1728.906713][ T7811] workingset_refault 264 [ 1728.906713][ T7811] workingset_activate 165 [ 1728.906713][ T7811] workingset_nodereclaim 0 [ 1728.906713][ T7811] pgrefill 38179 [ 1728.906713][ T7811] pgscan 38428 [ 1728.906713][ T7811] pgsteal 732 [ 1728.915958][ T2109] BPF:size != 0 03:33:56 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r6, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r8, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:56 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1729.016162][ T7811] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=14827,uid=0 [ 1729.038179][ T7811] Memory cgroup out of memory: Killed process 14827 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 03:33:56 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x3, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1729.113289][ T1067] oom_reaper: reaped process 14827 (syz-executor.1), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB [ 1729.159303][ T2118] BPF:btf_header not found [ 1729.180346][ T2109] BPF: [ 1729.180346][ T2109] [ 1729.216533][ T2124] BPF:[1] Invalid kind:0 [ 1729.248521][ T2125] BPF:[1] Invalid kind:0 03:33:56 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000100000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:56 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x200001a0) [ 1729.292395][ T2130] BPF:btf_header not found [ 1729.436532][ T2140] BPF:[1] ARRAY (anon) [ 1729.440482][ T2136] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1729.472933][ T2140] BPF:type_id=3113514752 index_type_id=0 nr_elems=65536 [ 1729.517435][ T2140] BPF: [ 1729.530482][ T2140] BPF:size != 0 [ 1729.538493][ T2140] BPF: [ 1729.538493][ T2140] [ 1729.562282][ T2148] BPF:[1] ARRAY (anon) 03:33:57 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0xfe, 0x1, 0xd2}}) r3 = userfaultfd(0x0) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000380)={0xaa, 0x74}) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000909000/0x4000)=nil, 0x4000}, 0x1}) mremap(&(0x7f000090a000/0x3000)=nil, 0x3000, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil) read(r3, &(0x7f0000009f9c)=""/100, 0x64) ioctl$TUNSETPERSIST(r1, 0x400454cb, 0x1) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1729.574556][ T2148] BPF:type_id=3113514752 index_type_id=0 nr_elems=65536 [ 1729.599536][ T2148] BPF: [ 1729.620092][ T2148] BPF:size != 0 [ 1729.681723][ T2148] BPF: [ 1729.681723][ T2148] 03:33:57 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000000000000de112426a763b00781ade7a5f3dc1fd1455d6a5d693048e41c572170c2deb9952ab135a0cb43fa1f283618a14f7567190cff208f9f6cf7c716dca4975fba36522215b0d2d6475ecedbb1bdf85ebb4fa4c8ed8b91624573dcc386f7c02d4b3ab84f26810238e34a6b71ed81b327ea69b6238f621578c2d0881a28615752ce2a1a6de6dbfdf4d6b3bf592a53a601637a42ea9956635543268b280b087d7e43d226b892ac32b3d487f417d86abc76a3d17e77757a2f659c8b2a5f8b924b4e211861ce8358892a616399a044dbeff90dcf24a20ba5b1ec80f4c7f180caffb2a379d84f3a0b0e1d4608356548e282b99ca6c5df79ec83e6d0edfc771cca282000e00019b49d5c127ea2ae384c282f63df69eb5f5ba64daa53fc9d6d9bf1c5832e1f300868d50ae125fc924797d9ac1069ccf63483a5fbc5942331a13588ac26eac9b9acbe4c939a7c71ac007cd22838"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:57 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000200000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1729.837350][ T2151] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 03:33:57 executing program 2: r0 = socket$inet6(0xa, 0x4000000080002, 0x0) setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, &(0x7f00000000c0)={0x0, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88) [ 1729.982543][ T2164] BPF:[1] Invalid kind:0 [ 1729.998232][ T2167] BPF:[1] ARRAY (anon) 03:33:57 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x4, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$sock_inet_SIOCGIFPFLAGS(r1, 0x8935, &(0x7f0000000000)={'teql0\x00', 0xd24}) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:57 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:33:57 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x6, 0x20000) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x58, r2, 0x1, 0x0, 0x2, {}, [@IPVS_CMD_ATTR_SERVICE={0x44, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, '\nip\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_NETMASK={0x8}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_FWMARK={0x8}]}]}, 0x58}}, 0x0) sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x202}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r2, 0x501, 0x70bd2b, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x40}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000098}, 0x1) ioctl$sock_bt_hidp_HIDPCONNDEL(r0, 0x400448c9, &(0x7f0000000140)={{0x1, 0xe7, 0x36, 0x0, 0x20, 0x5}, 0xe2}) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180)='/dev/hwrng\x00', 0x20000, 0x0) ioctl$SG_EMULATED_HOST(r3, 0x2203, &(0x7f0000000940)) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @ioapic={0x3000, 0x6, 0x7000, 0x9, 0x0, [{0x80, 0x7f, 0x7f, [], 0x3}, {0x1, 0x1f, 0x3, [], 0x4}, {0xff, 0x2, 0x3, [], 0x36}, {0x7f, 0x80, 0x9, [], 0x56}, {0xff, 0x7, 0x0, [], 0x48}, {0x1, 0x1, 0x3f, [], 0xff}, {0x6, 0x2b, 0x1, [], 0x8}, {0x3f, 0x2, 0x3f, [], 0x4}, {0x80, 0xfb, 0x2, [], 0x4}, {0xff, 0x1f, 0x4, [], 0xdd}, {0x40, 0x9, 0x0, [], 0x40}, {0x4, 0x1, 0x0, [], 0xd8}, {0x2, 0x0, 0x2, [], 0x7f}, {0x1f, 0xdb, 0x7, [], 0xff}, {0x4, 0x8, 0x1, [], 0x7}, {0x4, 0x0, 0x3, [], 0x8}, {0xf6, 0xc0, 0x80, [], 0x7f}, {0x40, 0xf0, 0x9, [], 0xd8}, {0x0, 0x2, 0xa, [], 0x3b}, {0xa, 0x5, 0x3, [], 0xf8}, {0x40, 0x81, 0x8, [], 0x3}, {0x1, 0x80, 0x45, [], 0xff}, {0x9, 0x1, 0x40, [], 0xf8}, {0x6, 0x8d, 0x1f, [], 0x1}]}}) ioctl$sock_bt_hidp_HIDPGETCONNLIST(0xffffffffffffffff, 0x800448d2, &(0x7f0000000980)={0xa3, &(0x7f0000000400)=[{}, {}, {}, {}, {}, {}, {}, {}, {}]}) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0xfff], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 1730.026752][ T2167] BPF:type_id=3113514752 index_type_id=0 nr_elems=131072 [ 1730.043978][ T2167] BPF: [ 1730.050195][ T2167] BPF:size != 0 [ 1730.057860][ T2167] BPF: [ 1730.057860][ T2167] 03:33:57 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1730.092513][ T2173] BPF:[1] ARRAY (anon) [ 1730.110602][ T2173] BPF:type_id=3113514752 index_type_id=0 nr_elems=131072 [ 1730.130601][ T2173] BPF: [ 1730.162131][ T2173] BPF:size != 0 [ 1730.200622][ T2173] BPF: [ 1730.200622][ T2173] 03:33:57 executing program 2: r0 = syz_open_dev$sndtimer(&(0x7f0000000200)='/dev/snd/timer\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000240)={{0x1}, 0x0, 0x0, 'id0\x00', 'timer1\x00'}) [ 1730.227145][ T2179] netlink: 'syz-executor.5': attribute type 1 has an invalid length. 03:33:57 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000300000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1730.335094][ T2179] IPVS: persistence engine module ip_vs_pe_ [ 1730.335094][ T2179] ip not found [ 1730.377692][ T2188] BPF:[1] Invalid kind:0 [ 1730.380921][ T2183] BPF:btf_header not found [ 1730.386572][ T2177] syz-executor.3 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000 [ 1730.412455][ T2193] BPF:[1] Invalid kind:0 [ 1730.425050][ T2195] BPF:[1] ARRAY (anon) [ 1730.429614][ T2179] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1730.430212][ T2177] CPU: 1 PID: 2177 Comm: syz-executor.3 Not tainted 5.5.0-rc1-syzkaller #0 [ 1730.446445][ T2177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1730.455229][ T2179] IPVS: persistence engine module ip_vs_pe_ [ 1730.455229][ T2179] ip not found [ 1730.457052][ T2177] Call Trace: [ 1730.457075][ T2177] dump_stack+0x11d/0x181 [ 1730.457258][ T2177] dump_header+0xaa/0x39c [ 1730.478583][ T2177] oom_kill_process.cold+0x10/0x15 [ 1730.483818][ T2177] out_of_memory+0x231/0xa60 [ 1730.489746][ T2177] ? __rcu_read_unlock+0x66/0x3d0 [ 1730.494805][ T2177] mem_cgroup_out_of_memory+0x128/0x150 [ 1730.500374][ T2177] try_charge+0xb6c/0xbf0 [ 1730.504821][ T2177] ? __rcu_read_unlock+0x66/0x3d0 [ 1730.510211][ T2177] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1730.515701][ T2177] __memcg_kmem_charge+0xcf/0x1b0 [ 1730.520767][ T2177] __alloc_pages_nodemask+0x26c/0x310 [ 1730.526241][ T2177] alloc_pages_current+0xd1/0x170 [ 1730.531313][ T2177] pte_alloc_one+0x18/0x50 [ 1730.535845][ T2177] __do_fault+0x12e/0x1f0 [ 1730.540497][ T2177] __handle_mm_fault+0x1ddb/0x2e00 [ 1730.545866][ T2177] handle_mm_fault+0x21b/0x530 [ 1730.550751][ T2177] __do_page_fault+0x456/0x8d0 [ 1730.555787][ T2177] ? __close_fd+0xfc/0x140 [ 1730.560261][ T2177] do_page_fault+0x38/0x194 [ 1730.564898][ T2177] page_fault+0x34/0x40 [ 1730.569430][ T2177] RIP: 0033:0x401c27 [ 1730.573628][ T2177] Code: 00 00 00 48 83 ec 08 48 8b 15 6d 0a 67 00 48 8b 05 5e 0a 67 00 48 39 d0 48 8d 8a 00 00 00 01 72 17 48 39 c8 73 12 48 8d 50 04 <89> 38 48 89 15 40 0a 67 00 48 83 c4 08 c3 48 89 c6 bf 98 c1 4c 00 [ 1730.594687][ T2177] RSP: 002b:00007fffc021fbe0 EFLAGS: 00010287 [ 1730.600832][ T2177] RAX: 0000001b2ee20000 RBX: 0000000000000000 RCX: 0000001b2fe20000 [ 1730.610636][ T2177] RDX: 0000001b2ee20004 RSI: 00007fffc021f9a0 RDI: 0000000000000000 [ 1730.618619][ T2177] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000004 03:33:58 executing program 2: r0 = shmget(0x2, 0x12000, 0x78000000, &(0x7f0000fec000/0x12000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000280)=0x0) setpriority(0x1, r5, 0xffffffff) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) io_setup(0x0, &(0x7f0000000000)=0x0) io_pgetevents(r6, 0x7, 0x2, &(0x7f0000000140)=[{}, {}], &(0x7f0000000180)={0x77359400}, &(0x7f0000000240)={&(0x7f0000000200)={0x6}, 0x8}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:33:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bsg\x00', 0x40001, 0x0) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000180)) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x0, 0x0) ioctl$VIDIOC_G_ENC_INDEX(r4, 0x8818564c, &(0x7f0000000400)) write$input_event(r4, &(0x7f0000000200)={{0x0, 0x2710}, 0x16, 0x40, 0x7}, 0x18) ioctl$KVM_RUN(r3, 0xae80, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000c40)=@raw={'raw\x00', 0x9, 0x3, 0x350, 0x0, 0x140, 0x0, 0x140, 0x140, 0x280, 0x280, 0x280, 0x280, 0x280, 0x3, &(0x7f0000000240), {[{{@ipv6={@local, @rand_addr="b2624f22cc87b05ce8c56a3df2de07fd", [0xffffffff], [0x7fffffff, 0xffffffff, 0xffffffff, 0xffffff], 'netpci0\x00', 'syzkaller1\x00', {0xff}, {0xff}, 0x32, 0x1d, 0x1}, 0x0, 0x120, 0x140, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x2}}, @common=@inet=@l2tp={0x30, 'l2tp\x00', 0x0, {0x2, 0x4, 0x2, 0x1}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}, {{@ipv6={@loopback, @mcast1, [0x0, 0xffffffff, 0x7f, 0x1010000ff], [0xff], 'ip6tnl0\x00', 'team0\x00', {0xff}, {}, 0x2c, 0x3, 0x2, 0x8}, 0x0, 0x118, 0x140, 0x0, {}, [@common=@hl={0x28, 'hl\x00', 0x0, {0xeaf238ff803c1242, 0x6}}, @inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0xb}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x949, 0x3ff, 0x563da563677b919a}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3b0) [ 1730.626621][ T2177] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000000 [ 1730.634788][ T2177] R13: 00007fffc021fdd0 R14: 0000000000000000 R15: 00007fffc021fde0 [ 1730.666886][ T2195] BPF:type_id=3113514752 index_type_id=0 nr_elems=196608 [ 1730.680685][ T2195] BPF: [ 1730.685365][ T2195] BPF:size != 0 [ 1730.688908][ T2195] BPF: [ 1730.688908][ T2195] [ 1730.694331][ T2177] memory: usage 307200kB, limit 307200kB, failcnt 2432645 [ 1730.703918][ T2208] BPF:[1] ARRAY (anon) [ 1730.708176][ T2208] BPF:type_id=3113514752 index_type_id=0 nr_elems=196608 [ 1730.715539][ T2177] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1730.778400][ T2177] Memory cgroup stats for /syz3: [ 1730.778602][ T2177] anon 283652096 [ 1730.778602][ T2177] file 65536 [ 1730.778602][ T2177] kernel_stack 2838528 [ 1730.778602][ T2177] slab 5001216 [ 1730.778602][ T2177] sock 20480 [ 1730.778602][ T2177] shmem 65536 [ 1730.778602][ T2177] file_mapped 0 [ 1730.778602][ T2177] file_dirty 0 [ 1730.778602][ T2177] file_writeback 0 [ 1730.778602][ T2177] anon_thp 264241152 [ 1730.778602][ T2177] inactive_anon 135168 [ 1730.778602][ T2177] active_anon 283656192 03:33:58 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x52) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fstat(r3, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setgid(r4) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0, 0x0}, &(0x7f00000000c0)=0xc) setregid(r4, r5) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="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"/321], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x5}, 0x20) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r6, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) getpeername$packet(r6, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) [ 1730.778602][ T2177] inactive_file 167936 [ 1730.778602][ T2177] active_file 73728 [ 1730.778602][ T2177] unevictable 0 [ 1730.778602][ T2177] slab_reclaimable 811008 [ 1730.778602][ T2177] slab_unreclaimable 4190208 [ 1730.778602][ T2177] pgfault 184569 [ 1730.778602][ T2177] pgmajfault 0 [ 1730.778602][ T2177] workingset_refault 330 [ 1730.778602][ T2177] workingset_activate 99 [ 1730.778602][ T2177] workingset_nodereclaim 0 [ 1730.778602][ T2177] pgrefill 9990 [ 1730.778602][ T2177] pgscan 48912 [ 1730.778602][ T2177] pgsteal 35813 [ 1730.901238][ T2208] BPF: [ 1730.910398][ T2208] BPF:size != 0 [ 1730.916680][ T2208] BPF: [ 1730.916680][ T2208] [ 1730.941266][ T2204] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 03:33:58 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000003ea670d80600209394b900"/50], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:58 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000400000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1730.950133][ T2214] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 03:33:58 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$rds(0x15, 0x5, 0x0) getpeername$packet(r2, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000340)=0x14) sendmsg$inet(r3, &(0x7f00000005c0)={&(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000040)="216541ff2384ce9991c54a1ae3339f7881037cddd12c8a84aea9ae62c0675b3e017a97b71e6c9a1167baa0a0991fa8486322c24a292d1fce23c38311a3f944cb3dd532af700af394d9f4fa431fe547aa38d58d0e4f5cb1a3113b324a5feb55439ad759443179ec295787", 0x6a}, {&(0x7f00000000c0)="33b4bf2a998598dbe4cec83d1b0c6354dab1862481e8c9c2bcc65eb4228490b755ca5ffb1b26dd23dfc7733c12f19a157cf1eff641f386a9d1169b48ebb5deb160dc1df0966bf552447bb6e8b8dd5740795a2ce685a3f62ed9951c", 0x5b}, {&(0x7f0000000240)="f12f82f385a9f63419e4b4fe0f2e3b6b4d609bae9c9d1ac0b8e7199e31d83790be36c156cc9de7d10e047644d8b3094093c0ca64d48ce4818a30b5b067fe6eb314835ea1280a14a9156840d632f16696f545816cbf7d6348784853a71703320cc8a31ba170482f9a35a8ace856be82743ca8c6152e0bef57d55609dcb94244c5a5283e54c505f6970b31efd3a1314ea1ff0324787864e36f3c1229f9c1b4e3a1fb116027ebcdd86666aa55cf6efd6daa209e8bbf616cd1e1d656770e7c451b463f168528ac5c734c6ae69f1bbd68ffea326313cb2ed6ca78b79e827eb494aeab", 0xe0}, {&(0x7f0000000480)="229ceeb2ae94cb63a3137ab0824c52ec092cc250a66f56c31cf3ce8da03e917287f2d95d05aea70532c7c9cc170888aaff132e2d8d8d5129eb95b87228598ae903da7630d9d13373e30133964377ccfeadb8a2a043120e2a9880062550949dd2306140e0c4ab95629baa2dbe36c2b0c74ac3b9a4548f72f66e33fa54df1108d429e46cbd998a1af8379db5dfb1898c41ca64b0a27432d09c8c00507ea93944e440371d48e5e403a2a2098b8d", 0xac}], 0x4, &(0x7f0000000540)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @empty, @loopback}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x3}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x9}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x1}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x40}}], 0x80}, 0x80) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1731.050118][ T2221] BPF:[1] Invalid btf_info:6d870 03:33:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r3, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) r4 = accept(r3, 0x0, &(0x7f0000000000)) getsockopt$inet6_opts(r4, 0x29, 0x36, &(0x7f0000000140)=""/3, &(0x7f0000000180)=0x3) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1731.148006][ T2228] BPF:[1] ARRAY (anon) [ 1731.160990][ T2228] BPF:type_id=3113514752 index_type_id=0 nr_elems=262144 [ 1731.176869][ T2228] BPF: [ 1731.182090][ T2228] BPF:size != 0 [ 1731.190086][ T2228] BPF: [ 1731.190086][ T2228] 03:33:58 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1731.210064][ T2230] BPF:[1] ARRAY (anon) [ 1731.226589][ T2230] BPF:type_id=3113514752 index_type_id=0 nr_elems=262144 [ 1731.244752][ T2230] BPF: [ 1731.251324][ T2177] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=1716,uid=0 [ 1731.286050][ T2230] BPF:size != 0 [ 1731.298620][ T2230] BPF: [ 1731.298620][ T2230] [ 1731.332422][ T2177] Memory cgroup out of memory: Killed process 1716 (syz-executor.3) total-vm:72980kB, anon-rss:4280kB, file-rss:35820kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1731.348540][ T2234] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1731.361882][ T2237] BPF:btf_header not found 03:33:58 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000500000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1731.463519][ T2243] BPF:[1] Invalid kind:0 [ 1731.515340][ T2248] BPF:[1] ARRAY (anon) [ 1731.549079][ T2252] BPF:[1] Invalid kind:0 [ 1731.554898][ T2248] BPF:type_id=3113514752 index_type_id=0 nr_elems=327680 [ 1731.571087][ T2254] BPF:btf_header not found [ 1731.593500][ T2248] BPF: [ 1731.602171][ T2248] BPF:size != 0 [ 1731.611540][ T2248] BPF: [ 1731.611540][ T2248] [ 1731.634952][ T2257] BPF:[1] ARRAY (anon) [ 1731.650970][ T2257] BPF:type_id=3113514752 index_type_id=0 nr_elems=327680 [ 1731.686906][ T2257] BPF: [ 1731.697325][ T2257] BPF:size != 0 [ 1731.706717][ T2257] BPF: [ 1731.706717][ T2257] 03:33:59 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:33:59 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:33:59 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) r4 = openat$cgroup_ro(r3, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000280)) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe(&(0x7f0000000200)={0xffffffffffffffff}) write$FUSE_GETXATTR(r4, &(0x7f0000000240)={0x18, 0xfffffffffffffff5, 0x1, {0x1}}, 0x18) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x1, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0x3, 0x6, 0x1, 0x1, 0x9, 0x5, 0x3f, 0x2}}) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) r8 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r8, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r8, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) read$usbfs(r8, &(0x7f0000000780)=""/4096, 0x1000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r9}, 0x8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f0000000000)={r9, 0xfffe, 0x80, 0x1, 0x6, 0x2}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000080)={r10, @in={{0x2, 0x4e20, @multicast1}}}, 0x84) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="35d1185e18000000000000001c0000001c00000000007794b900"/45], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:59 executing program 2: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:33:59 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000600000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:33:59 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1732.409863][ T2270] BPF:[1] ARRAY (anon) [ 1732.418291][ T2269] BPF:btf_header not found [ 1732.420653][ T2270] BPF:type_id=3113514752 index_type_id=0 nr_elems=393216 [ 1732.443742][ T2270] BPF: [ 1732.446841][ T2270] BPF:size != 0 [ 1732.455677][ T2270] BPF: 03:33:59 executing program 2: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1732.455677][ T2270] [ 1732.466042][ T2277] BPF:[1] ARRAY (anon) [ 1732.474580][ T2273] BPF:btf_header not found [ 1732.479513][ T2277] BPF:type_id=3113514752 index_type_id=0 nr_elems=393216 [ 1732.487526][ T2271] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1732.498092][ T2277] BPF: [ 1732.501748][ T2277] BPF:size != 0 [ 1732.505883][ T2277] BPF: [ 1732.505883][ T2277] [ 1732.570118][ T2281] BPF:Invalid magic 03:34:00 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000700000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1732.631223][ T2287] BPF:btf_header not found [ 1732.687273][ T2293] BPF:btf_header not found 03:34:00 executing program 5: r0 = accept4(0xffffffffffffffff, &(0x7f0000000140)=@caif=@dgm, &(0x7f0000000000)=0x80, 0x800) getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000200)=0x8, &(0x7f0000000240)=0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) flock(0xffffffffffffffff, 0x1) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x9, 0x800000000000000, 0x0, 0x0, 0x6, 0x9, 0x0, 0x0, 0x9, 0x40, 0x0, 0xffffffffffffffff], 0x1000, 0xffffffffffdce5b9}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1732.752885][ T2297] BPF:[1] ARRAY (anon) [ 1732.787287][ T2297] BPF:type_id=3113514752 index_type_id=0 nr_elems=458752 [ 1732.833052][ T2297] BPF: [ 1732.850477][ T2297] BPF:size != 0 [ 1732.869108][ T2297] BPF: [ 1732.869108][ T2297] [ 1732.919567][ T2309] BPF:[1] ARRAY (anon) [ 1732.946854][ T2309] BPF:type_id=3113514752 index_type_id=0 nr_elems=458752 [ 1733.000656][ T2309] BPF: [ 1733.015068][ T2309] BPF:size != 0 [ 1733.031632][ T2309] BPF: [ 1733.031632][ T2309] 03:34:00 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000800000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1733.199150][ T2313] BPF:[1] ARRAY (anon) [ 1733.226005][ T2313] BPF:type_id=3113514752 index_type_id=0 nr_elems=524288 [ 1733.250086][ T2313] BPF: [ 1733.256873][ T2313] BPF:size != 0 [ 1733.274540][ T2313] BPF: [ 1733.274540][ T2313] 03:34:00 executing program 1: socket$unix(0x1, 0x1, 0x0) socket$unix(0x1, 0x1, 0x0) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r1, 0x5}}, 0x18) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r3, 0x5}}, 0x18) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='cpuset\x00'}, 0x10) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r5, 0x5}}, 0x18) r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r6, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r7, 0x5}}, 0x18) r8 = dup2(0xffffffffffffffff, r6) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1733.311155][ T2319] BPF:[1] ARRAY (anon) [ 1733.315406][ T2319] BPF:type_id=3113514752 index_type_id=0 nr_elems=524288 03:34:00 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1733.368110][ T2319] BPF: [ 1733.404316][ T2319] BPF:size != 0 [ 1733.407866][ T2319] BPF: [ 1733.407866][ T2319] [ 1733.485650][ T2323] BPF:btf_header not found 03:34:00 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:34:00 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:34:00 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000a00000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:34:00 executing program 2: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) r4 = openat$cgroup_ro(r3, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000280)) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe(&(0x7f0000000200)={0xffffffffffffffff}) write$FUSE_GETXATTR(r4, &(0x7f0000000240)={0x18, 0xfffffffffffffff5, 0x1, {0x1}}, 0x18) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x1, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0x3, 0x6, 0x1, 0x1, 0x9, 0x5, 0x3f, 0x2}}) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) r8 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r8, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r8, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) read$usbfs(r8, &(0x7f0000000780)=""/4096, 0x1000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r9}, 0x8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f0000000000)={r9, 0xfffe, 0x80, 0x1, 0x6, 0x2}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000080)={r10, @in={{0x2, 0x4e20, @multicast1}}}, 0x84) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="35d1185e18000000000000001c0000001c00000000007794b900"/45], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1733.601613][ T2329] BPF:[1] ARRAY (anon) [ 1733.617507][ T2329] BPF:type_id=3113514752 index_type_id=0 nr_elems=655360 [ 1733.675182][ T2328] BPF:[1] Invalid kind:0 03:34:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvram\x00', 0x6802c1, 0x0) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0xa, 0x0, 0x0, 0x0, 0x0, 0x92, 0x20, 0xfd, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1733.703913][ T2329] BPF: [ 1733.706810][ T2329] BPF:size != 0 [ 1733.713442][ T2338] BPF:btf_header not found [ 1733.719863][ T2329] BPF: [ 1733.719863][ T2329] [ 1733.725805][ T2345] BPF:btf_header not found [ 1733.735453][ T2349] BPF:[1] ARRAY (anon) [ 1733.741477][ T2328] BPF:[1] Invalid kind:0 03:34:01 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x214581, 0x0) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r5, 0x5}}, 0x18) write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000040)=0xff, r5, 0x0, 0x0, 0x1}}, 0x20) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r6, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) setsockopt$ax25_SO_BINDTODEVICE(r6, 0x101, 0x19, &(0x7f0000000100)=@netrom={'nr', 0x0}, 0x10) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000bb0bf2c2000000000000000000000000000054ad4d7bbbaaca31a0174c29c93358dc2664ee25dfba396094f9afd7113eab8dc8fb8c6c1c4894d7e101401533deeaed0f03443cca01c1066f7cbd839d94884543237398b66017bb82f9bdb1df8ef23fdfe29203465282e129f4d03f0c9ee291cce96d8ef7341b3f3f3c1a9a4e4195bf1dbb19e633b3c9e755f72136c00c21c49c64fc848cd7d7e2c51ca711e34ab874fa16e396c4c29c819da5f7f3c0e737d68d3a582b59f263edf034e7636b62b7a441827ed5733b05f669caa18f9f6443abc069b3e4cb06e1d4bb82027373a4c1c4862ba442d71e50e10703774c10650800a59ca16d5215a724b1d492ad141d00"/302], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) r7 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r7, &(0x7f0000000000)="b6", 0xfffffe7e) r8 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r8, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r8, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$KVM_GET_API_VERSION(r8, 0xae00, 0x0) openat$cgroup_ro(r7, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r7, 0xc0045520, &(0x7f00000001c0)=0x2cf) [ 1733.804109][ T2349] BPF:type_id=3113514752 index_type_id=0 nr_elems=655360 [ 1733.874623][ T2349] BPF: [ 1733.897993][ T2349] BPF:size != 0 [ 1733.930990][ T2357] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1733.963001][ T2349] BPF: [ 1733.963001][ T2349] [ 1734.003633][ T2369] BPF:Invalid magic 03:34:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r1, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r1, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xd0], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:34:01 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000001c00000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1734.234601][ T2378] BPF:[1] ARRAY (anon) 03:34:01 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r3, 0x40042409, 0x1) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYRESDEC], &(0x7f0000000380)=""/249, 0x14, 0xf9, 0x1}, 0x20) openat$bsg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bsg\x00', 0x400, 0x0) [ 1734.254820][ T2373] BPF:[1] Invalid kind:0 [ 1734.266788][ T2378] BPF:type_id=3113514752 index_type_id=0 nr_elems=1835008 [ 1734.302366][ T2378] BPF: [ 1734.341726][ T2378] BPF:size != 0 [ 1734.372022][ T2378] BPF: [ 1734.372022][ T2378] [ 1734.378328][ T2381] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1734.432227][ T2383] BPF:[1] ARRAY (anon) 03:34:01 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r6 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r6, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r3, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r7, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r8, 0x84, 0x76, &(0x7f0000000000)={r9, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:34:01 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1734.495106][ T2383] BPF:type_id=3113514752 index_type_id=0 nr_elems=1835008 03:34:01 executing program 2: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) r4 = openat$cgroup_ro(r3, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000280)) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe(&(0x7f0000000200)={0xffffffffffffffff}) write$FUSE_GETXATTR(r4, &(0x7f0000000240)={0x18, 0xfffffffffffffff5, 0x1, {0x1}}, 0x18) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x1, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0x3, 0x6, 0x1, 0x1, 0x9, 0x5, 0x3f, 0x2}}) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) r8 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r8, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r8, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) read$usbfs(r8, &(0x7f0000000780)=""/4096, 0x1000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r9}, 0x8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f0000000000)={r9, 0xfffe, 0x80, 0x1, 0x6, 0x2}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000080)={r10, @in={{0x2, 0x4e20, @multicast1}}}, 0x84) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="35d1185e18000000000000001c0000001c00000000007794b900"/45], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1734.547124][ T2383] BPF: [ 1734.559890][ T2383] BPF:size != 0 [ 1734.578220][ T2383] BPF: [ 1734.578220][ T2383] 03:34:02 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000001e00000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1734.652972][ T2387] BPF:btf_header not found [ 1734.806173][ T2396] BPF:[1] ARRAY (anon) [ 1734.834410][ T2396] BPF:type_id=3113514752 index_type_id=0 nr_elems=1966080 [ 1734.874709][ T2396] BPF: [ 1734.885669][ T2396] BPF:size != 0 [ 1734.896152][ T2396] BPF: [ 1734.896152][ T2396] [ 1734.915498][ T2397] BPF:btf_header not found [ 1734.928356][ T2400] BPF:[1] ARRAY (anon) [ 1734.939768][ T2400] BPF:type_id=3113514752 index_type_id=0 nr_elems=1966080 [ 1734.967578][ T2400] BPF: [ 1734.975936][ T2400] BPF:size != 0 [ 1734.986319][ T2400] BPF: [ 1734.986319][ T2400] 03:34:02 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000002000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1735.234956][ T2410] BPF:Invalid magic [ 1735.259818][ T2412] BPF:[1] ARRAY (anon) [ 1735.274098][ T2412] BPF:type_id=3113514752 index_type_id=0 nr_elems=2097152 03:34:02 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x80000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3b, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0xff, 0x1, 0x9}}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) r5 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f0000000000)={r6}, 0x8) pipe(&(0x7f0000000200)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r8, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r8, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r9 = accept4$tipc(r8, &(0x7f0000000300), &(0x7f0000000400)=0x10, 0x800) vmsplice(r9, &(0x7f0000000000)=[{&(0x7f0000000500)}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r7, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r7, 0x84, 0x10, &(0x7f0000000000)=@sack_info={0x0, 0x7, 0x91}, &(0x7f0000000140)=0xc) getsockopt$inet_sctp_SCTP_STATUS(r4, 0x84, 0xe, &(0x7f0000000240)={r6, 0x9, 0x2, 0x4, 0x1, 0x2eb, 0x6, 0x1, {r10, @in={{0x2, 0x4e23, @empty}}, 0x3, 0x7fff, 0x1, 0x401, 0x7}}, &(0x7f0000000180)=0xb0) setsockopt$TIPC_MCAST_REPLICAST(r3, 0x10f, 0x86) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x800000009, 0x0, 0x0, 0x0, 0x400], 0x4000, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1735.303331][ T2403] syz-executor.0 invoked oom-killer: gfp_mask=0x101cca(GFP_HIGHUSER_MOVABLE|__GFP_WRITE), order=0, oom_score_adj=1000 [ 1735.322962][ T2412] BPF: [ 1735.332119][ T2412] BPF:size != 0 [ 1735.335677][ T2412] BPF: [ 1735.335677][ T2412] [ 1735.367210][ T2414] BPF:[1] ARRAY (anon) [ 1735.379448][ T2414] BPF:type_id=3113514752 index_type_id=0 nr_elems=2097152 [ 1735.394966][ T2414] BPF: [ 1735.398274][ T2414] BPF:size != 0 [ 1735.409013][ T2414] BPF: [ 1735.409013][ T2414] [ 1735.409692][ T2403] CPU: 0 PID: 2403 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1735.422774][ T2403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1735.433058][ T2403] Call Trace: [ 1735.436553][ T2403] dump_stack+0x11d/0x181 [ 1735.440891][ T2403] dump_header+0xaa/0x39c [ 1735.445283][ T2403] oom_kill_process.cold+0x10/0x15 [ 1735.450427][ T2403] out_of_memory+0x231/0xa60 [ 1735.455026][ T2403] ? __rcu_read_unlock+0x66/0x3d0 [ 1735.460077][ T2403] mem_cgroup_out_of_memory+0x128/0x150 03:34:02 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:34:02 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000004800000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1735.465635][ T2403] try_charge+0xb6c/0xbf0 [ 1735.470011][ T2403] ? rcu_note_context_switch+0x6d0/0x760 [ 1735.475684][ T2403] mem_cgroup_try_charge+0xd2/0x260 [ 1735.480889][ T2403] __add_to_page_cache_locked+0x163/0x780 [ 1735.486783][ T2403] ? __read_once_size.constprop.0+0x20/0x20 [ 1735.492780][ T2403] add_to_page_cache_lru+0xc4/0x260 [ 1735.498063][ T2403] pagecache_get_page+0x2ac/0x6f0 [ 1735.503103][ T2403] ? do_page_fault+0x38/0x194 [ 1735.507820][ T2403] grab_cache_page_write_begin+0x5d/0x90 [ 1735.513471][ T2403] ext4_da_write_begin+0x1a3/0x840 [ 1735.518598][ T2403] ? iov_iter_fault_in_readable+0x15c/0x2b0 [ 1735.524524][ T2403] generic_perform_write+0x136/0x320 [ 1735.529876][ T2403] ext4_buffered_write_iter+0x143/0x290 [ 1735.535540][ T2403] ext4_file_write_iter+0xf4/0xd40 [ 1735.540788][ T2403] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1735.547104][ T2403] ? iov_iter_init+0xe2/0x120 [ 1735.551795][ T2403] new_sync_write+0x388/0x4a0 [ 1735.556542][ T2403] ? __rcu_read_unlock+0x66/0x3d0 [ 1735.561606][ T2403] __vfs_write+0xb1/0xc0 [ 1735.566053][ T2403] vfs_write+0x18a/0x390 [ 1735.570388][ T2403] ksys_write+0xd5/0x1b0 [ 1735.570884][ T2418] BPF:[1] ARRAY (anon) [ 1735.574731][ T2403] __x64_sys_write+0x4c/0x60 [ 1735.574760][ T2403] do_syscall_64+0xcc/0x3a0 [ 1735.588396][ T2403] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1735.594294][ T2403] RIP: 0033:0x45a909 [ 1735.596010][ T2418] BPF:type_id=3113514752 index_type_id=0 nr_elems=4718592 [ 1735.598401][ T2403] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1735.598418][ T2403] RSP: 002b:00007fde0f91ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1735.615553][ T2419] BPF:btf_header not found [ 1735.625223][ T2403] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a909 [ 1735.625232][ T2403] RDX: 00000000fffffe7e RSI: 0000000020000000 RDI: 000000000000000e [ 1735.625240][ T2403] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 1735.625249][ T2403] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fde0f91f6d4 [ 1735.625258][ T2403] R13: 00000000004c7ca0 R14: 00000000004e4d08 R15: 00000000ffffffff [ 1735.683971][ T2418] BPF: [ 1735.686977][ T2418] BPF:size != 0 [ 1735.700823][ T2418] BPF: [ 1735.700823][ T2418] [ 1735.710344][ T2422] BPF:[1] ARRAY (anon) [ 1735.723220][ T2422] BPF:type_id=3113514752 index_type_id=0 nr_elems=4718592 [ 1735.740625][ T2422] BPF: [ 1735.746391][ T2422] BPF:size != 0 [ 1735.749940][ T2422] BPF: [ 1735.749940][ T2422] 03:34:03 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000004c00000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:34:03 executing program 2: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) r4 = openat$cgroup_ro(r3, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000280)) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe(&(0x7f0000000200)={0xffffffffffffffff}) write$FUSE_GETXATTR(r4, &(0x7f0000000240)={0x18, 0xfffffffffffffff5, 0x1, {0x1}}, 0x18) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x1, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0x3, 0x6, 0x1, 0x1, 0x9, 0x5, 0x3f, 0x2}}) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) r8 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r8, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r8, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) read$usbfs(r8, &(0x7f0000000780)=""/4096, 0x1000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r9}, 0x8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f0000000000)={r9, 0xfffe, 0x80, 0x1, 0x6, 0x2}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000080)={r10, @in={{0x2, 0x4e20, @multicast1}}}, 0x84) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="35d1185e18000000000000001c0000001c00000000007794b900"/45], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1735.809628][ T2403] memory: usage 307200kB, limit 307200kB, failcnt 20281 [ 1735.819828][ T2403] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1735.827196][ T2403] Memory cgroup stats for /syz0: [ 1735.827375][ T2403] anon 244994048 [ 1735.827375][ T2403] file 0 [ 1735.827375][ T2403] kernel_stack 6488064 [ 1735.827375][ T2403] slab 9658368 [ 1735.827375][ T2403] sock 0 [ 1735.827375][ T2403] shmem 0 [ 1735.827375][ T2403] file_mapped 0 [ 1735.827375][ T2403] file_dirty 135168 [ 1735.827375][ T2403] file_writeback 0 [ 1735.827375][ T2403] anon_thp 199229440 [ 1735.827375][ T2403] inactive_anon 0 [ 1735.827375][ T2403] active_anon 245067776 [ 1735.827375][ T2403] inactive_file 4096 [ 1735.827375][ T2403] active_file 24576 [ 1735.827375][ T2403] unevictable 0 [ 1735.827375][ T2403] slab_reclaimable 946176 [ 1735.827375][ T2403] slab_unreclaimable 8712192 [ 1735.827375][ T2403] pgfault 221397 [ 1735.827375][ T2403] pgmajfault 0 [ 1735.827375][ T2403] workingset_refault 297 [ 1735.827375][ T2403] workingset_activate 198 [ 1735.827375][ T2403] workingset_nodereclaim 0 [ 1735.827375][ T2403] pgrefill 35722 [ 1735.827375][ T2403] pgscan 75718 [ 1735.827375][ T2403] pgsteal 35551 [ 1735.975022][ T2433] BPF:[1] ARRAY (anon) [ 1735.999101][ T2433] BPF:type_id=3113514752 index_type_id=0 nr_elems=4980736 [ 1736.019312][ T2437] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1736.019457][ T2433] BPF: [ 1736.035192][ T2403] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=2083,uid=0 [ 1736.052908][ T2403] Memory cgroup out of memory: Killed process 2083 (syz-executor.0) total-vm:72980kB, anon-rss:4276kB, file-rss:35824kB, shmem-rss:0kB, UID:0 pgtables:143360kB oom_score_adj:1000 [ 1736.061954][ T2433] BPF:size != 0 [ 1736.106586][ T2433] BPF: [ 1736.106586][ T2433] [ 1736.133536][ T2439] BPF:[1] ARRAY (anon) [ 1736.137901][ T2384] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000 [ 1736.137923][ T2384] CPU: 0 PID: 2384 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1736.138012][ T2384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1736.138017][ T2384] Call Trace: [ 1736.138054][ T2384] dump_stack+0x11d/0x181 [ 1736.138077][ T2384] dump_header+0xaa/0x39c [ 1736.138110][ T2384] oom_kill_process.cold+0x10/0x15 [ 1736.138131][ T2384] out_of_memory+0x231/0xa60 [ 1736.138160][ T2384] mem_cgroup_out_of_memory+0x128/0x150 [ 1736.138180][ T2384] try_charge+0x800/0xbf0 [ 1736.138205][ T2384] ? __rcu_read_unlock+0x66/0x3d0 [ 1736.138226][ T2384] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1736.138248][ T2384] __memcg_kmem_charge+0xcf/0x1b0 [ 1736.138273][ T2384] __alloc_pages_nodemask+0x26c/0x310 [ 1736.138304][ T2384] alloc_pages_current+0xd1/0x170 [ 1736.138323][ T2384] pte_alloc_one+0x18/0x50 [ 1736.138369][ T2384] __pte_alloc+0x2d/0x220 [ 1736.138386][ T2384] __handle_mm_fault+0x1ffb/0x2e00 [ 1736.138410][ T2384] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1736.138436][ T2384] handle_mm_fault+0x21b/0x530 [ 1736.138457][ T2384] __do_page_fault+0x456/0x8d0 [ 1736.138576][ T2384] do_page_fault+0x38/0x194 [ 1736.138637][ T2384] page_fault+0x34/0x40 [ 1736.194061][ T2439] BPF:type_id=3113514752 index_type_id=0 nr_elems=4980736 [ 1736.197043][ T2384] RIP: 0033:0x400644 [ 1736.197072][ T2384] Code: 06 e9 49 01 00 00 48 8b 44 24 10 48 0b 44 24 28 75 1f 48 8b 14 24 48 8b 7c 24 20 be 04 00 00 00 e8 11 55 00 00 48 8b 74 24 08 <89> 06 e9 1e 01 00 00 48 8b 44 24 08 48 8b 14 24 be 04 00 00 00 8b [ 1736.219094][ T2439] BPF: [ 1736.222562][ T2384] RSP: 002b:00007fff9b1d2f10 EFLAGS: 00010202 [ 1736.222576][ T2384] RAX: 0000000000000008 RBX: 000000000075c9a0 RCX: 0000000000000000 [ 1736.222586][ T2384] RDX: 0000000000000000 RSI: 000000002095dffc RDI: 0000000000000008 [ 1736.222595][ T2384] RBP: 0000000000761950 R08: 0000000000000000 R09: 0000000000000000 [ 1736.222605][ T2384] R10: 00007fff9b1d3020 R11: 0000000000000246 R12: 000000000075c118 [ 1736.222674][ T2384] R13: 00000000001a7a77 R14: 0000000000761958 R15: 000000000075c124 [ 1736.231441][ T2439] BPF:size != 0 [ 1736.316827][ T2384] memory: usage 304080kB, limit 307200kB, failcnt 20281 [ 1736.347020][ T2439] BPF: [ 1736.347020][ T2439] [ 1736.377957][ T2442] BPF:Invalid magic [ 1736.390624][ T2384] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1736.418544][ T2384] Memory cgroup stats for /syz0: [ 1736.418690][ T2384] anon 240779264 [ 1736.418690][ T2384] file 1269760 [ 1736.418690][ T2384] kernel_stack 6488064 [ 1736.418690][ T2384] slab 9658368 [ 1736.418690][ T2384] sock 0 [ 1736.418690][ T2384] shmem 0 [ 1736.418690][ T2384] file_mapped 0 [ 1736.418690][ T2384] file_dirty 0 [ 1736.418690][ T2384] file_writeback 0 [ 1736.418690][ T2384] anon_thp 195035136 [ 1736.418690][ T2384] inactive_anon 0 [ 1736.418690][ T2384] active_anon 240852992 03:34:03 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1736.418690][ T2384] inactive_file 1220608 [ 1736.418690][ T2384] active_file 24576 [ 1736.418690][ T2384] unevictable 0 [ 1736.418690][ T2384] slab_reclaimable 946176 [ 1736.418690][ T2384] slab_unreclaimable 8712192 [ 1736.418690][ T2384] pgfault 221727 [ 1736.418690][ T2384] pgmajfault 0 [ 1736.418690][ T2384] workingset_refault 297 [ 1736.418690][ T2384] workingset_activate 198 [ 1736.418690][ T2384] workingset_nodereclaim 0 [ 1736.418690][ T2384] pgrefill 35722 [ 1736.418690][ T2384] pgscan 75718 [ 1736.418690][ T2384] pgsteal 35551 [ 1736.549995][ T2384] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=2324,uid=0 [ 1736.643000][ T2445] BPF:btf_header not found [ 1736.681468][ T2384] Memory cgroup out of memory: Killed process 2324 (syz-executor.0) total-vm:72584kB, anon-rss:2204kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1736.736707][ T1067] oom_reaper: reaped process 2324 (syz-executor.0), now anon-rss:0kB, file-rss:34828kB, shmem-rss:0kB 03:34:11 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$BLKZEROOUT(r2, 0x127f, &(0x7f0000000140)={0xfc, 0x5}) clone(0x12000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f00000000c0)={0x3, 'team_slave_0\x00', {0x7}}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet6(0xa, 0x80003, 0x6b) ioctl(r4, 0x1000008912, &(0x7f00000001c0)="0805b5055e0bcfe8474071") r5 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000280)={&(0x7f0000000240), &(0x7f0000000780)=""/4096, 0x1000}) setsockopt$inet_mreqn(r5, 0x0, 0x27, &(0x7f0000000200)={@multicast2, @local}, 0xc) setsockopt$inet_mreqn(r5, 0x0, 0x28, &(0x7f0000000080)={@multicast1=0xe0000002, @local}, 0xc) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) ioctl$UI_SET_FFBIT(r6, 0x4004556b, 0x56) ioctl$VIDIOC_G_DV_TIMINGS(r3, 0xc0845658, &(0x7f0000000000)={0x0, @reserved}) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b90000000000000000000010000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:34:11 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x440000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:34:11 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000006000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:34:11 executing program 2: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) r4 = openat$cgroup_ro(r3, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000280)) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe(&(0x7f0000000200)={0xffffffffffffffff}) write$FUSE_GETXATTR(r4, &(0x7f0000000240)={0x18, 0xfffffffffffffff5, 0x1, {0x1}}, 0x18) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x1, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0x3, 0x6, 0x1, 0x1, 0x9, 0x5, 0x3f, 0x2}}) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) r8 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r8, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r8, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) read$usbfs(r8, &(0x7f0000000780)=""/4096, 0x1000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r9}, 0x8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f0000000000)={r9, 0xfffe, 0x80, 0x1, 0x6, 0x2}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000080)={r10, @in={{0x2, 0x4e20, @multicast1}}}, 0x84) 03:34:11 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r6, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r8, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:34:11 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1743.957397][ T2469] BPF:[1] ARRAY (anon) [ 1743.963542][ T2463] BPF:btf_header not found [ 1743.987739][ T2469] BPF:type_id=3113514752 index_type_id=0 nr_elems=6291456 [ 1744.000522][ T2466] BPF:btf_header not found [ 1744.026856][ T2469] BPF: [ 1744.035663][ T2469] BPF:size != 0 [ 1744.048654][ T2469] BPF: [ 1744.048654][ T2469] [ 1744.066246][ T2477] BPF:[1] ARRAY (anon) [ 1744.088868][ T2477] BPF:type_id=3113514752 index_type_id=0 nr_elems=6291456 [ 1744.151071][ T2477] BPF: [ 1744.173169][ T2477] BPF:size != 0 [ 1744.190615][ T2477] BPF: [ 1744.190615][ T2477] 03:34:11 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x200400, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r2, 0x5}}, 0x18) fcntl$dupfd(r0, 0x0, r1) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r4, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r5 = syz_genetlink_get_family_id$devlink(0x0) sendmsg$DEVLINK_CMD_PORT_SET(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0xb, &(0x7f0000000980)={&(0x7f00000007c0)={0x14, r5, 0xffff, 0xd000000}, 0x14}}, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)) r6 = getpid() r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r7, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @dev}], 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8), &(0x7f000095dffc)=0x4) sched_setattr(r6, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r8 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r8, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r9, 0xae80, 0x0) 03:34:11 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000006800000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:34:11 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1744.532248][ T2495] BPF:[1] ARRAY (anon) [ 1744.546884][ T2495] BPF:type_id=3113514752 index_type_id=0 nr_elems=6815744 [ 1744.585833][ T2495] BPF: [ 1744.593626][ T2490] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1744.599150][ T2495] BPF:size != 0 [ 1744.623605][ T2495] BPF: [ 1744.623605][ T2495] [ 1744.643473][ T2497] BPF:[1] ARRAY (anon) [ 1744.668527][ T2497] BPF:type_id=3113514752 index_type_id=0 nr_elems=6815744 [ 1744.714256][ T2497] BPF: 03:34:12 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r6, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r8, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:34:12 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1744.741458][ T2497] BPF:size != 0 [ 1744.758845][ T2497] BPF: [ 1744.758845][ T2497] 03:34:12 executing program 2: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) r4 = openat$cgroup_ro(r3, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000280)) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe(&(0x7f0000000200)={0xffffffffffffffff}) write$FUSE_GETXATTR(r4, &(0x7f0000000240)={0x18, 0xfffffffffffffff5, 0x1, {0x1}}, 0x18) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x1, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0x3, 0x6, 0x1, 0x1, 0x9, 0x5, 0x3f, 0x2}}) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) r8 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r8, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r8, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) read$usbfs(r8, &(0x7f0000000780)=""/4096, 0x1000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r9}, 0x8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f0000000000)={r9, 0xfffe, 0x80, 0x1, 0x6, 0x2}, &(0x7f0000000040)=0x14) [ 1744.851430][ T2502] BPF:[1] Invalid kind:0 03:34:12 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000006c00000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1744.957445][ T2507] BPF:btf_header not found [ 1744.958711][ T2503] BPF:[1] Invalid kind:0 03:34:12 executing program 1: socket$unix(0x1, 0x1, 0x0) socket$unix(0x1, 0x1, 0x0) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r1, 0x5}}, 0x18) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r3, 0x5}}, 0x18) socket$tipc(0x1e, 0x2, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x400000, 0x0) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r5, 0x5}}, 0x18) r6 = dup2(r0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c000000020000200000001c00"/40], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1745.047869][ T2517] BPF:[1] ARRAY (anon) [ 1745.061885][ T2517] BPF:type_id=3113514752 index_type_id=0 nr_elems=7077888 [ 1745.092985][ T2517] BPF: [ 1745.099417][ T2508] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1745.114305][ T2517] BPF:size != 0 [ 1745.133557][ T2517] BPF: [ 1745.133557][ T2517] [ 1745.139020][ T2508] CPU: 1 PID: 2508 Comm: syz-executor.3 Not tainted 5.5.0-rc1-syzkaller #0 [ 1745.147783][ T2508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1745.158031][ T2508] Call Trace: [ 1745.161432][ T2508] dump_stack+0x11d/0x181 [ 1745.165760][ T2508] dump_header+0xaa/0x39c [ 1745.170112][ T2508] oom_kill_process.cold+0x10/0x15 [ 1745.175219][ T2508] out_of_memory+0x231/0xa60 [ 1745.180422][ T2508] ? __rcu_read_unlock+0x66/0x3d0 [ 1745.185510][ T2508] mem_cgroup_out_of_memory+0x128/0x150 [ 1745.191193][ T2508] try_charge+0xb6c/0xbf0 [ 1745.195770][ T2508] ? rcu_note_context_switch+0x6d0/0x760 [ 1745.201461][ T2508] mem_cgroup_try_charge+0xd2/0x260 [ 1745.206662][ T2508] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1745.212433][ T2508] wp_page_copy+0x322/0x1040 [ 1745.217027][ T2508] ? _raw_spin_unlock_irqrestore+0x70/0x80 [ 1745.222835][ T2508] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1745.228564][ T2508] do_wp_page+0x192/0xeb0 [ 1745.232893][ T2508] ? record_times+0x16/0x90 [ 1745.237391][ T2508] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1745.243296][ T2508] __handle_mm_fault+0x1d16/0x2e00 [ 1745.248495][ T2508] ? try_to_free_mem_cgroup_pages+0x258/0x4d0 [ 1745.254671][ T2508] handle_mm_fault+0x21b/0x530 [ 1745.259445][ T2508] __do_page_fault+0x456/0x8d0 [ 1745.264401][ T2508] do_page_fault+0x38/0x194 [ 1745.268915][ T2508] page_fault+0x34/0x40 [ 1745.273077][ T2508] RIP: 0033:0x40f958 [ 1745.277064][ T2508] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf fa 00 4c 00 31 c0 e8 53 25 ff ff 31 ff e8 9c 21 ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d ee 2c 66 00 [ 1745.296708][ T2508] RSP: 002b:00007fffc021fb20 EFLAGS: 00010246 [ 1745.302764][ T2508] RAX: 0000000028a01c85 RBX: 00000000e18bcead RCX: 0000001b2fe20000 [ 1745.310788][ T2508] RDX: 0000000000000000 RSI: 0000000000001c85 RDI: ffffffff28a01c85 [ 1745.318752][ T2508] RBP: 000000000000000d R08: 0000000028a01c85 R09: 0000000028a01c89 [ 1745.326725][ T2508] R10: 00007fffc021fcc0 R11: 0000000000000246 R12: 000000000075bfa8 [ 1745.334798][ T2508] R13: 0000000080000000 R14: 00007f8acef48008 R15: 000000000000000d [ 1745.354426][ T2524] BPF:[1] ARRAY (anon) [ 1745.373269][ T2524] BPF:type_id=3113514752 index_type_id=0 nr_elems=7077888 [ 1745.429834][ T2524] BPF: [ 1745.439308][ T2524] BPF:size != 0 [ 1745.460458][ T2524] BPF: [ 1745.460458][ T2524] 03:34:12 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000007400000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1745.613050][ T2533] BPF:[1] ARRAY (anon) [ 1745.625155][ T2533] BPF:type_id=3113514752 index_type_id=0 nr_elems=7602176 [ 1745.660906][ T2533] BPF: [ 1745.667837][ T2533] BPF:size != 0 [ 1745.673990][ T2533] BPF: [ 1745.673990][ T2533] [ 1745.687106][ T2537] BPF:[1] ARRAY (anon) [ 1745.696718][ T2537] BPF:type_id=3113514752 index_type_id=0 nr_elems=7602176 03:34:13 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r6, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r8, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1745.709468][ T2537] BPF: [ 1745.715872][ T2537] BPF:size != 0 [ 1745.719561][ T2537] BPF: [ 1745.719561][ T2537] 03:34:13 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000007a00000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1745.806127][ T2508] memory: usage 307200kB, limit 307200kB, failcnt 2437942 [ 1745.844876][ T2508] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1745.863530][ T2508] Memory cgroup stats for /syz3: [ 1745.863674][ T2508] anon 282501120 [ 1745.863674][ T2508] file 20480 [ 1745.863674][ T2508] kernel_stack 2985984 [ 1745.863674][ T2508] slab 5136384 [ 1745.863674][ T2508] sock 20480 [ 1745.863674][ T2508] shmem 65536 [ 1745.863674][ T2508] file_mapped 0 [ 1745.863674][ T2508] file_dirty 0 [ 1745.863674][ T2508] file_writeback 0 [ 1745.863674][ T2508] anon_thp 262144000 [ 1745.863674][ T2508] inactive_anon 135168 [ 1745.863674][ T2508] active_anon 282505216 03:34:13 executing program 2: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) r4 = openat$cgroup_ro(r3, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000280)) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe(&(0x7f0000000200)={0xffffffffffffffff}) write$FUSE_GETXATTR(r4, &(0x7f0000000240)={0x18, 0xfffffffffffffff5, 0x1, {0x1}}, 0x18) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x1, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0x3, 0x6, 0x1, 0x1, 0x9, 0x5, 0x3f, 0x2}}) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) r8 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r8, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r8, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) read$usbfs(r8, &(0x7f0000000780)=""/4096, 0x1000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r9}, 0x8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f0000000000)={r9, 0xfffe, 0x80, 0x1, 0x6, 0x2}, &(0x7f0000000040)=0x14) [ 1745.863674][ T2508] inactive_file 122880 [ 1745.863674][ T2508] active_file 73728 [ 1745.863674][ T2508] unevictable 0 [ 1745.863674][ T2508] slab_reclaimable 811008 [ 1745.863674][ T2508] slab_unreclaimable 4325376 [ 1745.863674][ T2508] pgfault 189420 [ 1745.863674][ T2508] pgmajfault 0 [ 1745.863674][ T2508] workingset_refault 330 [ 1745.863674][ T2508] workingset_activate 99 [ 1745.863674][ T2508] workingset_nodereclaim 0 [ 1745.863674][ T2508] pgrefill 10715 [ 1745.863674][ T2508] pgscan 61737 [ 1745.863674][ T2508] pgsteal 47170 [ 1745.867056][ T2543] BPF:btf_header not found [ 1745.879343][ T2546] BPF:[1] ARRAY (anon) 03:34:13 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r1, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r1, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) setsockopt$RXRPC_MIN_SECURITY_LEVEL(r1, 0x110, 0x4, &(0x7f0000000140)=0x1, 0x4) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x1, 0xc38004f9efee396c) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) sendmsg$TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f0000000400)={0x188, 0x0, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0x78, 0x5, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3a7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3363}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f800000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}]}, @TIPC_NLA_MEDIA={0x9c, 0x5, [@TIPC_NLA_MEDIA_PROP={0x54, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffe}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x359b230e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x101}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_LINK={0x18, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_LINK={0x18, 0x4, [@TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}]}, @TIPC_NLA_NET={0x30, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xff83}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x5}]}]}, 0x188}, 0x1, 0x0, 0x0, 0x10010}, 0x20048008) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1745.991094][ T2508] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=2255,uid=0 [ 1746.014128][ T2508] Memory cgroup out of memory: Killed process 2255 (syz-executor.3) total-vm:72980kB, anon-rss:2236kB, file-rss:35824kB, shmem-rss:0kB, UID:0 pgtables:151552kB oom_score_adj:1000 [ 1746.084701][ T7811] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=0 [ 1746.086000][ T2511] BPF:btf_header not found [ 1746.113319][ T2546] BPF:type_id=3113514752 index_type_id=0 nr_elems=7995392 [ 1746.124092][ T7811] CPU: 0 PID: 7811 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 1746.132915][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1746.135181][ T2546] BPF: [ 1746.143689][ T7811] Call Trace: [ 1746.143720][ T7811] dump_stack+0x11d/0x181 [ 1746.143745][ T7811] dump_header+0xaa/0x39c [ 1746.143767][ T7811] oom_kill_process.cold+0x10/0x15 [ 1746.143810][ T7811] out_of_memory+0x231/0xa60 [ 1746.154507][ T2546] BPF:size != 0 [ 1746.158912][ T7811] mem_cgroup_out_of_memory+0x128/0x150 [ 1746.158943][ T7811] try_charge+0xb6c/0xbf0 [ 1746.164829][ T2546] BPF: [ 1746.164829][ T2546] [ 1746.169954][ T7811] ? __rcu_read_unlock+0x66/0x3d0 [ 1746.169981][ T7811] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1746.189869][ T2550] BPF:[1] ARRAY (anon) [ 1746.193386][ T7811] __memcg_kmem_charge+0xcf/0x1b0 [ 1746.193467][ T7811] __alloc_pages_nodemask+0x26c/0x310 [ 1746.193511][ T7811] alloc_pages_current+0xd1/0x170 [ 1746.222162][ T7811] pte_alloc_one+0x18/0x50 [ 1746.226600][ T7811] __pte_alloc+0x2d/0x220 [ 1746.228268][ T2550] BPF:type_id=3113514752 index_type_id=0 nr_elems=7995392 [ 1746.230979][ T7811] copy_page_range+0x135a/0x19b0 [ 1746.231057][ T7811] ? __read_once_size.constprop.0+0x12/0x20 [ 1746.231087][ T7811] ? __rcu_read_unlock+0x66/0x3d0 [ 1746.255956][ T7811] ? __rb_rotate_set_parents+0x9a/0xf0 [ 1746.261448][ T7811] dup_mm+0x74a/0xba0 [ 1746.265525][ T7811] copy_process+0x3138/0x3c40 [ 1746.270352][ T7811] ? do_wp_page+0x19f/0xeb0 [ 1746.274986][ T7811] _do_fork+0xfe/0x7a0 [ 1746.276319][ T2550] BPF: [ 1746.279064][ T7811] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1746.279086][ T7811] ? __read_once_size+0x5a/0xe0 [ 1746.292716][ T7811] __x64_sys_clone+0x130/0x170 [ 1746.297496][ T7811] do_syscall_64+0xcc/0x3a0 [ 1746.302050][ T7811] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1746.305676][ T2550] BPF:size != 0 [ 1746.308074][ T7811] RIP: 0033:0x458eda [ 1746.308096][ T7811] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00 [ 1746.308163][ T7811] RSP: 002b:00007ffcc9750f60 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 1746.324491][ T2550] BPF: [ 1746.324491][ T2550] [ 1746.337793][ T7811] RAX: ffffffffffffffda RBX: 00007ffcc9750f60 RCX: 0000000000458eda [ 1746.337803][ T7811] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1746.337841][ T7811] RBP: 00007ffcc9750fa0 R08: 0000000000000001 R09: 00000000020c1940 [ 1746.337850][ T7811] R10: 00000000020c1c10 R11: 0000000000000246 R12: 0000000000000001 [ 1746.337859][ T7811] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffcc9750ff0 03:34:14 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:34:14 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r6, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r8, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:34:14 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b9000000000000f800000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1746.711877][ T7811] memory: usage 307200kB, limit 307200kB, failcnt 7522 [ 1746.726945][ T7811] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1746.755332][ T7811] Memory cgroup stats for /syz1: [ 1746.755528][ T7811] anon 214827008 [ 1746.755528][ T7811] file 90112 [ 1746.755528][ T7811] kernel_stack 9179136 [ 1746.755528][ T7811] slab 15622144 [ 1746.755528][ T7811] sock 0 [ 1746.755528][ T7811] shmem 0 [ 1746.755528][ T7811] file_mapped 0 [ 1746.755528][ T7811] file_dirty 0 [ 1746.755528][ T7811] file_writeback 0 [ 1746.755528][ T7811] anon_thp 146800640 [ 1746.755528][ T7811] inactive_anon 0 [ 1746.755528][ T7811] active_anon 214847488 [ 1746.755528][ T7811] inactive_file 77824 [ 1746.755528][ T7811] active_file 36864 [ 1746.755528][ T7811] unevictable 0 [ 1746.755528][ T7811] slab_reclaimable 2162688 [ 1746.755528][ T7811] slab_unreclaimable 13459456 [ 1746.755528][ T7811] pgfault 213906 [ 1746.755528][ T7811] pgmajfault 0 [ 1746.755528][ T7811] workingset_refault 264 [ 1746.755528][ T7811] workingset_activate 165 [ 1746.755528][ T7811] workingset_nodereclaim 0 [ 1746.755528][ T7811] pgrefill 38875 [ 1746.755528][ T7811] pgscan 43302 [ 1746.755528][ T7811] pgsteal 4951 [ 1746.858915][ T7811] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=14445,uid=0 [ 1746.877372][ T7811] Memory cgroup out of memory: Killed process 14445 (syz-executor.1) total-vm:72716kB, anon-rss:2220kB, file-rss:35788kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1746.882789][ T2563] BPF:btf_header not found [ 1746.905204][ T2566] BPF:[1] ARRAY (anon) [ 1746.919821][ T2566] BPF:type_id=3113514752 index_type_id=0 nr_elems=16252928 [ 1746.937042][ T2566] BPF: [ 1746.940370][ T2566] BPF:size != 0 [ 1746.953061][ T2566] BPF: [ 1746.953061][ T2566] [ 1746.966541][ T2567] BPF:[1] ARRAY (anon) [ 1746.970188][ T7808] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=0 [ 1746.975628][ T2567] BPF:type_id=3113514752 index_type_id=0 nr_elems=16252928 [ 1746.994557][ T2567] BPF: [ 1747.005092][ T2567] BPF:size != 0 [ 1747.007178][ T7808] CPU: 0 PID: 7808 Comm: syz-executor.0 Not tainted 5.5.0-rc1-syzkaller #0 [ 1747.016682][ T2567] BPF: [ 1747.016682][ T2567] [ 1747.017368][ T7808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1747.032422][ T7808] Call Trace: [ 1747.035721][ T7808] dump_stack+0x11d/0x181 [ 1747.040073][ T7808] dump_header+0xaa/0x39c [ 1747.044411][ T7808] oom_kill_process.cold+0x10/0x15 [ 1747.049581][ T7808] out_of_memory+0x231/0xa60 [ 1747.054262][ T7808] mem_cgroup_out_of_memory+0x128/0x150 [ 1747.059875][ T7808] try_charge+0xb6c/0xbf0 [ 1747.064403][ T7808] ? __rcu_read_unlock+0x66/0x3d0 [ 1747.074464][ T7808] __memcg_kmem_charge_memcg+0x4a/0xe0 [ 1747.079943][ T7808] __memcg_kmem_charge+0xcf/0x1b0 [ 1747.085000][ T7808] __alloc_pages_nodemask+0x26c/0x310 [ 1747.090598][ T7808] alloc_pages_current+0xd1/0x170 [ 1747.095699][ T7808] pte_alloc_one+0x18/0x50 [ 1747.100123][ T7808] __pte_alloc+0x2d/0x220 [ 1747.104479][ T7808] copy_page_range+0x135a/0x19b0 [ 1747.109441][ T7808] ? __vma_link_rb+0x3f4/0x440 [ 1747.114244][ T7808] dup_mm+0x74a/0xba0 [ 1747.118259][ T7808] copy_process+0x3138/0x3c40 [ 1747.123048][ T7808] ? do_wp_page+0x19f/0xeb0 [ 1747.127687][ T7808] _do_fork+0xfe/0x7a0 [ 1747.131920][ T7808] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1747.137819][ T7808] ? __read_once_size+0x5a/0xe0 [ 1747.142698][ T7808] __x64_sys_clone+0x130/0x170 [ 1747.147560][ T7808] do_syscall_64+0xcc/0x3a0 [ 1747.152393][ T7808] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1747.159004][ T7808] RIP: 0033:0x458eda 03:34:14 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b900000000ffffff00000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1747.162936][ T7808] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00 [ 1747.184704][ T7808] RSP: 002b:00007fff9b1d30b0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 1747.191396][ T2576] BPF:[1] ARRAY (anon) [ 1747.193212][ T7808] RAX: ffffffffffffffda RBX: 00007fff9b1d30b0 RCX: 0000000000458eda [ 1747.193231][ T7808] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1747.213474][ T7808] RBP: 00007fff9b1d30f0 R08: 0000000000000001 R09: 0000000000e4b940 [ 1747.214709][ T2576] BPF:type_id=3113514752 index_type_id=0 nr_elems=16777215 [ 1747.221450][ T7808] R10: 0000000000e4bc10 R11: 0000000000000246 R12: 0000000000000001 [ 1747.221535][ T7808] R13: 0000000000000000 R14: 0000000000000000 R15: 00007fff9b1d3140 [ 1747.248075][ T2579] BPF:Total section length too long 03:34:14 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) acct(&(0x7f0000000000)='./file0\x00') r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], &(0x7f0000000380)=""/233, 0x36, 0xa, 0x8}, 0x20) [ 1747.309016][ T7808] memory: usage 307200kB, limit 307200kB, failcnt 21448 [ 1747.351917][ T7808] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1747.358795][ T7808] Memory cgroup stats for /syz0: [ 1747.359084][ T7808] anon 245145600 [ 1747.359084][ T7808] file 65536 [ 1747.359084][ T7808] kernel_stack 6488064 [ 1747.359084][ T7808] slab 9658368 [ 1747.359084][ T7808] sock 0 [ 1747.359084][ T7808] shmem 0 [ 1747.359084][ T7808] file_mapped 0 [ 1747.359084][ T7808] file_dirty 0 [ 1747.359084][ T7808] file_writeback 0 [ 1747.359084][ T7808] anon_thp 199229440 [ 1747.359084][ T7808] inactive_anon 0 [ 1747.359084][ T7808] active_anon 245153792 [ 1747.359084][ T7808] inactive_file 0 [ 1747.359084][ T7808] active_file 131072 [ 1747.359084][ T7808] unevictable 0 [ 1747.359084][ T7808] slab_reclaimable 946176 [ 1747.359084][ T7808] slab_unreclaimable 8712192 [ 1747.359084][ T7808] pgfault 222519 [ 1747.359084][ T7808] pgmajfault 0 [ 1747.359084][ T7808] workingset_refault 297 [ 1747.359084][ T7808] workingset_activate 198 [ 1747.359084][ T7808] workingset_nodereclaim 0 [ 1747.359084][ T7808] pgrefill 38096 [ 1747.359084][ T7808] pgscan 80414 [ 1747.359084][ T7808] pgsteal 37609 [ 1747.460576][ T2576] BPF: [ 1747.466979][ T2576] BPF:size != 0 [ 1747.474997][ T2576] BPF: [ 1747.474997][ T2576] [ 1747.478104][ T7808] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=2470,uid=0 03:34:14 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r5, 0x5}}, 0x18) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r4, 0x40106614, &(0x7f00000000c0)) getsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000000)={@dev, 0x0}, &(0x7f0000000040)=0x14) ioctl$TUNSETIFINDEX(r3, 0x400454da, &(0x7f0000000080)=r6) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r7, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r7, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) getsockopt$TIPC_SRC_DROPPABLE(r7, 0x10f, 0x80, &(0x7f0000000100), &(0x7f00000001c0)=0x4) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1747.498447][ T7808] Memory cgroup out of memory: Killed process 2470 (syz-executor.0) total-vm:72848kB, anon-rss:4268kB, file-rss:35820kB, shmem-rss:0kB, UID:0 pgtables:143360kB oom_score_adj:1000 [ 1747.503288][ T2594] BPF:[1] ARRAY (anon) [ 1747.575004][ T2594] BPF:type_id=3113514752 index_type_id=0 nr_elems=16777215 [ 1747.603078][ T2594] BPF: [ 1747.625055][ T2594] BPF:size != 0 [ 1747.635068][ T2594] BPF: [ 1747.635068][ T2594] 03:34:15 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000180)='/\x00', 0xe6700, 0x0) write$cgroup_type(r3, &(0x7f0000000140)='threaded\x00', 0x9) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:34:15 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000001000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:34:15 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1747.726244][ T2602] BPF:btf_header not found [ 1747.756100][ T2606] BPF:[1] Invalid kind:0 [ 1747.925993][ T2615] BPF:[1] ARRAY (anon) [ 1747.942424][ T2615] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1747.955269][ T2617] BPF:btf_header not found [ 1747.960454][ T2615] BPF: [ 1747.968450][ T2615] BPF:size != 0 [ 1747.974445][ T2615] BPF: [ 1747.974445][ T2615] [ 1747.983214][ T2619] BPF:[1] ARRAY (anon) [ 1747.987899][ T2619] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1747.996129][ T2619] BPF: [ 1748.000002][ T2619] BPF:size != 0 [ 1748.006287][ T2619] BPF: [ 1748.006287][ T2619] 03:34:15 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000002000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1748.249511][ T2626] BPF:[1] ARRAY (anon) [ 1748.269094][ T2626] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1748.296355][ T2626] BPF: [ 1748.324065][ T2626] BPF:size != 0 [ 1748.336087][ T2627] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1748.338470][ T2626] BPF: [ 1748.338470][ T2626] [ 1748.367587][ T2629] BPF:[1] ARRAY (anon) [ 1748.385599][ T2629] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1748.441625][ T2629] BPF: [ 1748.450154][ T2629] BPF:size != 0 [ 1748.461639][ T2629] BPF: [ 1748.461639][ T2629] 03:34:16 executing program 2: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) r4 = openat$cgroup_ro(r3, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000280)) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe(&(0x7f0000000200)={0xffffffffffffffff}) write$FUSE_GETXATTR(r4, &(0x7f0000000240)={0x18, 0xfffffffffffffff5, 0x1, {0x1}}, 0x18) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x1, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0x3, 0x6, 0x1, 0x1, 0x9, 0x5, 0x3f, 0x2}}) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) r8 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r8, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r8, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) read$usbfs(r8, &(0x7f0000000780)=""/4096, 0x1000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r9}, 0x8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f0000000000)={r9, 0xfffe, 0x80, 0x1, 0x6, 0x2}, &(0x7f0000000040)=0x14) 03:34:16 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) ioctl$UI_ABS_SETUP(r3, 0x401c5504, &(0x7f0000000040)={0xf1d2, {0x3, 0x80, 0xb944, 0xfffffeff, 0x401, 0x365c}}) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) syz_open_dev$video(&(0x7f0000000080)='/dev/video#\x00', 0x6, 0x381200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x2e2, 0xf9, 0x8}, 0x20) 03:34:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x20, 0x2, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:34:16 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000003000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:34:16 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r6, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r8, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1748.746019][ T2643] BPF:btf_header not found 03:34:16 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 1748.781608][ T2645] BPF:[1] ARRAY (anon) [ 1748.799055][ T2638] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 03:34:16 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) socket$unix(0x1, 0x1, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000280)={0x0, 0x4, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r2, 0x5}}, 0x18) r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r4, 0x5}}, 0x18) r5 = dup2(r3, r0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="8eeb010018000000000000001c0000001c0000000200"/39], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1748.826741][ T2645] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1748.843627][ T2645] BPF: [ 1748.850957][ T2645] BPF:size != 0 [ 1748.857350][ T2645] BPF: [ 1748.857350][ T2645] [ 1748.912770][ T2656] BPF:[1] ARRAY (anon) [ 1748.934442][ T2656] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1748.984736][ T2656] BPF: [ 1748.995528][ T2656] BPF:size != 0 [ 1749.010201][ T2656] BPF: [ 1749.010201][ T2656] 03:34:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1749.044480][ T2664] BPF:btf_header not found 03:34:16 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCGPTLCK(r1, 0x80045439, &(0x7f0000000040)) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) ioctl$FS_IOC_SETVERSION(r3, 0x40087602, &(0x7f0000000000)=0x800) [ 1749.148125][ T2669] BPF:Invalid magic 03:34:16 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000004000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:34:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000140)={0xffffffffffffffff}, 0x800) getsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, &(0x7f0000000180), &(0x7f0000000240)=0xc) socket$unix(0x1, 0x2, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000780)={0x13, 0x10, 0xfa00, {0x0, r5, 0x5}}, 0x18) pread64(r4, &(0x7f0000000400)=""/235, 0xeb, 0xffffffffffffffff) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r3, 0xae80, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r6, 0x407, 0x0) write(r6, &(0x7f0000000340), 0x41395527) ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r6, 0x80184132, &(0x7f0000000000)) [ 1749.217302][ T2658] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1749.264119][ T2681] BPF:[1] Invalid kind:0 [ 1749.283793][ T2685] BPF:[1] Invalid kind:0 03:34:16 executing program 1: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1277, &(0x7f0000000040)=0x3ff) r1 = socket$unix(0x1, 0x1, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) r3 = dup2(r2, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1749.323578][ T2687] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1749.404993][ T2658] CPU: 1 PID: 2658 Comm: syz-executor.3 Not tainted 5.5.0-rc1-syzkaller #0 [ 1749.414192][ T2658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1749.424257][ T2658] Call Trace: [ 1749.427603][ T2658] dump_stack+0x11d/0x181 [ 1749.431949][ T2658] dump_header+0xaa/0x39c [ 1749.436316][ T2658] oom_kill_process.cold+0x10/0x15 [ 1749.441448][ T2658] out_of_memory+0x231/0xa60 [ 1749.444185][ T2695] QAT: Invalid ioctl [ 1749.446189][ T2658] mem_cgroup_out_of_memory+0x128/0x150 [ 1749.446243][ T2658] try_charge+0xb6c/0xbf0 [ 1749.453565][ T2695] BPF:[1] Invalid kind:0 [ 1749.456026][ T2658] ? rcu_note_context_switch+0x6d0/0x760 [ 1749.456055][ T2658] mem_cgroup_try_charge+0xd2/0x260 [ 1749.463281][ T2695] QAT: Invalid ioctl [ 1749.464675][ T2658] mem_cgroup_try_charge_delay+0x3a/0x80 [ 1749.486266][ T2658] __handle_mm_fault+0x197f/0x2e00 [ 1749.491431][ T2658] handle_mm_fault+0x21b/0x530 [ 1749.496467][ T2658] __do_page_fault+0x456/0x8d0 [ 1749.501466][ T2658] do_page_fault+0x38/0x194 [ 1749.505981][ T2658] page_fault+0x34/0x40 [ 1749.510140][ T2658] RIP: 0033:0x4120ff [ 1749.514042][ T2658] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41 [ 1749.535161][ T2658] RSP: 002b:00007fffc021fb00 EFLAGS: 00010206 [ 1749.541234][ T2658] RAX: 00007f8accf06000 RBX: 0000000000020000 RCX: 000000000045a95a [ 1749.549210][ T2658] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000 [ 1749.557261][ T2658] RBP: 00007fffc021fbe0 R08: ffffffffffffffff R09: 0000000000000000 [ 1749.566492][ T2658] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffc021fcd0 [ 1749.575068][ T2658] R13: 00007f8accf26700 R14: 0000000000000001 R15: 000000000075bfd4 [ 1749.604132][ T2702] BPF:[1] ARRAY (anon) [ 1749.609300][ T2702] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1749.616810][ T2702] BPF: [ 1749.626904][ T2702] BPF:size != 0 [ 1749.631205][ T2702] BPF: [ 1749.631205][ T2702] [ 1749.639715][ T2703] BPF:[1] ARRAY (anon) [ 1749.644470][ T2703] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1749.651575][ T2703] BPF: 03:34:17 executing program 2: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) r4 = openat$cgroup_ro(r3, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000280)) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe(&(0x7f0000000200)={0xffffffffffffffff}) write$FUSE_GETXATTR(r4, &(0x7f0000000240)={0x18, 0xfffffffffffffff5, 0x1, {0x1}}, 0x18) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x1, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0x3, 0x6, 0x1, 0x1, 0x9, 0x5, 0x3f, 0x2}}) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) r8 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r8, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r8, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) read$usbfs(r8, &(0x7f0000000780)=""/4096, 0x1000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r9}, 0x8) 03:34:17 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet6(0xa, 0x5, 0x7f) r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000280)=ANY=[@ANYBLOB="c8f072dbe4a34f9229f88aa10b10", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r4, 0x84, 0x76, &(0x7f0000000000)={r5}, 0x8) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000100)={r5, 0x58, &(0x7f0000000080)=[@in6={0xa, 0x4e21, 0x7, @dev={0xfe, 0x80, [], 0x19}, 0x4}, @in={0x2, 0x4e24, @multicast2}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xd}}, @in6={0xa, 0x4e20, 0x1, @loopback, 0x2}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f00000001c0)={r6, 0x0, 0x8, 0x995, 0x7, 0x41b}, &(0x7f0000000240)=0x14) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000000f030000007794b900"/54], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x10) 03:34:17 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r5, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r2, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r6, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r8, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1749.654794][ T2703] BPF:size != 0 [ 1749.658747][ T2703] BPF: [ 1749.658747][ T2703] 03:34:17 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000005000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1749.744197][ T2658] memory: usage 307200kB, limit 307200kB, failcnt 2438804 [ 1749.751816][ T2658] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1749.759256][ T2658] Memory cgroup stats for /syz3: [ 1749.759418][ T2658] anon 282529792 [ 1749.759418][ T2658] file 20480 [ 1749.759418][ T2658] kernel_stack 2985984 [ 1749.759418][ T2658] slab 5136384 [ 1749.759418][ T2658] sock 20480 [ 1749.759418][ T2658] shmem 65536 [ 1749.759418][ T2658] file_mapped 0 [ 1749.759418][ T2658] file_dirty 135168 [ 1749.759418][ T2658] file_writeback 0 [ 1749.759418][ T2658] anon_thp 262144000 [ 1749.759418][ T2658] inactive_anon 135168 [ 1749.759418][ T2658] active_anon 282533888 [ 1749.759418][ T2658] inactive_file 122880 [ 1749.759418][ T2658] active_file 73728 [ 1749.759418][ T2658] unevictable 0 [ 1749.759418][ T2658] slab_reclaimable 811008 [ 1749.759418][ T2658] slab_unreclaimable 4325376 [ 1749.759418][ T2658] pgfault 189750 [ 1749.759418][ T2658] pgmajfault 0 [ 1749.759418][ T2658] workingset_refault 330 [ 1749.759418][ T2658] workingset_activate 99 [ 1749.759418][ T2658] workingset_nodereclaim 0 [ 1749.759418][ T2658] pgrefill 12332 [ 1749.759418][ T2658] pgscan 65227 [ 1749.759418][ T2658] pgsteal 48444 [ 1749.773094][ T2705] BPF:[1] Invalid kind:0 [ 1749.877358][ T2710] BPF:btf_header not found [ 1749.936413][ T2719] BPF:[1] ARRAY (anon) [ 1749.951236][ T2719] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1749.971786][ T2719] BPF: [ 1749.975564][ T2719] BPF:size != 0 [ 1749.999529][ T2719] BPF: [ 1749.999529][ T2719] [ 1750.021704][ T2724] BPF:[1] ARRAY (anon) [ 1750.038320][ T2724] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1750.053429][ T2724] BPF: [ 1750.056679][ T2724] BPF:size != 0 [ 1750.073275][ T2724] BPF: [ 1750.073275][ T2724] 03:34:17 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r2, &(0x7f0000000000)="b6", 0xfffffe7e) r3 = openat$cgroup_ro(r2, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) setsockopt$inet_MCAST_LEAVE_GROUP(r2, 0x0, 0x2d, &(0x7f0000000200)={0x4d, {{0x2, 0x4e23, @multicast1}}}, 0x88) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_MSR_INDEX_LIST(r3, 0xc004ae02, &(0x7f0000000140)={0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1750.165212][ T2658] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=1206,uid=0 [ 1750.206051][ T2658] Memory cgroup out of memory: Killed process 1206 (syz-executor.3) total-vm:72980kB, anon-rss:2232kB, file-rss:35828kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000 [ 1750.429412][ T2737] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 03:34:18 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb6d670fff0f000000000000e300001c0000000200000000000000000000d4325280a4142a124567d0d9000f0300000004000000000000000000000000000000c507bdd8306d0b300ca312ea1e1c01fa2bb634c50f58ee9051318f972aaeb54460fa8396c4a598b11f822d9eb8a7ac75db891c7c566e8f25a3b27e45962d93f66c0912197cef921b4c942f8c5b6165e161708b714d18aefaf273154b75c0bcf626c7275deb3077d8dde8c6937d679c90a5c368681daac4cbba695639247aff250feb5e8d9b4f803e78f6179c45005e16ddaf7e982c6634b3c32bb41b9bd9f20643d52394fbe9109564fb12c69fee76fd8da6247fe01211562762c001ab7d7033afaa682ca040a4d0c676ea59d5c904d047f388fa3896729a2e6d905f300f67bb4a8ac8e15b4f3e0ab95d91f657b6129e030a20c3b1a65b29203300e0192a02b84da96c7bd746be8793b15aea02657c128dc81aa22ef9fd6cc250abaf53ce98d072de7c60952b41a93dec71289d9a9cda7bb910e1b7941cba908ee1e6f9638cb0d544e4ca10bf4f6adf24eb418ef7a9beecd91a36a35c3e56e9d0a947a85aaadf7c4520efc8271222244f945285b0d52319a4cc92ff8e45ff05f8bf3e473db4fadcc191f5ec6dd0bdc61a784434d7bfc93865ee4bbc3b9dcf0787d34338bbf029db72986b63ed27ebc35bb0dd6c2f1aa0bab0710000000000000000000080955edf5a792d041afdc79c3d02"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)={r1, 0x0, 0x1f}, 0x8) dup3(0xffffffffffffffff, r0, 0x180000) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) syz_init_net_socket$ax25(0x3, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 03:34:18 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000006000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) 03:34:18 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x2, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = openat$nvram(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/nvram\x00', 0x0, 0x0) ioctl$VT_SETMODE(r6, 0x5602, &(0x7f0000000240)={0x5, 0xb9, 0x80, 0x1, 0xfffe}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) r7 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={0x9}, 0x8) r8 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) r10 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0x1b1) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r3, 0xc0505405, &(0x7f0000000580)={{0x2, 0x1, 0x1, 0x3, 0x8}, 0x55, 0x8, 0x2}) setresuid(0xee00, r9, r11) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000100)=0x0) r13 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x101000, 0xa5) fstat(r13, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='9p\x00', 0x1200000, &(0x7f0000000480)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB="03000000000000", @ANYRESHEX=r7, @ANYBLOB=',cache=none,aname=\':[^\x00,nodevmap,access=any,version=9p2000,seclabel,fowner>', @ANYRESDEC=r9, @ANYBLOB=',context=unconfined_u,uid=', @ANYRESDEC=r12, @ANYBLOB=',obj_user=\':[^\x00,fowner=', @ANYRESDEC=r14, @ANYBLOB=',\x00']) setsockopt$RXRPC_SECURITY_KEY(r4, 0x110, 0x1, &(0x7f0000000000)='\':[^\x00', 0x5) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r15, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r15, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r15, 0x80184132, &(0x7f0000000280)) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c00000020d200000000000000000000000000000f030000007794b90000000011000000000000000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0xfffffffffffffcd9) 03:34:18 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r1, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r6 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r6, 0x84, 0x76, &(0x7f0000000000)={r7, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) [ 1750.698349][ T2741] BPF:[1] ARRAY (anon) [ 1750.719619][ T2741] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1750.741786][ T2741] BPF: [ 1750.744954][ T2741] BPF:size != 0 [ 1750.775917][ T2741] BPF: [ 1750.775917][ T2741] [ 1750.792933][ T2748] BPF:[1] ARRAY (anon) [ 1750.802882][ T2745] BPF:btf_header not found [ 1750.807397][ T2748] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1750.836671][ T2748] BPF: [ 1750.847685][ T2748] BPF:size != 0 [ 1750.856462][ T2748] BPF: [ 1750.856462][ T2748] [ 1750.910433][ T2752] BPF:btf_header not found 03:34:18 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x3f7) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) pipe(&(0x7f00000004c0)={0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x7, 0x200000) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) r4 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r4, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r1, &(0x7f0000000f00)='cpuset.effective_cp\xcfs\x00\xa3j\xb6\xdaC\x82\x8ad\xab\xe9W8\xd4F\x19\xf7\xd5\xf9\xd6\x14p\xdb\xad\n\xf2\x92e\x98\xb4\xb9\x93\x12\x00\xb1\x81\x8d\x93J)\t\xc1\xc2\x00\xbe\x04\xa0e9\'\x1em\xb6\xcc\x9b\xdd\x1d\x15\xf0\xdb\x92\xf0\x9d_\x84\xe3\xdd#\xbd\xd7D\xf6\fY\xb0-<\xe7\xa8\xa8\xd08_ T\xe8\xe7\xb4\x11\xc1\xc1\xc88\x0e\xea\x8fN\x1a\x02x\xcf\x90\xd9\xd8\xfa(\xbe\xf7\a\xde\xef3@\xc6\xcc\xfd>\xd2O4n\x8f\xdd\x87\x8dA\xcd.\x7f\xc8*\xb6\x06\x8d\x15\xd1]\xd7@\xd28\x18\xea\xef\xb8\x9d\xb6\x85\x8e\xdd\xf7\x97\xfa\xe2\xa02\xb7k%P`\x90#t\xa3\x00/\x14\x7fdg\xbaH\xbfU\xbf\x98\x99\xbf\xca{\xb9\x02\xb0\x80\xbdp\xae9\x02\r6<#\xa8\xcb\x8a4K`\x02+\x8c\xcd\xcd=I\xc8\xce\xf8Y\x94\xd4\xd6\bf\xdbm\xaeAP\x1cf\xc7h\x19\x1dTo)rG\xb0\xb8GAi\xab\\=u\x1b\xe9\x94J\x8e\x98o\xfd\xfa(\x19\x88\xd2\x1a%7o\xf6\xa7\xad\xf2\x8f\x14\xa8\x1c\xd3\x15\xf8\xbb.g\x136\x1aq\x90mw\xb2\xdaW\xb6\xd2\x9e\x92?\xe3:\x1d\xfb\xa8\x80r\x80\x7f\xc2\x94I\xfe\xd9\xff?G\x1f\x93\x00\x92\xf9\x8a\x92\x10E4\xe4\x97-ZL\xf2\xe2w\rL2\x16~\xf3\xd9\xc6\'\x86\xe9\xa1\xe9zr\xbc\xa3o\xa8\xef\x05t\x8b\xadd\x809=\x13\x825\xc7\r\xc1\xc5\xccI\x1acX\xd1\xb6F\x81a\xbb\xa9<*# \x9e\t\xdf\xf0\x02>\xa4\xb1\x8b\xad`\xc5Y\xc64\x85\xb7\xd7\xfe\rx\x04\x04\xb4&\xc1\xfc\x90\xd2&5\xf07b\x11\x9b\x9b', 0x0, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r6 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="01007bf291040000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r6, 0x84, 0x76, &(0x7f0000000000)={r7, 0x6}, 0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000500)={0x0, 0x2}, 0x8) 03:34:18 executing program 2: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) r3 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r3, &(0x7f0000000000)="b6", 0xfffffe7e) r4 = openat$cgroup_ro(r3, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000440)=0x6, 0x4) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000280)) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe(&(0x7f0000000200)={0xffffffffffffffff}) write$FUSE_GETXATTR(r4, &(0x7f0000000240)={0x18, 0xfffffffffffffff5, 0x1, {0x1}}, 0x18) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f0000000680)={0x1, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0x3, 0x6, 0x1, 0x1, 0x9, 0x5, 0x3f, 0x2}}) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) r8 = open(&(0x7f0000000040)='./bus\x00', 0x8001141042, 0x0) write(r8, &(0x7f0000000000)="b6", 0xfffffe7e) openat$cgroup_ro(r8, &(0x7f00000001c0)='cpu.stat\x00', 0x0, 0x0) read$usbfs(r8, &(0x7f0000000780)=""/4096, 0x1000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r7, 0x84, 0x76, &(0x7f0000000000)={r9}, 0x8) 03:34:18 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c0000000200000000000000000000030f030000007794b90000000000000000000007000000"], &(0x7f0000000380)=""/249, 0x36, 0xf9, 0x8}, 0x20) [ 1751.103406][ T2760] BPF:btf_header not found [ 1751.127059][ T2765] BPF:[1] ARRAY (anon) [ 1751.154451][ T2765] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 [ 1751.191694][ T2765] BPF: [ 1751.212823][ T2765] BPF:size != 0 [ 1751.236153][ T2765] BPF: [ 1751.236153][ T2765] [ 1751.272583][ T2772] BPF:[1] ARRAY (anon) [ 1751.294334][ T2772] BPF:type_id=3113514752 index_type_id=0 nr_elems=0 03:34:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x3f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x92, 0x0, 0x0, 0x1, 0x1}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000340)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x0, 0xffffffffffdce7bb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000680)={0x0, 0x0, @pic={0x0, 0x45, 0x0, 0x3f, 0x6, 0x8, 0x1f, 0x4, 0xff, 0x6, 0x1, 0x1, 0x0, 0x5, 0x3f, 0x2}}) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r3, 0x84, 0x70, &(0x7f0000000200)={0x0, @in6={{0xa, 0x4e20, 0x2, @mcast2, 0x2}}, [0x2, 0x4, 0x0, 0x7, 0x8001, 0x0, 0x80000001, 0x4, 0x0, 0x1, 0xda54, 0xffffffffffff3959, 0x0, 0x8]}, &(0x7f0000000000)=0x100) [ 1751.344584][ T2772] BPF: [ 1751.356318][ T2772] BPF:size != 0 [ 1751.365522][ T2772] BPF: [ 1751.365522][ T2772] [ 1751.437291][ T8017] ================================================================== [ 1751.445599][ T8017] BUG: KCSAN: data-race in percpu_counter_add_batch / wb_over_bg_thresh [ 1751.454056][ T8017] [ 1751.456442][ T8017] write to 0xffff8880a4095868 of 8 bytes by task 2751 on cpu 1: [ 1751.464433][ T8017] percpu_counter_add_batch+0xca/0x150 [ 1751.469882][ T8017] account_page_dirtied+0x1f1/0x4a0 [ 1751.475075][ T8017] __set_page_dirty+0x8a/0x270 [ 1751.479822][ T8017] mark_buffer_dirty+0x27f/0x2c0 [ 1751.484744][ T8017] __block_commit_write.isra.0+0x11f/0x170 [ 1751.490651][ T8017] block_write_end+0x6d/0x140 [ 1751.495316][ T8017] generic_write_end+0x8a/0x1f0 [ 1751.500154][ T8017] ext4_da_write_end+0x158/0x620 [ 1751.505189][ T8017] generic_perform_write+0x1d3/0x320 [ 1751.510472][ T8017] ext4_buffered_write_iter+0x143/0x290 [ 1751.516016][ T8017] ext4_file_write_iter+0xf4/0xd40 [ 1751.521115][ T8017] new_sync_write+0x388/0x4a0 [ 1751.525796][ T8017] __vfs_write+0xb1/0xc0 [ 1751.530016][ T8017] vfs_write+0x18a/0x390 [ 1751.534260][ T8017] ksys_write+0xd5/0x1b0 [ 1751.538489][ T8017] __x64_sys_write+0x4c/0x60 [ 1751.543067][ T8017] do_syscall_64+0xcc/0x3a0 [ 1751.547559][ T8017] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1751.553440][ T8017] [ 1751.555768][ T8017] read to 0xffff8880a4095868 of 8 bytes by task 8017 on cpu 0: [ 1751.563391][ T8017] wb_over_bg_thresh+0x247/0x490 [ 1751.568316][ T8017] wb_writeback+0x4bc/0x6a0 [ 1751.572835][ T8017] wb_workfn+0x696/0x970 [ 1751.577193][ T8017] process_one_work+0x3d4/0x890 [ 1751.582044][ T8017] worker_thread+0xa0/0x800 [ 1751.586536][ T8017] kthread+0x1d4/0x200 [ 1751.590597][ T8017] ret_from_fork+0x1f/0x30 [ 1751.594989][ T8017] [ 1751.597292][ T8017] Reported by Kernel Concurrency Sanitizer on: [ 1751.603776][ T8017] CPU: 0 PID: 8017 Comm: kworker/u4:4 Not tainted 5.5.0-rc1-syzkaller #0 [ 1751.612176][ T8017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1751.622236][ T8017] Workqueue: writeback wb_workfn (flush-8:0) [ 1751.628213][ T8017] ================================================================== [ 1751.636263][ T8017] Kernel panic - not syncing: panic_on_warn set ... [ 1751.642842][ T8017] CPU: 0 PID: 8017 Comm: kworker/u4:4 Not tainted 5.5.0-rc1-syzkaller #0 [ 1751.651776][ T8017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1751.661855][ T8017] Workqueue: writeback wb_workfn (flush-8:0) [ 1751.667927][ T8017] Call Trace: [ 1751.671295][ T8017] dump_stack+0x11d/0x181 [ 1751.675776][ T8017] panic+0x210/0x640 [ 1751.679793][ T8017] ? vprintk_func+0x8d/0x140 [ 1751.684378][ T8017] kcsan_report.cold+0xc/0xd [ 1751.688964][ T8017] kcsan_setup_watchpoint+0x3fe/0x460 [ 1751.694418][ T8017] __tsan_read8+0xc6/0x100 [ 1751.698864][ T8017] wb_over_bg_thresh+0x247/0x490 [ 1751.703849][ T8017] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1751.710201][ T8017] ? __wb_update_bandwidth+0x2cc/0x3c0 [ 1751.715651][ T8017] wb_writeback+0x4bc/0x6a0 [ 1751.720145][ T8017] wb_workfn+0x696/0x970 [ 1751.727044][ T8017] process_one_work+0x3d4/0x890 [ 1751.731887][ T8017] worker_thread+0xa0/0x800 [ 1751.736384][ T8017] kthread+0x1d4/0x200 [ 1751.740432][ T8017] ? rescuer_thread+0x6a0/0x6a0 [ 1751.745436][ T8017] ? kthread_unpark+0xe0/0xe0 [ 1751.750098][ T8017] ret_from_fork+0x1f/0x30 [ 1751.756615][ T8017] Kernel Offset: disabled [ 1751.761254][ T8017] Rebooting in 86400 seconds..